r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2347
Expires: Wed, 07 Sep 2022 03:26:05 GMT
Date: Wed, 07 Sep 2022 02:46:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 07 Sep 2022 02:03:55 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hWCIpbKdzCxqc5WDJHXfN4D7Yfk0LitGx1pDODidyFZnVWzdKWgjdw==
Age: 2582
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
date: Tue, 06 Sep 2022 03:46:34 GMT
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7jr2yTb3JbKo0MswxRRMzJcZ1TUYVAmCDKlj7GsxL7Ph0X4-QSQB7g==
age: 82825
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 02:46:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
154.16.114.64301 Moved Permanently 0 B URL HTTP/1.1 biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?aff_id=15&subid2=6383_sessid20220907024616056&subid=466 HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 07 Sep 2022 02:46:58 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Content-Length: 0
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 07 Sep 2022 02:38:18 GMT
Expires: Wed, 07 Sep 2022 02:42:21 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3ePJB0Aa4PJ6k2HUxKK_AMjWP9_YmNIRlkiHywVVyrp0EHYA5HZD3w==
Age: 521
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e8952752ad4a452a575522a7eb737217
c5554fa2af05d7a7117032b0f99352de08988346
8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2807
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:46:59 GMT
Last-Modified: Wed, 07 Sep 2022 02:00:12 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.236.232.139101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.236.232.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Pn9jva/k15KycHAGvI/WZQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: n4gnknFEdhPSyoAP1qKBfe4729g=
biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
154.16.114.64301 Moved Permanently 0 B URL HTTP/2 biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?aff_id=15&subid2=6383_sessid20220907024616056&subid=466 HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
x-redirect-by: WordPress
location: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
content-length: 0
content-type: text/html; charset=UTF-8
date: Wed, 07 Sep 2022 02:46:59 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3097
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Wed, 07 Sep 2022 02:47:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3097
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Wed, 07 Sep 2022 02:47:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3097
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Wed, 07 Sep 2022 02:47:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3097
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Wed, 07 Sep 2022 02:47:00 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0800dbf4-64cd-48ab-95cc-48192d2f25f3.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0800dbf4-64cd-48ab-95cc-48192d2f25f3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 44ee4c9bd1e550045d69f24ad511070c
3bf0d51801523d7014ac76b5ab90c989fc7a770f
ee48c13050faa498f79222216f9c71b20b3a4e5e8e5c59c7156c276ab942703c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0800dbf4-64cd-48ab-95cc-48192d2f25f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8756
x-amzn-requestid: d48113bc-fe40-4d59-b700-194b1092ab67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqmxQEbVoAMF_UA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630db807-14ff6f5b0ffb9a7f08e57906;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 07:11:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YKs0giofWi83MnLBqx6zAu1NGd_A9-l6y2pULUBn2RK0-H3KNRzrUg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 15:59:32 GMT
age: 38848
etag: "3bf0d51801523d7014ac76b5ab90c989fc7a770f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46aec6c9-5dde-4aba-879c-d92f0cfec73f.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46aec6c9-5dde-4aba-879c-d92f0cfec73f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f754103a24f76f89b092a30c13f2d5d5
800998b57db224e881f26b245baa4da9626d9f0a
2d535af5239ad8c836cb8545ae6bcc957b3ebcf5ae3abe60fb4281c9e268b0be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46aec6c9-5dde-4aba-879c-d92f0cfec73f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13523
x-amzn-requestid: 10df7b4c-540c-4706-a511-5ff96a3aeb9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDikTETaIAMFk6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317b14e-4afbd43f3d8117aa10e91f64;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 20:45:02 GMT
x-amz-cf-pop: YVR50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: dDCQ13zMHNL9RVL9bvUVut-AfDpiTNaj8798O5T20k0hiSkL2t3KjA==
via: 1.1 1dd804267731601ebefbfc73a35de7a8.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:51:15 GMT
etag: "800998b57db224e881f26b245baa4da9626d9f0a"
content-type: image/jpeg
age: 17745
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9352b2-4ab5-48d0-9676-61bf3275b779.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9352b2-4ab5-48d0-9676-61bf3275b779.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 489429fc4af7d245f194596e975d1e49
ab455b8abde4309f365d55508794a8cf8c85d8b6
112f3ed8114c9a10d897af2d083a71f10ec68442d5896487f12259ed676ae017
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9352b2-4ab5-48d0-9676-61bf3275b779.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7002
x-amzn-requestid: b77f0e27-7942-4b68-907c-94a4353f83d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7URaFKwoAMF0gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6314673c-78de60734320a48a2930ce0d;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 08:52:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5LG5agu25pdVJQ3KqkCvvSKiMCBpcf_pYIR2FgJ6KoTd0DvF5p5y8g==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:20:33 GMT
age: 15987
etag: "ab455b8abde4309f365d55508794a8cf8c85d8b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ee600c8-d25e-4cb3-93cb-f1970d300d9c.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ee600c8-d25e-4cb3-93cb-f1970d300d9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c316fd8a538a8c998ef49d399e9b0692
1fbcbd73de88723e5a42ec1ecb131b94deb1c88e
1a34abee1bf6b76733ba2ca97a5c053b67bd6cd48f6953fc53798c77385cd781
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ee600c8-d25e-4cb3-93cb-f1970d300d9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8643
x-amzn-requestid: 8398144d-7a42-452b-88e5-0e6cb9f4bc02
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqbSpEt7IAMFfEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630da5aa-5369099439689d5270e0a044;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 05:52:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MnvZGT9Q3ZSCf7nLpks2IXXNyg7jaNX6r4bnebHekesqfWlMY_bh5A==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:05:39 GMT
age: 16881
etag: "1fbcbd73de88723e5a42ec1ecb131b94deb1c88e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 70c964498818242b742575cfa1769b67
cde85fbe83c9e29618edf4e05002bd623e3ab965
bdb0e76fe216f742789ba5a77645c640fe0c7f207707181e618fa31d4cf58605
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8462
x-amzn-requestid: d75d69c1-87be-47e2-8684-3c9a25edee2f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDqYpFL-IAMFukQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bdd0-1c6d025672cc490734bb54e4;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:38:24 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yzw88Z7aubNEll7UXkvaIWbftL95Y0UDTMnOEh_uhKqWgNycBA9Adw==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:41:22 GMT
age: 18339
etag: "cde85fbe83c9e29618edf4e05002bd623e3ab965"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff29f2a08-1dd5-4577-ae0d-6852e6e83ba7.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff29f2a08-1dd5-4577-ae0d-6852e6e83ba7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6447311cd0f34fb9cde4e21946e0d8af
cfca3a21a33e58f300343f643634c50a924bb6db
e2de947b52e13a0350c5b6904020924b957161d825930677386185a62d2f2401
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff29f2a08-1dd5-4577-ae0d-6852e6e83ba7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5384
x-amzn-requestid: 6888919c-b9fb-43da-a080-0dde24422b4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDqZHHA5oAMFjzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bdd3-7f32bdc673d113da6e69b413;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:38:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FvxWL8FJUrDyhFhyYXIuArDhRgFUyTurACy5-POlVjXeskWas-d2pQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:41:25 GMT
age: 18336
etag: "cfca3a21a33e58f300343f643634c50a924bb6db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-NWVJ02QJDT
142.250.74.72200 OK 74 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-NWVJ02QJDT
IP 142.250.74.72:0
File type ASCII text, with very long lines (15517)
Hash 96a4026f087bfcb5da2b8f20f103cc6c
4af1d25be7d9d30a4a4342ea72881910c655d078
64bc9f84278060a4b51e6d574836a8020e9413460a29d8cf623574f1a7c98d25
GET /gtag/js?id=G-NWVJ02QJDT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Sep 2022 02:47:01 GMT
expires: Wed, 07 Sep 2022 02:47:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73908
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=OPT-PX828G2
142.250.74.46200 OK 42 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-PX828G2
IP 142.250.74.46:0
File type ASCII text, with very long lines (1615)
Hash 1796282ba591ad47bc3a1dc49952a273
b9516158ce993ef7652ded1cff9b28c63a86ce0e
848156d821dd9b4098c05aafdd5f0540bb9ea7fe7b3ba423e6f9b808743231ce
GET /optimize.js?id=OPT-PX828G2 HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Sep 2022 02:47:01 GMT
expires: Wed, 07 Sep 2022 02:47:01 GMT
cache-control: private, max-age=900
last-modified: Wed, 07 Sep 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42206
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
154.16.114.64200 OK 244 kB URL HTTP/2 www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1706), with CRLF, LF line terminators
Size 244 kB (243914 bytes)
Hash 7f58c34c2596a24b7c74f2fed7f471d1
06e9ce7e9ff1337bb89498a4321782f339985015
217229c6d114f024e8391042cdd85ae01b9a9d755889ce75c69632ceddd41660
GET /?aff_id=15&subid2=6383_sessid20220907024616056&subid=466 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
link: <https://www.biofungusnuker.com/wp-json/>; rel="https://api.w.org/", <https://www.biofungusnuker.com/wp-json/wp/v2/pages/7>; rel="alternate"; type="application/json", <https://www.biofungusnuker.com/>; rel=shortlink
content-length: 243914
content-type: text/html; charset=UTF-8
date: Wed, 07 Sep 2022 02:47:00 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.6.11
154.16.114.64200 OK 1.8 kB URL HTTP/2 www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.6.11
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
Hash 270d05c0ca7ab3b98eb99183bf1e1ef2
c68771f89466e43ebc4ed54028627be4b3e33977
5803ac00778699dfa69a5f4fed086bf5c29164864bdb5b2f36fe0e3cc98736fb
GET /wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.6.11 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 01 Mar 2021 10:38:34 GMT
accept-ranges: bytes
content-length: 1822
content-type: text/css
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.6.11
154.16.114.64200 OK 4.3 kB URL HTTP/2 www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.6.11
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
Hash d1fdce218e486089ed3e3c56ffd451ed
f4fb6b3f4ed76c5de129bf84279086dff7ca871f
a5a0ac2b3d285a43297085af1b35a9021164746c3fbee207c8595fbea5d63a4a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.6.11 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 01 Mar 2021 10:38:34 GMT
accept-ranges: bytes
content-length: 4275
content-type: application/javascript
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/uploads/themify-css/concate/themify-concate-405c7d81c6c9e9fa1575869d440c7211.min.css
154.16.114.64200 OK 98 kB URL HTTP/2 www.biofungusnuker.com/wp-content/uploads/themify-css/concate/themify-concate-405c7d81c6c9e9fa1575869d440c7211.min.css
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (21878), with CRLF, LF line terminators
Hash 94ca64bb0f9c94eb19d206fba21db8f1
08e7d6eaf66073b41a81046ed19bec3a1255f3d6
eb5e4adf7f88966858873eb0c0d2f5a385e4004580a9cc2c56867902e6d815e1
GET /wp-content/uploads/themify-css/concate/themify-concate-405c7d81c6c9e9fa1575869d440c7211.min.css HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:28:12 GMT
accept-ranges: bytes
content-length: 98404
content-type: text/css
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
154.16.114.64200 OK 90 kB URL HTTP/2 www.biofungusnuker.com/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (65451)
Hash b6f7093369a0e8b83703914ce731b13c
d1889f5c173c2a4b20288f1f84758599afd346ef
60240d5a27ede94fd35fea44bd110b88c7d8cfc08127f032d13b0c622b8be827
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Dec 2020 07:58:04 GMT
accept-ranges: bytes
content-length: 89496
content-type: application/javascript
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c0498832f97967e1fbaa64eba7c65094
2dcaaa99759c7b3279d75f4f934bf05a1c4ca8e7
63621ee746f1a80c3c6167ca190e5008e3e79db0bc8f0e5cb0e5dccc11ceb822
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
code.jqueryoi.com/js/pub.min.js
67.212.173.78200 OK 1.5 kB URL HTTP/2 code.jqueryoi.com/js/pub.min.js
IP 67.212.173.78:0
File type ASCII text, with very long lines (3046)
Hash 6b59aef8edb9a8a745a3f09d386cebca
0c5831d854a3dcde9fd2ff6476484253219d9cf7
7dbd92ef041a0a0ca1a2b87f7bcf416eb60fd72670391ec82d2997e2dfd7b903
Analyzer Verdict Alert fortinet Malware
GET /js/pub.min.js HTTP/1.1
Host: code.jqueryoi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 02:47:01 GMT
content-type: application/javascript
content-length: 1547
last-modified: Wed, 22 Sep 2021 12:11:29 GMT
vary: Accept-Encoding
etag: "614b1d71-60b"
content-encoding: gzip
expires: Thu, 08 Sep 2022 02:47:01 GMT
cache-control: max-age=86400
strict-transport-security: max-age=31536000; includeSubdomains;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c0498832f97967e1fbaa64eba7c65094
2dcaaa99759c7b3279d75f4f934bf05a1c4ca8e7
63621ee746f1a80c3c6167ca190e5008e3e79db0bc8f0e5cb0e5dccc11ceb822
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
biofungusnuker.com/wp-content/uploads/2020/11/4r.jpg
154.16.114.64200 OK 175 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/4r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1500, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1000], progressive, precision 8, 600x900, components 3\012- data
Size 175 kB (174896 bytes)
Hash ee5c3a7b3d275bfa83e1b09fc7961fc6
c4138263bdca73d1f01c5ee5f7af8407862d87ca
308d9e3a68f8572302745735e22b29b13d8eba5ff0fbfadb878ba52f58010c19
GET /wp-content/uploads/2020/11/4r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:41 GMT
accept-ranges: bytes
content-length: 174896
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/1r.jpg
154.16.114.64200 OK 231 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/1r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 231 kB (231040 bytes)
Hash 3cc91d3adc5689ea23faa79a9860c982
15b017607ccd0bd87ad99c0aa704b730a183b382
9df5e3df32c0877bf589078c217f4989f67d1306952e0511834d2972c3fded65
GET /wp-content/uploads/2020/11/1r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:48 GMT
accept-ranges: bytes
content-length: 231040
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/5-rsToenail-Fungus-Transformation.jpg
154.16.114.64200 OK 284 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/5-rsToenail-Fungus-Transformation.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:10:23 14:56:22], progressive, precision 8, 900x900, components 3\012- data
Size 284 kB (284033 bytes)
Hash afff2562975f976e996acab16f1ef233
0f0b12eb817258085dd9bf2b0ab48036168aa581
80047c21c9c6ffb89abff2a12550e1d8cb67d1370df3d3e780a16f97cba77f4b
GET /wp-content/uploads/2020/10/5-rsToenail-Fungus-Transformation.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:23:14 GMT
accept-ranges: bytes
content-length: 284033
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/2r.jpg
154.16.114.64200 OK 299 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/2r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 299 kB (299066 bytes)
Hash 330a705f21c79091070ff8997ab6d92b
41f244b2fb7ab11ac2259c3f525e7c51ddfecbc7
74658094ced3ba5e265b4e3e75f8877e0d2646d88bbd2df46731221ed5a83138
GET /wp-content/uploads/2020/11/2r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:45 GMT
accept-ranges: bytes
content-length: 299066
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/7r.jpg
154.16.114.64200 OK 110 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/7r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 110 kB (109456 bytes)
Hash e44b3bd5bc837b9df1fd1cb74afdabd5
3f75200138c7b8e48d35ecf3b6618361aa9c8970
b9a0b47a56bbbc597bb6b8135d7281be2109187c03eaffbf96ae8c0aee47b4fa
GET /wp-content/uploads/2020/11/7r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:38 GMT
accept-ranges: bytes
content-length: 109456
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/11r.jpg
154.16.114.64200 OK 115 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/11r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 115 kB (115168 bytes)
Hash d494e4fe791e67849f00b74375377d30
59ea2a7426ce425bb5d00ecdeb86035f9530a4a9
7bc7402d27fc4ed8424744b11435d41f3bb378024cb9a66eab87d1e596e683f9
GET /wp-content/uploads/2020/11/11r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:26 GMT
accept-ranges: bytes
content-length: 115168
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/js/themify.script.min.js?ver=5.0.6
154.16.114.64200 OK 1.0 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/js/themify.script.min.js?ver=5.0.6
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (501)
Hash 0b9070926d46b977161ec1a572299ae1
2fb0c7ff7534d73818f29cd22dd9884a8d9db0e3
3612092149ae982f6f94ef5d7af5f4a022dc8efa52eb18d8a382e47b6f76c7a2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/js/themify.script.min.js?ver=5.0.6 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 1001
content-type: application/javascript
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/themify-builder/js/themify.builder.script.min.js?ver=5.0.5
154.16.114.64200 OK 16 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/themify-builder/js/themify.builder.script.min.js?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (551)
Hash 3ca456c7ab74f2d523dca3ff999941ab
8543c902a8ff405d60332d3ad02863e5fb999b2b
3c96378b65d5fb22c3313952dce83f31f18e6c2662989107d0576d66617ba1d3
GET /wp-content/themes/themify-landing/themify/themify-builder/js/themify.builder.script.min.js?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 15697
content-type: application/javascript
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/main.min.js?ver=5.0.5
154.16.114.64200 OK 26 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/main.min.js?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (553)
Hash 4f040ddd228d764d433ee31f2fd06868
88b4417a276a08bbb17c02e08c90bfc44179ac07
337f41195e18addb58f14268fbea93376cedcf62dc7f89e73e81177221637a37
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/themify/js/main.min.js?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 26408
content-type: application/javascript
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/28.-mONEY-bACK.png
154.16.114.64200 OK 7.3 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/28.-mONEY-bACK.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 746 x 152, 8-bit colormap, non-interlaced\012- data
Hash d1fb5a5d83c2b4979eb9a38a43802606
0c4ae4dcdbc2225423f6323927954ef1507141d3
ae4b6f2fc1e8d6f78110c5f0694ed905c6d599522f1ab5c30638bbb69fced66b
GET /wp-content/uploads/2020/10/28.-mONEY-bACK.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:56 GMT
accept-ranges: bytes
content-length: 7270
content-type: image/png
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/8r.jpg
154.16.114.64200 OK 143 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/8r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 143 kB (142959 bytes)
Hash dcde181b407e2a4fb76f073117795ef7
d776a33ae438bd23e39f0c2b3186ebf8fc9be87b
b343dddcd88fddb8f3f880190ff0fc8897341c49b2c360481f9de4f15807038a
GET /wp-content/uploads/2020/11/8r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:36 GMT
accept-ranges: bytes
content-length: 142959
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/BIO-FUNGUS-NUKER_2.png
154.16.114.64200 OK 17 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/BIO-FUNGUS-NUKER_2.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 1353 x 220, 8-bit/color RGBA, non-interlaced\012- data
Hash e84ccd880a21ae914e585d6c6d0f3968
acd7af3c0be0f9eed00b000deee5933714039a5e
cb8050910cf07d93e11b1a019a2b6f83730e31a27a048f3e3d9116aae6082ca9
GET /wp-content/uploads/2020/11/BIO-FUNGUS-NUKER_2.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Nov 2020 09:36:02 GMT
accept-ranges: bytes
content-length: 16693
content-type: image/png
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/26.-60-Day-Money-Back-Guarantee.png
154.16.114.64200 OK 49 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/26.-60-Day-Money-Back-Guarantee.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 480 x 480, 8-bit colormap, non-interlaced\012- data
Hash 19daf776b1c17b081e2382735f469ae1
02111774fb0f42d7025bab2f9a35db5c877e1ae7
0573acd36c523ebb9fb914409f42ad0d6fc51d59b3b2a0dc52ca8c11124ab6db
GET /wp-content/uploads/2020/10/26.-60-Day-Money-Back-Guarantee.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:25:00 GMT
accept-ranges: bytes
content-length: 49004
content-type: image/png
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/9r.jpg
154.16.114.64200 OK 161 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/9r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 161 kB (161260 bytes)
Hash fa10f4caa0f4f1cc916f5e9e97e6d043
5f450ea6dee721828826576296baf132935e335d
1b88cf27e086bcee12b7969e39455928acd6254c091836fd210a200b33d56b17
GET /wp-content/uploads/2020/11/9r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:33 GMT
accept-ranges: bytes
content-length: 161260
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/15r.jpg
154.16.114.64200 OK 169 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/15r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 169 kB (168793 bytes)
Hash afeb8ede6d8acbbff45bcd7a3c87eed3
3c57bf4698f0ff51ed0c65984d37030fa27529f0
4525d1ce669ad72055146204530190614a26cc33d867359f21c97ac4a92def12
GET /wp-content/uploads/2020/11/15r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:15 GMT
accept-ranges: bytes
content-length: 168793
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/10r.jpg
154.16.114.64200 OK 166 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/10r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 600x600, components 3\012- data
Size 166 kB (165871 bytes)
Hash 1c87ab47a38c289997ad53250b2ff537
3b30795949247a558bf650be75d4230cd3774ba9
8bd43efdd39131498a3776f7c708f0025066f4aeed8522070864f4bf7839d8f5
GET /wp-content/uploads/2020/11/10r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:29 GMT
accept-ranges: bytes
content-length: 165871
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/media-queries.min.css?ver=5.0.6
154.16.114.64200 OK 4.2 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/media-queries.min.css?ver=5.0.6
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (4202)
Hash 6744c911c6ee2b8940f01439c284a7e4
72f0b106e1efcb4079c699665455901e3265926f
f38b8b8614425e370e4972fa42a7d9fe79cd181d03cbd04b12821f426d35a7ee
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/media-queries.min.css?ver=5.0.6 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:10 GMT
accept-ranges: bytes
content-length: 4203
content-type: text/css
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/uploads/themify-css/concate/themify-mobile-dee6a58368f16c5a779def98678d751a.min.css
154.16.114.64200 OK 6.1 kB URL HTTP/2 www.biofungusnuker.com/wp-content/uploads/themify-css/concate/themify-mobile-dee6a58368f16c5a779def98678d751a.min.css
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (6083)
Hash 9c65ab3d364b34be36f8ff1aaad5688d
e602603e0bcf1d9aa08fd1a40cc046a9dd61af32
c47271831ddb3c92e6a83a18e01c0d0f9a8450852bfa855a0a2a9f2e910edda4
GET /wp-content/uploads/themify-css/concate/themify-mobile-dee6a58368f16c5a779def98678d751a.min.css HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:17:39 GMT
accept-ranges: bytes
content-length: 6100
content-type: text/css
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/30.-Easy-Fixes-For-Smelly-Feet.jpg
154.16.114.64200 OK 76 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/30.-Easy-Fixes-For-Smelly-Feet.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Hash 80083f083079d855125df3d5a07a91eb
23efdac2b1a0916adf1707c5581c39a90f4230ca
b6f15e99420334e2cc0ad01080358308a8847d493a76422bf14ef33fd0d71ff0
GET /wp-content/uploads/2020/10/30.-Easy-Fixes-For-Smelly-Feet.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:40 GMT
accept-ranges: bytes
content-length: 75750
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/13r.jpg
154.16.114.64200 OK 194 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/13r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 194 kB (194426 bytes)
Hash 1d24ebcf92fe37e9082c03c2b31e1df0
6107c9cd2b2a269594ce759119ab0ac99e48d42e
6ba149bf6cc9117c8318d71338eb2b5ad9c94f48d894be2828a11608bc78330c
GET /wp-content/uploads/2020/11/13r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:21 GMT
accept-ranges: bytes
content-length: 194426
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/29.-Vitamins-And-Minerals-Handbook.jpg
154.16.114.64200 OK 92 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/29.-Vitamins-And-Minerals-Handbook.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Hash fe6a010f8602871f3888895d0f23455f
5ead712d31c9657696717a0f202861c8284af0b9
36e6cf2199e7785b2367f59e7e1c7deb9b36d61b95b5660d2a7ac933e557eec2
GET /wp-content/uploads/2020/10/29.-Vitamins-And-Minerals-Handbook.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:44 GMT
accept-ranges: bytes
content-length: 91998
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/Testimonial-Instagram-Quote-2.png
154.16.114.64200 OK 91 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/Testimonial-Instagram-Quote-2.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 1080 x 1080, 8-bit colormap, non-interlaced\012- data
Hash 96137593658435d55556106487a460ef
acd642d5071a3100f790a95dc5913134445cae58
28501541aa65ddddfcd2a87909ab80fa9aeb27e66f5fd21a300a7f5e4fdab335
GET /wp-content/uploads/2020/10/Testimonial-Instagram-Quote-2.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:07 GMT
accept-ranges: bytes
content-length: 91372
content-type: image/png
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/31-Lazy-Mnas-One-Day-Detox.jpg
154.16.114.64200 OK 84 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/31-Lazy-Mnas-One-Day-Detox.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Hash 708bd423f428c6632e2fec751c1ab8c4
4c4bb3eeb33bbcdc2e23014cc95cd55080a36250
6133f17999c0c1c9c42a30fd998028416232ce0e84ab7cd0c704f0809fc2b55a
GET /wp-content/uploads/2020/10/31-Lazy-Mnas-One-Day-Detox.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:36 GMT
accept-ranges: bytes
content-length: 84102
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/12r.jpg
154.16.114.64200 OK 206 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/12r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 206 kB (206418 bytes)
Hash 92861fa27a5685911446a022714d8ed0
81cd10ba9efaffc9d7e1e64c65af7d1473eb23c2
36bf0cd7ed9a85f23eb9c33147c7a8e304a1ede7373d310c3f70d59143dc0b26
GET /wp-content/uploads/2020/11/12r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:24 GMT
accept-ranges: bytes
content-length: 206418
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/19-rs.jpg
154.16.114.64200 OK 112 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/19-rs.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:10:23 14:47:20], progressive, precision 8, 650x650, components 3\012- data
Size 112 kB (112289 bytes)
Hash faa98f31f05fefb116853a0a294911b8
0f556ef256ace144517df2597cf4fa3e8106a95f
275e3a03b42aab4217d1f52033cf0993e6f3b94bab37ee6875d45ddd4993b647
GET /wp-content/uploads/2020/10/19-rs.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:22:32 GMT
accept-ranges: bytes
content-length: 112289
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/1-BASIC.jpg
154.16.114.64200 OK 105 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/1-BASIC.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 13:45:59], progressive, precision 8, 267x670, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 24935-21573, spot sensor temperature 0.000000, unit fahrenheit, color scheme 0, calibration: offset 2619437658466756329472.000000, slope 4061723361280.000000\012- data
Size 105 kB (104858 bytes)
Hash 2355ea650107a94df0c7144fba4b3d40
ce7be156916a2dc632a93423e79feca8815ea908
0f680435887c21115d190f5116e0902f950e1726ebfaf3fd3a1674d57d12b02e
GET /wp-content/uploads/2020/11/1-BASIC.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:56 GMT
accept-ranges: bytes
content-length: 104858
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-1.jpg
154.16.114.64200 OK 112 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-1.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Size 112 kB (112102 bytes)
Hash 445d6b54165ce12712a5375abfece8ef
ee4f3723c9b7b33ce0d5d5f8d2b187100d6612f9
7a64b93a68712b42d1f045407fd0d3bb8537b85c55705f4d15a7e8c5dd3659e2
GET /wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-1.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:24 GMT
accept-ranges: bytes
content-length: 112102
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/3-STANDARD.jpg
154.16.114.64200 OK 126 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/3-STANDARD.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 13:46:17], progressive, precision 8, 267x670, components 3\012- data
Size 126 kB (125560 bytes)
Hash c0f4fa670859979e4e547f134faf8d26
59b5bc86311e2a9cfab95bb3b62f56ebf5d9ccc3
576e296fde222c8d182c0651bad7f587c8128eac395d9e7f22536b51279fbe49
GET /wp-content/uploads/2020/11/3-STANDARD.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:04 GMT
accept-ranges: bytes
content-length: 125560
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/18-rs.jpg
154.16.114.64200 OK 122 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/18-rs.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:10:23 14:48:03], progressive, precision 8, 900x600, components 3\012- data
Size 122 kB (121901 bytes)
Hash 65be28f8a079f4436ac5d001d86175ec
385d7e68b60cf6fcbd40e70d367e3516cb6863e0
09f80355d12d6402915eef7f459f3d5d3e4fa27f665c6bf814e0ec0341772bb3
GET /wp-content/uploads/2020/10/18-rs.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:22:36 GMT
accept-ranges: bytes
content-length: 121901
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-3.jpg
154.16.114.64200 OK 144 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-3.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Size 144 kB (144017 bytes)
Hash b446714ddbc04171e1e7b30767922365
5f3424525b71e12813a1c1de2083613c60269968
553beb0af1eb98b33eb14cd9dd992729a11faf22a104e31ee967b6a5384dba65
GET /wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-3.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:28 GMT
accept-ranges: bytes
content-length: 144017
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/17r.jpg
154.16.114.64200 OK 146 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/17r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 14:14:27], progressive, precision 8, 700x467, components 3\012- data
Size 146 kB (145952 bytes)
Hash 5d5272b0e231020c86a3bcf45c9992b2
f5e8ac389ba65fdc181012499442b458509176a5
8b32015d819957ca6256bfec907393fdba75550a29c144cac4f075250a0b5d77
GET /wp-content/uploads/2020/11/17r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:10 GMT
accept-ranges: bytes
content-length: 145952
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/14r.jpg
154.16.114.64200 OK 247 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/14r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 30050-16495, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 17875471468176858939392.000000, slope 75530841815994297227822967554048.000000\012- data
Size 247 kB (246645 bytes)
Hash 48c6967c890da1ab223f9a9d41b9bee9
35ac259c50008332f6c5b122546781dedc8ad029
06efc01636d9cbe89852bc48454b8d3bc8061dc69d0ace4aae812b5a68e6a9dd
GET /wp-content/uploads/2020/11/14r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:18 GMT
accept-ranges: bytes
content-length: 246645
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/19.-Myco-Nuker-Fungal-Natural-Treatment.png
154.16.114.64200 OK 158 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/19.-Myco-Nuker-Fungal-Natural-Treatment.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 1080 x 1080, 8-bit colormap, non-interlaced\012- data
Size 158 kB (157703 bytes)
Hash 40e7b065f2ab8ab30acf837e07ed89f5
24132b610dcd903dc6fca42b118c60a89824a2d3
039b43040ad92a751498808e72a3e1c91f647748e09c71073276d2e338b55541
GET /wp-content/uploads/2020/10/19.-Myco-Nuker-Fungal-Natural-Treatment.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:25:57 GMT
accept-ranges: bytes
content-length: 157703
content-type: image/png
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/23r.jpg
154.16.114.64200 OK 205 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/23r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 205 kB (204851 bytes)
Hash a8f904dc77916235b57c70f369b2bb6a
541bfb55b58b748d592237520ec28b498df34580
2de640b4f2f06b32e8c4460538f3dcd057048712b1c4b3f5ec83456982bccfae
GET /wp-content/uploads/2020/11/23r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:54 GMT
accept-ranges: bytes
content-length: 204851
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/24r.jpg
154.16.114.64200 OK 217 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/24r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 217 kB (217054 bytes)
Hash 77a624de1388541bdeb2a7ee2a8c0647
cc19a2a80d2498e325615bf9e4790f5a51d3ca3c
dd1dadcc668260627fa4446b9ed6047627132da7572ee75d29a7b10553b72502
GET /wp-content/uploads/2020/11/24r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:51 GMT
accept-ranges: bytes
content-length: 217054
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/To-get-from-this-2-scaled.jpg
154.16.114.64200 OK 115 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/To-get-from-this-2-scaled.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 2560x1707, components 3\012- data
Size 115 kB (114763 bytes)
Hash 8477f3a80322520148723e00f2c58463
717e7275df536587b767560785e5f4433fa30118
d7876ba55c7b43bafbb74da2258a2fdc2cdbbb7cab83f9377c096670b6063e1e
GET /wp-content/uploads/2020/10/To-get-from-this-2-scaled.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:57 GMT
accept-ranges: bytes
content-length: 114763
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/Myco-Nuker-label.jpg
154.16.114.64200 OK 775 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/Myco-Nuker-label.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=675, bps=0, PhotometricIntepretation=CMYK, orientation=upper-left, width=1620], baseline, precision 8, 700x292, components 4\012- data
Size 775 kB (775000 bytes)
Hash 229c89df816b15531898ac6871bd7dbc
fdc27b5c9656642bda4c2838a39d393016b4d825
0fd52035dfea573b25022e5afd69753d820574f06638ffa5943fa35e5fc815e1
GET /wp-content/uploads/2020/11/Myco-Nuker-label.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 13:52:41 GMT
accept-ranges: bytes
content-length: 775000
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/32.-Fungus-Transformation-Myco-Nuker-1.png
154.16.114.64200 OK 3.0 MB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/32.-Fungus-Transformation-Myco-Nuker-1.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 5760 x 3000, 8-bit colormap, non-interlaced\012- data
Size 3.0 MB (2964360 bytes)
Hash 69c409c5bab0cc632d961368ca75ed3f
82f4f2817f4a30aa14d867ca1d2c5dde267c55a9
10e6c091e39402c70bac1d6b7cd82db1e1c771ef90f14886fc09f5d68eac8c55
GET /wp-content/uploads/2020/10/32.-Fungus-Transformation-Myco-Nuker-1.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:03 GMT
accept-ranges: bytes
content-length: 2964360
content-type: image/png
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb53024bbd41c1d8f88fa7b9becb704a
c87f5ac53cff6e3436c15551f8092f1e0215cb79
f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=6213
172.66.43.115200 OK 1.8 kB URL HTTP/2 display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=6213
IP 172.66.43.115:0
Hash a90e0bc2e9c7753e248e5e35c63b6253
f02b01c8c276895a43cadce4933fc51a60d95d51
b16876c083c72dcb18637b56e8c0a5765d4fd2b0a7603784befa5a413fdbe626
GET /v1/disclaimer?id=disclaimer&account_id=6213 HTTP/1.1
Host: display.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 02:47:02 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
strict-transport-security: max-age=31536000;
set-cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 746c1e0a8a78b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2
142.250.74.163200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 17908, version 1.0\012- data
Hash e46b4e2e3b47cc232937ebf72b4c537e
2675bc06ee643b8c935370325a327efb74746e6a
d8543b5dcaea1fc4a0301dc12b5b2adc9079e0794dd6a45879588fb844f3438e
GET /s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.biofungusnuker.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 21:38:35 GMT
expires: Tue, 05 Sep 2023 21:38:35 GMT
cache-control: public, max-age=31536000
age: 104907
last-modified: Mon, 18 Jul 2022 19:23:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb53024bbd41c1d8f88fa7b9becb704a
c87f5ac53cff6e3436c15551f8092f1e0215cb79
f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/jquery.imagesloaded.min.js?ver=4.1.4
154.16.114.64200 OK 3.9 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/jquery.imagesloaded.min.js?ver=4.1.4
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (3921)
Hash 1f323646e6ff48c37944512d867f49c9
27415be1e46996bd850ba10d193d44feb4f81a69
eb0045ba455512d20b72d4a2148abc8c75f3088ca96bcfeadff4a1b56eacbeab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/themify/js/modules/jquery.imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 3932
content-type: application/javascript
date: Wed, 07 Sep 2022 02:47:02 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/css/animate.min.css?ver=3.6.2
154.16.114.64200 OK 13 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/css/animate.min.css?ver=3.6.2
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (12838)
Hash 2691132c46dca8f1d65babd2fc8358ae
6ce52079fbd16ad1531ff93cbfa1d7eb32781ba2
9db57198bf6002de2c513968733286b6678a70645bc7c7770224a2c60490e272
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/themify/css/animate.min.css?ver=3.6.2 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 12852
content-type: text/css
date: Wed, 07 Sep 2022 02:47:02 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/tf_wow.min.js?ver=5.0.5
154.16.114.64200 OK 2.1 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/tf_wow.min.js?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (533)
Hash 278c3a0b9f48985031858bd14f855519
2502887ebb26f397ad1152db01f00dc43677b32a
ad7c531720b78898150aacbcef72addf69bbd59ccef4eb718397290294b2f5c3
GET /wp-content/themes/themify-landing/themify/js/modules/tf_wow.min.js?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 2110
content-type: application/javascript
date: Wed, 07 Sep 2022 02:47:02 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/Myco-nuker_St.png
154.16.114.64200 OK 1.2 MB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/Myco-nuker_St.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 3000 x 3000, 8-bit colormap, non-interlaced\012- data
Size 1.2 MB (1157453 bytes)
Hash bcab79483fb09770c6956d1f626a44cd
07c874ded33c2cadaebe0e2f136f028051998c9b
cd33005bef59a3c2c13318f2db5cf691ece5f6a0b5d9cf7a8491150fae4c061f
GET /wp-content/uploads/2020/10/Myco-nuker_St.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662518816.1.0.1662518816.0.0.0; _ga=GA1.1.128102541.1662518816
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:29:02 GMT
accept-ranges: bytes
content-length: 1157453
content-type: image/png
date: Wed, 07 Sep 2022 02:47:02 GMT
server: Apache
X-Firefox-Spdy: h2
tracking.buygoods.com/track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6
172.66.43.22200 OK 305 B URL HTTP/2 tracking.buygoods.com/track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6
IP 172.66.43.22:0
File type ASCII text, with CRLF line terminators
Hash 97f8ae1adfe819d712ea53ec336c6f1c
2d252f9460f8da1a25ef170d61cd1b13b297bba7
bbb64657e6199292cdabd294516944e08e35a23cc8439cfbb7fabeebeb8f141d
GET /track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6 HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 02:47:02 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 746c1e0b7b9c1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fe058051aba70bd265b1d84e8a333722
52f91ffbb1e74407e8df90e2f08d4f9c85c62aec
c65c8c68fb49feb53036e0693eb4fb22cadba9202ffe28ad6d2a9d2463fd5e31
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.biofungusnuker.com/sw.js?v=1662518817034
154.16.114.64200 OK 49 B URL HTTP/2 www.biofungusnuker.com/sw.js?v=1662518817034
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with no line terminators
Hash 6f25a7e5dfc97f9725b80ce6dab06a84
3c01ae61c07356a97633a3612b28ad5e4f99866a
ccab01b0139eb20f1b457278aefb951c6ca4d474b26a889fd4e3a59d9aba6f20
Analyzer Verdict Alert fortinet Phishing
GET /sw.js?v=1662518817034 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: _ga_NWVJ02QJDT=GS1.1.1662518816.1.0.1662518816.0.0.0; _ga=GA1.1.128102541.1662518816; sessid2=sessid20220907024718914; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220907024616056; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Feb 2022 11:44:29 GMT
accept-ranges: bytes
content-length: 49
content-type: application/javascript
date: Wed, 07 Sep 2022 02:47:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/fixedheader.min.js?ver=5.0.5
154.16.114.64200 OK 4.1 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/fixedheader.min.js?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (543)
Hash a74c13524ec9ed1c1a8e482a9b91c77c
dab11f455e63b1a493f720edf642805ac24ad937
cf47060ae1727c74061b69eaf476efd73be46abf39d3360592ce74fb1ae309af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/themify/js/modules/fixedheader.min.js?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662518816.1.0.1662518816.0.0.0; _ga=GA1.1.128102541.1662518816; sessid2=sessid20220907024718914; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220907024616056; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 4126
content-type: application/javascript
date: Wed, 07 Sep 2022 02:47:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/themify-builder/css/modules/frames.min.css?ver=5.0.5
154.16.114.64200 OK 705 B URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/themify-builder/css/modules/frames.min.css?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (704)
Hash ba5c5a4de0e92a943dfe7f3e86d4f840
9eadc3b9410cdfd4f3c019519c9002d4857897a6
0feede88e961b94693c86462d85a81249451c555c68d40aa9b39569cc8be94c4
GET /wp-content/themes/themify-landing/themify/themify-builder/css/modules/frames.min.css?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662518816.1.0.1662518816.0.0.0; _ga=GA1.1.128102541.1662518816; sessid2=sessid20220907024718914; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220907024616056; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:10 GMT
accept-ranges: bytes
content-length: 705
content-type: text/css
date: Wed, 07 Sep 2022 02:47:03 GMT
server: Apache
X-Firefox-Spdy: h2
code.jqueryoi.com/sw.js
67.212.173.78200 OK 776 B IP 67.212.173.78:0
Hash aa6261f6bcdea58ca6703b3109bd5eb6
788cbd4d7de687a942a7d0797e2119de29192e88
ab99cce1d646bd4caaca1f3d9af1f9e80a8a607031bde78f31b64c30d65cc8cd
Analyzer Verdict Alert fortinet Phishing
GET /sw.js HTTP/1.1
Host: code.jqueryoi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 02:47:03 GMT
content-type: application/javascript
content-length: 776
last-modified: Wed, 13 Jul 2022 18:17:53 GMT
vary: Accept-Encoding
etag: "62cf0c51-308"
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline';
X-Firefox-Spdy: h2
tracking.buygoods.com/track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6&caller_url=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220907024616056%26subid%3D466
172.66.43.22200 OK 0 B URL HTTP/2 tracking.buygoods.com/track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6&caller_url=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220907024616056%26subid%3D466
IP 172.66.43.22:0
GET /track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6&caller_url=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220907024616056%26subid%3D466 HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 02:47:03 GMT
content-type: application/javascript
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
set-cookie: spiaffid_6344=15; expires=Tue, 06-Dec-2022 02:47:03 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisubid_6344=466%7C6383_sessid20220907024616056; expires=Tue, 06-Dec-2022 02:47:03 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spicampaign_id_6344=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_6344=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_6344=91.90.42.154::www.biofungusnuker.com; expires=Tue, 06-Dec-2022 02:47:03 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisessid2_6344=sessid20220907024718914; expires=Tue, 06-Dec-2022 02:47:03 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spi_funnel_codename_6344=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 746c1e0fcd5f1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
go.maxweb.com/conversion/iframe/?a=6383&token=2ac0eb6f6c02b0fd4b48d31cd94f8f35
172.66.43.113200 OK 0 B URL HTTP/2 go.maxweb.com/conversion/iframe/?a=6383&token=2ac0eb6f6c02b0fd4b48d31cd94f8f35
IP 172.66.43.113:0
GET /conversion/iframe/?a=6383&token=2ac0eb6f6c02b0fd4b48d31cd94f8f35 HTTP/1.1
Host: go.maxweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 02:47:02 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Wed, 07 Sep 2022 03:47:01 GMT
cache-control: max-age=3600, private
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 746c1e0b7d10b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald:400,700%7CCrimson+Text:700i,400,700,400i&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald:400,700%7CCrimson+Text:700i,400,700,400i&display=swap
IP 142.250.74.10:0
GET /css?family=Oswald:400,700%7CCrimson+Text:700i,400,700,400i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Sep 2022 02:47:01 GMT
date: Wed, 07 Sep 2022 02:47:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/6-PREMIUM.jpg
154.16.114.64200 OK 0 B URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/6-PREMIUM.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
GET /wp-content/uploads/2020/11/6-PREMIUM.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:59 GMT
accept-ranges: bytes
content-length: 141307
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/16r.jpg
154.16.114.64200 OK 0 B URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/16r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
GET /wp-content/uploads/2020/11/16r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:12 GMT
accept-ranges: bytes
content-length: 194250
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:01 GMT
server: Apache
X-Firefox-Spdy: h2