ocsp.r2m02.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 9342ce9d9e99d13efd9e0ecbebb417c0
43e1fe96bcded8ea6994a6f76da109b4cb67a970
7723b5fb8ae72e564852935698c75a22ac9d52c50122b79ec789d2debf4bf415
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=7200'
Date: Tue, 30 May 2023 14:10:38 GMT
Last-Modified: Tue, 30 May 2023 12:32:42 GMT
Server: ECAcc (bsa/EB2A)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: z0M3KaFDp1ogQPVOUoT8zNMiQojfdsA9iJlwrIXIpwcHkVnLMwifqA==
Age: 5876
mofc.go2cloud.org/aff_c?offer_id=212&aff_id=1307&aff_click_id=10275ba2be672eccc1d3c7342c134b
52.210.174.128302 Found 295 B URL User Request GET HTTP/1.1 mofc.go2cloud.org/aff_c?offer_id=212&aff_id=1307&aff_click_id=10275ba2be672eccc1d3c7342c134b
IP 52.210.174.128:443
Certificate IssuerAmazon
Subject*.go2cloud.org
Fingerprint5B:28:59:EA:4F:D9:54:04:B5:4C:7A:0B:6D:93:DF:D5:1B:00:BD:90
ValidityTue, 21 Feb 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 290eb60c257736ebcf2b06359b3ad1d0
4c466afc00ff1d3135eb7130f80fffd7c47f3070
fb8e795447bac46fecadc8b1227f4cd6d48be13684d8e329d83a20f2ec622f61
GET /aff_c?offer_id=212&aff_id=1307&aff_click_id=10275ba2be672eccc1d3c7342c134b HTTP/1.1
Host: mofc.go2cloud.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 30 May 2023 14:10:38 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 295
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Location: https://tacticalusa.com/offers/drp/head-phones/?AFFID=1307&click_id=10279af149460c1005fac1659bf495&SID=
P3p: CP="NOI CUR OUR NOR INT"
Pragma: no-cache
Set-Cookie: enc_aff_session_212=ENC035806da05621e5e838ec807bdf5f984157285c63ee6212f9d6215a6693a7602fe55847884e7bf86647e005549608dbc4eaf0a8866dd8fa56a2b463849c1e5caace67800baa6536403efda0ce765d54d22a61a69bf79d494ee350f6663ae15148d05ff8e216953521467779b72b40aa9231cc3417da7f57627ca8c0b0818c92a271165c6eb; expires=Fri, 30 Jun 2023 14:10:38 GMT; path=/; SameSite=None; Secure
ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMTEuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoWDExOyBMaW51eCBYODZfNjQ7IFJ2OjEwOS4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94LzExMS4wIiwiYWNjZXB0X2xhbmd1YWdlIjoiZW4tVVMsZW47cT0wLjUiLCJjb25uZWN0aW9uX3NwZWVkIjoiYnJvYWRiYW5kIn0=; expires=Fri, 24 Apr 2026 00:50:38 GMT; path=/; SameSite=None; Secure
Tracking_id: 10279af149460c1005fac1659bf495
X-Robots-Tag: noindex, nofollow
Access-Control-Allow-Origin: *
X-Request-Id: 414ad161c0f8ee43a96b131e6728c363
Access-Control-Allow-Headers: Tune-SDK-Version
tacticalusa.com/offers/drp/head-phones/?AFFID=1307&click_id=10279af149460c1005fac1659bf495&SID=
188.114.97.1403 Forbidden 1.7 kB URL User Request GET HTTP/2 tacticalusa.com/offers/drp/head-phones/?AFFID=1307&click_id=10279af149460c1005fac1659bf495&SID=
IP 188.114.97.1:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint1F:F2:F3:37:0A:44:F0:21:6E:94:5D:7A:51:EA:12:95:32:55:77:ED
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash b4b71fafd8bb1e0b9fced73e15a9d613
5d8b8e8c4104bce6c6e02f17c71d8492f4d7649a
aa2f78366e5372560ac8bcd8e013768e5929266957883e7e01372418b2bfbca7
GET /offers/drp/head-phones/?AFFID=1307&click_id=10279af149460c1005fac1659bf495&SID= HTTP/1.1
Host: tacticalusa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Tue, 30 May 2023 14:10:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=15
Expires: Tue, 30 May 2023 14:10:53 GMT
X-Frame-Options: SAMEORIGIN
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w9W9iFgA8qHjF9Cjq68%2BXfnG7b%2Br23FL3rWfukf76SfrIvh6XATvFssV7aWQRlQS%2FEz%2B3pKD8yY1V18Sa%2BAOvX%2BQm7Efp%2FAM60SGhzl21yL8BHBUHeoGJqerFdYTt1OnCmM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7cf78fcf6c3cb4f9-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tacticalusa.com/cdn-cgi/styles/cf.errors.css
188.114.97.1200 OK 4.5 kB URL GET HTTP/1.1 tacticalusa.com/cdn-cgi/styles/cf.errors.css
IP 188.114.97.1:80
Requested by http://tacticalusa.com/offers/drp/head-phones/?AFFID=1307&click_id=10279af149460c1005fac1659bf495&SID=
File type ASCII text, with very long lines (24131)
Hash a1cedc21f16b5a97114857154fab35e9
95e9890a15a4f7f94f7f19d2c297e4b07503c526
1103290e25ebda2712abe344a87facbac00ddaba712729be9fe5feef807bf91b
Analyzer Verdict Alert urlquery suspicious Suspicious - Sinkholed / Blocked
GET /cdn-cgi/styles/cf.errors.css HTTP/1.1
Host: tacticalusa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://tacticalusa.com/offers/drp/head-phones/?AFFID=1307&click_id=10279af149460c1005fac1659bf495&SID=
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 30 May 2023 14:10:38 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 25 May 2023 08:39:03 GMT
ETag: W/"646f1ea7-5e44"
Server: cloudflare
CF-RAY: 7cf78fd02d55b4f9-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 30 May 2023 16:10:38 GMT
Cache-Control: max-age=7200, public
Content-Encoding: gzip
tacticalusa.com/cdn-cgi/images/browser-bar.png?1376755637
188.114.97.1200 OK 715 B URL GET HTTP/1.1 tacticalusa.com/cdn-cgi/images/browser-bar.png?1376755637
IP 188.114.97.1:80
Requested by http://tacticalusa.com/offers/drp/head-phones/?AFFID=1307&click_id=10279af149460c1005fac1659bf495&SID=
File type PNG image data, 960 x 53, 8-bit colormap, non-interlaced\012- data
Hash 226dcb8f6144bdaafdfbd8f2f354be64
3785cc5b3bf52f8e398177b0ff1020b24aa86b8c
8c873472f4925d5d47521db4d52532d2983e9cb1bde8b43143a6cc6db56c35db
Analyzer Verdict Alert urlquery suspicious Suspicious - Sinkholed / Blocked
GET /cdn-cgi/images/browser-bar.png?1376755637 HTTP/1.1
Host: tacticalusa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://tacticalusa.com/cdn-cgi/styles/cf.errors.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 30 May 2023 14:10:38 GMT
Content-Type: image/png
Content-Length: 715
Connection: keep-alive
Last-Modified: Thu, 25 May 2023 08:39:03 GMT
ETag: "646f1ea7-2cb"
Server: cloudflare
CF-RAY: 7cf78fd0be0fb4f9-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 30 May 2023 16:10:38 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
tacticalusa.com/cdn-cgi/images/cf-no-screenshot-error.png
188.114.96.1200 OK 3.2 kB URL GET HTTP/1.1 tacticalusa.com/cdn-cgi/images/cf-no-screenshot-error.png
IP 188.114.96.1:80
Requested by http://tacticalusa.com/offers/drp/head-phones/?AFFID=1307&click_id=10279af149460c1005fac1659bf495&SID=
File type PNG image data, 178 x 175, 8-bit colormap, non-interlaced\012- data
Hash 0d768cbc261841d3affc933b9ac3130e
aff136a4c761e1df1ada7e5d9a6ed0ebea74a4b7
1c53772285052e52bb7c12ad46a85a55747ed7bf66963fe1993fcef91ff5b0d0
Analyzer Verdict Alert urlquery suspicious Suspicious - Sinkholed / Blocked
GET /cdn-cgi/images/cf-no-screenshot-error.png HTTP/1.1
Host: tacticalusa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://tacticalusa.com/cdn-cgi/styles/cf.errors.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 30 May 2023 14:10:38 GMT
Content-Type: image/png
Content-Length: 3213
Connection: keep-alive
Last-Modified: Thu, 25 May 2023 08:39:03 GMT
ETag: "646f1ea7-c8d"
Server: cloudflare
CF-RAY: 7cf78fd0ba521c12-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 30 May 2023 16:10:38 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
tacticalusa.com/favicon.ico
188.114.96.1403 Forbidden 1.7 kB URL GET HTTP/1.1 tacticalusa.com/favicon.ico
IP 188.114.96.1:80
Requested by http://tacticalusa.com/offers/drp/head-phones/?AFFID=1307&click_id=10279af149460c1005fac1659bf495&SID=
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash ee2b36b29c02fadfc012e45011993c37
85ea0c44c2dbddbec4e6cb9e557fb18da91a5c44
13a610a6434be55a0091daeb3dcf435f3b6e1cf67c1147bff2fa81b9d57faeed
GET /favicon.ico HTTP/1.1
Host: tacticalusa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://tacticalusa.com/offers/drp/head-phones/?AFFID=1307&click_id=10279af149460c1005fac1659bf495&SID=
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Tue, 30 May 2023 14:10:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=15
Expires: Tue, 30 May 2023 14:10:53 GMT
X-Frame-Options: SAMEORIGIN
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rAdM35WLl%2FVIUtuGePHTTdUpIZb40T91Mw4BRsrbd2WGucqJsi1lroxH4miVRTsh6Fz3XqGM2iT16pA7YwTauPqp9bzZmZKtdbAhCxgQrPj71p%2Bi5E4DiIGcLtGLXnOh9%2BI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7cf78fd0ca791c12-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
rdr.linktechtools.com/aff_c?offer_id=930&aff_id=1087&aff_sub2=1015&aff_sub3=1021c5891babb7a3a0e4590ea0e178
104.21.58.125302 Found 4.5 kB URL User Request GET HTTP/2 rdr.linktechtools.com/aff_c?offer_id=930&aff_id=1087&aff_sub2=1015&aff_sub3=1021c5891babb7a3a0e4590ea0e178
IP 104.21.58.125:443
Certificate IssuerGoogle Trust Services LLC
Subjectlinktechtools.com
FingerprintC3:BA:F1:38:91:99:12:04:81:5C:48:13:FC:F0:70:BC:2B:99:16:6C
ValiditySat, 06 May 2023 05:02:25 GMT - Fri, 04 Aug 2023 05:02:24 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aff_c?offer_id=930&aff_id=1087&aff_sub2=1015&aff_sub3=1021c5891babb7a3a0e4590ea0e178 HTTP/1.1
Host: rdr.linktechtools.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 30 May 2023 14:10:37 GMT
content-type: text/html; charset=iso-8859-1
location: https://mofc.go2cloud.org/aff_c?offer_id=212&aff_id=1307&aff_click_id=10275ba2be672eccc1d3c7342c134b
cache-control: no-cache, no-store, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
p3p: CP="NOI CUR OUR NOR INT"
pragma: no-cache
set-cookie: enc_aff_session_930=ENC03131b63f46752c50e913652592d268c489e23c65a0da3e9ea3c60aa8b5f8dc6e089b81a0afa4033425e95794888930fbeaf1ecba49dbf84510ec4d14556d39d78ace2e7c3f71dba0c9d0db1d9f2dbdfc142533e27d1000dff0ccc4930cc7f6e57ded640b053ee067a2dae6fb69b8dc38358fabaaec3f836894d4f32bfd3587103f7adf8753095dc10eb61666fc974ac86d5ae44bb052856fdaa71f554abdb4c0415052e85; expires=Fri, 30 Jun 2023 14:10:37 GMT; path=/; SameSite=None; Secure
ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMTEuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoWDExOyBMaW51eCBYODZfNjQ7IFJ2OjEwOS4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94LzExMS4wIiwiYWNjZXB0X2xhbmd1YWdlIjoiZW4tVVMsZW47cT0wLjUiLCJjb25uZWN0aW9uX3NwZWVkIjoiYnJvYWRiYW5kIn0=; expires=Fri, 24 Apr 2026 00:50:37 GMT; path=/; SameSite=None; Secure
tracking_id: 10275ba2be672eccc1d3c7342c134b
x-robots-tag: noindex, nofollow
access-control-allow-origin: *
x-request-id: 941630f99d179fa8483ac393f214e5c6
access-control-allow-headers: Tune-SDK-Version
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0e1m0WjQAfrNWV6Vtc67xkBG138poYGKAocnBMRNldWJ2BQ9v%2F0Z7vUi1IwdOIl7dVj%2B4jnFsSEq0o%2FCn3fhfu%2BUZ5syqy7UK4HNNCoejin9GDOBAiYlFt6z49aW%2F6rIdPPkpeumihE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cf78fca19041c16-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2