r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13505
Expires: Wed, 21 Sep 2022 18:18:44 GMT
Date: Wed, 21 Sep 2022 14:33:39 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 14:12:02 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zcvkVKwnclaRGVTYdi3mt1pJDkk3SgV07fNl3xu0vfgXQdOKqpFBJw==
Age: 1297
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JHgc7WrpAchFzcbrfojhAob0WTxaRvlhxSakFsgdyLuLlcu8cf3lKw==
age: 35906
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 14:33:39 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 21 Sep 2022 14:03:22 GMT
Expires: Wed, 21 Sep 2022 14:42:15 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: diAF-ii_2tQE5w4iyeHeNYC81sMqPK1hQn8IsRxdvKtPIjNnc8guXw==
Age: 1817
trumnickff.com/
172.67.210.7200 OK 6.5 kB IP 172.67.210.7:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 7ccf31d44286e32f663432428eb57de3
f928836e3ada949dcfe423964ba462544647c377
a777cc2a95c95deac56f720592741f02c7241a33f4d21ea4566a7b97f9550fed
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:33:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.12
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6InF1WFN1cmE0WmdlM1BtVnVYZEJVNkE9PSIsInZhbHVlIjoiQTlKY3M3bE1EYTVmbGZPVGxKUXJERE5OeHRabzY4bEp3SXFTRTRNQ3Y1S3pKVGlOODJjSTN1RFFYZ3BhRDdKbCIsIm1hYyI6IjQzYTZiYjM0OTUxZGU0NzM4NDdmMmJiNTc1OWExMWYyYzU1MmRiYjFjZmRiYzkzOWI1MTlkNGM5N2UwYmMyNzMifQ%3D%3D; expires=Wed, 21-Sep-2022 16:33:38 GMT; Max-Age=7200; path=/
laravel_session=eyJpdiI6IkxFTVc4UmUzcTdHdzkzUVZ2dEg4cXc9PSIsInZhbHVlIjoieVU2eHpJV0lvRU5qTXBZanM0SDFCMXhaVnpNNXFPWEl5NU1QZXFDT3I5WFVUVTJGQkU1K0YzZHRBWkczcFhhSyIsIm1hYyI6IjYxN2Q5ZGY1NWY3YmMzMDUyMWViMmUyZThhNWM5NzcwNjM0ODg3ZGVkMTUzNzI5MDA2YzI0MDkwY2UzYTc0NDIifQ%3D%3D; expires=Wed, 21-Sep-2022 16:33:38 GMT; Max-Age=7200; path=/; httponly
Vary: Accept-Encoding
X-Turbo-Charged-By: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=usIb7qSNuyrjvzRqG2YzISyObMsbu5zk4xXn2GAQsRjHHMaf9mek7yZQOleIy3pIsYFQTKtWHSGDHuP1bybUfcPb%2Biyff8cUkDldGPLZPoXEFoK5AjoFWUuXImirblZPng%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74e38463cee1b4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ff6d50919e56aed75c47feb45ee2f2ec
98f558a4b2d4f3c271abc93d0b74ece4ad7a59ef
b1b6f0e78b5a1e2092cba6d71d0d5a918066c0486176cef0a19f51e2d5a9962e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3792
Cache-Control: max-age=153384
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:40 GMT
Etag: "632ac61c-1d7"
Expires: Fri, 23 Sep 2022 09:10:04 GMT
Last-Modified: Wed, 21 Sep 2022 08:06:52 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
cdn.datatables.net/1.10.20/js/jquery.dataTables.min.js
104.22.51.93200 OK 29 kB URL HTTP/1.1 cdn.datatables.net/1.10.20/js/jquery.dataTables.min.js
IP 104.22.51.93:0
File type Unicode text, UTF-8 text, with very long lines (624)
Hash 7b38e6f42077260e579c99ba80802d1c
e1636a36e6a0c54a1458da63f3081529c1289563
5403e5fa131411677bad5d7701fb4635fd07bdc23bbd3692bffed7087cb97cb6
GET /1.10.20/js/jquery.dataTables.min.js HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://trumnickff.com/
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:33:40 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 28862
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Sun, 11 Sep 2022 22:01:28 GMT
ETag: "1120c89-14961-5e86debce1442-gzip"
Cache-Control: max-age=31536000
Expires: Wed, 20 Sep 2023 19:46:04 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: origin, x-requested-with, content-type
Access-Control-Allow-Methods: GET
CF-Cache-Status: HIT
Age: 67656
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 74e3846a897cb518-OSL
cdn.datatables.net/1.10.20/css/jquery.dataTables.min.css
104.22.51.93200 OK 2.1 kB URL HTTP/1.1 cdn.datatables.net/1.10.20/css/jquery.dataTables.min.css
IP 104.22.51.93:0
File type ASCII text, with very long lines (13899)
Hash f1c730cb36b02ff6f5f79035d08514d2
3cf50dcd231f50143037d15c2d26d6a3ef2ce428
2c4bdf8fbeadffec85b8aee8f45d5942836a04ea6b1c5ede435db7f607379f24
GET /1.10.20/css/jquery.dataTables.min.css HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://trumnickff.com/
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:33:40 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 2109
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 14 Jul 2022 08:23:57 GMT
ETag: "1120a52-364c-5e3bf9f81b99f-gzip"
Cache-Control: max-age=31536000
Expires: Mon, 04 Sep 2023 11:12:51 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: origin, x-requested-with, content-type
Access-Control-Allow-Methods: GET
CF-Cache-Status: HIT
Age: 1480848
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 74e3846a8be0b517-OSL
i.imgur.com/PFwuPx1.png
151.101.84.193200 OK 3.5 kB IP 151.101.84.193:0
File type PNG image data, 227 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash cfc0696f7a1e41becb214059d90fa99c
385ed3e0bbae95ea47159cdae5b534d31b00bf39
bf3382bb20ed272cd26883a33024c06a2a1ac826fbdcaab967a21bfeb0b86087
GET /PFwuPx1.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 25 Jan 2020 12:01:48 GMT
etag: "cfc0696f7a1e41becb214059d90fa99c"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 21 Sep 2022 14:33:40 GMT
age: 1890277
x-served-by: cache-iad-kcgs7200150-IAD, cache-bma1678-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663770820.281569,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 3453
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb61a4f6f0beed45a5f963bfba6e9d
a07136aeace7036e3b7427d63c60576adbdc388f
3a910cde9f8f65341f3422d28e35ca877558e136c99067b72daaeb56b3d9e76d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb61a4f6f0beed45a5f963bfba6e9d
a07136aeace7036e3b7427d63c60576adbdc388f
3a910cde9f8f65341f3422d28e35ca877558e136c99067b72daaeb56b3d9e76d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.imgur.com/vIJDQd1.png
151.101.84.193200 OK 4.4 kB IP 151.101.84.193:0
File type PNG image data, 350 x 210, 4-bit colormap, non-interlaced\012- data
Hash 4dba0c73417681f2f33637aa73e36454
4da62f1dad5b99e6dfe8b9c0d17050fd42001032
10f05c2253460e16bb0e21853c097b740b43c57c8ac37b335265235a421a1f4c
GET /vIJDQd1.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 26 Jun 2022 11:29:48 GMT
etag: "4dba0c73417681f2f33637aa73e36454"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 21 Sep 2022 14:33:40 GMT
age: 78475
x-served-by: cache-iad-kcgs7200091-IAD, cache-bma1678-BMA
x-cache: HIT, MISS
x-cache-hits: 3, 0
x-timer: S1663770820.281972,VS0,VE91
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 4385
X-Firefox-Spdy: h2
i.imgur.com/xUVhBht.png
151.101.84.193200 OK 31 kB IP 151.101.84.193:0
File type PNG image data, 1087 x 133, 8-bit/color RGB, non-interlaced\012- data
Hash 26c81bf4525892a562ccceda8e8d5618
a43cd9d3e3df505a9d2531a58e7c06547bbad3ea
05077a64349f7e45fb538e49f6067a8cc560746595ba27bcfe3dcd54288d3fd3
GET /xUVhBht.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 May 2022 06:37:28 GMT
etag: "26c81bf4525892a562ccceda8e8d5618"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 21 Sep 2022 14:33:40 GMT
age: 1895276
x-served-by: cache-iad-kcgs7200130-IAD, cache-bma1678-BMA
x-cache: HIT, MISS
x-cache-hits: 124, 0
x-timer: S1663770820.282412,VS0,VE91
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 31120
X-Firefox-Spdy: h2
i.imgur.com/7tz4UPb.png
151.101.84.193200 OK 13 kB IP 151.101.84.193:0
File type PNG image data, 350 x 210, 8-bit/color RGB, non-interlaced\012- data
Hash 42331200dba38c86b11f3d62909f5c62
e40d38dd04e9a14ebd53d4b8c60a0925063c7f92
29c404a4794d96a7ca83b5bd2d53420d28ad857ff2880e4474ba26ca651a71b6
GET /7tz4UPb.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 26 Jun 2022 11:32:17 GMT
etag: "42331200dba38c86b11f3d62909f5c62"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 21 Sep 2022 14:33:40 GMT
age: 1880371
x-served-by: cache-iad-kcgs7200158-IAD, cache-bma1678-BMA
x-cache: HIT, MISS
x-cache-hits: 91, 0
x-timer: S1663770820.282103,VS0,VE100
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 13254
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.38.146.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.146.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Qht5s2vAKLy7SPPSOgyTcg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: rY/I8jY1HgO4pgb8Wy2iM85doZ8=
i.imgur.com/c9p6YH7.png
151.101.84.193200 OK 25 kB IP 151.101.84.193:0
File type PNG image data, 350 x 210, 8-bit/color RGB, non-interlaced\012- data
Hash fc3720359f09ae8c2540e0b558ed952f
a210bb41fecedf43708af304d4bcfa73db03f264
99668743f5bfc0ca4849ee6f7bb2be242380b5dd80d1abe16fd17e62fa6ec65f
GET /c9p6YH7.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 03 Jun 2022 09:47:40 GMT
etag: "fc3720359f09ae8c2540e0b558ed952f"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 21 Sep 2022 14:33:40 GMT
age: 750353
x-served-by: cache-iad-kjyo7100145-IAD, cache-bma1678-BMA
x-cache: HIT, MISS
x-cache-hits: 29, 0
x-timer: S1663770820.282097,VS0,VE111
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 25153
X-Firefox-Spdy: h2
i.imgur.com/XJ5AROo.gif
151.101.84.193200 OK 1.7 MB IP 151.101.84.193:0
File type GIF image data, version 89a, 400 x 240\012- data
Size 1.7 MB (1733453 bytes)
Hash 89cfcdda39342eb60dd2276ae6ca2207
030a05b5de19be8c61845a6c153d2949d04f27f5
de7cfdbe24f73941d5ba37031fa9241362b73e28b79585ab4b60cc22d27b79f4
GET /XJ5AROo.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 06 May 2022 08:07:12 GMT
etag: "89cfcdda39342eb60dd2276ae6ca2207"
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 21 Sep 2022 14:33:40 GMT
age: 1306558
x-served-by: cache-iad-kcgs7200156-IAD, cache-bma1678-BMA
x-cache: HIT, MISS
x-cache-hits: 103, 0
x-timer: S1663770820.281893,VS0,VE101
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 1733453
X-Firefox-Spdy: h2
i.imgur.com/PyO91Qt.gif
151.101.84.193200 OK 1.5 MB IP 151.101.84.193:0
File type GIF image data, version 89a, 350 x 210\012- data
Size 1.5 MB (1490095 bytes)
Hash 7c5c8d520b1e3f6972322b774e7b3e58
3e1cc0df5d2d5a4db1a1f763ab3af8f670b254e5
dc4a243c7bac099642ff44415c748477fba626b9b1385db433f62768b464dc9a
GET /PyO91Qt.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 19 Apr 2022 15:36:16 GMT
etag: "7c5c8d520b1e3f6972322b774e7b3e58"
x-amz-storage-class: STANDARD_IA
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 21 Sep 2022 14:33:40 GMT
age: 112090
x-served-by: cache-iad-kcgs7200115-IAD, cache-bma1678-BMA
x-cache: HIT, MISS
x-cache-hits: 6, 0
x-timer: S1663770820.282335,VS0,VE194
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 1490095
X-Firefox-Spdy: h2
i.imgur.com/Bk6g167.png
151.101.84.193200 OK 24 kB IP 151.101.84.193:0
File type PNG image data, 350 x 210, 8-bit/color RGB, non-interlaced\012- data
Hash e738f8273a63da440f6a23ea0ff5fbbc
986e6d59b01692a9733713deb67760c801c80caf
309fa0749e7b97665b48f079e396c827117ce01ce2ba6362625d9607bdfe160b
GET /Bk6g167.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 05 Jun 2022 05:47:52 GMT
etag: "e738f8273a63da440f6a23ea0ff5fbbc"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 21 Sep 2022 14:33:40 GMT
age: 750352
x-served-by: cache-iad-kcgs7200073-IAD, cache-bma1678-BMA
x-cache: HIT, MISS
x-cache-hits: 24, 0
x-timer: S1663770820.282254,VS0,VE205
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 24065
X-Firefox-Spdy: h2
i.imgur.com/oOo7gDI.jpg
151.101.84.193200 OK 492 kB IP 151.101.84.193:0
File type JPEG image data, progressive, precision 8, 2000x667, components 3\012- data
Size 492 kB (492047 bytes)
Hash fccfae08980c24a0d4c8a22c22a32bfe
01b777769da8ce53aadb282834f22de339a81144
739ebdf2cb4d76d7fd87b29b1fa233e3ebe6366ee85f18d9417c3397391e533e
GET /oOo7gDI.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 04 Sep 2022 04:59:33 GMT
etag: "fccfae08980c24a0d4c8a22c22a32bfe"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 21 Sep 2022 14:33:40 GMT
age: 1285803
x-served-by: cache-iad-kjyo7100172-IAD, cache-bma1678-BMA
x-cache: HIT, MISS
x-cache-hits: 57, 0
x-timer: S1663770820.281689,VS0,VE241
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 492047
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3846
Expires: Wed, 21 Sep 2022 15:37:47 GMT
Date: Wed, 21 Sep 2022 14:33:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3846
Expires: Wed, 21 Sep 2022 15:37:47 GMT
Date: Wed, 21 Sep 2022 14:33:41 GMT
Connection: keep-alive
trumnickff.com/assets/frontend/theme/assets/global/plugins/magnific/magnific.js
172.67.210.7200 OK 8.4 kB URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/global/plugins/magnific/magnific.js
IP 172.67.210.7:0
File type ASCII text, with very long lines (22205)
Hash 348e61571d580e17d1e4499b4cf6ab8f
f26fa171adb430698e3eb50fbad1ee91f604c1be
f85dda0f1d39301ecf5c183cda155298590622d18589b25b200551f099b4c56e
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/global/plugins/magnific/magnific.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u83FfVCYLmEaOh0bru4iHZ1lwY1FqJrsfq4iPbpJRUI49bg%2BSaTTlImAgDYxIDQe38lOgi6Pj8IwS5Viz4uXV%2FY60GaJ3Gi6qo1jotQbQrN6xrftwRLMQJWjEIPCkoXKng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a8f941bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14e6ddceb639a5f4875aecb796f95c79
b1cd04a66852694284eeef16a1cde38896e33c03
4c0657a00d7fb4caefa64c28340cad94a306cc393cffe692fcc69c65a80f2391
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10244
x-amzn-requestid: 71f08b9e-e977-48de-ad60-5192a43db517
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYwBkGqjIAMFz0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202d3d-0af3334d085ca4a764e31bb5;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e3MMA-NVstIsR7M9_JGH05i1e8pK17RsjyERrSMlC3uoHsWw_7ABtA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 19:18:32 GMT
age: 69309
etag: "b1cd04a66852694284eeef16a1cde38896e33c03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3846
Expires: Wed, 21 Sep 2022 15:37:47 GMT
Date: Wed, 21 Sep 2022 14:33:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3846
Expires: Wed, 21 Sep 2022 15:37:47 GMT
Date: Wed, 21 Sep 2022 14:33:41 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2db94039cb675cb250519fe57b2b3c9
37222a70df5d9a69073b4b32ebc3a5da60006001
444f4359ac25747e7c5d7e09202f195d407bc94a4933ac7ebbbaf9839bf59aff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12048
x-amzn-requestid: 59e98571-f927-44b3-b088-29ec1e4cc3bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYxD-FnIIAMF5Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202ee6-14e47d9a3ae47d0f607033a8;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:19:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 55e0txtcytlUpcNWSLrHWN3FC1t4dMHGTrHGhNV7YFIhOz6c45UcCQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 12:43:54 GMT
age: 6587
etag: "37222a70df5d9a69073b4b32ebc3a5da60006001"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dab1f2cd68979d2004ba4449d759a341
54ed14436a75ba2aeb8459bad2ce70229aff4203
e782fb5ede547e1b167719068c6821c62414dcb0991bf9ac38285cb3ce8894e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10038
x-amzn-requestid: 4cf38a70-a706-4e6a-b854-9404727c599d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1mHDCIAMF5-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-5aba5b0640221b302a19781b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NzOpixfxr2pFiDhF5WUGmjD8r2CTn1grSkCEyWvthxRq0djbDKjknA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:15:05 GMT
age: 58716
etag: "54ed14436a75ba2aeb8459bad2ce70229aff4203"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8bae3a7a80ff40df1d701dfc925ddeff
91df60162a8322469cada0dd8eb93619f28aec1a
fab10c7ad4658bc191621d9f2042236a7b6e34448ce5215dde5b8d6a64b52952
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6897
x-amzn-requestid: 509dc368-dd1c-4be7-94ff-64dbd53c199f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YoqoRG2WIAMFw6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63268b01-1cb916c251fd5f2f3cf10435;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 03:05:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vs0CTuiAdjRtfJD9qX9S5R07Hw6BWfiOAT50GwTdiSETdoqr2FNsyw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 04:14:25 GMT
age: 37156
etag: "91df60162a8322469cada0dd8eb93619f28aec1a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/plugins/owl-carousel/owl.carousel.min.js
172.67.210.7200 OK 24 kB URL HTTP/2 trumnickff.com/assets/frontend/plugins/owl-carousel/owl.carousel.min.js
IP 172.67.210.7:0
File type ASCII text, with very long lines (31997)
Hash 0664ef0ae99f0bac672b6bb2575700df
c5bdae156df57d3490fce1e07222461f0d99bedd
620c65350a474896243b13515cd702b2f64e7a3d6a9774b13c88a28aef0b488e
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/plugins/owl-carousel/owl.carousel.min.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:41 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iMSvOEQsJgSVPVhKTIlrsW1KJ0suKLHY6j%2FhoV5Hbo3prCEfx37vNcFrD6JH1lWORJaGHFUfoHl84KA8CS5kIo0IoUivK1Q9v%2FT%2Bj2iDqtEZxPr4YQMbbIrCF34kUIWGzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f881bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a692964324dbb9c460a1b855808d02e6
1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54
3fa9e780d62fffb635064aeed542c8e04923ff943c6080476836fab6c24e2426
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9201
x-amzn-requestid: 6dbfae76-f9ab-4f31-9b62-bcf5d9ce4515
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YxzxlEYcoAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a333d-7d147481402cc46a751b72ed;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:40:13 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JEb0g486u6AjYFbf8rSbreKjh0m1GsAGbvykHl0oahmVN2ciqe5FOw==
via: 1.1 7dcaa43cd0535d889b549e6a30a57aa0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:14:57 GMT
etag: "1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54"
content-type: image/jpeg
age: 58724
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
trumnickff.com/assets/frontend/theme/assets/demos/default/js/scripts/reveal-animate/reveal-animate.js
172.67.210.7200 OK 12 kB URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/demos/default/js/scripts/reveal-animate/reveal-animate.js
IP 172.67.210.7:0
Hash a7e53b38b6faaf94b355381ee96f897f
488798664293ed159469b4f72f0337b73b711097
fff7e4ccc82fa2884c1728d5fc540ef79edbcc45657f5d5d92f03efc3cce6af8
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/demos/default/js/scripts/reveal-animate/reveal-animate.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S7EutXgHKWCnJhya2VVV0PhBzS7qBDCU6KqI0UQYcuptuA3ytCp%2FYz9NChCm2J0oRO%2F4CQg1ww9OSvRfyr7e81XaK63ucmcq3CvgK6d%2Bj%2FPjOIYg94d8K9oqVhD2cEjSGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a8f931bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-social/bootstrap-social.css
172.67.210.7200 OK 3.3 kB URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-social/bootstrap-social.css
IP 172.67.210.7:0
File type ASCII text, with very long lines (562)
Hash 55602cb32b6ef5d4b7d3b5e9e05bcda5
b8fc25c72ff61ad838a017d43843f739990fc56a
03eb8a6028216206ece48c8f84eccf8537b1ff8aabda1a399a042bf770a1722a
GET /assets/frontend/theme/assets/plugins/bootstrap-social/bootstrap-social.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3lgEb%2FzSuQdOkAkIIbqwTSFGQhq0sDkN5Qu80IslYT4OBBniZ6gY5anonHz65q7AV7JHaOd4OtO8mu1KCu1RYkinjJ8YLFVxbEqw3sp0AYRiz4szDUkA9xW53OZLwWgjTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f6b1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11816, version 1.0\012- data
Hash 7fa68490a833a8fa395e5f3bffafc052
1880e3743548106319713b937e7769eee6b1ce21
30fa70635379ae1b58491bc41572760c1f3c8445265436a5fec4c36a197e4121
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19y7DRs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://trumnickff.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 23:49:27 GMT
expires: Wed, 20 Sep 2023 23:49:27 GMT
cache-control: public, max-age=31536000
age: 53054
last-modified: Tue, 19 Apr 2022 18:52:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15660, version 1.0\012- data
Hash d7b0b953a50fddaa88089b5b787cf719
2f85bc568b27659a3d6452f58f9fd7678450326d
e79c1c1a140e6afb861074c70392db54cc65a06050de2a69162ab94eb95b0516
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://trumnickff.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 22:17:40 GMT
expires: Wed, 20 Sep 2023 22:17:40 GMT
cache-control: public, max-age=31536000
age: 58561
last-modified: Tue, 19 Apr 2022 18:42:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/reveal-animate/wow.js
172.67.210.7200 OK 9.4 kB URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/reveal-animate/wow.js
IP 172.67.210.7:0
Hash a62cc6d91ca7c40306de21682e9fb849
680921986fa920bf48e005a6065564283beb7218
bf0b67532156838691a05c984181716ff44a237b12f6da291ad933cbe0b12841
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/reveal-animate/wow.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qm50vsMrxDVPsw1fgwsWDFDcIG0GvGojelZ%2FVcYhuWEwlLIWzi8XwhLX6Kb%2BGF5PfQ0mi6VqU%2FiGXOzNi7H%2Bw1pAPMssblsT47yhUsZgkAd1OT6gc7gtkoI9k%2BZcLgTwFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a8f921bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/css/style7d67.css?v=157771504688209
172.67.210.7200 OK 21 kB URL HTTP/2 trumnickff.com/assets/frontend/css/style7d67.css?v=157771504688209
IP 172.67.210.7:0
File type assembler source, ASCII text
Hash 45c5e3ba106eef98de4a69ae263229c3
e4941b7918cdfaaf88705ee6920770555da7b810
e916d927ebbad91d08482e9a79a12e91f8ccd2d75730ec83daccaaabd8a7873a
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/css/style7d67.css?v=157771504688209 HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WMDhDRvK%2BhGdjT%2BPl75icGNkLI7gmtR6MAJTmDegMf%2FxzQR%2FsXC6qw43Jg2UJvcQX58sSQGQPLaE8sqSy0FJGJVo2u8NvLYSQC2KfXD82ib40t%2BwjoMi9yBXGS4HWbudhw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f8b1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCsYb8td.woff2
142.250.74.163200 OK 5.6 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCsYb8td.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 5564, version 1.0\012- data
Hash d4d88a25c6405b91c0d8cb3fa6c9ca7b
06a7623d5b742d64372240e2c63c1c1330e63b90
bf3fbb19e9654fa5727bc1312cd4b8bd54d23adb70168da4315cead4666f7dc8
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCsYb8td.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://trumnickff.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5564
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 06:09:49 GMT
expires: Thu, 21 Sep 2023 06:09:49 GMT
cache-control: public, max-age=31536000
age: 30232
last-modified: Tue, 19 Apr 2022 19:11:49 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 15af330272b65861c93c7f989a284e90
e3cf4e4108bc8e68819f82722fb6ca11392cdb34
7ebccd17f3283cfcd086121a089c9de4699284acf5809695d7a364835518ec1a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9baaa3878151bf5d83c8d7014da17e5d
d8952bdd01ddec1d9a5a480f17ff5e39f6bdb037
1734ff9035c0a9c965cb5047e9fdbc2c1184b6c568066e856c6dbf0b8dc51df3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
trumnickff.com/storage/images/trum-nick.png
172.67.210.7200 OK 4.6 kB URL HTTP/1.1 trumnickff.com/storage/images/trum-nick.png
IP 172.67.210.7:0
File type PNG image data, 400 x 200, 8-bit/color RGB, non-interlaced\012- data
Hash 835bc523c08bf8a68013e6ce75ffb3f9
630ab84d0e1ce20055241494c16e6f438b7e5c44
5ba1990195a387d45157db08a12067509df4c8688e11ef6fe2281b3ef7e782ef
GET /storage/images/trum-nick.png HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://trumnickff.com/
Cookie: XSRF-TOKEN=eyJpdiI6InF1WFN1cmE0WmdlM1BtVnVYZEJVNkE9PSIsInZhbHVlIjoiQTlKY3M3bE1EYTVmbGZPVGxKUXJERE5OeHRabzY4bEp3SXFTRTRNQ3Y1S3pKVGlOODJjSTN1RFFYZ3BhRDdKbCIsIm1hYyI6IjQzYTZiYjM0OTUxZGU0NzM4NDdmMmJiNTc1OWExMWYyYzU1MmRiYjFjZmRiYzkzOWI1MTlkNGM5N2UwYmMyNzMifQ%3D%3D; laravel_session=eyJpdiI6IkxFTVc4UmUzcTdHdzkzUVZ2dEg4cXc9PSIsInZhbHVlIjoieVU2eHpJV0lvRU5qTXBZanM0SDFCMXhaVnpNNXFPWEl5NU1QZXFDT3I5WFVUVTJGQkU1K0YzZHRBWkczcFhhSyIsIm1hYyI6IjYxN2Q5ZGY1NWY3YmMzMDUyMWViMmUyZThhNWM5NzcwNjM0ODg3ZGVkMTUzNzI5MDA2YzI0MDkwY2UzYTc0NDIifQ%3D%3D
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 14:33:42 GMT
Content-Type: image/png
Content-Length: 4551
Connection: keep-alive
Cache-Control: public, max-age=604800
Expires: Wed, 28 Sep 2022 14:33:40 GMT
Last-Modified: Tue, 19 Apr 2022 13:48:24 GMT
X-Turbo-Charged-By: LiteSpeed
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9H0Ojw9obJ%2FE8u9s0Ft30nnmZ%2Fcf%2FiNfIsYXkawsij%2Foe5gFbstZN6fuo%2BN2RamjKP94txmyYIfRI%2BWPWQ9ceRMa97jtXKDA3U7avarc3NKhQFFuNvENgd4URMysfPBMAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74e38471e89cb4ff-OSL
alt-svc: h2=":443"; ma=60
trumnickff.com/assets/frontend/theme/assets/plugins/jquery-migrate.min.js
172.67.210.7200 OK 62 kB URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/jquery-migrate.min.js
IP 172.67.210.7:0
File type ASCII text, with very long lines (9959)
Hash ed3b40ea36bdec0e6191be0254b9cdab
a278b9a9afa0d0db47cd6e9de397520e495f0168
0030e61cfb54acbb4ac90f4335197a3e49d6d460d3c2f695c58c2af85f04eea1
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/jquery-migrate.min.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FA8uFwa4Pu6pSGI2JIp9AIxDZdazQwgwt42konNBFcvbZXkTGneOHJbkqp5v2uP5TdNtikAaVaFW8zL6M7YUZbtTn4j3ETa%2Fbv%2BBByeY6Fb%2FpKATBwortBA4c42WGYm93Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f8d1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9baaa3878151bf5d83c8d7014da17e5d
d8952bdd01ddec1d9a5a480f17ff5e39f6bdb037
1734ff9035c0a9c965cb5047e9fdbc2c1184b6c568066e856c6dbf0b8dc51df3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20220915/r20190131/zrt_lookup.html
142.250.74.162200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220915/r20190131/zrt_lookup.html
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20220915/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Tue, 20 Sep 2022 20:35:43 GMT
expires: Tue, 04 Oct 2022 20:35:43 GMT
cache-control: public, max-age=1209600
age: 64679
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 32d60a76f04221b40dd32e506b6cd47d
89367db15ef63d7916871a006276a981c8b7aec3
c36ad4f90208ed924129ff27e00a6662cc5cc4bf8c4c70e07d04107ddb47d817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f85caa32cfc5c68ae9d37dac5075d086
d98cb95e042dfdf7fcfe0bef3d83624a970ee7ab
c1d5882e2ccbee35dfb5d42d78ef6fd843882cbbbe5653cd686ff768e697ac84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=trumnickff.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=trumnickff.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=trumnickff.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 21 Sep 2022 14:33:42 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=trumnickff.com
172.217.21.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=trumnickff.com
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=trumnickff.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 21 Sep 2022 14:33:42 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d72c6e55a35aad7b04dfec988783161
3aee1117c8554fa96f809570b19b0faf0874a873
c65b6061ce584f000bfe80c1909c54ff5fbd089be04e93e4aa6aebeb910ea660
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C65B6061CE584F000BFE80C1909C54FF5FBD089BE04E93E4AA6AEBEB910EA660"
Last-Modified: Mon, 19 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21552
Expires: Wed, 21 Sep 2022 20:32:54 GMT
Date: Wed, 21 Sep 2022 14:33:42 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 32d60a76f04221b40dd32e506b6cd47d
89367db15ef63d7916871a006276a981c8b7aec3
c36ad4f90208ed924129ff27e00a6662cc5cc4bf8c4c70e07d04107ddb47d817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 214d079c47cad57c5c2096a131f2aa5c
65956f79a33b72b85dd432710bbfe84047abe319
df20b3235347e5561904ba5ab7223818281170db74ff1ed6e3bf81ac3557dc62
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 05dfa19609343ef6acdaf2ccc3ca8add
5a51311c554ae7a13d677484cb09e408e16f2a50
85609b2731a7e9966f02caa9e9592686859f26a2fe9f43bc5224a8ca82736161
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=trumnickff.com&callback=_gfp_s_&client=ca-pub-1217859313445277
172.217.21.162200 OK 202 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=trumnickff.com&callback=_gfp_s_&client=ca-pub-1217859313445277
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash 9b46ab91a036e1e2373c474e4de62818
7e4feb14bada463d29feebc3526f63303da239cb
3ec9983e69e63ad370cba80003b098fa0b5a8284a7bc5856803564d836073aae
GET /gampad/cookie.js?domain=trumnickff.com&callback=_gfp_s_&client=ca-pub-1217859313445277 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 21 Sep 2022 14:33:42 GMT
server: cafe
cache-control: private
content-length: 202
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 05dfa19609343ef6acdaf2ccc3ca8add
5a51311c554ae7a13d677484cb09e408e16f2a50
85609b2731a7e9966f02caa9e9592686859f26a2fe9f43bc5224a8ca82736161
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ff.garena.vn/wp-content/themes/freefire/images/logo-site.png
125.212.198.71301 Moved Permanently 194 B URL HTTP/1.1 ff.garena.vn/wp-content/themes/freefire/images/logo-site.png
IP 125.212.198.71:0
ASN #38731 CHT Compamy Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ec0f2d6d8da7997a10f72a2537729e59
d6b8ca36f266d92775f5b757e65b8c10c747c30a
95e1144ae5faba1d6ea1ac58b29b1e8d0399125e4dbc6a17d50d0bf5cf3bdcf8
GET /wp-content/themes/freefire/images/logo-site.png HTTP/1.1
Host: ff.garena.vn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx/1.14.0 (Ubuntu)
Date: Wed, 21 Sep 2022 14:33:42 GMT
Content-Type: text/html
Content-Length: 194
Connection: keep-alive
Location: https://ff.garena.com/index/vn/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eb336edb5183ed9b1c6f9ec976a243ba
4751887460976779dd36f9b1a2d32abe0312f1fe
6cb5cae242fb864cd85510bfdd061f8d834ec09d0ea29db6b7e46370977609e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6CB5CAE242FB864CD85510BFDD061F8D834EC09D0EA29DB6B7E46370977609E0"
Last-Modified: Mon, 19 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1856
Expires: Wed, 21 Sep 2022 15:04:39 GMT
Date: Wed, 21 Sep 2022 14:33:43 GMT
Connection: keep-alive
ff.garena.com/index/vn/
143.92.120.31302 Found 0 B IP 143.92.120.31:0
ASN #58521 Garena Online Pte Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /index/vn/ HTTP/1.1
Host: ff.garena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://trumnickff.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 21 Sep 2022 14:33:43 GMT
location: /vn/
server: nginx
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 940654a13335a61ca64ca083e4f67a3e
fd78474e4674f58db2c3622ac3bd0c8753342557
129f6f6f87bb21eb345c7cdd66f2ea498a19885f48490018541d4b9367770fca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Wed, 21 Sep 2022 14:33:43 GMT
expires: Wed, 21 Sep 2022 14:33:43 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Sep 2022 16:23:47 GMT
expires: Mon, 18 Sep 2023 16:23:47 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 252596
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 67b756e82caefc7860b9f2d4a4f40341
adeae15d52089bcca4ca247fc4aebceef8406e34
72ff9f52080a633dc841554f7d4cc70083edd2572b535d84093ae63f0c50b832
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 514 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 39344e4b5c31c56aff1b16c9648e7987
1c2afca957342fe2016826ab2e480d63f1ab3031
335c549acf241a24efb0fc7dcdb4b4f7e94ab351ebdbfe71a3a68cc024e1b545
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Wed, 21 Sep 2022 14:33:43 GMT
date: Wed, 21 Sep 2022 14:33:43 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-Wajp_M36s5wHFx2jabx86Q' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 514
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1b33d59cf038a3fe7273f78fda2cce3a
0b367731ef6df8e1f6c1b8774198daa9959d7cf5
b02b1756112479f92786994de8e884986b0a7eb3d5885300bfd8a64f597f7cc4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 14:33:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
trumnickff.com/assets/frontend/theme/assets/plugins/counterup/jquery.waypoints.min.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/counterup/jquery.waypoints.min.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/counterup/jquery.waypoints.min.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X1V%2B8cmvq%2BF%2FNtUsSQ5u2ZbRnLsBrmQfu7JzqXHCaXLMYMVlB6jcjym9yJZqaGEojoL6iuXTCGRAaQS5MqY4wihiv3tHCPNm2t1%2BVPi8WCnnyvkVroq1lYd3Qu%2Bc24AKeg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a8f9a1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-datepicker/css/bootstrap-datepicker3.min.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-datepicker/css/bootstrap-datepicker3.min.css
IP 172.67.210.7:0
GET /assets/frontend/theme/assets/plugins/bootstrap-datepicker/css/bootstrap-datepicker3.min.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2Gwcmd1ARusNJqBSljvpIn3TRy0nKl9HweBo5UsCZKc1IPMOoPloPlZRD7OENZX2gmPK%2B13WmR2j6rvQeWZB2ggoG9zYP6qRc8bPorc7WBR6qUZkqC5AKZ4fc99x36jytQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f781bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-datepicker/css/bootstrap-datepicker.min.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-datepicker/css/bootstrap-datepicker.min.css
IP 172.67.210.7:0
GET /assets/frontend/theme/assets/plugins/bootstrap-datepicker/css/bootstrap-datepicker.min.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=haLPJsQ8IEHbQqFWMQXLNfTWaZzZdEdAMx2FgGGf5kiUh4%2FIwJcDPNVu2jzfhT4yTtbfJ742ual4tFOwRK2QGBB6k0uoSL1ovWOsu98fayopJ5n4PrnWOgFBkw6Lmccu8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f771bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap/css/bootstrap.min.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap/css/bootstrap.min.css
IP 172.67.210.7:0
GET /assets/frontend/theme/assets/plugins/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:41 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8lh3exTCUKxnXfYBuESs6sEdxJPGro%2BHiTCU5Sc%2BdJUmQSk%2BBv4w53qX8oaf1qFHsxj5y68z7NNKu%2Bg8wO5fij3H8Mg225PPfl5QOseHE%2BeuBmqheGTxnHVpXxDgGJUTvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a9fac1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/jquery.easing.min.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/jquery.easing.min.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/jquery.easing.min.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rTki7M44wBJUhSfpuWi0t%2Bqq1LCMj1JUp9TKkXQy5MAgC9%2B6J%2FrxKPfPA1NTFTbBLsILztlaBQtqW%2FuocVRGALbjSUBwJLSFRfkQpxQJYSadiWAXT8jJ5Ws9a8LzsmBrKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a8f911bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-datepicker/js/bootstrap-datepicker.min.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-datepicker/js/bootstrap-datepicker.min.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/bootstrap-datepicker/js/bootstrap-datepicker.min.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z06Lqun190O8T9d30HfxeDR0WZZFkhkTX%2BAblCPlAS4xT4itpMA8ckeuHzU1mRiqIDMAarR%2B6WNUIlu7jvDl3xzsdGOsxDvNKNFkwMxiZUTJu%2FYBKa98rjX%2BprI6sRO%2BRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f6c1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/demos/default/css/components.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/demos/default/css/components.css
IP 172.67.210.7:0
GET /assets/frontend/theme/assets/demos/default/css/components.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:41 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=geP%2FN1bG21VPgK96Q16NEpVrpq8SqKxAP2jayYQ9Q2e3wbBCCC0XFlw7KXgqLlLEyKbZ%2F5TeyMGBWH%2BvCdDl0HUAvmBEqCIg70AZZuK91xjYcc3EmDvVhXhLD2OLF4t9HA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f7e1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/plugins/bootbox/bootbox.min.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/plugins/bootbox/bootbox.min.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/plugins/bootbox/bootbox.min.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9dKjV6kSKvI%2B28dCuU9XQsOBy0%2FzJit2PNlOtTGc%2FXzsc9IbbI7L%2BAl%2BPUb88auJd%2F62Oqc5QzQUidImPHIhK5NG7PwZAvSuRa6sSPyCXPoQgo1XYx9yAjVvggF5EIqKig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a8fa61bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-timepicker/css/bootstrap-timepicker.min.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-timepicker/css/bootstrap-timepicker.min.css
IP 172.67.210.7:0
GET /assets/frontend/theme/assets/plugins/bootstrap-timepicker/css/bootstrap-timepicker.min.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SPNk3BNAHlVmaNScGnX1kGR33AQ3znOsRMhJ6SGlw9DA7dR%2B33x%2FV9RRRoxmDSOBoCeiImK%2FOE7nrJl9syMsJATFzuatkEPgWIVSt%2FArV0yL12ETkK1bPMoJ5GH2mWz8Uw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f791bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-daterangepicker/daterangepicker.min.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-daterangepicker/daterangepicker.min.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/bootstrap-daterangepicker/daterangepicker.min.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DrD%2Fnn15elVLGEnOhAKd%2BdKwx55EIZG52qU9Ys3UMM9T7dDGvLfZ5e9Q7tkK1vGJNOSW0kvvWEBmNX9JihxmnhJOM6Z4VVXEb9KTTkzNaSnOCMDm94qxCyIDqtPoS%2FH2Mw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a9fa81bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/plugins/jquery/jquery-2.1.0.min.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/plugins/jquery/jquery-2.1.0.min.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/plugins/jquery/jquery-2.1.0.min.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:41 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i%2FvmoMT%2FfX3m%2FcAXAISLUoJarCWANxVBITQQxFhO8Mx8WTYNagnNvpn0l%2BvJzSiLZSAZruCrTrBAadrXerKt0kOegzi86h4%2FLcyDcKQb4N6IMgO4C8kpS%2BTDGAuchmxO0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f851bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ff.garena.com/vn/
143.92.120.31200 OK 0 B IP 143.92.120.31:0
ASN #58521 Garena Online Pte Ltd
GET /vn/ HTTP/1.1
Host: ff.garena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://trumnickff.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: none
content-encoding: gzip
content-type: text/html; charset=utf-8
date: Wed, 21 Sep 2022 14:33:43 GMT
etag: "17053-V8GGZmhNV1t4NUB6X5w/lbLCmgM"
server: nginx
vary: Accept-Encoding
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/plugins/jQuery-Mask-Plugin-master/dist/jquery.mask.min.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/plugins/jQuery-Mask-Plugin-master/dist/jquery.mask.min.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/plugins/jQuery-Mask-Plugin-master/dist/jquery.mask.min.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U%2FGJZ10UXRjsT4TpuEAzfwjmcVOxT3wZVLyF92Dk2Cbs6EW4CbMmVTDsNdAxgeUaHenvVIG1S5Rftdr6WiKMK%2F2wbJIbw2%2BnyNhscKpe2zF1hbw7i2HGDpVDHhHR45ZEdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f721bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/demos/default/css/themes/default.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/demos/default/css/themes/default.css
IP 172.67.210.7:0
GET /assets/frontend/theme/assets/demos/default/css/themes/default.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xeqwS1u%2BZClSc4p18iWA1UeL14O75yPrhzQ6R684hGFi76qMU3lIS0XCh01CZjM3rJ2GBpVoqkxdc4E5V8S%2F7rNZKuJWhrvWbUdGkxOIKA62%2Fg7SbJhBJSYHT91MOhub6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f7f1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/demos/default/css/custom.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/demos/default/css/custom.css
IP 172.67.210.7:0
GET /assets/frontend/theme/assets/demos/default/css/custom.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S70CVSxHNqxskD9KvHBNUtp3rx0QQN%2FM3YESDQVl7Gfo%2FOGNZHZdh9AzqxxF%2BQCAEUZF%2BcLtrSMZWuIF1dy%2B28diAUyiqcQP3Ea%2B4%2BuayOj5b%2BizL2g3lzRJjv3n9ryCDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f811bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/smooth-scroll/jquery.smooth-scroll.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/smooth-scroll/jquery.smooth-scroll.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/smooth-scroll/jquery.smooth-scroll.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gdaROxAstTIBAryMv7Qn3rlPFsTMrsyoxH88KdSxOQ0w%2BVtmNbi4tMwJR4uPq2KUJOdX7OnjGbXZsryw1KIA9SeW%2BQFbGlZ4ukDkGChF%2BcREvki6HWPGK7Hlc60WaZE0AQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a8f9d1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/js-cookie/js.cookie.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UIN05OdU5lHq2Dir6GywiUXeANVgQ1FVBNnthH4709BXLI%2FXKVA9s%2F%2FlwF117YEa6eWD8wyO43tH3NLkwoBxnwh559da7x6mpsRpOGVAUvjh5ZvhPC%2F6tZbytRANXrxvAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a8f9f1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto+Condensed:300italic,400italic,700italic,400,300,700&subset=all
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto+Condensed:300italic,400italic,700italic,400,300,700&subset=all
IP 142.250.74.10:0
GET /css?family=Roboto+Condensed:300italic,400italic,700italic,400,300,700&subset=all HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 21 Sep 2022 14:33:40 GMT
date: Wed, 21 Sep 2022 14:33:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.css
IP 172.67.210.7:0
GET /assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mgMsuNNwS0cpmZ82okz5dAsEJ8%2BavYW03fwJU1SMCuRmjCEyZo%2BnkcUTLfAdNr5ErzbiXGCHI3g0ajd87kr4t9DiXeEDBPyHHlYmxtChwPvl0nl0OEGpZ83%2BQbxNNhL8mg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f761bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/counterup/jquery.counterup.min.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/counterup/jquery.counterup.min.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/counterup/jquery.counterup.min.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B78liNIVb1MDxzMrBC%2B8MMo%2FVvlaTeSxHT9%2BtuGDO%2BJWN2wHOtGPZJtFk1b86y1ff6wA8JIggJA%2FwMbFYxRLlY1B5K5iZGChFRO%2BEjswvQ%2BVVYbd9YQgkx20hI3xxZKn%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a8f971bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/global/plugins/magnific/magnific.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/global/plugins/magnific/magnific.css
IP 172.67.210.7:0
GET /assets/frontend/theme/assets/global/plugins/magnific/magnific.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l%2F7vU1a3MCD72Xr%2F%2FRskJ7hOQN%2FyefWKpGOBvArNnWp4GTfAuGPBO70nBC6auTjhZIT8Q8JbrYrCWkiJlbvGKxi%2BfcCy%2BoM33O2u8IXFVcy5RJxrMdHHk8AFz8FGidfPxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f8c1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.pack.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.pack.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/fancybox/jquery.fancybox.pack.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HgcMxjsyWP4zcpunKhHas6S1yIU5SSji0iI4HEWYxlEjnIJEi4pFq5xrVUeJs2Zqr9E9DafAk96Ke%2FgDOJxC1mHTQLY%2BYV0Odnk6P65UCJ%2BgoZYxWsLSgk4bnUnNRn03Wg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a8f9c1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/cubeportfolio/js/jquery.cubeportfolio.min.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/cubeportfolio/js/jquery.cubeportfolio.min.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/cubeportfolio/js/jquery.cubeportfolio.min.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:41 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v5dBe8tK0pzk4EpEr31ynxUY7OzV37CD7sQ%2FHEgjTfU%2FqWwx6KWu1rxuWSSrr9LlftHX0kYdrJIXChsFsYcbeikkQUKedHpQo%2B%2Fj6db3dURNBEvcj4nY%2FRp1l6KjEdcVQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a8f961bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/plugins/owl-carousel/owl.transitions.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/plugins/owl-carousel/owl.transitions.css
IP 172.67.210.7:0
GET /assets/frontend/plugins/owl-carousel/owl.transitions.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bmoAN0%2Bi2iL5H94rid%2Bkl1bVn4wlpBhOhl37g%2Fcwj8WqZZdZjmLe9cHr1pPWR0MEII2y612ls6e77vOvMKmXcLF%2FmsA%2FA0TPanyMD1QWwyFvv%2Fzx8TrgsMp3kQd9uK7qmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f841bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-timepicker/js/bootstrap-timepicker.min.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-timepicker/js/bootstrap-timepicker.min.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/bootstrap-timepicker/js/bootstrap-timepicker.min.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gYeZ8TqS05N%2F%2FZgVt5rpSWQGr9Z727i89vIuVWEg6vwiw5AlPO0FK35BZnix9j0RvhcIvdemyxgxy3H8cVuby%2BEq19ljvK68J9qpWDbQ5I4m9iQ4hIH8zkzrn0UXe7B%2BOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f6d1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/plugins/bootstrap/js/bootstrap.min.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/plugins/bootstrap/js/bootstrap.min.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/plugins/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JZ22KE%2FiN5zwqOUCMzcP%2BXYEIeAplz6uXa7KxI87PWxEyA2yZVkibJ2EeuS08UW0avGPrt1HZnteC7CUEg3eo2fgijZ9sxoGPDG1e3JLtiCb%2F84n%2BOAJTPIOtcKh8IVb6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f871bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/simple-line-icons/simple-line-icons.min.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/simple-line-icons/simple-line-icons.min.css
IP 172.67.210.7:0
GET /assets/frontend/theme/assets/plugins/simple-line-icons/simple-line-icons.min.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5cqcGnFU%2FsARoSHahW5s6qY0Vg1ol7%2F58XOtKR1x10%2BCnmpdq9uYKvwYCy2fhPNngbUBs076rHpTlHEtF5shA6LrUcBvHHminwmTojLWOmMSnHtyChJBmPrqcHu7dLbjdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a9fab1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/moment.min.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/moment.min.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/moment.min.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:41 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wv4hrkKumDPLOtcah8jj03Pd1uuZ4xR8drt2PbSgtCfXKiHjGrOJQjzzL62tBstue0uv0UT5lqKnkjjE%2FALSAg44hhULDz6uVRBAl5npVB1fLUIeYUSp%2BzzqpdLeXMnuIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a9fa71bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/font-awesome/css/font-awesome.min.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/font-awesome/css/font-awesome.min.css
IP 172.67.210.7:0
GET /assets/frontend/theme/assets/plugins/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wfnsX3u91LdMEcmZjy%2Fa9qQJYE79NpOUOYAsXc1xG6wyRbKxUzmeyTiUNh13Eu9U5M8Lenx88P3mn1DK4HuCRm8cFZTe0Xtbk%2B5NuLln1UTpEwZbotcKFugUXaa4Fou2RA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a9fa91bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/plugins/jquery-cookie/jquery.cookie.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/plugins/jquery-cookie/jquery.cookie.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/plugins/jquery-cookie/jquery.cookie.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SVRo%2FS2UmFqZflUt6iJVfPQ2DyofKv1OPnLywNRaU0r2dDpsFQvxZmzpQjxGGswSUIpIBgQmxjhMFYkhaKFRLySGF5OBpNFUI%2FysCl8%2BGROWFY55PRoXv65nmtgL5Ix2pw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f8a1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/demos/default/js/scripts/pages/datepicker.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/demos/default/js/scripts/pages/datepicker.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/demos/default/js/scripts/pages/datepicker.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DFbGpTZIS65J8bwap3EYIqy05KSOHfsHQMZ6BNPoKAXwN6xS6YspM2MqNKTFiZxh%2Fy%2FK7dYiu4wvl9Q7SV05hyzyPcZT3c07oW75gmv3yC7dK2rlZ0b%2B388BAZzfupR9Gg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f6f1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/plugins/owl-carousel/owl.theme.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/plugins/owl-carousel/owl.theme.css
IP 172.67.210.7:0
GET /assets/frontend/plugins/owl-carousel/owl.theme.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c%2B8H11pAVcFdRlHY9COTrqBbUi%2F0hl5SSjrxVvHea18n9EC%2Bj7x9v6YWySrrwqOTOyH%2BAMA%2BfTRAcF2ZPFlKwBF3AS4GafF4bjzXorfOmLflhQ%2FI7sHTLEg0pd6tVsfAfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f831bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/base/js/app.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/base/js/app.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/base/js/app.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nzyjLcv81UEQcf5AM0ZzljrMjL95ihrCBSvHg%2BwGmsuuXBWOLh9PlB7wu4Cs7%2FXBhad0%2Fveu2n57G0L%2B5FflC3C2PJRw%2BDPd%2BcXjQW2m1f4DxrIdA1XmiFivYcMRU4NW6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a8fa41bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/plugins/owl-carousel/owl.carousel.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/plugins/owl-carousel/owl.carousel.css
IP 172.67.210.7:0
GET /assets/frontend/plugins/owl-carousel/owl.carousel.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fmWB3%2BbNo7US4jBJlF%2Fvr90p394vrb2g0oxv7vCs4J0QWR%2FPd9lcDergU73kO7sKsG97rV9aCTqXOaT%2Bi%2BKYtyaCft5KC3LdqP7l42b3dEPPF2LJnBmhKaCRWNt5Ihriww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f821bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/base/js/components.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/base/js/components.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/base/js/components.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WgOUZ9p8JXIcL0dsUb8HE4ac56d%2BBpbTZdFYBLMPjUle0r6hcjS%2BGJH3DdWtejC59GIIh46O7EizhXCKNc%2Fy95djF9o4uGWja6BXCWO3PLP6GkNulDK%2B%2BU2Q8EdmhVGqWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a8fa11bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap/js/bootstrap.min.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap/js/bootstrap.min.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Su3MRX6fr%2FIGNhez00vdvUkstNZS1c%2FxIQdlsnkzuUw6%2FrQmX786%2FWpyNezAIsLT7cErMMhCcJoLCkO5mqzv5ign1oflU58F0M%2BOlrW%2FO7V%2BsQaqcBRTZ0pWUouu1rSYZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f901bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/demos/default/css/plugins.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/demos/default/css/plugins.css
IP 172.67.210.7:0
GET /assets/frontend/theme/assets/demos/default/css/plugins.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:41 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mrvEZSWFAtTRhv%2BDvu%2Bv9b7p2FqHZf49ODBOT3xgP7IuOESfyLO0qT%2FwlU03hoKGoctIGDj1tWpVIwR9dRCF%2FEn%2Bfk7%2FXGybVNgsuRlOApgPz6dPut3rMtYpfQqzrncdeA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f7c1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/js/common.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/js/common.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/js/common.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lYAhacQe2TlznndB%2BrNjmsrEPdgvWGcsidzXYnNwK5h3ioD00AdDgNQXgSafMPkx5OF8ii0IEzIpjCaKsuNNlZKt2q9DbTmEvjmHeza%2BRoMUECGkYx1J0ukt9jvvXWWWKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f731bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/animate/animate.min.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/animate/animate.min.css
IP 172.67.210.7:0
GET /assets/frontend/theme/assets/plugins/animate/animate.min.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h2CFmr101FyordR6cAYhIK6%2BZP1johSievEM4ofc3bi7jFAlaH4p%2B89Ifc1N9EaBX%2FZfjG%2BRnUv0vfKRkzFF6rs92xtWTU9CCzJcZdU2pYzkG6NWXNRNynpy4r96bxMpKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a9faf1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-datetimepicker/js/bootstrap-datetimepicker.min.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-datetimepicker/js/bootstrap-datetimepicker.min.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/theme/assets/plugins/bootstrap-datetimepicker/js/bootstrap-datetimepicker.min.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LFXqrhrSKiB1p2d3b0ydPS5bBFQCWnwiHqZH4HoLaisqWwLMrCEWbxI6ZgYzvMWG01OKAtVpmFVEp0jj9JNnG1xlNxzuY9aO35d8%2FGSVng204PyAaQgKFqtkYN6gGKM13Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f6e1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/plugins/owl-carousel/slider.js
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/plugins/owl-carousel/slider.js
IP 172.67.210.7:0
Analyzer Verdict Alert fortinet Phishing
GET /assets/frontend/plugins/owl-carousel/slider.js HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sSHKMejs89xt8duziO4s3B2iG0n97uWYK4BbizfJxqfE%2BhxHRsLwjclap9cfc7Z5I3ERS3cTynYJE1bLnK0sNLM5o%2FZ0ksb0Ltygg461Qnh547lNwZxv%2FNa0u3TzJqnYRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f891bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/cubeportfolio/css/cubeportfolio.min.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/cubeportfolio/css/cubeportfolio.min.css
IP 172.67.210.7:0
GET /assets/frontend/theme/assets/plugins/cubeportfolio/css/cubeportfolio.min.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:41 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GfqZCOlQUFRUXbkT0%2BGG7cTValpcBVJFkX2yy7YYYvf9BsHuq%2FzMvyNGEZuxW9HwlYIq5GwvvOIdvx%2FvUaHmc%2Fv7gGuJ%2FirHax12wCuJJzpPTCulfmnuxhgPWCbsJdDgIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a9fb11bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/owl-carousel/assets/owl.carousel.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/owl-carousel/assets/owl.carousel.css
IP 172.67.210.7:0
GET /assets/frontend/theme/assets/plugins/owl-carousel/assets/owl.carousel.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ii2OCS%2FK1Nzc1OFXk8dC5U7EvbSd9iKUtyB0bACVj9zg71otQR0mbriiv38Y9xGw%2FnkEX4TMecgZRUj6QrMUg5TiBkYCFg%2FMU3vRKrnLRWJZ%2Fp8eHn%2FKfFDOeh38eQCMjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f741bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-datetimepicker/css/bootstrap-datetimepicker.min.css
172.67.210.7200 OK 0 B URL HTTP/2 trumnickff.com/assets/frontend/theme/assets/plugins/bootstrap-datetimepicker/css/bootstrap-datetimepicker.min.css
IP 172.67.210.7:0
GET /assets/frontend/theme/assets/plugins/bootstrap-datetimepicker/css/bootstrap-datetimepicker.min.css HTTP/1.1
Host: trumnickff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trumnickff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Sep 2022 14:33:40 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 14:33:39 GMT
last-modified: Tue, 13 Oct 2020 15:27:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SKhVdyTZKtrf5U9u6d6cemdWulxX%2FmRd0EEfL33iXWkNKBUFSCJq6RjVmquhQgjTXcSpuSolg0dceJfS1UrlvgEgxZSPfcik%2FF%2BR35CSsmm0UvhXrPC3NCYKtPtNHyBNIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74e3846a7f7b1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2