firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 07 Sep 2022 02:03:55 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XLH-p5hgmf07EXWc9w-HG1qK_1CDDYXdM6TvPOzmgOqrNDGonjrqVw==
Age: 2595
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2334
Expires: Wed, 07 Sep 2022 03:26:05 GMT
Date: Wed, 07 Sep 2022 02:47:11 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
date: Tue, 06 Sep 2022 03:46:34 GMT
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0kNfBiz12QZ22oydCddM4E4HxTLRZ64LIjW3wA6HpepSZnG84G4f-w==
age: 82838
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 02:47:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
154.16.114.64301 Moved Permanently 0 B URL HTTP/1.1 www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?aff_id=15&subid2=6383_sessid20220907024616056&subid=466 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 07 Sep 2022 02:47:11 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Content-Length: 0
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 07 Sep 2022 02:38:18 GMT
Expires: Wed, 07 Sep 2022 02:42:21 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Z8A4nzFGZPJQ5cUug1UxH-WTrrw6aJ6u1f68da2GrNrmreXeADVmjQ==
Age: 533
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e8952752ad4a452a575522a7eb737217
c5554fa2af05d7a7117032b0f99352de08988346
8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 65
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:12 GMT
Last-Modified: Wed, 07 Sep 2022 02:46:07 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.236.232.139101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.236.232.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qqARydstuJ27JaFNHSPhEQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0SxKNjDA8iQFLWOF9OHHaIk29/4=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleoptimize.com/optimize.js?id=OPT-PX828G2
142.250.74.46200 OK 42 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-PX828G2
IP 142.250.74.46:0
File type ASCII text, with very long lines (1615)
Hash 1796282ba591ad47bc3a1dc49952a273
b9516158ce993ef7652ded1cff9b28c63a86ce0e
848156d821dd9b4098c05aafdd5f0540bb9ea7fe7b3ba423e6f9b808743231ce
GET /optimize.js?id=OPT-PX828G2 HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Sep 2022 02:47:13 GMT
expires: Wed, 07 Sep 2022 02:47:13 GMT
cache-control: private, max-age=900
last-modified: Wed, 07 Sep 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42206
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-NWVJ02QJDT
142.250.74.72200 OK 74 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-NWVJ02QJDT
IP 142.250.74.72:0
File type ASCII text, with very long lines (15517)
Hash e35458570cb4aee4550ac62cd276384f
53f54baa51f7c517ffce1ec524d9112330c42b64
5fb9d6fd2c8ad45d60e7618a0827cf860c138bb1f32f9025ad4357d89d7f120f
GET /gtag/js?id=G-NWVJ02QJDT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Sep 2022 02:47:13 GMT
expires: Wed, 07 Sep 2022 02:47:13 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73908
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
154.16.114.64200 OK 244 kB URL HTTP/2 www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1706), with CRLF, LF line terminators
Size 244 kB (243914 bytes)
Hash 7f58c34c2596a24b7c74f2fed7f471d1
06e9ce7e9ff1337bb89498a4321782f339985015
217229c6d114f024e8391042cdd85ae01b9a9d755889ce75c69632ceddd41660
GET /?aff_id=15&subid2=6383_sessid20220907024616056&subid=466 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
link: <https://www.biofungusnuker.com/wp-json/>; rel="https://api.w.org/", <https://www.biofungusnuker.com/wp-json/wp/v2/pages/7>; rel="alternate"; type="application/json", <https://www.biofungusnuker.com/>; rel=shortlink
content-length: 243914
content-type: text/html; charset=UTF-8
date: Wed, 07 Sep 2022 02:47:11 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.6.11
154.16.114.64200 OK 1.8 kB URL HTTP/2 www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.6.11
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
Hash 270d05c0ca7ab3b98eb99183bf1e1ef2
c68771f89466e43ebc4ed54028627be4b3e33977
5803ac00778699dfa69a5f4fed086bf5c29164864bdb5b2f36fe0e3cc98736fb
GET /wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.6.11 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 01 Mar 2021 10:38:34 GMT
accept-ranges: bytes
content-length: 1822
content-type: text/css
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/uploads/themify-css/concate/themify-concate-405c7d81c6c9e9fa1575869d440c7211.min.css
154.16.114.64200 OK 98 kB URL HTTP/2 www.biofungusnuker.com/wp-content/uploads/themify-css/concate/themify-concate-405c7d81c6c9e9fa1575869d440c7211.min.css
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (21878), with CRLF, LF line terminators
Hash 94ca64bb0f9c94eb19d206fba21db8f1
08e7d6eaf66073b41a81046ed19bec3a1255f3d6
eb5e4adf7f88966858873eb0c0d2f5a385e4004580a9cc2c56867902e6d815e1
GET /wp-content/uploads/themify-css/concate/themify-concate-405c7d81c6c9e9fa1575869d440c7211.min.css HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:28:12 GMT
accept-ranges: bytes
content-length: 98404
content-type: text/css
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.6.11
154.16.114.64200 OK 4.3 kB URL HTTP/2 www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.6.11
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
Hash d1fdce218e486089ed3e3c56ffd451ed
f4fb6b3f4ed76c5de129bf84279086dff7ca871f
a5a0ac2b3d285a43297085af1b35a9021164746c3fbee207c8595fbea5d63a4a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.6.11 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 01 Mar 2021 10:38:34 GMT
accept-ranges: bytes
content-length: 4275
content-type: application/javascript
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3084
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Wed, 07 Sep 2022 02:47:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3084
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Wed, 07 Sep 2022 02:47:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3084
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Wed, 07 Sep 2022 02:47:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3084
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Wed, 07 Sep 2022 02:47:13 GMT
Connection: keep-alive
www.biofungusnuker.com/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
154.16.114.64200 OK 90 kB URL HTTP/2 www.biofungusnuker.com/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (65451)
Hash b6f7093369a0e8b83703914ce731b13c
d1889f5c173c2a4b20288f1f84758599afd346ef
60240d5a27ede94fd35fea44bd110b88c7d8cfc08127f032d13b0c622b8be827
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Dec 2020 07:58:04 GMT
accept-ranges: bytes
content-length: 89496
content-type: application/javascript
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46aec6c9-5dde-4aba-879c-d92f0cfec73f.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46aec6c9-5dde-4aba-879c-d92f0cfec73f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f754103a24f76f89b092a30c13f2d5d5
800998b57db224e881f26b245baa4da9626d9f0a
2d535af5239ad8c836cb8545ae6bcc957b3ebcf5ae3abe60fb4281c9e268b0be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46aec6c9-5dde-4aba-879c-d92f0cfec73f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13523
x-amzn-requestid: 10df7b4c-540c-4706-a511-5ff96a3aeb9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDikTETaIAMFk6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317b14e-4afbd43f3d8117aa10e91f64;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 20:45:02 GMT
x-amz-cf-pop: YVR50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: dDCQ13zMHNL9RVL9bvUVut-AfDpiTNaj8798O5T20k0hiSkL2t3KjA==
via: 1.1 1dd804267731601ebefbfc73a35de7a8.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:51:15 GMT
etag: "800998b57db224e881f26b245baa4da9626d9f0a"
content-type: image/jpeg
age: 17758
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c0498832f97967e1fbaa64eba7c65094
2dcaaa99759c7b3279d75f4f934bf05a1c4ca8e7
63621ee746f1a80c3c6167ca190e5008e3e79db0bc8f0e5cb0e5dccc11ceb822
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9352b2-4ab5-48d0-9676-61bf3275b779.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9352b2-4ab5-48d0-9676-61bf3275b779.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 489429fc4af7d245f194596e975d1e49
ab455b8abde4309f365d55508794a8cf8c85d8b6
112f3ed8114c9a10d897af2d083a71f10ec68442d5896487f12259ed676ae017
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9352b2-4ab5-48d0-9676-61bf3275b779.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7002
x-amzn-requestid: b77f0e27-7942-4b68-907c-94a4353f83d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7URaFKwoAMF0gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6314673c-78de60734320a48a2930ce0d;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 08:52:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5LG5agu25pdVJQ3KqkCvvSKiMCBpcf_pYIR2FgJ6KoTd0DvF5p5y8g==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:20:33 GMT
age: 16000
etag: "ab455b8abde4309f365d55508794a8cf8c85d8b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 70c964498818242b742575cfa1769b67
cde85fbe83c9e29618edf4e05002bd623e3ab965
bdb0e76fe216f742789ba5a77645c640fe0c7f207707181e618fa31d4cf58605
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8462
x-amzn-requestid: d75d69c1-87be-47e2-8684-3c9a25edee2f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDqYpFL-IAMFukQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bdd0-1c6d025672cc490734bb54e4;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:38:24 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yzw88Z7aubNEll7UXkvaIWbftL95Y0UDTMnOEh_uhKqWgNycBA9Adw==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:41:22 GMT
age: 18351
etag: "cde85fbe83c9e29618edf4e05002bd623e3ab965"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe74f48f7-6138-4042-9b4c-f63bb036324f.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe74f48f7-6138-4042-9b4c-f63bb036324f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 124a0c0a970006aa660031b5e0ec70d9
3dcd7b5ca2cc9ab604df554b341d1e08bffaa3d7
14c5c6aaf110c123037eb860ecc9d386d46af55fe54cb50f9d1ad430f7e0c516
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe74f48f7-6138-4042-9b4c-f63bb036324f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11972
x-amzn-requestid: e71daf97-7463-492d-b55a-0eab022d8b05
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0nI2G1tIAMFk2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311b89e-7d6c6d1769649d371c505453;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 08:02:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fOWoYZ9FyUKt55cLxVvwCBhX0DzsF2yPaX2Y6USE6OZcNFe3lWyOHA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:42:42 GMT
age: 18271
etag: "3dcd7b5ca2cc9ab604df554b341d1e08bffaa3d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 932f4d99fb1927aae3010e00472b38c3
b95ee99dafca1695d6b86763fce0ceb058f40ef3
da9dbade65f50c1f9ca10956dc863759dd1e0cdf7e28721c79831c288d3ae24e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3604
x-amzn-requestid: 31a6c427-a073-4c25-88b1-6ba40a48c359
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDrvyGg6oAMFhDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bffe-36dd49416c62f3811167173d;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:47:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: hNtG651fpAOKjZluawZlbXYFfBUojeSyqB9UMRsAg1Ooxc95mudq7A==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:51:27 GMT
etag: "b95ee99dafca1695d6b86763fce0ceb058f40ef3"
content-type: image/jpeg
age: 17746
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff29f2a08-1dd5-4577-ae0d-6852e6e83ba7.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff29f2a08-1dd5-4577-ae0d-6852e6e83ba7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6447311cd0f34fb9cde4e21946e0d8af
cfca3a21a33e58f300343f643634c50a924bb6db
e2de947b52e13a0350c5b6904020924b957161d825930677386185a62d2f2401
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff29f2a08-1dd5-4577-ae0d-6852e6e83ba7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5384
x-amzn-requestid: 6888919c-b9fb-43da-a080-0dde24422b4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDqZHHA5oAMFjzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bdd3-7f32bdc673d113da6e69b413;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:38:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FvxWL8FJUrDyhFhyYXIuArDhRgFUyTurACy5-POlVjXeskWas-d2pQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:41:25 GMT
age: 18348
etag: "cfca3a21a33e58f300343f643634c50a924bb6db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c0498832f97967e1fbaa64eba7c65094
2dcaaa99759c7b3279d75f4f934bf05a1c4ca8e7
63621ee746f1a80c3c6167ca190e5008e3e79db0bc8f0e5cb0e5dccc11ceb822
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
biofungusnuker.com/wp-content/uploads/2020/11/1r.jpg
154.16.114.64200 OK 231 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/1r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 231 kB (231040 bytes)
Hash 3cc91d3adc5689ea23faa79a9860c982
15b017607ccd0bd87ad99c0aa704b730a183b382
9df5e3df32c0877bf589078c217f4989f67d1306952e0511834d2972c3fded65
GET /wp-content/uploads/2020/11/1r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:48 GMT
accept-ranges: bytes
content-length: 231040
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/2r.jpg
154.16.114.64200 OK 299 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/2r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 299 kB (299066 bytes)
Hash 330a705f21c79091070ff8997ab6d92b
41f244b2fb7ab11ac2259c3f525e7c51ddfecbc7
74658094ced3ba5e265b4e3e75f8877e0d2646d88bbd2df46731221ed5a83138
GET /wp-content/uploads/2020/11/2r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:45 GMT
accept-ranges: bytes
content-length: 299066
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/28.-mONEY-bACK.png
154.16.114.64200 OK 7.3 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/28.-mONEY-bACK.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 746 x 152, 8-bit colormap, non-interlaced\012- data
Hash d1fb5a5d83c2b4979eb9a38a43802606
0c4ae4dcdbc2225423f6323927954ef1507141d3
ae4b6f2fc1e8d6f78110c5f0694ed905c6d599522f1ab5c30638bbb69fced66b
GET /wp-content/uploads/2020/10/28.-mONEY-bACK.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:56 GMT
accept-ranges: bytes
content-length: 7270
content-type: image/png
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/26.-60-Day-Money-Back-Guarantee.png
154.16.114.64200 OK 49 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/26.-60-Day-Money-Back-Guarantee.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 480 x 480, 8-bit colormap, non-interlaced\012- data
Hash 19daf776b1c17b081e2382735f469ae1
02111774fb0f42d7025bab2f9a35db5c877e1ae7
0573acd36c523ebb9fb914409f42ad0d6fc51d59b3b2a0dc52ca8c11124ab6db
GET /wp-content/uploads/2020/10/26.-60-Day-Money-Back-Guarantee.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:25:00 GMT
accept-ranges: bytes
content-length: 49004
content-type: image/png
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/30.-Easy-Fixes-For-Smelly-Feet.jpg
154.16.114.64200 OK 76 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/30.-Easy-Fixes-For-Smelly-Feet.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Hash 80083f083079d855125df3d5a07a91eb
23efdac2b1a0916adf1707c5581c39a90f4230ca
b6f15e99420334e2cc0ad01080358308a8847d493a76422bf14ef33fd0d71ff0
GET /wp-content/uploads/2020/10/30.-Easy-Fixes-For-Smelly-Feet.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:40 GMT
accept-ranges: bytes
content-length: 75750
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/11r.jpg
154.16.114.64200 OK 115 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/11r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 115 kB (115168 bytes)
Hash d494e4fe791e67849f00b74375377d30
59ea2a7426ce425bb5d00ecdeb86035f9530a4a9
7bc7402d27fc4ed8424744b11435d41f3bb378024cb9a66eab87d1e596e683f9
GET /wp-content/uploads/2020/11/11r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:26 GMT
accept-ranges: bytes
content-length: 115168
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/29.-Vitamins-And-Minerals-Handbook.jpg
154.16.114.64200 OK 92 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/29.-Vitamins-And-Minerals-Handbook.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Hash fe6a010f8602871f3888895d0f23455f
5ead712d31c9657696717a0f202861c8284af0b9
36e6cf2199e7785b2367f59e7e1c7deb9b36d61b95b5660d2a7ac933e557eec2
GET /wp-content/uploads/2020/10/29.-Vitamins-And-Minerals-Handbook.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:44 GMT
accept-ranges: bytes
content-length: 91998
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/BIO-FUNGUS-NUKER_2.png
154.16.114.64200 OK 17 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/BIO-FUNGUS-NUKER_2.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 1353 x 220, 8-bit/color RGBA, non-interlaced\012- data
Hash e84ccd880a21ae914e585d6c6d0f3968
acd7af3c0be0f9eed00b000deee5933714039a5e
cb8050910cf07d93e11b1a019a2b6f83730e31a27a048f3e3d9116aae6082ca9
GET /wp-content/uploads/2020/11/BIO-FUNGUS-NUKER_2.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Nov 2020 09:36:02 GMT
accept-ranges: bytes
content-length: 16693
content-type: image/png
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/Testimonial-Instagram-Quote-2.png
154.16.114.64200 OK 91 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/Testimonial-Instagram-Quote-2.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 1080 x 1080, 8-bit colormap, non-interlaced\012- data
Hash 96137593658435d55556106487a460ef
acd642d5071a3100f790a95dc5913134445cae58
28501541aa65ddddfcd2a87909ab80fa9aeb27e66f5fd21a300a7f5e4fdab335
GET /wp-content/uploads/2020/10/Testimonial-Instagram-Quote-2.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:07 GMT
accept-ranges: bytes
content-length: 91372
content-type: image/png
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/19-rs.jpg
154.16.114.64200 OK 112 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/19-rs.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:10:23 14:47:20], progressive, precision 8, 650x650, components 3\012- data
Size 112 kB (112289 bytes)
Hash faa98f31f05fefb116853a0a294911b8
0f556ef256ace144517df2597cf4fa3e8106a95f
275e3a03b42aab4217d1f52033cf0993e6f3b94bab37ee6875d45ddd4993b647
GET /wp-content/uploads/2020/10/19-rs.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:22:32 GMT
accept-ranges: bytes
content-length: 112289
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-1.jpg
154.16.114.64200 OK 112 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-1.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Size 112 kB (112102 bytes)
Hash 445d6b54165ce12712a5375abfece8ef
ee4f3723c9b7b33ce0d5d5f8d2b187100d6612f9
7a64b93a68712b42d1f045407fd0d3bb8537b85c55705f4d15a7e8c5dd3659e2
GET /wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-1.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:24 GMT
accept-ranges: bytes
content-length: 112102
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/1-BASIC.jpg
154.16.114.64200 OK 105 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/1-BASIC.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 13:45:59], progressive, precision 8, 267x670, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 24935-21573, spot sensor temperature 0.000000, unit fahrenheit, color scheme 0, calibration: offset 2619437658466756329472.000000, slope 4061723361280.000000\012- data
Size 105 kB (104858 bytes)
Hash 2355ea650107a94df0c7144fba4b3d40
ce7be156916a2dc632a93423e79feca8815ea908
0f680435887c21115d190f5116e0902f950e1726ebfaf3fd3a1674d57d12b02e
GET /wp-content/uploads/2020/11/1-BASIC.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:56 GMT
accept-ranges: bytes
content-length: 104858
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/8r.jpg
154.16.114.64200 OK 143 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/8r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 143 kB (142959 bytes)
Hash dcde181b407e2a4fb76f073117795ef7
d776a33ae438bd23e39f0c2b3186ebf8fc9be87b
b343dddcd88fddb8f3f880190ff0fc8897341c49b2c360481f9de4f15807038a
GET /wp-content/uploads/2020/11/8r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:36 GMT
accept-ranges: bytes
content-length: 142959
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/7r.jpg
154.16.114.64200 OK 110 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/7r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 110 kB (109456 bytes)
Hash e44b3bd5bc837b9df1fd1cb74afdabd5
3f75200138c7b8e48d35ecf3b6618361aa9c8970
b9a0b47a56bbbc597bb6b8135d7281be2109187c03eaffbf96ae8c0aee47b4fa
GET /wp-content/uploads/2020/11/7r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:38 GMT
accept-ranges: bytes
content-length: 109456
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/3-STANDARD.jpg
154.16.114.64200 OK 126 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/3-STANDARD.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 13:46:17], progressive, precision 8, 267x670, components 3\012- data
Size 126 kB (125560 bytes)
Hash c0f4fa670859979e4e547f134faf8d26
59b5bc86311e2a9cfab95bb3b62f56ebf5d9ccc3
576e296fde222c8d182c0651bad7f587c8128eac395d9e7f22536b51279fbe49
GET /wp-content/uploads/2020/11/3-STANDARD.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:04 GMT
accept-ranges: bytes
content-length: 125560
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/18-rs.jpg
154.16.114.64200 OK 122 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/18-rs.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:10:23 14:48:03], progressive, precision 8, 900x600, components 3\012- data
Size 122 kB (121901 bytes)
Hash 65be28f8a079f4436ac5d001d86175ec
385d7e68b60cf6fcbd40e70d367e3516cb6863e0
09f80355d12d6402915eef7f459f3d5d3e4fa27f665c6bf814e0ec0341772bb3
GET /wp-content/uploads/2020/10/18-rs.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:22:36 GMT
accept-ranges: bytes
content-length: 121901
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/6-PREMIUM.jpg
154.16.114.64200 OK 141 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/6-PREMIUM.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 13:45:34], progressive, precision 8, 281x700, components 3\012- data
Size 141 kB (141307 bytes)
Hash 294e82e9127a87607fc2a9d30f35b0d1
50372b3a9ab2d564c7373d099db87f9b07ccd416
81a1064f1dc34852f060c2e2cd570e2778e2a17fa6daabe2f504eb511c007906
GET /wp-content/uploads/2020/11/6-PREMIUM.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:59 GMT
accept-ranges: bytes
content-length: 141307
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/17r.jpg
154.16.114.64200 OK 146 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/17r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 14:14:27], progressive, precision 8, 700x467, components 3\012- data
Size 146 kB (145952 bytes)
Hash 5d5272b0e231020c86a3bcf45c9992b2
f5e8ac389ba65fdc181012499442b458509176a5
8b32015d819957ca6256bfec907393fdba75550a29c144cac4f075250a0b5d77
GET /wp-content/uploads/2020/11/17r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:10 GMT
accept-ranges: bytes
content-length: 145952
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-3.jpg
154.16.114.64200 OK 144 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-3.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Size 144 kB (144017 bytes)
Hash b446714ddbc04171e1e7b30767922365
5f3424525b71e12813a1c1de2083613c60269968
553beb0af1eb98b33eb14cd9dd992729a11faf22a104e31ee967b6a5384dba65
GET /wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-3.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:28 GMT
accept-ranges: bytes
content-length: 144017
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/31-Lazy-Mnas-One-Day-Detox.jpg
154.16.114.64200 OK 84 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/31-Lazy-Mnas-One-Day-Detox.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Hash 708bd423f428c6632e2fec751c1ab8c4
4c4bb3eeb33bbcdc2e23014cc95cd55080a36250
6133f17999c0c1c9c42a30fd998028416232ce0e84ab7cd0c704f0809fc2b55a
GET /wp-content/uploads/2020/10/31-Lazy-Mnas-One-Day-Detox.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:36 GMT
accept-ranges: bytes
content-length: 84102
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/19.-Myco-Nuker-Fungal-Natural-Treatment.png
154.16.114.64200 OK 158 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/19.-Myco-Nuker-Fungal-Natural-Treatment.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 1080 x 1080, 8-bit colormap, non-interlaced\012- data
Size 158 kB (157703 bytes)
Hash 40e7b065f2ab8ab30acf837e07ed89f5
24132b610dcd903dc6fca42b118c60a89824a2d3
039b43040ad92a751498808e72a3e1c91f647748e09c71073276d2e338b55541
GET /wp-content/uploads/2020/10/19.-Myco-Nuker-Fungal-Natural-Treatment.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:25:57 GMT
accept-ranges: bytes
content-length: 157703
content-type: image/png
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/js/themify.script.min.js?ver=5.0.6
154.16.114.64200 OK 1.0 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/js/themify.script.min.js?ver=5.0.6
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (501)
Hash 0b9070926d46b977161ec1a572299ae1
2fb0c7ff7534d73818f29cd22dd9884a8d9db0e3
3612092149ae982f6f94ef5d7af5f4a022dc8efa52eb18d8a382e47b6f76c7a2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/js/themify.script.min.js?ver=5.0.6 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 1001
content-type: application/javascript
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/themify-builder/js/themify.builder.script.min.js?ver=5.0.5
154.16.114.64200 OK 16 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/themify-builder/js/themify.builder.script.min.js?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (551)
Hash 3ca456c7ab74f2d523dca3ff999941ab
8543c902a8ff405d60332d3ad02863e5fb999b2b
3c96378b65d5fb22c3313952dce83f31f18e6c2662989107d0576d66617ba1d3
GET /wp-content/themes/themify-landing/themify/themify-builder/js/themify.builder.script.min.js?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 15697
content-type: application/javascript
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/9r.jpg
154.16.114.64200 OK 161 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/9r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 161 kB (161260 bytes)
Hash fa10f4caa0f4f1cc916f5e9e97e6d043
5f450ea6dee721828826576296baf132935e335d
1b88cf27e086bcee12b7969e39455928acd6254c091836fd210a200b33d56b17
GET /wp-content/uploads/2020/11/9r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:33 GMT
accept-ranges: bytes
content-length: 161260
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/main.min.js?ver=5.0.5
154.16.114.64200 OK 26 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/main.min.js?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (553)
Hash 4f040ddd228d764d433ee31f2fd06868
88b4417a276a08bbb17c02e08c90bfc44179ac07
337f41195e18addb58f14268fbea93376cedcf62dc7f89e73e81177221637a37
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/themify/js/main.min.js?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 26408
content-type: application/javascript
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/uploads/themify-css/concate/themify-mobile-dee6a58368f16c5a779def98678d751a.min.css
154.16.114.64200 OK 6.1 kB URL HTTP/2 www.biofungusnuker.com/wp-content/uploads/themify-css/concate/themify-mobile-dee6a58368f16c5a779def98678d751a.min.css
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (6083)
Hash 9c65ab3d364b34be36f8ff1aaad5688d
e602603e0bcf1d9aa08fd1a40cc046a9dd61af32
c47271831ddb3c92e6a83a18e01c0d0f9a8450852bfa855a0a2a9f2e910edda4
GET /wp-content/uploads/themify-css/concate/themify-mobile-dee6a58368f16c5a779def98678d751a.min.css HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:17:39 GMT
accept-ranges: bytes
content-length: 6100
content-type: text/css
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/media-queries.min.css?ver=5.0.6
154.16.114.64200 OK 4.2 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/media-queries.min.css?ver=5.0.6
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (4202)
Hash 6744c911c6ee2b8940f01439c284a7e4
72f0b106e1efcb4079c699665455901e3265926f
f38b8b8614425e370e4972fa42a7d9fe79cd181d03cbd04b12821f426d35a7ee
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/media-queries.min.css?ver=5.0.6 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:10 GMT
accept-ranges: bytes
content-length: 4203
content-type: text/css
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/10r.jpg
154.16.114.64200 OK 166 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/10r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 600x600, components 3\012- data
Size 166 kB (165871 bytes)
Hash 1c87ab47a38c289997ad53250b2ff537
3b30795949247a558bf650be75d4230cd3774ba9
8bd43efdd39131498a3776f7c708f0025066f4aeed8522070864f4bf7839d8f5
GET /wp-content/uploads/2020/11/10r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:29 GMT
accept-ranges: bytes
content-length: 165871
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/15r.jpg
154.16.114.64200 OK 169 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/15r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 169 kB (168793 bytes)
Hash afeb8ede6d8acbbff45bcd7a3c87eed3
3c57bf4698f0ff51ed0c65984d37030fa27529f0
4525d1ce669ad72055146204530190614a26cc33d867359f21c97ac4a92def12
GET /wp-content/uploads/2020/11/15r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:15 GMT
accept-ranges: bytes
content-length: 168793
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/4r.jpg
154.16.114.64200 OK 175 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/4r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1500, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1000], progressive, precision 8, 600x900, components 3\012- data
Size 175 kB (174896 bytes)
Hash ee5c3a7b3d275bfa83e1b09fc7961fc6
c4138263bdca73d1f01c5ee5f7af8407862d87ca
308d9e3a68f8572302745735e22b29b13d8eba5ff0fbfadb878ba52f58010c19
GET /wp-content/uploads/2020/11/4r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:41 GMT
accept-ranges: bytes
content-length: 174896
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/16r.jpg
154.16.114.64200 OK 194 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/16r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 194 kB (194250 bytes)
Hash 67840ca9c5d981ce5054ca2547e8f875
0390830f7e0f2a51682102b78559a9160f94fb1d
b67cd2b10f7e9875d9387ab500702b1c1e25eadc66de2c75d3c30d212a856912
GET /wp-content/uploads/2020/11/16r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:12 GMT
accept-ranges: bytes
content-length: 194250
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/13r.jpg
154.16.114.64200 OK 194 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/13r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 194 kB (194426 bytes)
Hash 1d24ebcf92fe37e9082c03c2b31e1df0
6107c9cd2b2a269594ce759119ab0ac99e48d42e
6ba149bf6cc9117c8318d71338eb2b5ad9c94f48d894be2828a11608bc78330c
GET /wp-content/uploads/2020/11/13r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:21 GMT
accept-ranges: bytes
content-length: 194426
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/23r.jpg
154.16.114.64200 OK 205 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/23r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 205 kB (204851 bytes)
Hash a8f904dc77916235b57c70f369b2bb6a
541bfb55b58b748d592237520ec28b498df34580
2de640b4f2f06b32e8c4460538f3dcd057048712b1c4b3f5ec83456982bccfae
GET /wp-content/uploads/2020/11/23r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:54 GMT
accept-ranges: bytes
content-length: 204851
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/12r.jpg
154.16.114.64200 OK 206 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/12r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 206 kB (206418 bytes)
Hash 92861fa27a5685911446a022714d8ed0
81cd10ba9efaffc9d7e1e64c65af7d1473eb23c2
36bf0cd7ed9a85f23eb9c33147c7a8e304a1ede7373d310c3f70d59143dc0b26
GET /wp-content/uploads/2020/11/12r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:24 GMT
accept-ranges: bytes
content-length: 206418
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/24r.jpg
154.16.114.64200 OK 217 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/24r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 217 kB (217054 bytes)
Hash 77a624de1388541bdeb2a7ee2a8c0647
cc19a2a80d2498e325615bf9e4790f5a51d3ca3c
dd1dadcc668260627fa4446b9ed6047627132da7572ee75d29a7b10553b72502
GET /wp-content/uploads/2020/11/24r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:51 GMT
accept-ranges: bytes
content-length: 217054
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/14r.jpg
154.16.114.64200 OK 247 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/14r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 30050-16495, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 17875471468176858939392.000000, slope 75530841815994297227822967554048.000000\012- data
Size 247 kB (246645 bytes)
Hash 48c6967c890da1ab223f9a9d41b9bee9
35ac259c50008332f6c5b122546781dedc8ad029
06efc01636d9cbe89852bc48454b8d3bc8061dc69d0ace4aae812b5a68e6a9dd
GET /wp-content/uploads/2020/11/14r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:18 GMT
accept-ranges: bytes
content-length: 246645
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/5-rsToenail-Fungus-Transformation.jpg
154.16.114.64200 OK 284 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/5-rsToenail-Fungus-Transformation.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:10:23 14:56:22], progressive, precision 8, 900x900, components 3\012- data
Size 284 kB (284033 bytes)
Hash afff2562975f976e996acab16f1ef233
0f0b12eb817258085dd9bf2b0ab48036168aa581
80047c21c9c6ffb89abff2a12550e1d8cb67d1370df3d3e780a16f97cba77f4b
GET /wp-content/uploads/2020/10/5-rsToenail-Fungus-Transformation.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:23:14 GMT
accept-ranges: bytes
content-length: 284033
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/To-get-from-this-2-scaled.jpg
154.16.114.64200 OK 115 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/To-get-from-this-2-scaled.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 2560x1707, components 3\012- data
Size 115 kB (114763 bytes)
Hash 8477f3a80322520148723e00f2c58463
717e7275df536587b767560785e5f4433fa30118
d7876ba55c7b43bafbb74da2258a2fdc2cdbbb7cab83f9377c096670b6063e1e
GET /wp-content/uploads/2020/10/To-get-from-this-2-scaled.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:57 GMT
accept-ranges: bytes
content-length: 114763
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/Myco-Nuker-label.jpg
154.16.114.64200 OK 775 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/Myco-Nuker-label.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=675, bps=0, PhotometricIntepretation=CMYK, orientation=upper-left, width=1620], baseline, precision 8, 700x292, components 4\012- data
Size 775 kB (775000 bytes)
Hash 229c89df816b15531898ac6871bd7dbc
fdc27b5c9656642bda4c2838a39d393016b4d825
0fd52035dfea573b25022e5afd69753d820574f06638ffa5943fa35e5fc815e1
GET /wp-content/uploads/2020/11/Myco-Nuker-label.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 13:52:41 GMT
accept-ranges: bytes
content-length: 775000
content-type: image/jpeg
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/32.-Fungus-Transformation-Myco-Nuker-1.png
154.16.114.64200 OK 3.0 MB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/32.-Fungus-Transformation-Myco-Nuker-1.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 5760 x 3000, 8-bit colormap, non-interlaced\012- data
Size 3.0 MB (2964360 bytes)
Hash 69c409c5bab0cc632d961368ca75ed3f
82f4f2817f4a30aa14d867ca1d2c5dde267c55a9
10e6c091e39402c70bac1d6b7cd82db1e1c771ef90f14886fc09f5d68eac8c55
GET /wp-content/uploads/2020/10/32.-Fungus-Transformation-Myco-Nuker-1.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:03 GMT
accept-ranges: bytes
content-length: 2964360
content-type: image/png
date: Wed, 07 Sep 2022 02:47:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/css/animate.min.css?ver=3.6.2
154.16.114.64200 OK 13 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/css/animate.min.css?ver=3.6.2
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (12838)
Hash 2691132c46dca8f1d65babd2fc8358ae
6ce52079fbd16ad1531ff93cbfa1d7eb32781ba2
9db57198bf6002de2c513968733286b6678a70645bc7c7770224a2c60490e272
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/themify/css/animate.min.css?ver=3.6.2 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 12852
content-type: text/css
date: Wed, 07 Sep 2022 02:47:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/jquery.imagesloaded.min.js?ver=4.1.4
154.16.114.64200 OK 3.9 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/jquery.imagesloaded.min.js?ver=4.1.4
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (3921)
Hash 1f323646e6ff48c37944512d867f49c9
27415be1e46996bd850ba10d193d44feb4f81a69
eb0045ba455512d20b72d4a2148abc8c75f3088ca96bcfeadff4a1b56eacbeab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/themify/js/modules/jquery.imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 3932
content-type: application/javascript
date: Wed, 07 Sep 2022 02:47:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/tf_wow.min.js?ver=5.0.5
154.16.114.64200 OK 2.1 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/tf_wow.min.js?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (533)
Hash 278c3a0b9f48985031858bd14f855519
2502887ebb26f397ad1152db01f00dc43677b32a
ad7c531720b78898150aacbcef72addf69bbd59ccef4eb718397290294b2f5c3
GET /wp-content/themes/themify-landing/themify/js/modules/tf_wow.min.js?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220907024616056&subid=466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 2110
content-type: application/javascript
date: Wed, 07 Sep 2022 02:47:14 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb53024bbd41c1d8f88fa7b9becb704a
c87f5ac53cff6e3436c15551f8092f1e0215cb79
f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb53024bbd41c1d8f88fa7b9becb704a
c87f5ac53cff6e3436c15551f8092f1e0215cb79
f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2
142.250.74.163200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 17908, version 1.0\012- data
Hash e46b4e2e3b47cc232937ebf72b4c537e
2675bc06ee643b8c935370325a327efb74746e6a
d8543b5dcaea1fc4a0301dc12b5b2adc9079e0794dd6a45879588fb844f3438e
GET /s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.biofungusnuker.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 21:38:35 GMT
expires: Tue, 05 Sep 2023 21:38:35 GMT
cache-control: public, max-age=31536000
age: 104919
last-modified: Mon, 18 Jul 2022 19:23:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb53024bbd41c1d8f88fa7b9becb704a
c87f5ac53cff6e3436c15551f8092f1e0215cb79
f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-NWVJ02QJDT>m=2oe8v0&_p=1036064744&cid=910781809.1662518828&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662518827&sct=1&seg=0&dl=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220907024616056%26subid%3D466&dt=Eradicate%20Fungus%20%7C%20BIO%20Fungus%20Nuker&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-NWVJ02QJDT>m=2oe8v0&_p=1036064744&cid=910781809.1662518828&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662518827&sct=1&seg=0&dl=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220907024616056%26subid%3D466&dt=Eradicate%20Fungus%20%7C%20BIO%20Fungus%20Nuker&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-NWVJ02QJDT>m=2oe8v0&_p=1036064744&cid=910781809.1662518828&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662518827&sct=1&seg=0&dl=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220907024616056%26subid%3D466&dt=Eradicate%20Fungus%20%7C%20BIO%20Fungus%20Nuker&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.biofungusnuker.com
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.biofungusnuker.com
date: Wed, 07 Sep 2022 02:47:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fe058051aba70bd265b1d84e8a333722
52f91ffbb1e74407e8df90e2f08d4f9c85c62aec
c65c8c68fb49feb53036e0693eb4fb22cadba9202ffe28ad6d2a9d2463fd5e31
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 02:47:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
biofungusnuker.com/wp-content/uploads/2020/10/Myco-nuker_St.png
154.16.114.64200 OK 1.2 MB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/Myco-nuker_St.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 3000 x 3000, 8-bit colormap, non-interlaced\012- data
Size 1.2 MB (1157453 bytes)
Hash bcab79483fb09770c6956d1f626a44cd
07c874ded33c2cadaebe0e2f136f028051998c9b
cd33005bef59a3c2c13318f2db5cf691ece5f6a0b5d9cf7a8491150fae4c061f
GET /wp-content/uploads/2020/10/Myco-nuker_St.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662518827.1.0.1662518827.0.0.0; _ga=GA1.1.910781809.1662518828
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:29:02 GMT
accept-ranges: bytes
content-length: 1157453
content-type: image/png
date: Wed, 07 Sep 2022 02:47:14 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4f29d8aaae2d67c27c58001e7553dea7
5200b601017ce86614783b76fd2a775c1c48d4e9
6b55c4d692cf584e0319b07251d9845749fe8954062dab66e003dd2706451504
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4805
x-amzn-requestid: 6db42fa4-5a04-4368-b5cb-ea8f70d83ead
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XmxSRFp7oAMFb3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c2f41-1df42bd2265554de5f47932e;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 03:15:13 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KQ1yb69_uETJJlEIcwsR165zqZuiklGuj3Nn-tyta0e_q8BGqs3cXg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:51:24 GMT
age: 17756
etag: "5200b601017ce86614783b76fd2a775c1c48d4e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=6213
172.66.40.141200 OK 0 B URL HTTP/2 display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=6213
IP 172.66.40.141:0
GET /v1/disclaimer?id=disclaimer&account_id=6213 HTTP/1.1
Host: display.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 02:47:13 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
strict-transport-security: max-age=31536000;
set-cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 746c1e553e73b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tracking.buygoods.com/track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6&caller_url=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220907024616056%26subid%3D466
172.66.40.234200 OK 0 B URL HTTP/2 tracking.buygoods.com/track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6&caller_url=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220907024616056%26subid%3D466
IP 172.66.40.234:0
GET /track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6&caller_url=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220907024616056%26subid%3D466 HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Sep 2022 02:47:15 GMT
content-type: application/javascript
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
set-cookie: spiaffid_6344=15; expires=Tue, 06-Dec-2022 02:47:14 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisubid_6344=466%7C6383_sessid20220907024616056; expires=Tue, 06-Dec-2022 02:47:14 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spicampaign_id_6344=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_6344=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_6344=91.90.42.154::www.biofungusnuker.com; expires=Tue, 06-Dec-2022 02:47:14 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisessid2_6344=sessid20220907024736755; expires=Tue, 06-Dec-2022 02:47:14 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spi_funnel_codename_6344=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 746c1e5a5d47b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
go.maxweb.com/conversion/iframe/?a=6383&token=2ac0eb6f6c02b0fd4b48d31cd94f8f35
172.66.40.143200 OK 0 B URL HTTP/2 go.maxweb.com/conversion/iframe/?a=6383&token=2ac0eb6f6c02b0fd4b48d31cd94f8f35
IP 172.66.40.143:0
GET /conversion/iframe/?a=6383&token=2ac0eb6f6c02b0fd4b48d31cd94f8f35 HTTP/1.1
Host: go.maxweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 02:47:13 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Wed, 07 Sep 2022 03:47:13 GMT
cache-control: max-age=3600, private
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 746c1e561d351c02-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald:400,700%7CCrimson+Text:700i,400,700,400i&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald:400,700%7CCrimson+Text:700i,400,700,400i&display=swap
IP 142.250.74.10:0
GET /css?family=Oswald:400,700%7CCrimson+Text:700i,400,700,400i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Sep 2022 02:47:13 GMT
date: Wed, 07 Sep 2022 02:47:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tracking.buygoods.com/track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6
172.66.40.234200 OK 0 B URL HTTP/2 tracking.buygoods.com/track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6
IP 172.66.40.234:0
GET /track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6 HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Sep 2022 02:47:14 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 746c1e560b0fb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2