| go.goodlifestylenews.com/ | 172.67.172.49 | | 143 B |
URL go.goodlifestylenews.com/ IP172.67.172.49:0
File typeHTML document, ASCII text Hashf1fb042c62910c34be16ad91cbbd71fa 5bc7aceba9a8704ef4b1d427d7d08b140afcd866 9278d16ed2fdcd5dc651615b0b8adc6b55fb667a9d106a9891b861d4561d9a24
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: go.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 11 May 2024 01:18:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 14 Nov 2023 15:41:05 GMT
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Vary: Accept-Encoding,User-Agent
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IVcoklCZSPuqmjThi%2BCp6K3QXUivyAwAneBZLNzsNSxX2FbK81ssY%2F1%2BmTldFWVD9ae0Wh48ugZj7mewHVtYE1X61Pyqe8IP0UiwkFGMUbnjpUADqU8GuVhZjt1UuLMmX0Fgchp2nVWuxR8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 881e55213a31b52d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 | 172.67.172.49 | 200 OK | 7.7 kB |
URL User Request GET HTTP/1.1subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 IP172.67.172.49:80
File typeHTML document, Unicode text, UTF-8 text, with very long lines (393) Hash32902537ecd190a226fe7510d386d08d a29eedc564419ce428d51c4779f88cc54c9704b5 1b64833a86a08bee307287a235ed4d88456bcd017f7129342e743a4fe0e7b69e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 HTTP/1.1
Host: subscribe.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=cc9a7d74fec3b6f0a692eedddc72cc92
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 11 May 2024 01:18:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST
Access-Control-Allow-Headers: X-Requested-With
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FhZUVx6tAqi9yu6XOMalvRPreo1XH3s6S84aaLHuDw7evRb5AQ9PvLPB5yU84okMpHecY3xzg0gFnASb4hAdh%2BCOJWoDUK%2B2BQlXsBUEiLiXLohle76VJvNTGqQbN8gIWerb1mbgmG9gRJavs0qxlQwr"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 881e552559ecb509-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| subscribe.goodlifestylenews.com/jquery.caret.js | 172.67.172.49 | 200 OK | 716 B |
URL GET HTTP/1.1subscribe.goodlifestylenews.com/jquery.caret.js IP172.67.172.49:80
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21
File typeJavaScript source, ASCII text, with CRLF line terminators Hash35c3ec8db4ff6e862db42516436216a1 7d9d7731403868cc34edaad1d9e17311541a6f77 adef482d97f599ba0e720ecf2aba0581ea1591ba1bb1eb271f1d98b279ff81ba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jquery.caret.js HTTP/1.1
Host: subscribe.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21
Cookie: PHPSESSID=cc9a7d74fec3b6f0a692eedddc72cc92
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 11 May 2024 01:18:02 GMT
Content-Type: application/javascript
Content-Length: 716
Connection: keep-alive
Last-Modified: Tue, 21 Feb 2023 09:39:45 GMT
Cache-Control: max-age=2592000
Expires: Mon, 10 Jun 2024 01:17:49 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 12
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RxasXG3ZF2bR8ullJEWSUk%2BmegOMt9TFnebKkoS%2FHVrlICSjFMEJXGCq5gTwbBOQg0iGVHhCk4KNevAPUw4E4EfOZndVjrqc%2FxYSuQD95iQO95XnY5ORWuGP0GXX1wtnVluJfe6oavUZLWxFhw93%2BDUT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 881e552eaeb5b509-OSL
alt-svc: h2=":443"; ma=60
|
|
| subscribe.goodlifestylenews.com/jquery.mobilePhoneNumber.js | 104.21.30.61 | 200 OK | 4.4 kB |
URL GET HTTP/1.1subscribe.goodlifestylenews.com/jquery.mobilePhoneNumber.js IP104.21.30.61:80
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21
File typeJavaScript source, ASCII text Hash0dbbb5873b895ea3be425af219cf85de 7b9dba563376d7dbd1c5b9b7064ab87eadad5591 02cbbdeb2244fd2855c49ab964c15001bde126c21cc5890d176c537878d6152b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jquery.mobilePhoneNumber.js HTTP/1.1
Host: subscribe.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21
Cookie: PHPSESSID=cc9a7d74fec3b6f0a692eedddc72cc92
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 11 May 2024 01:18:02 GMT
Content-Type: application/javascript
Content-Length: 4430
Connection: keep-alive
Last-Modified: Tue, 21 Feb 2023 09:39:45 GMT
Cache-Control: max-age=2592000
Expires: Fri, 31 May 2024 00:22:16 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 867346
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gE3Q9yIpNGYnoU023hraKS9l5Ayh4DjKeT6eeeY1cxBAy3r%2Fq0zWIC1oHhwyTTbDhlbmuQ2A9GYz9INVpGD9F0x9n3%2BpRN8qZYlK%2F3CWWLaPIoyngMAtAaDDXfoq4Mtd%2FQsE7q827veLjo7uoQOvgYnC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 881e552eb9660afe-OSL
alt-svc: h2=":443"; ma=60
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.2.2/dist/css/bootstrap.min.css | 151.101.65.229 | 200 OK | 30 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.2.2/dist/css/bootstrap.min.css IP151.101.65.229:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeUnicode text, UTF-8 text, with very long lines (65305) Hash025df1ec88740cad5ff14bb3380da6dd 7abed070e37ce060c0a561575f1d41a7f248fc74 2143941c03dacda8b4f1016ced6e0c6f34e5c04585a3bcffe33c3c626c448a4a
GET /npm/bootstrap@5.2.2/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://subscribe.goodlifestylenews.com
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.2.2
x-jsd-version-type: version
etag: W/"2f955-er7QcON84GDApWFXXx1Bp/JI/HQ"
content-encoding: br
accept-ranges: bytes
date: Sat, 11 May 2024 01:18:02 GMT
age: 22035855
x-served-by: cache-fra-eddf8230072-FRA, cache-hel1410033-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 30336
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.2.2/dist/js/bootstrap.min.js | 151.101.65.229 | 200 OK | 17 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.2.2/dist/js/bootstrap.min.js IP151.101.65.229:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (60201) Hashc5236e5d6a5d0ff97ff8c8e5102c6c03 6fbfdbddbe85c578de559adcc8d07cccbc16d514 87538c4b7e488f5a49d12f98d6a04afc61d00f26a790f319569799acd434eb65
GET /npm/bootstrap@5.2.2/dist/js/bootstrap.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://subscribe.goodlifestylenews.com
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.2.2
x-jsd-version-type: version
etag: W/"ec40-b7/b3b6FxXjeVZrcyNB8zLwW1RQ"
content-encoding: br
accept-ranges: bytes
date: Sat, 11 May 2024 01:18:02 GMT
age: 3023244
x-served-by: cache-fra-etou8220032-FRA, cache-hel1410033-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 17366
X-Firefox-Spdy: h2
|
|
| subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17 | 172.67.172.49 | 302 Found | 32 kB |
URL User Request GET HTTP/3subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17 IP172.67.172.49:443
CertificateIssuerGoogle Trust Services LLC Subjectgoodlifestylenews.com FingerprintCF:D4:62:67:0B:FC:CB:36:EF:53:02:EB:06:FE:15:35:2F:53:53:40 ValidityThu, 21 Mar 2024 14:09:53 GMT - Wed, 19 Jun 2024 14:09:52 GMT
Hashd87090b21db5370e37dac762b0b1114a f156833fcf50c19dcfa12bb88a830120f5f2759d 03c550852ab95167f4b3fdbecd814a07f4bf8f1871f54cc09f987c3b3a9f5f13
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17 HTTP/1.1
Host: subscribe.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 11 May 2024 01:18:00 GMT
content-type: text/html; charset=UTF-8
location: https://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=cc9a7d74fec3b6f0a692eedddc72cc92; path=/
vary: Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mn3%2BnwbjcP5tovTrseoQ9v8ivAE728zZr7G3189JgqPCy26TsP5XYXL1BYNmWo8dkLJGI8edS1YIJgQMggB9G3%2ByHSaVBVN2p44vvWIJNbChVWs4GFrPLV4TCRwXdFKA8dhZrQJpYdq8wVN4w1co3f5f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881e5518cbe67127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js | 142.250.74.42 | 200 OK | 33 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js IP142.250.74.42:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (32086) Hash8101d596b2b8fa35fe3a634ea342d7c3 d6c1f41972de07b09bfa63d2e50f9ab41ec372bd 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441
GET /ajax/libs/jquery/1.11.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33434
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 May 2024 09:25:34 GMT
expires: Mon, 05 May 2025 09:25:34 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 489148
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-WJJ5P9F2X8 | 142.250.74.168 | 200 OK | 102 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-WJJ5P9F2X8 IP142.250.74.168:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size102 kB (102254 bytes) Hash2dda28e5489b59df7212807bba4abd71 2a5d2d5de37fd46f41590d16597ce42fc3431894 b24f06f67ebabba453dc21ca271a5d69bb11c42afb5380c5638d8adb501935e5
GET /gtag/js?id=G-WJJ5P9F2X8 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 11 May 2024 01:18:02 GMT
expires: Sat, 11 May 2024 01:18:02 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 102254
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| verifiedsecure.org/uploads/0.442373001673954581K_Sa3Nyg.png | 104.26.8.206 | 200 OK | 251 B |
URL GET HTTP/2verifiedsecure.org/uploads/0.442373001673954581K_Sa3Nyg.png IP104.26.8.206:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerGoogle Trust Services LLC Subjectverifiedsecure.org FingerprintA0:39:56:47:2D:24:66:40:29:81:A2:DA:5B:19:04:77:07:A6:BA:B3 ValidityThu, 04 Apr 2024 23:26:29 GMT - Wed, 03 Jul 2024 23:26:28 GMT
File typeHTML document, ASCII text Hash73816d82cca56c187674258ec5b7bd5a cd989502a8b941226bb7e5ddc0ff0b62621e701f cc2b540f494c9f0eb7c7f31880eec48518729e92ffa9e7081eb70193baa985a5
GET /uploads/0.442373001673954581K_Sa3Nyg.png HTTP/1.1
Host: verifiedsecure.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Sat, 11 May 2024 01:18:02 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://verifiedsecure.org/uploads/0.442373001673954581K_Sa3Nyg.png
Cache-Control: max-age=14400
Expires: Sat, 11 May 2024 01:27:49 GMT
CF-Cache-Status: HIT
Age: 11
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v6SzbmT7vEO27Fu0ur8CV6bY6pi5IsVUtqUWIZ50AnzDL7%2FA5E%2BtyqHaDXLeNWfZktOv%2FcsagHlD9Su8hmszRwea62pXsHXBUue0HSr9YRkL6%2FCMjlsL4OLJFI6uUMu4ud14Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 881e552fffb6b51d-OSL
alt-svc: h2=":443"; ma=60
|
|
| subscriberwelcome.com/uploads/0.4350600016769076711fa4a4d9-a4f8-451c-8bdc-8c541c15cb77.jpg | 172.67.155.79 | 200 OK | 144 kB |
URL GET HTTP/2subscriberwelcome.com/uploads/0.4350600016769076711fa4a4d9-a4f8-451c-8bdc-8c541c15cb77.jpg IP172.67.155.79:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerGoogle Trust Services LLC Subjectsubscriberwelcome.com FingerprintC8:3F:88:99:86:9B:20:E9:77:44:04:5F:4D:C8:B8:D2:23:5F:C5:D2 ValidityMon, 06 May 2024 01:45:00 GMT - Sun, 04 Aug 2024 01:44:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 966x1449, components 3 Size144 kB (144253 bytes) Hashe7eb0da863b2d3ead5846cdc3263a233 138225ea3d8ff08f07b046b858bf46bf2bba2e96 ff19a64983ac2748d6b8361212f1fc41814e1acd0d157ee9c736bbd2a4a03180
GET /uploads/0.4350600016769076711fa4a4d9-a4f8-451c-8bdc-8c541c15cb77.jpg HTTP/1.1
Host: subscriberwelcome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 01:18:02 GMT
content-type: image/jpeg
content-length: 144253
last-modified: Mon, 20 Feb 2023 15:41:11 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 18
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t18iRV4WTM7xso5UAXUVdfjbbXN24SjZm04aZegYricm3oD59BjI8FNfGNnB74teMDodDL3f2gi5ahk7JpuZ0MB86u2DN7CB52vCDIQMKSXJuuLjrGNP47vwfZgJWZ3M6%2BoopHXyPYU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881e553058a2b4f4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| subscriberwelcome.com/uploads/0.204734001673521892LifeAfterUkraine.jpeg | 172.67.155.79 | 200 OK | 400 kB |
URL GET HTTP/2subscriberwelcome.com/uploads/0.204734001673521892LifeAfterUkraine.jpeg IP172.67.155.79:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerGoogle Trust Services LLC Subjectsubscriberwelcome.com FingerprintC8:3F:88:99:86:9B:20:E9:77:44:04:5F:4D:C8:B8:D2:23:5F:C5:D2 ValidityMon, 06 May 2024 01:45:00 GMT - Sun, 04 Aug 2024 01:44:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2550x3300, components 3 Size400 kB (400505 bytes) Hashb9a9621a927a5b9a9c71fdbb53bf8991 9c4cc398edb33da6a79e62701867cbf7fed4056d d0342e1b39e1c9b80bfb574b18e0a5d9f9cf00e00ca7cf3b2ce1ded70f3bb9ab
GET /uploads/0.204734001673521892LifeAfterUkraine.jpeg HTTP/1.1
Host: subscriberwelcome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 01:18:02 GMT
content-type: image/jpeg
content-length: 400505
last-modified: Thu, 12 Jan 2023 11:11:32 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 18
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F4OGABqL6ywTw68QWp%2BhxOJ%2BoF%2BX2UJ9x0BT7NMxwaRudM3LBZb9xsrTQunWEAX2IgSnPaYuIRRRgdpsbZynfnAnTcNrzFKoreDCXFT3%2F3gIClOtryDOMvVgh%2BAtYL2HCxG8GWjRt9U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881e553098bcb4f4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| subscriberwelcome.com/uploads/0.1721950016738853872D1(1).jpg | 172.67.155.79 | 200 OK | 1.3 MB |
URL GET HTTP/2subscriberwelcome.com/uploads/0.1721950016738853872D1(1).jpg IP172.67.155.79:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerGoogle Trust Services LLC Subjectsubscriberwelcome.com FingerprintC8:3F:88:99:86:9B:20:E9:77:44:04:5F:4D:C8:B8:D2:23:5F:C5:D2 ValidityMon, 06 May 2024 01:45:00 GMT - Sun, 04 Aug 2024 01:44:59 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.0 (Windows), datetime=2023:01:07 00:05:06], baseline, precision 8, 1800x2700, components 3 Size1.3 MB (1288007 bytes) Hash91e68c3d20f4e55b01fdbaa834b4e4e6 e54e4ea7f042d2124aa1be976a6fe9d708bb4f9f 3cab775e25b68c23b905d547373476f046b0101e7cfdbd6f016e302f5a429988
GET /uploads/0.1721950016738853872D1(1).jpg HTTP/1.1
Host: subscriberwelcome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 01:18:02 GMT
content-type: image/jpeg
content-length: 1288007
last-modified: Mon, 16 Jan 2023 16:09:47 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 18
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dz1cUQopvR9K3UgjCrRUfnHTVMoI6itCtlvFljg%2F1VeZpAeVR0SwmHf04dqQTbQ%2BpE4UgxaTGMe3e6RfcpV95LN%2BMipLHjbQDObj3G1hs%2B3WwgYFTpmEVUZmO3%2FwwZ6O0G%2FtE%2BQ4fiA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881e553058a1b4f4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto | 142.250.74.106 | 200 OK | 1.0 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto IP142.250.74.106:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hash866b86afb892aa8437b7fb9e55097fd8 5e15e2791b1b45c452f3bce8329e77714b64c772 f8be259deec2532850cfc77cb792b3746e61c0d1d89c4cd48e55dcf4185d347d
GET /css?family=Roboto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 11 May 2024 01:18:02 GMT
date: Sat, 11 May 2024 01:18:02 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| subscriberwelcome.com/uploads/0.1663680016738854302D2(1).jpg | 172.67.155.79 | 200 OK | 1.1 MB |
URL GET HTTP/2subscriberwelcome.com/uploads/0.1663680016738854302D2(1).jpg IP172.67.155.79:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerGoogle Trust Services LLC Subjectsubscriberwelcome.com FingerprintC8:3F:88:99:86:9B:20:E9:77:44:04:5F:4D:C8:B8:D2:23:5F:C5:D2 ValidityMon, 06 May 2024 01:45:00 GMT - Sun, 04 Aug 2024 01:44:59 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.0 (Windows), datetime=2023:01:10 16:36:41], baseline, precision 8, 1800x2700, components 3 Size1.1 MB (1114284 bytes) Hashb02e84cdcd5a3e55ded5e64dfd307124 bfaad4b8b4b1b1fafffeda314b8868c94e7280c8 d67985993c18e2a7b22a4193c0613a65096b3376d64539feb646739798d2cf5c
GET /uploads/0.1663680016738854302D2(1).jpg HTTP/1.1
Host: subscriberwelcome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 01:18:02 GMT
content-type: image/jpeg
content-length: 1114284
last-modified: Mon, 16 Jan 2023 16:10:30 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 18
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z0SZF%2BF0nB0UqhVSXuAsNEppR0TrqsmqvAL4QTBFhXW0J7FmPTxl11jDu%2FUxj5vzqNbKbuhZqCXGI%2FjiPjoe9haKN4bk%2BwIcmK92GBLA2oheHmX1dDV6nUSsm7tOPwFBrsCeUqV6I10%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881e553058a7b4f4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| verifiedsecure.org/uploads/0.442373001673954581K_Sa3Nyg.png | 104.26.8.206 | 200 OK | 36 kB |
URL GET HTTP/2verifiedsecure.org/uploads/0.442373001673954581K_Sa3Nyg.png IP104.26.8.206:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerGoogle Trust Services LLC Subjectverifiedsecure.org FingerprintA0:39:56:47:2D:24:66:40:29:81:A2:DA:5B:19:04:77:07:A6:BA:B3 ValidityThu, 04 Apr 2024 23:26:29 GMT - Wed, 03 Jul 2024 23:26:28 GMT
File typePNG image data, 3369 x 257, 8-bit/color RGBA, non-interlaced Hash724c1e2ab214eefe0271ee598af8749a b99bb085dd791488b061c423223318345c590f24 bba2a6dbda4e6833f68c21d84c0f9a09180ae9595b238c982da300cf448ab78c
GET /uploads/0.442373001673954581K_Sa3Nyg.png HTTP/1.1
Host: verifiedsecure.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://subscribe.goodlifestylenews.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 01:18:02 GMT
content-type: image/png
content-length: 35781
last-modified: Tue, 17 Jan 2023 11:23:01 GMT
cache-control: max-age=2592000
expires: Mon, 10 Jun 2024 01:17:44 GMT
cf-cache-status: HIT
age: 17
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BOxxOWEDvQPX3roApNxLMvXEgknISklTzeDuO8qtnXaqn3F5Vz6obxoA8%2BPxLvYKJQbymAxZ6sYN7mVHQSBRCkrZQR6IkpaSdhLkfEqPRJNFVQwCEOie6qZkFsmTQpsmPlENxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881e5533485d56a8-OSL
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://subscribe.goodlifestylenews.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 575365
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| s3.us-east-1.amazonaws.com/autonewsuploads/Dog.jpg373f79dd8e889828c567164a9976eb5e1708518205a9047877ce8a792924271d491c1cfade | 52.216.30.94 | 200 OK | 5.7 kB |
URL GET HTTP/1.1s3.us-east-1.amazonaws.com/autonewsuploads/Dog.jpg373f79dd8e889828c567164a9976eb5e1708518205a9047877ce8a792924271d491c1cfade IP52.216.30.94:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerAmazon Subjects3.amazonaws.com Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 251x201, components 3 Hash1b14261d5910dd6d2c053f471cefbdc8 4c038b7b23227f71ce6de90ea5e23816b27e61d0 1440670bad97bfdb121adc3e25fe1125a8a037879dc27fbbc17889c3fbac8911
GET /autonewsuploads/Dog.jpg373f79dd8e889828c567164a9976eb5e1708518205a9047877ce8a792924271d491c1cfade HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: dOwv6HNPHjwnxXQRKTZ6FxZIF6l27sSe00KIEqWWgA+Cynk+n/9Xcu+nv+XgOxo0dk+/A8HS9CY=
x-amz-request-id: 88360XY4CVP3F3S1
Date: Sat, 11 May 2024 01:18:03 GMT
Last-Modified: Wed, 21 Feb 2024 12:23:27 GMT
ETag: "1b14261d5910dd6d2c053f471cefbdc8"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 5706
|
|
| s3.us-east-1.amazonaws.com/autonewsuploads/ETakeOverVSL03241.jpg7a887b2a6b36cb6e24e3c0470d5db8b5171076417718420dd7c15c8c09f7e5ddcfa507ceb0 | 52.216.30.94 | 200 OK | 114 kB |
URL GET HTTP/1.1s3.us-east-1.amazonaws.com/autonewsuploads/ETakeOverVSL03241.jpg7a887b2a6b36cb6e24e3c0470d5db8b5171076417718420dd7c15c8c09f7e5ddcfa507ceb0 IP52.216.30.94:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerAmazon Subjects3.amazonaws.com Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=2], baseline, precision 8, 1024x683, components 3 Size114 kB (114051 bytes) Hashcb0f0fd1b6b7280d78ee706cf402338b d76f624b5302d28b47e310e47745347f31a00d91 77ed40a47bb2bb4be0588c71c877968401ed449a1e1c4aa85b8dd9a2203c8163
GET /autonewsuploads/ETakeOverVSL03241.jpg7a887b2a6b36cb6e24e3c0470d5db8b5171076417718420dd7c15c8c09f7e5ddcfa507ceb0 HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: XoWlmVew8kTNPmEnGmkGF/yDQAxeH0D5utfWbMWdgSX9Xrw53axzjQuCKHCxubGByH5R3BME6ks=
x-amz-request-id: 883CESRR8MQG1GF1
Date: Sat, 11 May 2024 01:18:03 GMT
Last-Modified: Mon, 18 Mar 2024 12:16:19 GMT
ETag: "cb0f0fd1b6b7280d78ee706cf402338b"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 114051
|
|
| s3.us-east-1.amazonaws.com/autonewsuploads/brain.jpg9d9229a2bf51f9d8a0adbdd30bd79b2d17141297609ec026998eb164a87c6d588761732ec1 | 52.216.30.94 | 200 OK | 131 kB |
URL GET HTTP/1.1s3.us-east-1.amazonaws.com/autonewsuploads/brain.jpg9d9229a2bf51f9d8a0adbdd30bd79b2d17141297609ec026998eb164a87c6d588761732ec1 IP52.216.30.94:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerAmazon Subjects3.amazonaws.com Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x800, components 3 Size131 kB (131373 bytes) Hash4202bcc818bc37c8109abbc2d88a292c 0a648b5d892c119527aef492c864c7e1f9bf4b72 4b0ddaba2103853ea42cd2b2f4f78008c0ac890c91d5767dd8c045d37a469c78
GET /autonewsuploads/brain.jpg9d9229a2bf51f9d8a0adbdd30bd79b2d17141297609ec026998eb164a87c6d588761732ec1 HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: jMYNjgtAC2LHyTzw1rrryzPrRfUwkVIOpyEpV2qR0RilxrRDWwnuI/Qq2BbcqbpSlAP6fT1ceG0=
x-amz-request-id: 8831FBV05QE5J4FM
Date: Sat, 11 May 2024 01:18:03 GMT
Last-Modified: Fri, 26 Apr 2024 11:09:22 GMT
ETag: "4202bcc818bc37c8109abbc2d88a292c"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 131373
|
|
| s3.us-east-1.amazonaws.com/autonewsuploads/oil%20stockkk.jpg0f79d7c6521fdc129b15c3b9aa1c3496168441041164a5612a54233b64b4245e271fc79d2c | 52.216.30.94 | 200 OK | 204 kB |
URL GET HTTP/1.1s3.us-east-1.amazonaws.com/autonewsuploads/oil%20stockkk.jpg0f79d7c6521fdc129b15c3b9aa1c3496168441041164a5612a54233b64b4245e271fc79d2c IP52.216.30.94:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerAmazon Subjects3.amazonaws.com Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 1406x874, components 3 Size204 kB (203815 bytes) Hash6a6adfe1bedc4da72b469a28d4e46116 3de5b170433f48069754754669399303541edd93 78072f4da7459db2a9a896a335a876ccf2b0cbc20b4cd06674bf8ceacf41e499
GET /autonewsuploads/oil%20stockkk.jpg0f79d7c6521fdc129b15c3b9aa1c3496168441041164a5612a54233b64b4245e271fc79d2c HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 4AcBEbmC/MPcDWIBO9fq1UT6W2yabecXYUAwAfeNlMK4CUrb530r5gV78wdGlptfbl8rxP/Kiak=
x-amz-request-id: 883EW83J8F4GA9KK
Date: Sat, 11 May 2024 01:18:03 GMT
Last-Modified: Thu, 18 May 2023 11:46:53 GMT
ETag: "6a6adfe1bedc4da72b469a28d4e46116"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 203815
|
|
| s3.us-east-1.amazonaws.com/autonewsuploads/czNmcy1wcml2YXRlL3Jhd3BpeGVsX2ltYWdlcy93ZWJzaXRlX2NvbnRlbnQvbHIvc2s4MDQ4LWltYWdlLWt3dnVreG9tLmpwZw.jpge7f332881ff283b6829e94415993a95d17132665016cdca8a23789d4b3362512373eef3417 | 52.216.30.94 | 200 OK | 74 kB |
URL GET HTTP/1.1s3.us-east-1.amazonaws.com/autonewsuploads/czNmcy1wcml2YXRlL3Jhd3BpeGVsX2ltYWdlcy93ZWJzaXRlX2NvbnRlbnQvbHIvc2s4MDQ4LWltYWdlLWt3dnVreG9tLmpwZw.jpge7f332881ff283b6829e94415993a95d17132665016cdca8a23789d4b3362512373eef3417 IP52.216.30.94:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerAmazon Subjects3.amazonaws.com Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 1000x668, components 3 Hash7fe2d33d531815585c8c1d4c5867d4a3 35500f4fa795b49f47137c0532ab07e600d82f8c e295b46a6cabf7a1d9a053ad5cd21a7a610c44cfaf7eee8b46638a554fc27b73
GET /autonewsuploads/czNmcy1wcml2YXRlL3Jhd3BpeGVsX2ltYWdlcy93ZWJzaXRlX2NvbnRlbnQvbHIvc2s4MDQ4LWltYWdlLWt3dnVreG9tLmpwZw.jpge7f332881ff283b6829e94415993a95d17132665016cdca8a23789d4b3362512373eef3417 HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: x6Z5O0tODM4RLtZfP7Ad70ISn7xHT2E4xuqduc7TKw04SPgpLfokK+4SLIfRuJTcFtMuLYBS2Dk=
x-amz-request-id: NYW0HCBWVDZRWD90
Date: Sat, 11 May 2024 01:18:04 GMT
Last-Modified: Tue, 16 Apr 2024 11:21:44 GMT
ETag: "7fe2d33d531815585c8c1d4c5867d4a3"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 73918
|
|
| s3.us-east-1.amazonaws.com/autonewsuploads/goldmineee.png86aba4f8725a91fb9d4b86350a30b8c31710245718947df273c9e88260016da3c2127120f7 | 52.216.30.94 | 200 OK | 561 kB |
URL GET HTTP/1.1s3.us-east-1.amazonaws.com/autonewsuploads/goldmineee.png86aba4f8725a91fb9d4b86350a30b8c31710245718947df273c9e88260016da3c2127120f7 IP52.216.30.94:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerAmazon Subjects3.amazonaws.com Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File typePNG image data, 614 x 409, 8-bit/color RGBA, non-interlaced Size561 kB (560765 bytes) Hashf91ad7273b5b81f89f8ecc79a36b224e 44ec7da7950214e8ba92598b16d327b554c94e7f 8cb22c0d6a2c9fca9a86bcf99986cceb1c1982963db42c2c2b119ed36111113a
GET /autonewsuploads/goldmineee.png86aba4f8725a91fb9d4b86350a30b8c31710245718947df273c9e88260016da3c2127120f7 HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 6Cs0wCjD0edwJ3d3xus2Y9YRiwbWrOGrwDySM2nc9ayEM8c15XhiZXPgX4d3BAQCK+kc5gD9a+o=
x-amz-request-id: 883F071CS5DM2XQH
Date: Sat, 11 May 2024 01:18:03 GMT
Last-Modified: Tue, 12 Mar 2024 12:15:20 GMT
ETag: "f91ad7273b5b81f89f8ecc79a36b224e"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 560765
|
|
| s3.us-east-1.amazonaws.com/autonewsuploads/0_xMIObdsLB7XPfX6M.jpg831e6c0cac9852ee802169b318eafcc21703851588ea1d7d0705a741428b565fef908b1c90 | 52.216.30.94 | 200 OK | 130 kB |
URL GET HTTP/1.1s3.us-east-1.amazonaws.com/autonewsuploads/0_xMIObdsLB7XPfX6M.jpg831e6c0cac9852ee802169b318eafcc21703851588ea1d7d0705a741428b565fef908b1c90 IP52.216.30.94:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerAmazon Subjects3.amazonaws.com Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 800x550, components 3 Size130 kB (130538 bytes) Hash81ed4e278b514ede42a3fa0bc59ae812 79ea6edc5c2326a174f137cdb092754eafa20d3f bc9da136ab9d91bdf0e1a667dd123f362fa5ab2dd7f2ee22c9aaff3ebd619588
GET /autonewsuploads/0_xMIObdsLB7XPfX6M.jpg831e6c0cac9852ee802169b318eafcc21703851588ea1d7d0705a741428b565fef908b1c90 HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: FRc/5LigHGrJx7M2B0+cqBsAeNqbzqhL+J4S7flyhu4QwJNFei3/S+kiEaPIL1jK58oWmWNMSQQ=
x-amz-request-id: 883216RRH18YWZWM
Date: Sat, 11 May 2024 01:18:03 GMT
Last-Modified: Fri, 29 Dec 2023 12:06:30 GMT
ETag: "81ed4e278b514ede42a3fa0bc59ae812"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 130538
|
|
| s3.us-east-1.amazonaws.com/autonewsuploads/Doomsday07231.jpg3299e99b7e66ba7bebade79da4d83ca51689679479727a12f1453aa468691d60b4dd73073d | 52.216.30.94 | 200 OK | 433 kB |
URL GET HTTP/1.1s3.us-east-1.amazonaws.com/autonewsuploads/Doomsday07231.jpg3299e99b7e66ba7bebade79da4d83ca51689679479727a12f1453aa468691d60b4dd73073d IP52.216.30.94:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerAmazon Subjects3.amazonaws.com Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 200x200, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=9, description=Convoys of armed US Army (USA) High-Mobility Multipurpose Wheeled Vehicles (HMMWV) merge on the location as USA 101st Airborne , orientation=upper-left, xresolution=563, yresolution=571, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2003:11:20 08:18:15], baseline, precision 8, 1024x672, components 3 Size433 kB (432585 bytes) Hash6e58f72ac11c012924af9bde04584b81 4ee205efa682b8cbb93ccfb0b355d1c0ed4a5faf 96fb5e8a70b47dab13fd7ce3cb597fdea465c43436eaaee2754c9d61ec648195
GET /autonewsuploads/Doomsday07231.jpg3299e99b7e66ba7bebade79da4d83ca51689679479727a12f1453aa468691d60b4dd73073d HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: aQiEHOXX/AodM0PWsOlphRHSxB9j5gqn/i7q1E6PG5zZezD0OLqIafLv7pUfrNAjqcCCA4rmHIM=
x-amz-request-id: NYW29PP7QCR7E2HW
Date: Sat, 11 May 2024 01:18:04 GMT
Last-Modified: Tue, 18 Jul 2023 11:24:40 GMT
ETag: "6e58f72ac11c012924af9bde04584b81"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 432585
|
|
| s3.us-east-1.amazonaws.com/autonewsuploads/GetProstate04241.jpgf9bd27c6822b16f3cf3eb5876817433717126620945e56b623fe4588d7c712cf74455271ae | 52.216.30.94 | 200 OK | 433 kB |
URL GET HTTP/1.1s3.us-east-1.amazonaws.com/autonewsuploads/GetProstate04241.jpgf9bd27c6822b16f3cf3eb5876817433717126620945e56b623fe4588d7c712cf74455271ae IP52.216.30.94:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerAmazon Subjects3.amazonaws.com Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=3744, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=5616], baseline, precision 8, 1800x1200, components 3 Size433 kB (433442 bytes) Hash60a563642150e1af4e00ec3c3f677b66 d04eed6d68a0e8aea757663d9592009091908458 e1df1121dabe998035ed22ef8f116559971e300a2819918b92db1f0352c570ad
GET /autonewsuploads/GetProstate04241.jpgf9bd27c6822b16f3cf3eb5876817433717126620945e56b623fe4588d7c712cf74455271ae HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: NY/zOfsMTntFwy8ZxsN/qSeJRr3K80+5qeaVuJjH4UGeRcnMcuTzjGwyoX+D4xQM5RcfYWTZ/7k=
x-amz-request-id: NYW523RVEHFPRTYA
Date: Sat, 11 May 2024 01:18:04 GMT
Last-Modified: Tue, 09 Apr 2024 11:28:16 GMT
ETag: "60a563642150e1af4e00ec3c3f677b66"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 433442
|
|
| s3.us-east-1.amazonaws.com/autonewsuploads/arterija.jpg52585c6f4e583dd3dae9dbdb2798c58817129217683395c39f10c9b74f8261e3093eee70c0 | 52.216.30.94 | 200 OK | 861 kB |
URL GET HTTP/1.1s3.us-east-1.amazonaws.com/autonewsuploads/arterija.jpg52585c6f4e583dd3dae9dbdb2798c58817129217683395c39f10c9b74f8261e3093eee70c0 IP52.216.30.94:443
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21 CertificateIssuerAmazon Subjects3.amazonaws.com Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x1080, components 3 Size861 kB (861058 bytes) Hash93ba295ab9f1b311005f4e5c501bebdf 4340fdded8ea94dd6cdcdc0e3854ea8cf2c7caa5 e45e10264719ae534a99dd25131ef893ac6577ef70d25f2ebe3e6690e56d33b0
GET /autonewsuploads/arterija.jpg52585c6f4e583dd3dae9dbdb2798c58817129217683395c39f10c9b74f8261e3093eee70c0 HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 25sFlq9PpbW22TjNE+P3oDTjZHjZdDTQDtTtM+nsirDuVbqFA8hA/uAqAEx4OQSU9ke7Sm8e02s=
x-amz-request-id: 8835A5Q9G0EDJ72C
Date: Sat, 11 May 2024 01:18:03 GMT
Last-Modified: Fri, 12 Apr 2024 11:36:10 GMT
ETag: "93ba295ab9f1b311005f4e5c501bebdf"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 861058
|
|
| subscribe.goodlifestylenews.com/favicon.ico | 104.21.30.61 | 404 Not Found | 238 B |
URL GET HTTP/1.1subscribe.goodlifestylenews.com/favicon.ico IP104.21.30.61:80
Requested byhttp://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: subscribe.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://subscribe.goodlifestylenews.com/?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17&ses_id=7e1f3a4d9d8a368c3ee6098f465e6e21
Cookie: PHPSESSID=cc9a7d74fec3b6f0a692eedddc72cc92; _ga_WJJ5P9F2X8=GS1.1.1715390282.1.0.1715390282.0.0.0; _ga=GA1.1.701253701.1715390283
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Sat, 11 May 2024 01:18:03 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 11
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DyCGKM1At24vZjTPeoZhHjkESx1%2FKi6SCjU6L6LGqHd7%2FuptnYvphhuVmzOcYVI07AtTdqSGzqdLSE9VieJu5q8Qhw5soR3fj%2BnQVh4bdLL4BNYZHBnuM2zQTzJIZMb2%2BcNs3JMtJkhFV9n954BaFCZ6"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 881e55381b800afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| go.goodlifestylenews.com/dummyarticleclickers_45315/ec55f96bdbee115719939c545d55f6bb/55/leadsource/2626/1610/6fa59e7be255fd2bcdcd31e102cefbd0/mpmta/news/45315/17 | 172.67.172.49 | 302 Found | 0 B |
URL User Request GET HTTP/2go.goodlifestylenews.com/dummyarticleclickers_45315/ec55f96bdbee115719939c545d55f6bb/55/leadsource/2626/1610/6fa59e7be255fd2bcdcd31e102cefbd0/mpmta/news/45315/17 IP172.67.172.49:443
CertificateIssuerGoogle Trust Services LLC Subjectgoodlifestylenews.com FingerprintCF:D4:62:67:0B:FC:CB:36:EF:53:02:EB:06:FE:15:35:2F:53:53:40 ValidityThu, 21 Mar 2024 14:09:53 GMT - Wed, 19 Jun 2024 14:09:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /dummyarticleclickers_45315/ec55f96bdbee115719939c545d55f6bb/55/leadsource/2626/1610/6fa59e7be255fd2bcdcd31e102cefbd0/mpmta/news/45315/17 HTTP/1.1
Host: go.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 11 May 2024 01:17:57 GMT
content-type: text/html; charset=UTF-8
location: https://verifiedwebpage.com/go?ehash=ec55f96bdbee115719939c545d55f6bb&product=48766&ar=55&cid=2626&lid=1610&slhash=6fa59e7be255fd2bcdcd31e102cefbd0&redirect_id=45315&bid=17
cache-control: max-age=600
expires: Sat, 11 May 2024 01:27:56 GMT
vary: User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6fAPWWaZFXJ8TOQjMHsWS5hiw%2BTcVcCN4cCjUgyQxuOAvMePKhoCYqrlwjMrP7NwGThPtY1xbRm%2FeTRjmH0uxz6J3irFlAi6GWqXj9%2BdJf3dxpA3lTcptsLgs6E6%2FC7YK4hQaQDtob9w02E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881e550ea9dc0b61-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| verifiedwebpage.com/go?ehash=ec55f96bdbee115719939c545d55f6bb&product=48766&ar=55&cid=2626&lid=1610&slhash=6fa59e7be255fd2bcdcd31e102cefbd0&redirect_id=45315&bid=17 | 104.18.20.187 | 302 Found | 0 B |
URL User Request GET HTTP/2verifiedwebpage.com/go?ehash=ec55f96bdbee115719939c545d55f6bb&product=48766&ar=55&cid=2626&lid=1610&slhash=6fa59e7be255fd2bcdcd31e102cefbd0&redirect_id=45315&bid=17 IP104.18.20.187:443
CertificateIssuerGoogle Trust Services LLC Subjectverifiedwebpage.com FingerprintB6:7C:0D:93:CD:D6:56:A3:74:B9:46:38:F0:C7:A5:31:BC:5F:AF:56 ValidityWed, 10 Apr 2024 21:43:08 GMT - Tue, 09 Jul 2024 21:43:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go?ehash=ec55f96bdbee115719939c545d55f6bb&product=48766&ar=55&cid=2626&lid=1610&slhash=6fa59e7be255fd2bcdcd31e102cefbd0&redirect_id=45315&bid=17 HTTP/1.1
Host: verifiedwebpage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 11 May 2024 01:17:58 GMT
content-type: text/html; charset=UTF-8
location: https://subscribe.goodlifestylenews.com?email=tammy.j.lanctot@abc12.com&redirect_id=45315&bid=17
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: User-Agent
cf-cache-status: DYNAMIC
set-cookie: PHPSESSID=ae49cb3cc76facb7ff771cb99c9f2c17; path=/
pixel_session_hash_48766=3415485580010593784; expires=Mon, 10-Jun-2024 01:17:56 GMT; Max-Age=2592000; path=/; secure; HttpOnly; SameSite=None
bt_tracking_product_48766=c863b17e7cd7a41a6644e30557d372c36a65219172cf5690af0f3d0fa3a61d31; expires=Mon, 13-May-2024 01:17:57 GMT; Max-Age=172800
__cf_bm=qZrAGaTATxvxcygNrd1CX2qFU_8lhB1ZSSJnL5Uf4hw-1715390278-1.0.1.1-9Zvw1fV5jqdcBhJhpKokJktImY_fYv2FqXXcvBHEx8SEhAYbEMeKBiuL6d8A0hXX655Gi1zJJUiVPWvRY5ItvQ; path=/; expires=Sat, 11-May-24 01:47:58 GMT; domain=.verifiedwebpage.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 881e55131fcd0b02-OSL
X-Firefox-Spdy: h2
|
|