Report - www.destinedhero.com/

Report Overview

Submitted URL
www.destinedhero.com/
IP
50.87.147.16
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-12-05 04:23:11
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
36

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.destinedhero.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	20 kB	259 kB	50.87.147.16
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.160.184.41
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	395 B	31 kB	142.250.74.106
s7.viastreaming.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	70 kB	199.115.117.77
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.5 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	51 kB	34.120.237.76
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	686 B	1.4 kB	142.250.74.131
destinedhero.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.8 kB	65 kB	50.87.147.16
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-05	medium	www.destinedhero.com/	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream/	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream/modules/system/system.base.css?pbiv1r	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream/modules/system/system.menus.css?pbiv1r	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream/modules/system/system.messages.css?pbiv1r	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream/modules/system/system.theme.css?pbiv1r	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream/modules/aggregator/aggregator.css?pbiv1r	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream/modules/node/node.css?pbiv1r	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream/modules/comment/comment.css?pbiv1r	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream/modules/search/search.css?pbiv1r	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream/modules/user/user.css?pbiv1r	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream/sites/all/modules/views/css/views.css?pbiv1r	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream/sites/all/modules/ctools/css/ctools.css?pbiv1r	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream/misc/jquery.once.js?v=1.2	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream/sites/all/modules/jscrollpane/js/jquery.jscrollpane.min.js?pbiv1r	Phishing
2022-12-05	medium	www.destinedhero.com/thespinningstream/sites/all/modules/jscrollpane/js/script.js?pbiv1r	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	s7.viastreaming.net/scr/json.php?port=7030&sc_version=sc1&callback=0.7655251556855203&callback=jQuery22409670938205845991_1670214181079&_=1670214181080	2.2 kB	2023-03-08	2023-03-08
Pretty URL s7.viastreaming.net/scr/json.php?port=7030&sc_version=sc1&callback=0.7655251556855203&callback=jQuery22409670938205845991_1670214181079&_=1670214181080 IP 199.115.117.77 ASN #30633 LEASEWEB-USA-WDC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:33:34 Last Seen2023-03-08 16:33:34 Times Seen1 Hash f2db998109630baefe52d53b76e0f84b 325224da45938905e240115452c5571cb2ea8891 fc98bce9cf54a0429d31b0d84971ea6333fdf9cf2688a45f55f7ef4eb82da238 Loading...

	www.destinedhero.com/thespinningstream/sites/all/modules/jscrollpane/js/jquery.jscrollpane.min.js?pbiv1r	15 kB	2023-03-08	2023-03-08
Pretty URL www.destinedhero.com/thespinningstream/sites/all/modules/jscrollpane/js/jquery.jscrollpane.min.js?pbiv1r IP 50.87.147.16 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:33:34 Last Seen2023-03-08 16:33:34 Times Seen1 Hash c2d50e3e325fb872891ccdcbe5292e09 0fd99551faaab512b8a5da55787fd2ad1e758e0d d879baab4787a11f16e4792c7352aa151a0a5ac2a119353b64ea84873e243e4d Loading...

	www.destinedhero.com/thespinningstream/	1.2 kB	2023-03-08	2023-03-08
Pretty URL www.destinedhero.com/thespinningstream/ IP 50.87.147.16 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:33:34 Last Seen2023-03-08 16:33:34 Times Seen1 Hash f53155db22df7c065703484c81ee7c72 db6b9579f0d583c82eba320ccea47e3ed9ba4484 9100c990603064d6b51be8fd3822c9628c48c9fb330e54a91bc85f940e76a92e Loading...

	s7.viastreaming.net/scr/pollstation.js	3.5 kB	2023-03-08	2023-03-08
Pretty URL s7.viastreaming.net/scr/pollstation.js IP 199.115.117.77 ASN #30633 LEASEWEB-USA-WDC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:33:34 Last Seen2023-03-08 16:33:34 Times Seen1 Hash 7e1e5628bcf60969fa5a16ce4ec67921 c3189a3e9327fc546826a2d71be89746a914c90a 9f3f30b7a84c0c4fa4c1bbe16203231c2937da19c99986875fa9bec57b4929a1 Loading...

	s7.viastreaming.net/scr/jquery.shoutcast.js	2.2 kB	2023-03-08	2023-03-08
Pretty URL s7.viastreaming.net/scr/jquery.shoutcast.js IP 199.115.117.77 ASN #30633 LEASEWEB-USA-WDC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:33:34 Last Seen2023-03-08 16:33:34 Times Seen1 Hash d621183477d551fccb1d32110fe24bd0 e7ef7d11545087788817f370d2d3ddda4227ad92 c0ef176cfb017401f064bce6c86b63a02781c6da8f51a3a442925953ef52ed95 Loading...

	s7.viastreaming.net/scr/json.php?port=7030&sc_version=sc1&callback=0.5502848409219339&callback=jQuery22409670938205845991_1670214181077&_=1670214181078	2.2 kB	2023-03-08	2023-03-08
Pretty URL s7.viastreaming.net/scr/json.php?port=7030&sc_version=sc1&callback=0.5502848409219339&callback=jQuery22409670938205845991_1670214181077&_=1670214181078 IP 199.115.117.77 ASN #30633 LEASEWEB-USA-WDC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:33:34 Last Seen2023-03-08 16:33:34 Times Seen1 Hash ad2704b0a01d3dcafae2255beb0d08bd 8628a2898c3e1716c74c3bad2274871ab9b943bd 0909850a8c1abec56aa739af0b8ed0bb94ea69b1c87b23a9ae08afacb08ad755 Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js	86 kB	2023-03-07	2024-05-11
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-11 04:18:03 Times Seen390722 Hash 2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e Loading...

	www.destinedhero.com/thespinningstream/misc/drupal.js?pbiv1r	17 kB	2023-03-07	2023-12-05
Pretty URL www.destinedhero.com/thespinningstream/misc/drupal.js?pbiv1r IP 50.87.147.16 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:40:12 Last Seen2023-12-05 13:55:09 Times Seen48 Hash bb9f18fb7a42b95fcad87b98dbb19c87 66053e57802b45dfee1462de56ae2a79a49ef565 ab29fc25c427a9b892875636a38cdcc27de97b17e8d23c0b2d5a09fb3b589474 Loading...

	www.destinedhero.com/thespinningstream/sites/all/modules/insertFrame/insertFrame.js?pbiv1r	385 B	2023-03-08	2023-03-08
Pretty URL www.destinedhero.com/thespinningstream/sites/all/modules/insertFrame/insertFrame.js?pbiv1r IP 50.87.147.16 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:33:34 Last Seen2023-03-08 16:33:34 Times Seen1 Hash 23bdfcef8a60900f4e938d33ae0fa927 39cb53d03b6f02bb08d10593f51b8d9ae0611cd0 919132295f11a1cf2b56e84712f52211ac2178da42fbf3f77cb66aba30db4e53 Loading...

	www.destinedhero.com/thespinningstream/sites/all/modules/jquery_update/replace/jquery/1.10/jquery.min.js?v=1.10.2	93 kB	2023-03-07	2024-05-11
Pretty URL www.destinedhero.com/thespinningstream/sites/all/modules/jquery_update/replace/jquery/1.10/jquery.min.js?v=1.10.2 IP 50.87.147.16 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-11 05:18:27 Times Seen10504 Hash 628072e7212db1e8cdacb22b21752cda 0511abe9863c2ea7084efa7e24d1d86c5b3974f1 0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988 Loading...

	www.destinedhero.com/thespinningstream/misc/jquery.once.js?v=1.2	3.0 kB	2023-03-07	2024-05-10
Pretty URL www.destinedhero.com/thespinningstream/misc/jquery.once.js?v=1.2 IP 50.87.147.16 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:31 Last Seen2024-05-10 17:54:23 Times Seen1200 Hash cceebad9bbb56917e310d1a7369f267b 5866489ecb92b075184c24174d9a22edc295b19d 1430f42c0d760ba8e05bb3762480502e541f654fec5739ee40625ab22dc38c4f Loading...

	www.destinedhero.com/thespinningstream/sites/all/modules/jscrollpane/js/script.js?pbiv1r	225 B	2023-03-08	2023-03-08
Pretty URL www.destinedhero.com/thespinningstream/sites/all/modules/jscrollpane/js/script.js?pbiv1r IP 50.87.147.16 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:33:34 Last Seen2023-03-08 16:33:34 Times Seen1 Hash 234969d9f74e7e50ee0e39e9d4b5793b 4f9d0252781a438c293d3998b60d2f1ee2dc54db 6828aaaaea87f1f4d6a5b38fe5d46b317fb140d753e2384b8f7269524eac3cf1 Loading...

	www.destinedhero.com/thespinningstream/	6.8 kB	2023-03-08	2023-03-08
Pretty URL www.destinedhero.com/thespinningstream/ IP 50.87.147.16 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:33:34 Last Seen2023-03-08 16:33:34 Times Seen1 Hash 9f952bd39f10b35f679fd246931c72a1 e0690a4a06067500df90c4d548fd6c3dd8a5f13f 6f30470d9b87ea217249330979ef630ed635cf37a12709c914ef493fa0ff60d1 Loading...

	www.destinedhero.com/thespinningstream/	82 B	2023-03-08	2023-03-08
Pretty URL www.destinedhero.com/thespinningstream/ IP 50.87.147.16 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:33:34 Last Seen2023-03-08 16:33:34 Times Seen1 Hash b905db5137e7483aa5f8f26c395392b5 1227a42100be3189f79beda7156df0558a9d457a c8389c1bf3c5d07f0c2fb29cac63cd4ebf47c11cc50f3117a3526e501feb29ef Loading...

	www.destinedhero.com/thespinningstream/	63 B	2023-03-08	2023-03-08
Pretty URL www.destinedhero.com/thespinningstream/ IP 50.87.147.16 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:33:34 Last Seen2023-03-08 16:33:34 Times Seen1 Hash 965c86d20f0329923171b23fbf80ae42 5d447b47c91fdaf378be370f18e76a2b41735c45 3a27b772f917f88eaea696f9e72e44b02e31a876ac3030790ee69394839212d0 Loading...

	www.destinedhero.com/thespinningstream/	105 B	2023-03-08	2023-03-08
Pretty URL www.destinedhero.com/thespinningstream/ IP 50.87.147.16 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:33:34 Last Seen2023-03-08 16:33:34 Times Seen1 Hash efc0538a2447bc8c90be68c111e77653 ae0be310c87926f159abd8cb6056757ed942ec9f c7b8aa9161d08fd3320dde1c115b95df82f0453f13091d8f4747613efddb6c43 Loading...

	s7.viastreaming.net/scr/jquery.js	217 kB	2023-03-08	2023-12-03
Pretty URL s7.viastreaming.net/scr/jquery.js IP 199.115.117.77 ASN #30633 LEASEWEB-USA-WDC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:33:34 Last Seen2023-12-03 10:08:26 Times Seen22 Hash f2402f0e7b549caae013bc3c05b3a161 ea6cc893792569fdbb344181034eb668261f2b24 e2ea0a6ca6b984a9405a759d24cf3c51eb3164e5c43e95c3e9a59b316be7b3b9 Loading...

	www.destinedhero.com/thespinningstream/sites/all/modules/jscrollpane/js/jquery.mousewheel.js?pbiv1r	2.3 kB	2023-03-07	2023-06-23
Pretty URL www.destinedhero.com/thespinningstream/sites/all/modules/jscrollpane/js/jquery.mousewheel.js?pbiv1r IP 50.87.147.16 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:44:11 Last Seen2023-06-23 10:00:29 Times Seen3 Hash d4873f2789edd177fb8167c4732c2356 ea607671dee3a7245c047a35c9d789a0b663b029 a314d3eb5344651f35bfbd24b38dd6371605f63789d061a1365eff5522d7d143 Loading...

		Size	First Seen	Last Seen
	#1 Write - b5663d00b4dd27163ca9fd747b3bb719	23 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 16:33:34 Last Seen2023-03-08 16:33:34 Times Seen1 Hash b5663d00b4dd27163ca9fd747b3bb719 817e786c4002fbb11ea9f1a2956cb4eb64264849 70de638f5ce792bb4bf1123647cde76d7f08c50744b6720730a77461d937db5d Loading...

HTTP Transactions (82)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2591
Expires: Mon, 05 Dec 2022 05:06:10 GMT
Date: Mon, 05 Dec 2022 04:22:59 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fb2c0697c6d9a96a5411dd2952947458
79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4
3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3058
Cache-Control: max-age=111556
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:22:59 GMT
Etag: "638c76f5-1d7"
Expires: Tue, 06 Dec 2022 11:22:15 GMT
Last-Modified: Sun, 04 Dec 2022 10:31:17 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 04:18:26 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 273
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3689
Expires: Mon, 05 Dec 2022 05:24:28 GMT
Date: Mon, 05 Dec 2022 04:22:59 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: lW8E7hsOHMDX7uiywQVsN6ziezopFYKHTQelQGXlCUnTC8JYH4Ne0R/flTjP4Bskz9co5xB/Ups=
x-amz-request-id: 0XTC63CHPJQVTYY0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 03:47:14 GMT
age: 2145
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 04:23:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 04:08:58 GMT
cache-control: public,max-age=3600
age: 842
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

www.destinedhero.com/

50.87.147.16

200 OK

218 B

URL HTTP/1.1
www.destinedhero.com/
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
218 B (218 bytes)
Hash
9f662bd0449fedf7583d69a6b08ab8e7
1afeeaa52e6382514401a70bb47ad25b962b1cc2
02da7475febbd27e6c128af71e3196a054298d1d37ea4c050a9697ad2c4b2569

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:22:59 GMT
Server: nginx/1.21.6
Content-Type: text/html
Content-Length: 218
Last-Modified: Sat, 02 Mar 2013 03:50:17 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Server-Cache: true
X-Proxy-Cache: EXPIRED
Accept-Ranges: bytes

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
31b129c94a90b1e695b21395cb54e378
a3cae46b48d469cc61ab0581303bcd5f5b654db9
fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3047
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:23:00 GMT
Last-Modified: Mon, 05 Dec 2022 03:32:14 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

www.destinedhero.com/thespinningstream

50.87.147.16

301 Moved Permanently

254 B

URL HTTP/1.1
www.destinedhero.com/thespinningstream
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
254 B (254 bytes)
Hash
cadb0398916920b1f2d1c68e9eafe8b4
6b0fc2ba140d7b13c9dfce9d5dee330a9f2972d6
a79e7eb055b1cd5c8845075fe077d0ac71e4f8f7d9d7ee53933806ed646da0f4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Mon, 05 Dec 2022 04:23:00 GMT
Server: nginx/1.21.6
Content-Type: text/html; charset=iso-8859-1
Content-Length: 254
Location: http://www.destinedhero.com/thespinningstream/
Cache-Control: max-age=1209600
Expires: Sat, 10 Dec 2022 03:50:50 GMT
X-Server-Cache: true
X-Proxy-Cache: HIT

push.services.mozilla.com/

35.160.184.41

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.160.184.41:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: o5jB0CXiLRTy1SAWDBOUjg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wruoEMzRe9Bt3+MBW56QoLPA8YU=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7864
Expires: Mon, 05 Dec 2022 06:34:06 GMT
Date: Mon, 05 Dec 2022 04:23:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7864
Expires: Mon, 05 Dec 2022 06:34:06 GMT
Date: Mon, 05 Dec 2022 04:23:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7864
Expires: Mon, 05 Dec 2022 06:34:06 GMT
Date: Mon, 05 Dec 2022 04:23:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7864
Expires: Mon, 05 Dec 2022 06:34:06 GMT
Date: Mon, 05 Dec 2022 04:23:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7864
Expires: Mon, 05 Dec 2022 06:34:06 GMT
Date: Mon, 05 Dec 2022 04:23:02 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50c0f516-113b-498b-a6f2-9f0a076ff423.jpeg

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50c0f516-113b-498b-a6f2-9f0a076ff423.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7853 bytes)
Hash
dafdb4fe91795a9e16baebb085ccd818
f5ed5d03e6969f81349ad78fde0e71390a4ed391
f535ce45d68317bad15513d3cd3d21d2c0ef12e93d6ac19cc07b704ee1651f51

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50c0f516-113b-498b-a6f2-9f0a076ff423.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7853
x-amzn-requestid: fa079a7e-1e93-41d6-bb16-2703077a0cb8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGrKEGFoAMFnBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6388517a-076131847c129c197e84901b;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:02:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Cri6Vf6-INRisbFQ4ITZ7f8RIvomQXQ-TjkjWAOkkUhmI1yhHIbTYA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 02:05:40 GMT
age: 8242
etag: "f5ed5d03e6969f81349ad78fde0e71390a4ed391"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad33fba3-ee62-4ef5-9330-0bd0a142dd92.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6236 bytes)
Hash
c9e228ec099cad3eea0fb1656da3536f
532cf52021a6cdb7b7963e9108b41590f58276fe
8e54f09dd66fdc35e5f54100cf6c56abf88cb7e724b08092e7ce82720d423135

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad33fba3-ee62-4ef5-9330-0bd0a142dd92.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6236
x-amzn-requestid: 0215aac5-7c44-43b0-b2e9-baddeed42fe0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjiXEEXiIAMFqIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ae42d-5961705726e81a4e3b6a91c9;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 05:52:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oJp2wIEPM-swJMvp-n40xEtH1a7V8gi1ixzsxmuXoBG_UFglSeS-1g==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 22:21:31 GMT
age: 21691
etag: "532cf52021a6cdb7b7963e9108b41590f58276fe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d407108-e7e2-4672-80f5-d4b4c3e66151.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6173 bytes)
Hash
3130c86c084c4c925fb9179dfa5c145d
203f27660f3885d5c1bc68a535baef4e48ff6582
faf2c48c2286fe2149908947de9037640007d32e13694c1261f610250caf3f8f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d407108-e7e2-4672-80f5-d4b4c3e66151.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6173
x-amzn-requestid: dc73ee0d-b1ec-407f-8e98-3ba264725ee3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqHqwIAMFwqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-56d74e8d45baa9e87136708f;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZjAfnCIfBIkjjk0E62TZ7bHsCTUhJk9Wm_wIyhnUNvhgXja5ELfC4g==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:48:15 GMT
age: 23687
etag: "203f27660f3885d5c1bc68a535baef4e48ff6582"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d81855b-98f7-4c0c-bfb4-78957d8c433d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (7028 bytes)
Hash
9b475d52dd164b9cc0efbecfd58282b6
973e77db7fb34c60e08719dc7196d865e8831cb2
3985e24217a2bd811a0ea9bf0223eb0cda31604986f3467fae028a086a8b827e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d81855b-98f7-4c0c-bfb4-78957d8c433d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7028
x-amzn-requestid: 4d20bc36-d129-468d-b30d-f6b571d528af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKz6G86oAMF9oA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abe7f-5f9353c04487352b64ba3bf8;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:11:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pjwTv-Ry-1NHzZj6N-Mwul76sDeRSpLlVh7azqqqls44kH-mNhnggw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 04:59:53 GMT
age: 84189
etag: "973e77db7fb34c60e08719dc7196d865e8831cb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10183 bytes)
Hash
99d1ff8fa2e095dcf2bda3d1e1af1221
f914f04a0e1fb45a221d31d2105bfc73015b03e6
90325d4299a44dbd213857ada6f6880db8c33ad61685cfcb60c4a2455a84cf87

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10183
x-amzn-requestid: 0cdea572-aab4-4d52-948b-976170a787a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_uLHQZoAMF4hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1327-7948052f39c4f6071b4a0e0d;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Vhtd0Bo5kTQySEn0vD_RJin0usoC7GQvK74fhVtrtZNEy64_vrWQNw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:45:46 GMT
age: 23836
etag: "f914f04a0e1fb45a221d31d2105bfc73015b03e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6826 bytes)
Hash
a349d02cce160f72cc93f6fb6e45fa46
a6f82481ea0a820da0f199e8f9051a4aa4013c82
ab320118577a2dcb6ab7ad904d6350e187501a94b39b71fdd70b31cbc8853b24

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6826
x-amzn-requestid: f0abdba6-14c8-4aae-ba3b-37ba0af2ff08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_t2FsLIAMFekA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1325-3452be066acddb554f528cc3;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GS4yLzXiIZt-eL9T7gjbf2-vMu8i30WKPDmc2EQDxv0CELjdW1gMVA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:46:51 GMT
age: 23771
etag: "a6f82481ea0a820da0f199e8f9051a4aa4013c82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.destinedhero.com/thespinningstream/

50.87.147.16

200 OK

10 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1198)
Size
10 kB (10446 bytes)
Hash
7d4b833766ccd401e5b479d8c93e6c96
c2d167936f15a11222000ff372b8c79654fcf095
99b1468c580a1a8df1e915346959805996ba6096a8681c492bba412fb9a8838d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream/ HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:01 GMT
Server: nginx/1.21.6
Content-Type: text/html; charset=utf-8
Content-Length: 10446
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0
Content-Language: en
X-Generator: Drupal 7 (http://drupal.org)
Vary: Accept-Encoding
Content-Encoding: gzip
X-Server-Cache: true
X-Proxy-Cache: EXPIRED
Set-Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg; expires=Wed, 28-Dec-2022 07:56:22 GMT; Max-Age=2000000; path=/; domain=.destinedhero.com; HttpOnly

www.destinedhero.com/thespinningstream/modules/system/system.base.css?pbiv1r

50.87.147.16

200 OK

2.1 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/modules/system/system.base.css?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
2.1 kB (2054 bytes)
Hash
5805835a2efb5ce797fe1387d8b19dac
ef5bfe01e8b04a1a92b073b6556d8eebfeb96411
fd15492b179e6be2c132fb85aac67eca6f596d189e385a07f70d0dd3c42edff8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream/modules/system/system.base.css?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Thu, 05 Nov 2015 03:16:02 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2054
Content-Type: text/css

www.destinedhero.com/thespinningstream/modules/system/system.menus.css?pbiv1r

50.87.147.16

200 OK

667 B

URL HTTP/1.1
www.destinedhero.com/thespinningstream/modules/system/system.menus.css?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
667 B (667 bytes)
Hash
49735c253c72efe33a2f22ca615fd901
97ee165adf1548e6ea73be9ed252bde7ee81218d
ac52b83f304737bbe7e39def4a635b7b18794e7bfe32c7fae3208c29842ac322

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream/modules/system/system.menus.css?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:02 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2015 03:16:03 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 667
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:23:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js

142.250.74.106

200 OK

30 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32065)
Size
30 kB (30028 bytes)
Hash
6d973c8b7e2439d958e09c0a1ab9fe50
05ae0830200c20b9a2dfd5a825adc400481a60fb
f3c122dc227e829ed96b2a754296809201bd78abbad7ba50ef5079654e1cc894

HTTP Headers

GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.destinedhero.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 10:09:16 GMT
expires: Wed, 29 Nov 2023 10:09:16 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 497626
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 04:23:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

s7.viastreaming.net/scr/pollstation.js

199.115.117.77

200 OK

1.1 kB

URL HTTP/1.1
s7.viastreaming.net/scr/pollstation.js
IP
199.115.117.77:0
ASN
#30633 LEASEWEB-USA-WDC

File type
HTML document, ASCII text, with very long lines (2472), with CRLF line terminators
Size
1.1 kB (1068 bytes)
Hash
0e305efeb66c96d6aa63c3b84b69f715
b04422700bddcc8da734763a4a7308635e954745
1f90cfe57c8eff30ec51805545961a8ac6518462496e780734be25bd210f18bc

HTTP Headers

GET /scr/pollstation.js HTTP/1.1
Host: s7.viastreaming.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:02 GMT
Server: Apache/2.4.10
Last-Modified: Sat, 10 Jun 2017 15:25:19 GMT
ETag: "d82-5519cb18b55c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1068
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

s7.viastreaming.net/scr/jquery.shoutcast.js

199.115.117.77

200 OK

746 B

URL HTTP/1.1
s7.viastreaming.net/scr/jquery.shoutcast.js
IP
199.115.117.77:0
ASN
#30633 LEASEWEB-USA-WDC

File type
ASCII text, with very long lines (2167), with no line terminators
Size
746 B (746 bytes)
Hash
ae60b96aaeaf5ce80c025a6d4331b045
72d38a8cf4a741807e375fc84fd7c267b8692849
cd1af4ee78a33213038226db7f8855330ef9309ea72c28d284baf253576679d0

HTTP Headers

GET /scr/jquery.shoutcast.js HTTP/1.1
Host: s7.viastreaming.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:02 GMT
Server: Apache/2.4.10
Last-Modified: Sat, 24 Dec 2016 10:11:54 GMT
ETag: "877-54464bb56ce80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 746
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

www.destinedhero.com/thespinningstream/modules/system/system.messages.css?pbiv1r

50.87.147.16

200 OK

382 B

URL HTTP/1.1
www.destinedhero.com/thespinningstream/modules/system/system.messages.css?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
troff or preprocessor input, ASCII text
Size
382 B (382 bytes)
Hash
d0952a8b019c47ac6d6572ef687ef8de
b3e85c9dc7a295195c105f29a7ce32d9d03e5bc0
e388f78ae0ed1c297edad0f09e3ab9793a5c90c436ff1d19308a198086f2b552

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream/modules/system/system.messages.css?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Thu, 05 Nov 2015 03:16:03 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 382
Content-Type: text/css

www.destinedhero.com/thespinningstream/modules/system/system.theme.css?pbiv1r

50.87.147.16

200 OK

1.4 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/modules/system/system.theme.css?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
1.4 kB (1365 bytes)
Hash
e0bafd94e49d5acb64f3cf84cd557b81
ebb310fb20e6f8edacd88ef989f275c3c0794f49
1a88531bc6d98f0f515d5809b3c7a593330bfadad80aded225a610c28e599e4d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream/modules/system/system.theme.css?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Thu, 05 Nov 2015 03:16:04 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1365
Content-Type: text/css

www.destinedhero.com/thespinningstream/modules/aggregator/aggregator.css?pbiv1r

50.87.147.16

200 OK

297 B

URL HTTP/1.1
www.destinedhero.com/thespinningstream/modules/aggregator/aggregator.css?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
297 B (297 bytes)
Hash
fbb4000ac59aa9bc9517e96a0dacbb91
3c1ecb7cb1cf2c479b3b4f9b517d377a39442067
59620798a820616a871984aa9dfe68ce80808f8d59123257e8904d3ecef8782c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream/modules/aggregator/aggregator.css?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Thu, 05 Nov 2015 03:15:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 297
Content-Type: text/css

www.destinedhero.com/thespinningstream/modules/node/node.css?pbiv1r

50.87.147.16

200 OK

109 B

URL HTTP/1.1
www.destinedhero.com/thespinningstream/modules/node/node.css?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
109 B (109 bytes)
Hash
b9104e8074f03449d5040f859270351b
8b700d3ac4cc263d51c2a2fb7615b64840e5066f
65122fd1734c6594c6b738b57ece3d0ab626493180401059527e80a7f025bedb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream/modules/node/node.css?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:02 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2015 03:15:40 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 109
Content-Type: text/css

www.destinedhero.com/thespinningstream/modules/comment/comment.css?pbiv1r

50.87.147.16

200 OK

142 B

URL HTTP/1.1
www.destinedhero.com/thespinningstream/modules/comment/comment.css?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
142 B (142 bytes)
Hash
c275508833c66c4b8aa337bffe410e0a
52e8404c5b5fcbcec48ee5ba833110f34f638950
9cb5377c054a3a74a27c6af9899034aa2c6c50013d9342b1118a18157651b6df

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream/modules/comment/comment.css?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Thu, 05 Nov 2015 03:15:18 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 142
Content-Type: text/css

www.destinedhero.com/thespinningstream/modules/field/theme/field.css?pbiv1r

50.87.147.16

200 OK

235 B

URL HTTP/1.1
www.destinedhero.com/thespinningstream/modules/field/theme/field.css?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
235 B (235 bytes)
Hash
c9269abcf7f16f1e534bbfc9716f465e
ebada8a29fafb63305e10a8b509b552add09db14
69047468eb55ddbba5082abe5a283e1afdd4ccd2bad6c42b8afc520ea21d70ca

HTTP Headers

GET /thespinningstream/modules/field/theme/field.css?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:02 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2015 03:16:19 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 235
Content-Type: text/css

s7.viastreaming.net/scr/jquery.js

199.115.117.77

200 OK

62 kB

URL HTTP/1.1
s7.viastreaming.net/scr/jquery.js
IP
199.115.117.77:0
ASN
#30633 LEASEWEB-USA-WDC

File type
ASCII text
Size
62 kB (62428 bytes)
Hash
59b6701219c5b4f90596f73331e1b080
8f957cca4e823b2666d9e9c13b379407dfb7cdb9
5037c2128e491932d4a88bcddb00dfa0dc9bd0f9a208ea24742118278780bf81

HTTP Headers

GET /scr/jquery.js HTTP/1.1
Host: s7.viastreaming.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:02 GMT
Server: Apache/2.4.10
Last-Modified: Sun, 13 Mar 2011 10:20:39 GMT
ETag: "34f08-49e5a8bf24bc0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 62428
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

www.destinedhero.com/thespinningstream/modules/search/search.css?pbiv1r

50.87.147.16

200 OK

232 B

URL HTTP/1.1
www.destinedhero.com/thespinningstream/modules/search/search.css?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
232 B (232 bytes)
Hash
f42c4ac2deabfdcc21dde33dfacff2a1
6db9012ff5ee4dfd5a8249decaee8c4ac909a5cd
df14bffe54fb697d21eedd995040730500f5f8c3a10062fd248a2f5277c2741a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream/modules/search/search.css?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2015 03:15:53 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 232
Content-Type: text/css

www.destinedhero.com/thespinningstream/modules/user/user.css?pbiv1r

50.87.147.16

200 OK

716 B

URL HTTP/1.1
www.destinedhero.com/thespinningstream/modules/user/user.css?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
716 B (716 bytes)
Hash
31a8c8b433dcf664b8b8485a9c846d79
a5d049fa15d6c5c5167ee6f9bc3566c0b9a0f537
cf5ea70f75e756c5ff43100de9c98d07ce21bfbaeb9301199ae5b25fe7423d4c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream/modules/user/user.css?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2015 03:16:14 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 716
Content-Type: text/css

www.destinedhero.com/thespinningstream/sites/all/modules/views/css/views.css?pbiv1r

50.87.147.16

200 OK

309 B

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/modules/views/css/views.css?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
309 B (309 bytes)
Hash
9b2c7271c5d6bd70ba5cad3851ba83e7
907672b7894ca08d7e2f15cda5162d6f8a1eec20
0ca64606ecdf24cbbc089617cf2fc240fe90c05262b7fef406c1b89ca295b46e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream/sites/all/modules/views/css/views.css?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Sun, 08 Jul 2018 00:29:27 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 309
Content-Type: text/css

www.destinedhero.com/thespinningstream/sites/all/modules/jscrollpane/css/jquery.jscrollpane.css?pbiv1r

50.87.147.16

200 OK

557 B

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/modules/jscrollpane/css/jquery.jscrollpane.css?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1306), with no line terminators
Size
557 B (557 bytes)
Hash
c1fed8fa3374effd25f0a945de5f5bc9
82e452374ec4962c6a8b23dd89c506d54ced3bf9
31df21c00ba8e41a07e0179d4101da26989ef89ff5b9cc212ec7494dea449c79

HTTP Headers

GET /thespinningstream/sites/all/modules/jscrollpane/css/jquery.jscrollpane.css?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Sun, 05 Aug 2012 23:02:40 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 557
Content-Type: text/css

www.destinedhero.com/thespinningstream/sites/all/modules/ctools/css/ctools.css?pbiv1r

50.87.147.16

200 OK

248 B

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/modules/ctools/css/ctools.css?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
248 B (248 bytes)
Hash
e7743b2d6f04d63344e10d0dc6a66ea4
75bd1846cf7618fe7f7d29ccfd2fc583033c8665
9f38da33b4a1aa58495e790975fcc31c468fdf86b36a2cdd8ad031319cc708a4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream/sites/all/modules/ctools/css/ctools.css?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Sun, 08 Jul 2018 00:29:27 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 248
Content-Type: text/css

www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r

50.87.147.16

200 OK

1.5 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
1.5 kB (1506 bytes)
Hash
2bd79ee3a8490ed304703589b2e6eaa4
2b3f0f2bd8deee325bf43b66cfb4ca7a610996c9
b2da4c3bf7a2416d247786af269e1b528af90d09e8c7378d12cdba99b8d9af96

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Sun, 22 Apr 2018 03:45:04 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1506
Content-Type: text/css

www.destinedhero.com/thespinningstream/sites/all/modules/insertFrame/insertFrame.js?pbiv1r

50.87.147.16

200 OK

211 B

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/modules/insertFrame/insertFrame.js?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
211 B (211 bytes)
Hash
b0af4e7da8ef23825788a760d4dfda45
9e90eab7a58f5b0cea4d9a14b641d08554190edb
343988eeef4151fb55f7619cec4e505c6cd3435d93448f6580d9fc2a3ee6209c

HTTP Headers

GET /thespinningstream/sites/all/modules/insertFrame/insertFrame.js?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Thu, 08 May 2014 19:30:18 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 211
Content-Type: application/javascript

www.destinedhero.com/thespinningstream/misc/jquery.once.js?v=1.2

50.87.147.16

200 OK

1.3 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/misc/jquery.once.js?v=1.2
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
1.3 kB (1309 bytes)
Hash
79b994d81ab644e3bdfcec9d33a5b0a6
eb6bba512fa5067df596cb5ecca7dba7916e557d
3850ccad473c42beddc5512bebc5acb188d8d78571f5f0f7bfab2811df61c969

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream/misc/jquery.once.js?v=1.2 HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2015 03:17:13 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1309
Content-Type: application/javascript

www.destinedhero.com/thespinningstream/misc/drupal.js?pbiv1r

50.87.147.16

200 OK

6.9 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/misc/drupal.js?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
6.9 kB (6933 bytes)
Hash
011e0403cd3236369ba70189433fec85
00227c9ac0161de1172817d7b27444e9cd58df94
62d103ed72c3d02bde692fd49ed39b0ea9b7fbdb1c736c7663012e83127f1c02

HTTP Headers

GET /thespinningstream/misc/drupal.js?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2015 03:17:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6933
Content-Type: application/javascript

www.destinedhero.com/thespinningstream/sites/all/modules/jscrollpane/js/jquery.mousewheel.js?pbiv1r

50.87.147.16

200 OK

930 B

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/modules/jscrollpane/js/jquery.mousewheel.js?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
930 B (930 bytes)
Hash
1cdaab37d9e28054d6451a10e96bc38a
25ea2af55a7cd65528cb07d29bc3c3e63d98c78c
33a9367d56c2deddedc9108c1346202af811b1bfe6413327f15b86ef947af4f4

HTTP Headers

GET /thespinningstream/sites/all/modules/jscrollpane/js/jquery.mousewheel.js?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Wed, 01 Aug 2012 19:23:29 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 930
Content-Type: application/javascript

www.destinedhero.com/thespinningstream/sites/all/modules/jscrollpane/js/jquery.jscrollpane.min.js?pbiv1r

50.87.147.16

200 OK

5.7 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/modules/jscrollpane/js/jquery.jscrollpane.min.js?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (4031)
Size
5.7 kB (5729 bytes)
Hash
de23c54347716a65967ce057a7a62c2c
a45c6cfea46b21a31dfbe2751a96d226f7fda5f4
74e2f528861a96b103364aaf74a2a457290d22a32945e73624fde15ec4dae030

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream/sites/all/modules/jscrollpane/js/jquery.jscrollpane.min.js?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Fri, 03 Aug 2012 16:04:23 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5729
Content-Type: application/javascript

www.destinedhero.com/thespinningstream/sites/all/modules/jquery_update/replace/jquery/1.10/jquery.min.js?v=1.10.2

50.87.147.16

200 OK

41 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/modules/jquery_update/replace/jquery/1.10/jquery.min.js?v=1.10.2
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32072)
Size
41 kB (40966 bytes)
Hash
27b0845d666f7f48fc8b70983c3d921a
7c9f81cce15c6471baff42f36a632eefd44f5c6f
7ab7834bcd6d75779663e6717c3f480e90d5d401f0f3953c985c50b1d2df2cfe

HTTP Headers

GET /thespinningstream/sites/all/modules/jquery_update/replace/jquery/1.10/jquery.min.js?v=1.10.2 HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Sun, 08 Jul 2018 00:36:20 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript

www.destinedhero.com/thespinningstream/sites/all/modules/jscrollpane/js/script.js?pbiv1r

50.87.147.16

200 OK

158 B

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/modules/jscrollpane/js/script.js?pbiv1r
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
158 B (158 bytes)
Hash
3a8046836a4b9ee139dce519fc4aa38e
79ad190fc629644d299fd0ed3ae451ccc67b14da
4644181deb6a8d7680a75e1d9fb5c3e022d9f6522b341a330c920019713a5e16

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /thespinningstream/sites/all/modules/jscrollpane/js/script.js?pbiv1r HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Fri, 03 Aug 2012 15:46:58 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 158
Content-Type: application/javascript

www.destinedhero.com/thespinningstream/sites/all/images/twitch.png

50.87.147.16

200 OK

1.2 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/images/twitch.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1214 bytes)
Hash
1cb0ce734a19101b463fc11a465cce10
5542c355cb43804f11983297217ded4d283e2190
2d2736c1b8f30448af8191d919b9a5f3c22181a4f974f712c7c932d147489bbd

HTTP Headers

GET /thespinningstream/sites/all/images/twitch.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Sat, 02 Jun 2018 20:06:09 GMT
Accept-Ranges: bytes
Content-Length: 1214
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/sites/all/images/iphone.png

50.87.147.16

200 OK

1.4 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/images/iphone.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1369 bytes)
Hash
b3004160a298651257cf6d6dce73c8f8
f46d8427c915cd0cc3c7f733cdb1efb56482c44b
16cb0a4b7ad265937d8a50a4cadf924249d8157671ac55d56164ab49acb666a5

HTTP Headers

GET /thespinningstream/sites/all/images/iphone.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Sat, 02 Jun 2018 20:06:44 GMT
Accept-Ranges: bytes
Content-Length: 1369
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/sites/all/images/droid.png

50.87.147.16

200 OK

1.3 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/images/droid.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1345 bytes)
Hash
690017097800b308a70deb18916eab12
87a274d4a757a6c5bd4dfad36214292b7931fb60
a8fc88da0de5941c5dd648b5d5c426698449eb9f6dbfc25488d6536b2b852efe

HTTP Headers

GET /thespinningstream/sites/all/images/droid.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Sat, 02 Jun 2018 20:06:57 GMT
Accept-Ranges: bytes
Content-Length: 1345
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/misc/message-24-error.png

50.87.147.16

200 OK

733 B

URL HTTP/1.1
www.destinedhero.com/thespinningstream/misc/message-24-error.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
733 B (733 bytes)
Hash
9b1461b8d77d965f7e59e2fe43417f62
7cd54b2724ad2123c079288dcddf06b7f7a3af81
50ccc64f4f1fbfc159e30f01999883186224dd5997ba207d39a24c4df9ba5f7e

HTTP Headers

GET /thespinningstream/misc/message-24-error.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/modules/system/system.messages.css?pbiv1r
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg; has_js=1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2015 03:17:15 GMT
Accept-Ranges: bytes
Content-Length: 733
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Content-Type: image/png

s7.viastreaming.net/mobile.php?port=7030

199.115.117.77

200 OK

0 B

URL HTTP/1.1
s7.viastreaming.net/mobile.php?port=7030
IP
199.115.117.77:0
ASN
#30633 LEASEWEB-USA-WDC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /mobile.php?port=7030 HTTP/1.1
Host: s7.viastreaming.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://www.destinedhero.com/

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache/2.4.10
X-Powered-By: PHP/5.3.27
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html

s7.viastreaming.net/scr/json.php?port=7030&sc_version=sc1&callback=0.5502848409219339&callback=jQuery22409670938205845991_1670214181077&_=1670214181078

199.115.117.77

200 OK

2.2 kB

URL HTTP/1.1
s7.viastreaming.net/scr/json.php?port=7030&sc_version=sc1&callback=0.5502848409219339&callback=jQuery22409670938205845991_1670214181077&_=1670214181078
IP
199.115.117.77:0
ASN
#30633 LEASEWEB-USA-WDC

File type
HTML document, ASCII text, with very long lines (2201), with no line terminators
Size
2.2 kB (2201 bytes)
Hash
ad2704b0a01d3dcafae2255beb0d08bd
8628a2898c3e1716c74c3bad2274871ab9b943bd
0909850a8c1abec56aa739af0b8ed0bb94ea69b1c87b23a9ae08afacb08ad755

HTTP Headers

GET /scr/json.php?port=7030&sc_version=sc1&callback=0.5502848409219339&callback=jQuery22409670938205845991_1670214181077&_=1670214181078 HTTP/1.1
Host: s7.viastreaming.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache/2.4.10
X-Powered-By: PHP/5.3.27
Connection: close
Content-Length: 2201
Content-Type: text/javascript; charset=utf-8

s7.viastreaming.net/scr/json.php?port=7030&sc_version=sc1&callback=0.7655251556855203&callback=jQuery22409670938205845991_1670214181079&_=1670214181080

199.115.117.77

200 OK

2.2 kB

URL HTTP/1.1
s7.viastreaming.net/scr/json.php?port=7030&sc_version=sc1&callback=0.7655251556855203&callback=jQuery22409670938205845991_1670214181079&_=1670214181080
IP
199.115.117.77:0
ASN
#30633 LEASEWEB-USA-WDC

File type
HTML document, ASCII text, with very long lines (2201), with no line terminators
Size
2.2 kB (2201 bytes)
Hash
f2db998109630baefe52d53b76e0f84b
325224da45938905e240115452c5571cb2ea8891
fc98bce9cf54a0429d31b0d84971ea6333fdf9cf2688a45f55f7ef4eb82da238

HTTP Headers

GET /scr/json.php?port=7030&sc_version=sc1&callback=0.7655251556855203&callback=jQuery22409670938205845991_1670214181079&_=1670214181080 HTTP/1.1
Host: s7.viastreaming.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache/2.4.10
X-Powered-By: PHP/5.3.27
Connection: close
Content-Length: 2201
Content-Type: text/javascript; charset=utf-8

destinedhero.com/thespinningstream/sites/all/images/calendarwed.png

50.87.147.16

200 OK

11 kB

URL HTTP/1.1
destinedhero.com/thespinningstream/sites/all/images/calendarwed.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 150 x 55, 8-bit/color RGB, non-interlaced\012- data
Size
11 kB (11351 bytes)
Hash
24d075df5706e158bd2ac644f44cc572
05f423aaa8bfb337245f162c433c4213c7f08b13
11ee6454f34855a55a33aa7ddc83e1649ead5a7420efc4c42c0b80848dcef63b

HTTP Headers

GET /thespinningstream/sites/all/images/calendarwed.png HTTP/1.1
Host: destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sun, 13 Sep 2015 23:28:45 GMT
Accept-Ranges: bytes
Content-Length: 11351
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/cdbullet.png

50.87.147.16

200 OK

2.0 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/cdbullet.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size
2.0 kB (1980 bytes)
Hash
e815b64e7f9541ef1e5b9bccddd0f7e7
e0c55a178f4ce3baa340b477f75d9e20cadc299f
8284b35f28b10e34d11e97cde5da82caaa7b64be840e26dfab09ad7ae904d495

HTTP Headers

GET /thespinningstream/sites/all/themes/Shuri/SuperPollyanna/cdbullet.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg; has_js=1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Sun, 08 Apr 2018 21:29:48 GMT
Accept-Ranges: bytes
Content-Length: 1980
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/centerbox.png

50.87.147.16

200 OK

4.5 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/centerbox.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 600 x 450, 8-bit/color RGBA, non-interlaced\012- data
Size
4.5 kB (4478 bytes)
Hash
d7ce0477ed7b56a7960470c2f1314610
e5ab6e54a4f0c28276647b44db9ace97133c4dcb
84699f17ec7c22996105704528df82df95b8562bc91062a44a718146d41c625d

HTTP Headers

GET /thespinningstream/sites/all/themes/Shuri/SuperPollyanna/centerbox.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg; has_js=1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Sun, 13 Sep 2015 19:31:01 GMT
Accept-Ranges: bytes
Content-Length: 4478
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Content-Type: image/png

destinedhero.com/thespinningstream/sites/all/images/calendarfri.png

50.87.147.16

200 OK

5.1 kB

URL HTTP/1.1
destinedhero.com/thespinningstream/sites/all/images/calendarfri.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 150 x 55, 8-bit/color RGB, non-interlaced\012- data
Size
5.1 kB (5079 bytes)
Hash
616e13e3046e9831ae0b318ea82b826b
39edd2d815034e31bbf4ec82d1acfb0db375c09f
642b6e94544d7943e77f782a40252382ffb372f8bf1ed1baba3271fa898eaf68

HTTP Headers

GET /thespinningstream/sites/all/images/calendarfri.png HTTP/1.1
Host: destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 14 Sep 2015 00:19:14 GMT
Accept-Ranges: bytes
Content-Length: 5079
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/newsplaque.png

50.87.147.16

200 OK

4.4 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/newsplaque.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 575 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size
4.4 kB (4411 bytes)
Hash
bcc462277b1c9b10887c97e2310e4a90
778ec08d860e7a49b17d75945bd1913fb28968cc
7f100e29471c128bd28e8a308d1efc9005d298059b7cabbf99258f9873352cd5

HTTP Headers

GET /thespinningstream/sites/all/themes/Shuri/SuperPollyanna/newsplaque.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg; has_js=1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Sat, 09 Feb 2013 06:37:04 GMT
Accept-Ranges: bytes
Content-Length: 4411
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Content-Type: image/png

destinedhero.com/thespinningstream/sites/all/images/twitter.png

50.87.147.16

200 OK

1.4 kB

URL HTTP/1.1
destinedhero.com/thespinningstream/sites/all/images/twitter.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1402 bytes)
Hash
d73253aad9168b2e851d5730a859d5fb
b3866dde0130763331470b3018738c81ef9047b9
999bfcf3931b5368e717b1dfaca443158581043dc7d83534245893cea04ebc8c

HTTP Headers

GET /thespinningstream/sites/all/images/twitter.png HTTP/1.1
Host: destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sat, 02 Jun 2018 20:06:10 GMT
Accept-Ranges: bytes
Content-Length: 1402
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Content-Type: image/png

destinedhero.com/thespinningstream/sites/all/images/calendarthurs.png

50.87.147.16

200 OK

5.2 kB

URL HTTP/1.1
destinedhero.com/thespinningstream/sites/all/images/calendarthurs.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 150 x 55, 8-bit/color RGB, non-interlaced\012- data
Size
5.2 kB (5215 bytes)
Hash
738cdd9f079cdc35e2daeade22907db9
1f0bbc085e0bde9b31e2d13c318dec0bb849ba11
8d7567049c32699269a0c1e8a3587b331da242bb4dcc23864415f863a7e46836

HTTP Headers

GET /thespinningstream/sites/all/images/calendarthurs.png HTTP/1.1
Host: destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sun, 13 Sep 2015 23:28:44 GMT
Accept-Ranges: bytes
Content-Length: 5215
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Content-Type: image/png

destinedhero.com/thespinningstream/sites/all/images/calendarmon.png

50.87.147.16

200 OK

8.0 kB

URL HTTP/1.1
destinedhero.com/thespinningstream/sites/all/images/calendarmon.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 150 x 55, 8-bit/color RGB, non-interlaced\012- data
Size
8.0 kB (7970 bytes)
Hash
c13f8ce5e485356e1052ec213f201c5b
99478408953387787af203069dcdb69fe0fa4236
a4e971a225e39e86d8fdab6293bc723612c36eb9839d3c43b0ff7a9dfb31ce31

HTTP Headers

GET /thespinningstream/sites/all/images/calendarmon.png HTTP/1.1
Host: destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sun, 13 Sep 2015 23:28:44 GMT
Accept-Ranges: bytes
Content-Length: 7970
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Content-Type: image/png

destinedhero.com/thespinningstream/sites/all/images/calendartues.png

50.87.147.16

200 OK

5.8 kB

URL HTTP/1.1
destinedhero.com/thespinningstream/sites/all/images/calendartues.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 150 x 55, 8-bit/color RGB, non-interlaced\012- data
Size
5.8 kB (5829 bytes)
Hash
8dcc0bd240439e109e821fe5e745e468
dd64f5bd371255c71d92f50475928000ce66e31d
27f7e8570bb3ed03aa794afaffdb2de7800fe79183b57864281b368751f081db

HTTP Headers

GET /thespinningstream/sites/all/images/calendartues.png HTTP/1.1
Host: destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Sun, 13 Sep 2015 23:28:45 GMT
Accept-Ranges: bytes
Content-Length: 5829
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/sidebarbg.png

50.87.147.16

200 OK

2.3 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/sidebarbg.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 150 x 375, 8-bit colormap, non-interlaced\012- data
Size
2.3 kB (2299 bytes)
Hash
c398cabe198b718553939697e1727dea
b2fe8a5ce4f3650f41600fb27ff28e1c88e78c7b
5d96133fcdb57d600a0546661ab24ec9a5dbabdeb5518ea58744dd3a0261b8a7

HTTP Headers

GET /thespinningstream/sites/all/themes/Shuri/SuperPollyanna/sidebarbg.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg; has_js=1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Sun, 13 Sep 2015 17:33:34 GMT
Accept-Ranges: bytes
Content-Length: 2299
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Content-Type: image/png

destinedhero.com/thespinningstream/sites/all/images/radiohyrule.png

50.87.147.16

200 OK

6.3 kB

URL HTTP/1.1
destinedhero.com/thespinningstream/sites/all/images/radiohyrule.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 88 x 31, 8-bit/color RGBA, non-interlaced\012- data
Size
6.3 kB (6329 bytes)
Hash
6b0be63dd3ce881bc711fb023dbc00ac
e86e087bc0c68c5b1ea18774ab7ee3e69406b3e8
e62f510b7175750787d2920a04b87864bdd775cd359fa2b865bb754cfba8bc07

HTTP Headers

GET /thespinningstream/sites/all/images/radiohyrule.png HTTP/1.1
Host: destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:04 GMT
Server: Apache
Last-Modified: Fri, 03 Aug 2012 20:27:12 GMT
Accept-Ranges: bytes
Content-Length: 6329
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:04 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/outerbg.png

50.87.147.16

200 OK

54 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/outerbg.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 1038 x 450, 8-bit/color RGBA, non-interlaced\012- data
Size
54 kB (53485 bytes)
Hash
68c20e7eacb44296b34e9f28587ab4e2
98cfc67923f0b5fbec3951353eba4e36ecb37980
a939fab46beec358b1cb4714af0f909e036b9fe9dcf4fe10e0bd6752ef88a70f

HTTP Headers

GET /thespinningstream/sites/all/themes/Shuri/SuperPollyanna/outerbg.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg; has_js=1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2015 02:37:52 GMT
Accept-Ranges: bytes
Content-Length: 53485
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Content-Type: image/png

destinedhero.com/thespinningstream/sites/all/images/linkshideaway.png

50.87.147.16

200 OK

2.3 kB

URL HTTP/1.1
destinedhero.com/thespinningstream/sites/all/images/linkshideaway.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 89 x 32, 8-bit colormap, interlaced\012- data
Size
2.3 kB (2349 bytes)
Hash
ae80a7395cd22bd8e6567be18154d29f
67eccf056401068ea24bb40591a70cf7af481b1c
417c14b848c777076d4af4996214bce953642d5845177dc3a342324b99c36b11

HTTP Headers

GET /thespinningstream/sites/all/images/linkshideaway.png HTTP/1.1
Host: destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:04 GMT
Server: Apache
Last-Modified: Fri, 03 Aug 2012 20:27:12 GMT
Accept-Ranges: bytes
Content-Length: 2349
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:04 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/newsbutton.png

50.87.147.16

200 OK

6.3 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/newsbutton.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 150 x 18, 8-bit/color RGBA, non-interlaced\012- data
Size
6.3 kB (6256 bytes)
Hash
41d84446b17516308575639c70f22453
2134af79f3276d9b9926d2ac023e7972416007ed
6bd74e8f275c8e36714bbc08a8e6a310843a5c5503d5c0c5fc96e56c0372f586

HTTP Headers

GET /thespinningstream/sites/all/themes/Shuri/SuperPollyanna/newsbutton.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg; has_js=1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:04 GMT
Server: Apache
Last-Modified: Sun, 13 Sep 2015 18:56:12 GMT
Accept-Ranges: bytes
Content-Length: 6256
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:04 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/chatbutton.png

50.87.147.16

200 OK

6.0 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/chatbutton.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 150 x 18, 8-bit/color RGBA, non-interlaced\012- data
Size
6.0 kB (6033 bytes)
Hash
9dca24b8fbac05d55a9643b29c00d528
e30773ae7e577c0851d2d75fead312876c5d3d98
eef0b32e66a4ba084e17f66fef60dcd14e8dc5df2b84f398adf968bfb81deb8a

HTTP Headers

GET /thespinningstream/sites/all/themes/Shuri/SuperPollyanna/chatbutton.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg; has_js=1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:04 GMT
Server: Apache
Last-Modified: Sun, 13 Sep 2015 18:56:11 GMT
Accept-Ranges: bytes
Content-Length: 6033
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:04 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/headerbg.png

50.87.147.16

200 OK

55 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/headerbg.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 1000 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
55 kB (55448 bytes)
Hash
e823de9d36ee38ebce4017f0f495b802
a9d2a4c264737fd185edf1ec28d009fcb1b9a64c
e4d20bbcbec32d833f8c0cdafaf11ded444e4052b9924378b4d9e711ec96506f

HTTP Headers

GET /thespinningstream/sites/all/themes/Shuri/SuperPollyanna/headerbg.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg; has_js=1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2015 02:37:46 GMT
Accept-Ranges: bytes
Content-Length: 55448
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:03 GMT
Content-Type: image/png

destinedhero.com/thespinningstream/sites/all/images/lineup.png

50.87.147.16

200 OK

1.0 kB

URL HTTP/1.1
destinedhero.com/thespinningstream/sites/all/images/lineup.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 150 x 40, 8-bit/color RGB, non-interlaced\012- data
Size
1.0 kB (1024 bytes)
Hash
0819688da529f3762b4a4566710678ad
ecc3ca7b17e3a76a3a81c1b904619905c56cc185
099534001afb0e445605a5b13245fc24d8eb44685d41af0c97ba256ca7490f9b

HTTP Headers

GET /thespinningstream/sites/all/images/lineup.png HTTP/1.1
Host: destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:04 GMT
Server: Apache
Last-Modified: Sun, 13 Sep 2015 23:45:17 GMT
Accept-Ranges: bytes
Content-Length: 1024
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:04 GMT
Content-Type: image/png

destinedhero.com/thespinningstream/sites/all/images/calendarsat.png

50.87.147.16

200 OK

7.9 kB

URL HTTP/1.1
destinedhero.com/thespinningstream/sites/all/images/calendarsat.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 150 x 55, 8-bit/color RGB, non-interlaced\012- data
Size
7.9 kB (7916 bytes)
Hash
8a77461971637ca68e1e5eca1a301ead
5f0cc340dd0b2dce4d8c45f73590853aa8e19636
d78397b0e556245db6aea6b4ea941e69028eb5adbf0b2e0a40d9ba4954df7865

HTTP Headers

GET /thespinningstream/sites/all/images/calendarsat.png HTTP/1.1
Host: destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:04 GMT
Server: Apache
Last-Modified: Sun, 13 Sep 2015 23:28:43 GMT
Accept-Ranges: bytes
Content-Length: 7916
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:04 GMT
Content-Type: image/png

destinedhero.com/thespinningstream/sites/all/images/calendarsun.png

50.87.147.16

200 OK

7.5 kB

URL HTTP/1.1
destinedhero.com/thespinningstream/sites/all/images/calendarsun.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 150 x 55, 8-bit/color RGB, non-interlaced\012- data
Size
7.5 kB (7544 bytes)
Hash
8be8149570725f8655ba0d58bdf38a9f
30eb5f5aafda1e6c87dd44692ca811a4e534d906
c888763dd74d4e75c473d824a15cadd37b4ab8ef91aa38c573cebe315aea2b6a

HTTP Headers

GET /thespinningstream/sites/all/images/calendarsun.png HTTP/1.1
Host: destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:04 GMT
Server: Apache
Last-Modified: Mon, 10 Jun 2019 01:24:35 GMT
Accept-Ranges: bytes
Content-Length: 7544
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:04 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/podcastbutton.png

50.87.147.16

200 OK

6.5 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/podcastbutton.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 150 x 18, 8-bit/color RGBA, non-interlaced\012- data
Size
6.5 kB (6486 bytes)
Hash
0c5f72a6d8a60b3ef8c258ac54d35531
ed57f1a2279d5b7f368da267a3d2f0913b50ce27
d6440822798e99b07d7bb899deb09ee60c8b796bb46818182253beb055ff279f

HTTP Headers

GET /thespinningstream/sites/all/themes/Shuri/SuperPollyanna/podcastbutton.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg; has_js=1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:04 GMT
Server: Apache
Last-Modified: Sun, 13 Sep 2015 18:56:12 GMT
Accept-Ranges: bytes
Content-Length: 6486
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:04 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/musicbutton.png

50.87.147.16

200 OK

6.5 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/musicbutton.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 150 x 18, 8-bit/color RGBA, non-interlaced\012- data
Size
6.5 kB (6483 bytes)
Hash
88a12dfb9fa896a3365f9ad39a517188
61a5a0b94cccc6b0778e8fc41cdf4c995b3c7d9d
a595539b10e1330bf4b81863d766ae66125d6fd59e53ae07683736314df59474

HTTP Headers

GET /thespinningstream/sites/all/themes/Shuri/SuperPollyanna/musicbutton.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg; has_js=1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:04 GMT
Server: Apache
Last-Modified: Sun, 13 Sep 2015 18:56:11 GMT
Accept-Ranges: bytes
Content-Length: 6483
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:04 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/submissionsbutton.png

50.87.147.16

200 OK

6.4 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/submissionsbutton.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 150 x 18, 8-bit/color RGBA, non-interlaced\012- data
Size
6.4 kB (6407 bytes)
Hash
e091418ed199aaf74bea0334b1dabb71
b41a79aec957af3991bfb21f8db012e3a60c3089
14fff5d86b255fe635b7b509a461f8bdf8559e701cf1598810c7e0b33cf726b8

HTTP Headers

GET /thespinningstream/sites/all/themes/Shuri/SuperPollyanna/submissionsbutton.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg; has_js=1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:04 GMT
Server: Apache
Last-Modified: Sun, 13 Sep 2015 18:56:13 GMT
Accept-Ranges: bytes
Content-Length: 6407
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:04 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/returnplaque.png

50.87.147.16

200 OK

4.7 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/returnplaque.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 575 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size
4.7 kB (4716 bytes)
Hash
7d2b5682a8a030f611a64e444fed2a24
d312946f1280cdd68248624a1b37512c312c6cd9
bcc6b14e3f63c2cdc44bf21c5eda6060cefe67669e720f5d05ea22029af3e889

HTTP Headers

GET /thespinningstream/sites/all/themes/Shuri/SuperPollyanna/returnplaque.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg; has_js=1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:04 GMT
Server: Apache
Last-Modified: Sat, 09 Feb 2013 06:37:08 GMT
Accept-Ranges: bytes
Content-Length: 4716
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:04 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/aboutbutton.png

50.87.147.16

200 OK

6.3 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/aboutbutton.png
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 150 x 18, 8-bit/color RGBA, non-interlaced\012- data
Size
6.3 kB (6264 bytes)
Hash
c69471eb12747301473b9cdd6e80e6a8
1e5b54fa4fa097766f8bccf163007538fe7f164c
7e02d41519c29d20c41094ce04027ebfd73c3167ee7fd9cd3b8a07f3226c7175

HTTP Headers

GET /thespinningstream/sites/all/themes/Shuri/SuperPollyanna/aboutbutton.png HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/layout.css?pbiv1r
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg; has_js=1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:04 GMT
Server: Apache
Last-Modified: Sun, 13 Sep 2015 18:56:10 GMT
Accept-Ranges: bytes
Content-Length: 6264
Cache-Control: max-age=1209600
Expires: Mon, 19 Dec 2022 04:23:04 GMT
Content-Type: image/png

www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/favicon.ico

50.87.147.16

200 OK

1.2 kB

URL HTTP/1.1
www.destinedhero.com/thespinningstream/sites/all/themes/Shuri/SuperPollyanna/favicon.ico
IP
50.87.147.16:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
MS Windows icon resource - 1 icon, 16x16\012- data
Size
1.2 kB (1150 bytes)
Hash
66af09ff9cd29089b69862cfd155162b
5e5721b306690a31b8777e1580966e81abc73a52
4cd0987c13f59f0527492e99262fa95edb938085a3266117a76fc5757445f834

HTTP Headers

GET /thespinningstream/sites/all/themes/Shuri/SuperPollyanna/favicon.ico HTTP/1.1
Host: www.destinedhero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.destinedhero.com/thespinningstream/
Cookie: SESS4ad23d149edd1b54172ed73d26e57fe7=YMpaTMEGrl8uRUtrTS3r8yIelJrji_tAWUqNZM5Fueg; has_js=1

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 04:23:03 GMT
Server: nginx/1.21.6
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Mon, 06 Aug 2012 04:48:53 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Mon, 12 Dec 2022 04:23:04 GMT
X-Server-Cache: false

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations