Report - 67.225.218.6/vilpegslruav

Report Overview

Visited public
2023-12-04 20:00:28
Tags
URL
67.225.218.6/vilpegslruav
Finishing URL
simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
IP / ASN
67.225.218.6
#32244 LIQUIDWEB
Title
Simcast News portal.

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21 01:06:24	2023-12-04 11:30:31	350 B	942 B	54.230.218.11
static.anonymised.io	unknown	2022-06-29	2023-05-16 02:14:21	2023-12-04 14:17:27	2.2 kB	41 kB	34.107.217.107
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-04 07:58:24	1.3 kB	234 kB	142.250.74.168
img-s-msn-com.akamaized.net	434	2014-03-18	2015-06-10 00:07:02	2023-12-03 18:12:04	3.9 kB	58 kB	23.36.76.145
cdn.cnn.com	5245	1993-09-22	2017-10-13 18:03:50	2023-12-03 11:53:56	966 B	52 kB	96.6.16.166
cat.hbwrapper.com	21835	2020-01-30	2021-10-07 09:45:51	2023-12-03 21:21:38	473 B	254 B	192.241.157.60
aegis.anonymised.io	unknown	2022-06-29	2023-04-28 15:49:27	2023-12-04 19:17:00	519 B	562 B	34.107.217.107
67.225.218.6	unknown	unknown	2022-01-25 05:51:58	2023-11-12 15:48:31	1.3 kB	3.2 kB	67.225.218.6
cdn.adapex.io	22844	2016-02-29	2017-11-15 02:18:11	2023-12-04 06:01:53	409 B	178 kB	104.21.234.177
parking2.parklogic.com	288006	2007-02-28	2021-07-14 08:49:33	2023-12-04 15:48:20	448 B	1.3 kB	74.207.226.245
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-12-04 05:09:20	487 B	1.6 kB	151.101.129.229
storage.googleapis.com	420	2005-01-25	2012-08-06 08:33:30	2023-12-04 14:41:29	470 B	2.4 kB	172.217.21.187
cloudflare.com	342	2009-02-17	2012-05-22 15:19:15	2023-12-03 17:35:04	463 B	603 B	104.16.133.229
simcast.com	53300	2002-12-28	2017-02-01 17:43:29	2023-12-04 12:12:07	11 kB	171 kB	45.79.244.12
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2023-12-04 08:46:32	443 B	31 kB	151.101.2.137
content.api.news	56890	2017-03-23	2018-10-11 11:30:26	2023-12-04 14:17:26	952 B	73 kB	23.38.200.113
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-04 06:42:16	464 B	1.3 kB	142.250.74.106
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-12-04 05:09:04	1.4 kB	7.5 kB	104.17.24.14
p2.gcprivacy.com	15053	2021-01-18	2021-11-10 15:34:20	2023-12-03 21:21:38	552 B	412 B	3.223.231.171
parking3.parklogic.com	unknown	2007-02-28	2023-05-10 12:50:24	2023-12-04 05:11:58	455 B	48 kB	45.79.244.209

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-04	medium	67.225.218.6	Sinkholed
2023-12-04	medium	67.225.218.6	Sinkholed

ThreatFox

No alerts detected

JavaScript (28)

	URL	From	Size	First Seen	Last Seen
	simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0	ScriptElement	2.7 kB	2023-03-13	2024-08-21
Pretty URL simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0 IP 45.79.244.12 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 20:28 Last Seen2024-08-21 08:09 Times Seen366 Hash 7cfdbf491e011a2dcfbe59cb0a66e8cb d3bb62d5bef033d4013ab073323e76d97b503b5c 98879b18b0f93461e12c947668074744e8e3ef8ad9cb5706349cd9a2c8c24a94 Loading...

	simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0	ScriptElement	1.1 kB	2023-03-13	2025-02-02
Pretty URL simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0 IP 45.79.244.12 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 20:28 Last Seen2025-02-02 07:28 Times Seen367 Hash 4a3d370bf8514d1c6ff9ecdf8b7933b5 7c418355832bdc5784b7b1d297192a58d2ad9eec dc230f0981369bb090cf9184efed6365f23d5a38346da5114472a30e27fc98e0 Loading...

	www.googletagmanager.com/gtag/js?id=UA-205158314-1	ScriptElement	191 kB	2023-12-04	2023-12-04
Pretty URL www.googletagmanager.com/gtag/js?id=UA-205158314-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 19:20 Last Seen2023-12-04 21:00 Times Seen2 Hash a2875384ef61d8525e77d9bd619437bb b3db8e8549a17d32c5a61cba989be0092f6bb167 d1e97de27275260c2d20f4c3d727d0a196e75a7f5b4c09c8f45ee70ebfb50fa3 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery-modal/0.9.1/jquery.modal.min.js	ScriptElement	5.0 kB	2023-03-07	2025-05-10
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery-modal/0.9.1/jquery.modal.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17 Last Seen2025-05-10 21:12 Times Seen3117 Hash c8f50397e0560719c62a35318f413e16 a643db87287e6e940fbabe6d8cfee5a8775692d8 a7e8ed2d7bbdbcaeeee81c3433f057d64a32c000112bbd09b5969fc658d0a655 Loading...

	simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0	ScriptElement	17 B	2023-03-13	2025-02-02
Pretty URL simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0 IP 45.79.244.12 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 20:28 Last Seen2025-02-02 07:28 Times Seen367 Hash 55671e2b6b5c5fa3543d9fc97de45aaf 5230670323328bc7563d7425dec56cbee8e8d1fb be176535a79aba329d9be25ecebe0aada9d4189f94aaeb277ae1c247fd4e1f9a Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-11
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 06:22 Times Seen341042 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	cdn.adapex.io/hb/aaw.smc.js	ScriptElement	569 kB	2023-11-28	2024-08-20
Pretty URL cdn.adapex.io/hb/aaw.smc.js IP 104.21.234.177 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 08:08 Last Seen2024-08-20 17:37 Times Seen87 Hash abc2c1b74ae0f6bdd68bb01f1bf28287 dcfc83117f1173557d9f402a4f17cd59632e76ef 6ecf41b844867c6148bafed097cbd4cbc266ca24ce6d55549a29642bed667692 Loading...

	simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0	ScriptElement	293 B	2023-03-13	2025-02-02
Pretty URL simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0 IP 45.79.244.12 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 20:28 Last Seen2025-02-02 07:28 Times Seen367 Hash be420392fce139ab9481a36ce717764d d755cc0b622b98377b98710a2e7de91290e2e3fa e6b60dba2dd678c539043d95b334ed34092c39913e80040f6cb32695dfdf1fb7 Loading...

	simcast.com/sandbox%20eval%20code		147 B	2023-04-11	2025-05-11
Pretty URL simcast.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 06:22 Times Seen341844 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.googletagmanager.com/gtag/js?id=G-RFSL1NPH34&l=dataLayer&cx=c	ScriptElement	230 kB	2023-12-04	2023-12-04
Pretty URL www.googletagmanager.com/gtag/js?id=G-RFSL1NPH34&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 21:00 Last Seen2023-12-04 21:03 Times Seen2 Hash 38ef89aa0f5a1b3ee56404ccc0007b62 16f6f80c3c4f70b3eb4586efda29add608e0c9d9 f2261441d786a8cf9fae11f1eb28cc2a33b44c226d2b4279f08ddd6d67ce219e Loading...

	static.anonymised.io/light/bidderchecker.js?v=0.3.0t	ScriptElement	961 B	2023-07-21	2024-08-21
Pretty URL static.anonymised.io/light/bidderchecker.js?v=0.3.0t IP 34.107.217.107 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-21 19:16 Last Seen2024-08-21 09:07 Times Seen491 Hash 31a291b28c9e551241f87d35c05fd018 ca63128bd9294649ea2ab2580d71dbc0faed2b1b 722a4121ccf998eefa71a33203ddd5e99a0ba3243c0549cdf7302268fe0ba979 Loading...

	simcast.com/templates/simcast/js/lib.js	ScriptElement	1.5 kB	2023-03-13	2023-12-13
Pretty URL simcast.com/templates/simcast/js/lib.js IP 45.79.244.12 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 20:28 Last Seen2023-12-13 23:06 Times Seen367 Hash 3b91de9136bad66c52dcf18516de1dfa 4b25054aad0230a0178f1cf489a5d4abb7c8f911 169fe0d25ec31dc891dd81af468f37776b222fcea163e79776554ef4c6ed3564 Loading...

	cdnjs.cloudflare.com/ajax/libs/TimeMe.js/2.0.0/timeme.min.js	ScriptElement	5.7 kB	2023-07-21	2025-01-15
Pretty URL cdnjs.cloudflare.com/ajax/libs/TimeMe.js/2.0.0/timeme.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-21 19:16 Last Seen2025-01-15 16:29 Times Seen485 Hash 5ea26e1a2819a4a724eafedf1513bd07 1de7e90a4088ed7403e1d858495ebbf6479e2509 5725f04fd1f8882b1d02561933d648bb1a91349b0f33031e78ce0668d3751db3 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-KXJCD57	ScriptElement	313 kB	2023-12-04	2023-12-05
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-KXJCD57 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 19:17 Last Seen2023-12-05 04:00 Times Seen4 Hash 1b3063761f7fc6cb80ed397ad08ba2ce 6161f7bd514b9d7dec7b541e7a993a638a9e62f3 cd86701f33df646a6a0903074ce59019332f89afa992483180f477f134187e57 Loading...

	static.anonymised.io/light/loader.js	ScriptElement	448 B	2023-11-30	2023-12-05
Pretty URL static.anonymised.io/light/loader.js IP 34.107.217.107 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 06:07 Last Seen2023-12-05 12:03 Times Seen76 Hash b0e92562b59509b5a446c978e501e978 4f6e55877170b8277b7dd4d0691ccc98296507a4 138fee977dc4ed5faa24d58c77ab2293a1d18e6549c35fa8479e04a008d48a09 Loading...

	code.jquery.com/jquery-3.4.1.min.js	ScriptElement	88 kB	2023-03-07	2025-05-11
Pretty URL code.jquery.com/jquery-3.4.1.min.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 06:17 Times Seen68220 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	simcast.com/sandbox%20eval%20code		136 B	2023-04-11	2025-05-11
Pretty URL simcast.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:23 Last Seen2025-05-11 06:28 Times Seen41632 Hash fb4eb094524daea58bf7f82331598541 f5ca39eb98fa1685f8647514a627d3d7f216f7ef 7cbf1e77bb9277bac7030ded2087246adf5c59564a5a1f28ce8c09be6ef48683 Loading...

	simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0	ScriptElement	175 B	2023-03-07	2025-04-19
Pretty URL simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0 IP 45.79.244.12 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:23 Last Seen2025-04-19 12:57 Times Seen467 Hash aa879723b8c046d4784258302b8b83da 233e669ca56464dbe14e2f715a63de893c73084f f17fe1b9216dfac88c92157921f4040222fcd2fe4690cbf0b888610ecf05d034 Loading...

	static.anonymised.io/light/collect.min.js?v=0.3.0t	ScriptElement	4.6 kB	2023-11-15	2024-08-20
Pretty URL static.anonymised.io/light/collect.min.js?v=0.3.0t IP 34.107.217.107 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-15 23:07 Last Seen2024-08-20 19:23 Times Seen333 Hash 30af78709415899289cc0b1a4742d68c 4826d176448a946ce9f40131d267f0523d5ead5b 4421d90bbf983478021bbc14981742e33af47dcfbbbbd2df44b975257fde30cb Loading...

	simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0	ScriptElement	18 B	2023-03-13	2024-08-21
Pretty URL simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0 IP 45.79.244.12 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 20:28 Last Seen2024-08-21 08:09 Times Seen366 Hash bd1c9839b67ef82dd3b26885adc833d7 a1287c235bd34d156080a0d9d77070ca80776c96 9cfbac547303e1aaeaf8c3df81544a97e7e5da2043108e6854132d917f783a1a Loading...

	parking2.parklogic.com/page/enhance.js?pcId=56&domain=67.225.218.6	ScriptElement	997 B	2023-11-29	2023-12-12
Pretty URL parking2.parklogic.com/page/enhance.js?pcId=56&domain=67.225.218.6 IP 74.207.226.245 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-29 04:00 Last Seen2023-12-12 09:00 Times Seen60 Hash fb0adab9548929f874942026f32d79d7 afd3cc3f5add2dbfa294b9c74e53f0586ed1ea92 68654db82ea4fb99492ebd42ed4a6f41ead050295f3592118e5a87c1a8ce7bbe Loading...

	securepubads.g.doubleclick.net/tag/js/gpt.js	ScriptElement	13 kB	2023-04-05	2025-05-11
Pretty URL securepubads.g.doubleclick.net/tag/js/gpt.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 04:46 Last Seen2025-05-11 06:28 Times Seen39456 Hash 0c9ed134ae3d5ffe972da2a3e59dc428 620df222551395592e46e4c5f425cf23dcdad891 5f9efa604bfe2aee8c1a90376125a098306ba390530a6f9b2ecb0a67cdac178d Loading...

	static.anonymised.io/light/bundle.js?v=0.3.0t	ScriptElement	117 kB	2023-11-30	2023-12-05
Pretty URL static.anonymised.io/light/bundle.js?v=0.3.0t IP 34.107.217.107 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 15:35 Last Seen2023-12-05 12:03 Times Seen73 Hash 4ef1bcd8e73c669c9ce6b15b65a28431 1f0b6513a4d5e2061307d22336b8ab5ebc1a6226 804dcbc892006cb041c6eed7a954330d2ee94f65f6a42bf571078f874709a190 Loading...

	static.anonymised.io/light/interestscores.js?v=0.3.0t	ScriptElement	3.6 kB	2023-11-15	2023-12-13
Pretty URL static.anonymised.io/light/interestscores.js?v=0.3.0t IP 34.107.217.107 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-15 23:07 Last Seen2023-12-13 23:06 Times Seen290 Hash 948c5aa6b61efe3e198a0384e11555c3 f7992dd433d9daa9e731282d05ed9b4254d7cd67 0409134df4107fe3d86b26248e3e8253287e929e94b690173bbab16e35686cd6 Loading...

	simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0	ScriptElement	234 B	2023-03-07	2025-04-04
Pretty URL simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0 IP 45.79.244.12 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:23 Last Seen2025-04-04 07:51 Times Seen465 Hash 2489fa77a8a39db330199cbceb8177a7 3ac3cd87f7b6a94fdc514514937ffd0ff5bbe582 519b432643a4cdcee3828e5a4a6cb46b291744c3c7f90acafaa614642d6f49d7 Loading...

		Size	First Seen	Last Seen
	#1 Eval - b45e95fea3b5e5dbd7c26831c213e0a3	12 B	2023-03-07 13:23	2025-05-08 21:41
Pretty Observations First Seen2023-03-07 13:23 Last Seen2025-05-08 21:41 Times Seen511 Hash b45e95fea3b5e5dbd7c26831c213e0a3 1c0e809426288719377d38c15904c4af42696fa3 d289508d3517d334034de9a39dec16581aec0d5c06c75bc9cece09aa7a837e80 Loading...

	#2 Eval - 8f2d62b55a0c65b797fcf7a35f94fb6c	10 B	2023-03-07 13:23	2025-05-08 21:41
Pretty Observations First Seen2023-03-07 13:23 Last Seen2025-05-08 21:41 Times Seen587 Hash 8f2d62b55a0c65b797fcf7a35f94fb6c 72f60a1312531191643f08d829bbbd3385b0fc0b e7b5433c7a85de541cc143f43663af2554b2a9db3782d5fe54a2812b618c194c Loading...

	#3 Eval - 866509bafbc0b8ae5b78492be82d2291	26 B	2023-03-07 13:23	2025-05-08 21:41
Pretty Observations First Seen2023-03-07 13:23 Last Seen2025-05-08 21:41 Times Seen485 Hash 866509bafbc0b8ae5b78492be82d2291 c8f93cc674d4f2a844180997c0f48f6837ad1959 ba5ad709790009b1d067fc241bfd673e0212f3dd6a14ff09ede8514d1d93c738 Loading...

HTTP Transactions (56)

URL IP Response Size

67.225.218.6/vilpegslruav

67.225.218.6

1.9 kB

URL
67.225.218.6/vilpegslruav
IP
67.225.218.6:0
ASN
#32244 LIQUIDWEB

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (504)
Size
1.9 kB (1888 bytes)
Hash
b867e83fbcdd4424a5a18b30623607da
dc6c5d66122e9769227bb65bc68b6d8917a5019e
80024dbfb055c0e993396ecca724f124834a7a608185698b4191e9b0629f3f17

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /vilpegslruav HTTP/1.1
Host: 67.225.218.6
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 20:00:10 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9
X-Powered-By: PHP/5.4.16
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 1888
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

67.225.218.6/page/bouncy.php?&bpae=GbhGd70mYk1%2Fj3N0vP%2BXi5L6NQCkZgPg58w0Pp1xAXD2U2kEqh%2FCtylIEKr6SRLC4z%2FShHt0CltMFRc5ZRnjY9aY6AE948DXZL0szx%2Bmltdmcs8KNLOXP2Mofc9UDGILAIBMKnyrEnGybzLAycqblWbHpJzzjBwGucGrSdaA4W9O3aqeZAlqgPTNbPu2tW38bQWcm5FDH0h52jBTbNcEQyJyYFOgggq0EChOREOI6QcSx9va3jpAI9HoFipTfcC5IXZa0Adqz4NIr3Ta9LbSj67BxF4uDsnihNFBZhM9qCDZatVaK5SL9wo381TJ51lg0XIlvw11R0TQjEyJQSesKtuzmQRl5rPRG5zH%2B3nPDdGKTLSclXMhM8MxA7sQbbIZCWZK8PMHeafDs0I%3D&redirectType=js&inIframe=false&inPopUp=false

67.225.218.6

691 B

URL
67.225.218.6/page/bouncy.php?&bpae=GbhGd70mYk1%2Fj3N0vP%2BXi5L6NQCkZgPg58w0Pp1xAXD2U2kEqh%2FCtylIEKr6SRLC4z%2FShHt0CltMFRc5ZRnjY9aY6AE948DXZL0szx%2Bmltdmcs8KNLOXP2Mofc9UDGILAIBMKnyrEnGybzLAycqblWbHpJzzjBwGucGrSdaA4W9O3aqeZAlqgPTNbPu2tW38bQWcm5FDH0h52jBTbNcEQyJyYFOgggq0EChOREOI6QcSx9va3jpAI9HoFipTfcC5IXZa0Adqz4NIr3Ta9LbSj67BxF4uDsnihNFBZhM9qCDZatVaK5SL9wo381TJ51lg0XIlvw11R0TQjEyJQSesKtuzmQRl5rPRG5zH%2B3nPDdGKTLSclXMhM8MxA7sQbbIZCWZK8PMHeafDs0I%3D&redirectType=js&inIframe=false&inPopUp=false
IP
67.225.218.6:0
ASN
#32244 LIQUIDWEB

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
691 B (691 bytes)
Hash
8d8a80d00c72e0f31479cdfe5fbac6c0
cb3854df5c28dfdbf0c170dae182b504e2237ef2
c5f641c207729301205f6ee4935551f2932627cc00edeb2f415c4beddd46bd70

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /page/bouncy.php?&bpae=GbhGd70mYk1%2Fj3N0vP%2BXi5L6NQCkZgPg58w0Pp1xAXD2U2kEqh%2FCtylIEKr6SRLC4z%2FShHt0CltMFRc5ZRnjY9aY6AE948DXZL0szx%2Bmltdmcs8KNLOXP2Mofc9UDGILAIBMKnyrEnGybzLAycqblWbHpJzzjBwGucGrSdaA4W9O3aqeZAlqgPTNbPu2tW38bQWcm5FDH0h52jBTbNcEQyJyYFOgggq0EChOREOI6QcSx9va3jpAI9HoFipTfcC5IXZa0Adqz4NIr3Ta9LbSj67BxF4uDsnihNFBZhM9qCDZatVaK5SL9wo381TJ51lg0XIlvw11R0TQjEyJQSesKtuzmQRl5rPRG5zH%2B3nPDdGKTLSclXMhM8MxA7sQbbIZCWZK8PMHeafDs0I%3D&redirectType=js&inIframe=false&inPopUp=false HTTP/1.1
Host: 67.225.218.6
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://67.225.218.6/vilpegslruav
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9
Cache-Control: no-cache
Content-Type: text/html; charset=UTF-8
Date: Mon, 04 Dec 2023 20:00:11 GMT
Pragma: no-cache
Connection: Keep-Alive
X-Powered-By: PHP/5.4.16
Content-Length: 691

simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0

45.79.244.12

200 OK

6.0 kB

URL User Request GET HTTP/1.1
simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1397), with CRLF, LF line terminators
Size
6.0 kB (6014 bytes)
Hash
57ce7174dac7f913689e0e0ab3b130e6
9291dc938e24e32fa2ca209f5c1afa784f364854
70dc3e380cdf4f1e0ceb2a516a6f415078a9ecdb2baab2e889157ba3157bfbc9

HTTP Headers

GET /?d=67.225.218.6&pcid=48&rid=112&a=0 HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://67.225.218.6/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:11 GMT
server: Apache/2.4.38 (Debian)
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; expires=Tue, 05-Dec-2023 20:00:11 GMT; Max-Age=86400; path=/
uidinfer=93533006; expires=Wed, 03-Jan-2024 20:00:11 GMT; Max-Age=2592000; path=/; secure; HttpOnly; SameSite=None
upgrade: h2
connection: Upgrade
vary: Accept-Encoding
content-encoding: gzip
content-length: 6014
content-type: text/html; charset=UTF-8

code.jquery.com/jquery-3.4.1.min.js

151.101.2.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.4.1.min.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
31 kB (30638 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /jquery-3.4.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://simcast.com
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15851"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 04 Dec 2023 20:00:12 GMT
age: 6917812
x-served-by: cache-lga21965-LGA, cache-bma1642-BMA
x-cache: HIT, HIT
x-cache-hits: 9, 356527
x-timer: S1701720013.918297,VS0,VE0
vary: Accept-Encoding
content-length: 30638
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery-modal/0.9.1/jquery.modal.min.css

104.17.24.14

200 OK

1.5 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery-modal/0.9.1/jquery.modal.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3201), with no line terminators
Size
1.5 kB (1541 bytes)
Hash
54e7ff4998b2900efc138ead15e54a93
928eeaad352ee4698ec1dddad216ec38424cfee3
eaa593bcfe485f4b5a8ac997cf9936604f9fbef91652db94a8e22b75d612bfc1

HTTP Headers

GET /ajax/libs/jquery-modal/0.9.1/jquery.modal.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 20:00:12 GMT
content-type: text/css; charset=utf-8
content-length: 1541
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-c81"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 399775
expires: Sat, 23 Nov 2024 20:00:12 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5%2BN3asdnvrvE9zy1nToQc%2FdEtBV14ZOMDjCq6gJefJhR5Feq9tVtTvpGAQ3vfKQeJLQ0MIQs1cA3gxqVrbpsBgtVkfBvISz%2Fg8q%2Fv5bm3nQ%2BLbosPYRTUO2%2B971WM3GoSXTamvaQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8306a261184e569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery-modal/0.9.1/jquery.modal.min.js

104.17.24.14

200 OK

1.4 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery-modal/0.9.1/jquery.modal.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (4862)
Size
1.4 kB (1399 bytes)
Hash
c8f50397e0560719c62a35318f413e16
a643db87287e6e940fbabe6d8cfee5a8775692d8
a7e8ed2d7bbdbcaeeee81c3433f057d64a32c000112bbd09b5969fc658d0a655

HTTP Headers

GET /ajax/libs/jquery-modal/0.9.1/jquery.modal.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 20:00:12 GMT
content-type: application/javascript; charset=utf-8
content-length: 1399
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-1359"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1091934
expires: Sat, 23 Nov 2024 20:00:12 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0H%2B5VvHM3%2BdhTMn2hLOBqFI%2FIch%2F0josd8tdCZi5H7Bd5TwrGtX8Vt73tOFtjqHYy46qsqwtz55xUnU0NmhWWE%2BcFACPjdLCu9FsYxpyBNNkiGfTTsZ0viuOcVVdRCCaXosbOQRT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8306a2612890569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

simcast.com/widgets/modal/modal.css

45.79.244.12

200 OK

385 B

URL GET HTTP/1.1
simcast.com/widgets/modal/modal.css
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
ASCII text
Size
385 B (385 bytes)
Hash
bd2694c734297ea6895343d4e0245c4e
dd3bcb539eeea81b7915b785c21e00ddc06261da
959eacecf18680fc15471964610efb96467b99f6126a6c5d3151216838a940bf

HTTP Headers

GET /widgets/modal/modal.css HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:13 GMT
server: Apache/2.4.38 (Debian)
upgrade: h2
connection: Upgrade
last-modified: Thu, 26 May 2022 00:35:40 GMT
etag: "40b-5dfdf5e88e70c-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 385
content-type: text/css

simcast.com/templates/simcast/css/html.css

45.79.244.12

200 OK

4.3 kB

URL GET HTTP/1.1
simcast.com/templates/simcast/css/html.css
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
ASCII text
Size
4.3 kB (4273 bytes)
Hash
e69879bc4f0636a169931936a15e5111
e7385942760a08cd59d59756d0e4c4161e1d29d5
1ada2e586e894dd85febcd6dfb91b523014dc9342efbd3315253c97456d36266

HTTP Headers

GET /templates/simcast/css/html.css HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:13 GMT
server: Apache/2.4.38 (Debian)
upgrade: h2
connection: Upgrade
last-modified: Thu, 26 May 2022 00:35:40 GMT
etag: "5101-5dfdf5e87fcaa-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4273
content-type: text/css

simcast.com/templates/simcast/css/content.css

45.79.244.12

200 OK

714 B

URL GET HTTP/1.1
simcast.com/templates/simcast/css/content.css
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
ASCII text
Size
714 B (714 bytes)
Hash
0558e1fedc0ccfc59253553ac3a47f0f
a9848ff78c51c5e04437447de8bf84761662053e
e724e26d8d124dcf99404f07ac7c77c862193df3cdaf137b74400103c384638a

HTTP Headers

GET /templates/simcast/css/content.css HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:13 GMT
server: Apache/2.4.38 (Debian)
upgrade: h2
connection: Upgrade
last-modified: Tue, 12 Jul 2022 12:40:30 GMT
etag: "a4c-5e39af94af09a-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 714
content-type: text/css

simcast.com/templates/simcast/js/lib.js

45.79.244.12

200 OK

659 B

URL GET HTTP/1.1
simcast.com/templates/simcast/js/lib.js
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
ASCII text
Size
659 B (659 bytes)
Hash
3b91de9136bad66c52dcf18516de1dfa
4b25054aad0230a0178f1cf489a5d4abb7c8f911
169fe0d25ec31dc891dd81af468f37776b222fcea163e79776554ef4c6ed3564

HTTP Headers

GET /templates/simcast/js/lib.js HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:13 GMT
server: Apache/2.4.38 (Debian)
upgrade: h2
connection: Upgrade
last-modified: Mon, 18 Jul 2022 14:33:31 GMT
etag: "5e1-5e415408aaf91-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 659
content-type: application/javascript

simcast.com/lib/fontawesome-5.9.0/css/all.min.css

45.79.244.12

200 OK

12 kB

URL GET HTTP/1.1
simcast.com/lib/fontawesome-5.9.0/css/all.min.css
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (55782)
Size
12 kB (12204 bytes)
Hash
dbf9d822cefe851ba6f66e1ad57e8987
2c43148f7df780e8b40a3ab09c770f03adbf11af
533143d96607d94d5d4292838e364aef656d3de58fe74368263776eab9c07542

HTTP Headers

GET /lib/fontawesome-5.9.0/css/all.min.css HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:13 GMT
server: Apache/2.4.38 (Debian)
upgrade: h2
connection: Upgrade
last-modified: Thu, 26 May 2022 00:35:39 GMT
etag: "da9f-5dfdf5e807abc-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12204
content-type: text/css

cdn.adapex.io/hb/aaw.smc.js

104.21.234.177

200 OK

177 kB

URL GET HTTP/2
cdn.adapex.io/hb/aaw.smc.js
IP
104.21.234.177:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerLet's Encrypt
Subjectadapex.io
Fingerprint86:EA:63:18:14:10:73:7F:BB:F9:C5:CE:6E:42:BC:9A:D7:91:8C:1D
ValidityFri, 27 Oct 2023 06:55:49 GMT - Thu, 25 Jan 2024 06:55:48 GMT

File type
ASCII text, with very long lines (65254)
Size
177 kB (176786 bytes)
Hash
abc2c1b74ae0f6bdd68bb01f1bf28287
dcfc83117f1173557d9f402a4f17cd59632e76ef
6ecf41b844867c6148bafed097cbd4cbc266ca24ce6d55549a29642bed667692

HTTP Headers

GET /hb/aaw.smc.js HTTP/1.1
Host: cdn.adapex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 20:00:13 GMT
content-type: application/javascript
last-modified: Tue, 28 Nov 2023 05:30:45 GMT
vary: Accept-Encoding
etag: W/"65657b05-8ae0e"
expires: Tue, 05 Dec 2023 07:01:43 GMT
cache-control: public, max-age=86400
access-control-allow-origin: *
cf-cache-status: HIT
age: 36870
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SkyDkTpHJydcvGeLxkD1pPkUxQKZyqpNA6h8a9PQdvArTiy6Qe7RmMjm%2BSAmcFOjVuEIsbZCDduizoQV74i1%2FToz9iZinUK8ZpECrusWT0a1%2BT8EqrMKktbu1LpzwrOy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8306a2611f425688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

simcast.com/widgets/gdpr/gdpr.css

45.79.244.12

200 OK

351 B

URL GET HTTP/1.1
simcast.com/widgets/gdpr/gdpr.css
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
ASCII text
Size
351 B (351 bytes)
Hash
4e9261974ceecd0c1a83819d46120ca8
8e1a966ee20e09602acca42f80d08e4e31e3b285
ddee33ff05fc11855cc9cc93da0cb84c6f86dacb7f307c98aadafadcf59486d9

HTTP Headers

GET /widgets/gdpr/gdpr.css HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:13 GMT
server: Apache/2.4.38 (Debian)
upgrade: h2
connection: Upgrade
last-modified: Thu, 26 May 2022 00:35:40 GMT
etag: "31f-5dfdf5e88e70c-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 351
content-type: text/css

www.googletagmanager.com/gtag/js?id=UA-205158314-1

142.250.74.168

200 OK

69 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-205158314-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (4179)
Size
69 kB (68992 bytes)
Hash
a2875384ef61d8525e77d9bd619437bb
b3db8e8549a17d32c5a61cba989be0092f6bb167
d1e97de27275260c2d20f4c3d727d0a196e75a7f5b4c09c8f45ee70ebfb50fa3

HTTP Headers

GET /gtag/js?id=UA-205158314-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 04 Dec 2023 20:00:13 GMT
expires: Mon, 04 Dec 2023 20:00:13 GMT
cache-control: private, max-age=900
last-modified: Mon, 04 Dec 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68992
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img-s-msn-com.akamaized.net/tenant/amp/entityid/BBTho5o.img

23.36.76.145

200 OK

254 B

URL GET HTTP/2
img-s-msn-com.akamaized.net/tenant/amp/entityid/BBTho5o.img
IP
23.36.76.145:443
ASN
#20940 Akamai International B.V.

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
254 B (254 bytes)
Hash
3bdaaec6371c1fc80d95d38b3a5e5343
a9b57b0ed85c864393a6fc39acb333374d1c5920
57e2a1d9f49eefe0369f8cd04204de2d63726ee6153000ac4f8cc38a96b86a63

HTTP Headers

GET /tenant/amp/entityid/BBTho5o.img HTTP/1.1
Host: img-s-msn-com.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
content-location: https://img.s-msn.com/tenant/amp/entityid/BBTho5o
last-modified: Mon, 13 Nov 2023 17:36:35 GMT
x-source-length: 254
x-datacenter: northeu
x-activityid: 951735a7-ac98-4b4d-b902-92ca33b8311c
timing-allow-origin: *
x-frame-options: DENY
x-resizerversion: 1.0
content-length: 254
cache-control: public, max-age=164159
expires: Wed, 06 Dec 2023 17:36:12 GMT
date: Mon, 04 Dec 2023 20:00:13 GMT
X-Firefox-Spdy: h2

content.api.news/v3/images/bin/1d5d6984c1f0359fd039da9a36f0dc63?width=650

23.38.200.113

200 OK

29 kB

URL GET HTTP/2
content.api.news/v3/images/bin/1d5d6984c1f0359fd039da9a36f0dc63?width=650
IP
23.38.200.113:443
ASN
#16625 AKAMAI-AS

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerDigiCert Inc
Subjectnews.com.au
Fingerprint85:65:D7:0D:7D:B8:F4:5C:14:FD:23:99:56:EB:A8:3A:2E:3D:FB:18
ValiditySun, 26 Nov 2023 00:00:00 GMT - Mon, 25 Nov 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 536x715, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
29 kB (28550 bytes)
Hash
a5aa54fadb8a1f7a57f5aee84a420137
2c669d0731172132fefaf979483b685122cfb9f4
9e5625b7c8d18be1bb98cfabe01b608142da1f3bc6f3be904a8e772f7cbfc963

HTTP Headers

GET /v3/images/bin/1d5d6984c1f0359fd039da9a36f0dc63?width=650 HTTP/1.1
Host: content.api.news
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 01 Nov 2023 01:49:56 GMT
edge-cache-tag: 1d5d6984c1f0359fd039da9a36f0dc63
access-control-allow-headers: x-newsapi-api-key
etag: 44aaf1f70b53a4c16bf668a998530853-1d5d6984c1f0359fd039da9a36f0dc63-650
server: Akamai Image Manager
content-length: 28550
content-type: image/webp
cache-control: private, no-transform, max-age=4767435
expires: Mon, 29 Jan 2024 00:17:28 GMT
date: Mon, 04 Dec 2023 20:00:13 GMT
x-hobit: 2B
access-control-allow-methods: GET
access-control-allow-origin: *
x-o: CF
X-Firefox-Spdy: h2

cdn.cnn.com/cnnnext/dam/assets/210816213948-displaced-afghan-women-large-11.jpg

96.6.16.166

200 OK

21 kB

URL GET HTTP/2
cdn.cnn.com/cnnnext/dam/assets/210816213948-displaced-afghan-women-large-11.jpg
IP
96.6.16.166:443
ASN
#16625 AKAMAI-AS

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerGlobalSign nv-sa
Subjectwww.turner.com
FingerprintA3:65:17:64:C2:32:FA:7C:15:0C:5B:BA:D8:01:5A:7B:3D:AE:FF:51
ValidityTue, 09 May 2023 18:36:18 GMT - Sun, 09 Jun 2024 18:36:17 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=9, manufacturer=Canon, model=Canon EOS R5, xresolution=148, yresolution=156, resolutionunit=2, software=Adobe Photoshop CC 2019 (Macintosh), datetime=2021-08-17T01:39:30-20:00, copyright=2021 Getty Images], baseline, precision 8, 300x300, components 3\012- data
Size
21 kB (20605 bytes)
Hash
cb8b476ffb2f45d974575a1b8561f538
50731a53c4a00356aa408536b8a0d3e2f33e9f13
807675586534319561adf44f7b468a3f20b832714046e43cc9d9f63a35a337f3

HTTP Headers

GET /cnnnext/dam/assets/210816213948-displaced-afghan-women-large-11.jpg HTTP/1.1
Host: cdn.cnn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 20605
server: Apache-Coyote/1.1
cache-control: max-age=3600
expires: Mon, 04 Dec 2023 21:00:13 GMT
date: Mon, 04 Dec 2023 20:00:13 GMT
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn.cnn.com/cnnnext/dam/assets/210816213948-displaced-afghan-women-live-video.jpg

96.6.16.166

200 OK

31 kB

URL GET HTTP/2
cdn.cnn.com/cnnnext/dam/assets/210816213948-displaced-afghan-women-live-video.jpg
IP
96.6.16.166:443
ASN
#16625 AKAMAI-AS

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerGlobalSign nv-sa
Subjectwww.turner.com
FingerprintA3:65:17:64:C2:32:FA:7C:15:0C:5B:BA:D8:01:5A:7B:3D:AE:FF:51
ValidityTue, 09 May 2023 18:36:18 GMT - Sun, 09 Jun 2024 18:36:17 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=9, manufacturer=Canon, model=Canon EOS R5, xresolution=148, yresolution=156, resolutionunit=2, software=Adobe Photoshop CC 2019 (Macintosh), datetime=2021-08-17T01:39:30-20:00, copyright=2021 Getty Images], baseline, precision 8, 576x324, components 3\012- data
Size
31 kB (31136 bytes)
Hash
d4ea5633ad0906ddc499438cce126a65
af9d47fbd91d0154d19faa23d6eb173cac670298
cb0217ae6b1804320aab99ea40ab111a8264583e237fd928f1180babf9adb52a

HTTP Headers

GET /cnnnext/dam/assets/210816213948-displaced-afghan-women-live-video.jpg HTTP/1.1
Host: cdn.cnn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 31136
server: Apache-Coyote/1.1
cache-control: max-age=3600
expires: Mon, 04 Dec 2023 21:00:13 GMT
date: Mon, 04 Dec 2023 20:00:13 GMT
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2

img-s-msn-com.akamaized.net/tenant/amp/entityid/AA1kYkOo.img?h=100&w=100&x=657.5&y=590.5&m=5

23.36.76.145

200 OK

4.1 kB

URL GET HTTP/2
img-s-msn-com.akamaized.net/tenant/amp/entityid/AA1kYkOo.img?h=100&w=100&x=657.5&y=590.5&m=5
IP
23.36.76.145:443
ASN
#20940 Akamai International B.V.

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Size
4.1 kB (4096 bytes)
Hash
4d63fdd8d47e8879124ef0e3be9dc67b
635f581ec39b54b3e6596418f566749fd0d1aa23
e4e876e7842d65083a0dbc6567b4c91029417377f978997f2de4c69952fe8a95

HTTP Headers

GET /tenant/amp/entityid/AA1kYkOo.img?h=100&w=100&x=657.5&y=590.5&m=5 HTTP/1.1
Host: img-s-msn-com.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
access-control-allow-origin: *
content-location: https://img.s-msn.com/tenant/amp/entityid/AA1kYkOo?h=100&w=100&x=657.5&y=590.5&m=5
last-modified: Mon, 04 Dec 2023 14:04:00 GMT
x-source-length: 393505
x-datacenter: westus
x-activityid: 3efa8ae8-af5c-4483-9f05-6e052a5fb890
timing-allow-origin: *
x-frame-options: DENY
x-resizerversion: 1.0
content-length: 4096
cache-control: public, max-age=410641
expires: Sat, 09 Dec 2023 14:04:14 GMT
date: Mon, 04 Dec 2023 20:00:13 GMT
X-Firefox-Spdy: h2

img-s-msn-com.akamaized.net/tenant/amp/entityid/BBFijt.img

23.36.76.145

200 OK

554 B

URL GET HTTP/2
img-s-msn-com.akamaized.net/tenant/amp/entityid/BBFijt.img
IP
23.36.76.145:443
ASN
#20940 Akamai International B.V.

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
554 B (554 bytes)
Hash
9b00985be4f02355523ecdc04b9e5f97
8ed7a436c6a9e071e77d3f7a5d5ddd66395c5fa1
1a329375b2a5417a4d4627917734d0701648f53b611f7d184094d1a0fa82cb94

HTTP Headers

GET /tenant/amp/entityid/BBFijt.img HTTP/1.1
Host: img-s-msn-com.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
content-location: https://img.s-msn.com/tenant/amp/entityid/BBFijt
last-modified: Sun, 26 Nov 2023 16:31:03 GMT
x-source-length: 554
x-datacenter: eastap
x-activityid: c9b0a7ab-df3d-4921-a669-0cf3f9f08eb6
timing-allow-origin: *
x-frame-options: DENY
x-resizerversion: 1.0
content-length: 554
cache-control: public, max-age=117134
expires: Wed, 06 Dec 2023 04:32:27 GMT
date: Mon, 04 Dec 2023 20:00:13 GMT
X-Firefox-Spdy: h2

img-s-msn-com.akamaized.net/tenant/amp/entityid/AA1kYkOo.img?h=300&w=400&x=657.5&y=590.5&m=2

23.36.76.145

200 OK

33 kB

URL GET HTTP/2
img-s-msn-com.akamaized.net/tenant/amp/entityid/AA1kYkOo.img?h=300&w=400&x=657.5&y=590.5&m=2
IP
23.36.76.145:443
ASN
#20940 Akamai International B.V.

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 450x300, components 3\012- data
Size
33 kB (32768 bytes)
Hash
317d71e8381d31631c533494e6fc0505
bac4cf9cf6e32b85b0aff9d60bb857553059c6a1
2374877f35b342f37e79c0f0be2909a50d09b73e8e2a4c4ab386ecea895ccfc5

HTTP Headers

GET /tenant/amp/entityid/AA1kYkOo.img?h=300&w=400&x=657.5&y=590.5&m=2 HTTP/1.1
Host: img-s-msn-com.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
access-control-allow-origin: *
content-location: https://img.s-msn.com/tenant/amp/entityid/AA1kYkOo?h=300&w=400&x=657.5&y=590.5&m=2
last-modified: Mon, 04 Dec 2023 14:04:00 GMT
x-source-length: 393505
x-datacenter: westus
x-activityid: 443271a4-886e-45d0-96a6-bea9bd2b712e
timing-allow-origin: *
x-frame-options: DENY
x-resizerversion: 1.0
content-length: 32768
cache-control: public, max-age=410590
expires: Sat, 09 Dec 2023 14:03:23 GMT
date: Mon, 04 Dec 2023 20:00:13 GMT
X-Firefox-Spdy: h2

parking2.parklogic.com/page/enhance.js?pcId=56&domain=67.225.218.6

74.207.226.245

200 OK

997 B

URL GET HTTP/1.1
parking2.parklogic.com/page/enhance.js?pcId=56&domain=67.225.218.6
IP
74.207.226.245:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.parklogic.com
FingerprintD2:96:70:5E:83:A7:30:EF:05:87:20:AD:05:88:37:B5:E5:2E:0B:2F
ValidityMon, 19 Dec 2022 00:00:00 GMT - Fri, 19 Jan 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (724)
Size
997 B (997 bytes)
Hash
fb0adab9548929f874942026f32d79d7
afd3cc3f5add2dbfa294b9c74e53f0586ed1ea92
68654db82ea4fb99492ebd42ed4a6f41ead050295f3592118e5a87c1a8ce7bbe

HTTP Headers

GET /page/enhance.js?pcId=56&domain=67.225.218.6 HTTP/1.1
Host: parking2.parklogic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 20:00:13 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
X-Powered-By: PHP/5.5.38
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/javascript;charset=UTF-8

content.api.news/v3/images/bin/9c6e5a35094aecab233072ba4805c5c5?width=650

23.38.200.113

200 OK

44 kB

URL GET HTTP/2
content.api.news/v3/images/bin/9c6e5a35094aecab233072ba4805c5c5?width=650
IP
23.38.200.113:443
ASN
#16625 AKAMAI-AS

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerDigiCert Inc
Subjectnews.com.au
Fingerprint85:65:D7:0D:7D:B8:F4:5C:14:FD:23:99:56:EB:A8:3A:2E:3D:FB:18
ValiditySun, 26 Nov 2023 00:00:00 GMT - Mon, 25 Nov 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 650x488, components 3\012- data
Size
44 kB (43799 bytes)
Hash
785f1f00a151e2b9367095ccc22f19b1
525c8400d0e7ed7baa9fa55e8a4630a31860e633
e4123e359aa38679f323a3ae60066e4a7be8bf3984e8f073f19b9f09db94cb6a

HTTP Headers

GET /v3/images/bin/9c6e5a35094aecab233072ba4805c5c5?width=650 HTTP/1.1
Host: content.api.news
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 08 Nov 2023 06:23:01 GMT
edge-cache-tag: 9c6e5a35094aecab233072ba4805c5c5
access-control-allow-headers: x-newsapi-api-key
etag: 312c9eec845290374673c0ed4f2200c4-9c6e5a35094aecab233072ba4805c5c5-650
server: Akamai Image Manager
content-length: 43799
content-type: image/jpeg
cache-control: private, max-age=2888552
expires: Sun, 07 Jan 2024 06:22:45 GMT
date: Mon, 04 Dec 2023 20:00:13 GMT
x-hobit: 2B
access-control-allow-methods: GET
access-control-allow-origin: *
x-o: CF
X-Firefox-Spdy: h2

img-s-msn-com.akamaized.net/tenant/amp/entityid/AA1kYjLs.img?h=100&w=100&x=1069.5&y=290.5&m=5

23.36.76.145

200 OK

4.1 kB

URL GET HTTP/2
img-s-msn-com.akamaized.net/tenant/amp/entityid/AA1kYjLs.img?h=100&w=100&x=1069.5&y=290.5&m=5
IP
23.36.76.145:443
ASN
#20940 Akamai International B.V.

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Size
4.1 kB (4096 bytes)
Hash
f1cbbd221ce73342584a1f6237c6af7f
f04f0f28b5976163793bc42284d37a28e0a6618a
532677be0af1c355966ae03eaa0efbecdec1f5bb514be55e30e5b557458b34c3

HTTP Headers

GET /tenant/amp/entityid/AA1kYjLs.img?h=100&w=100&x=1069.5&y=290.5&m=5 HTTP/1.1
Host: img-s-msn-com.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
access-control-allow-origin: *
content-location: https://img.s-msn.com/tenant/amp/entityid/AA1kYjLs?h=100&w=100&x=1069.5&y=290.5&m=5
last-modified: Mon, 04 Dec 2023 20:00:13 GMT
x-source-length: 321558
x-datacenter: eastus
x-activityid: b4cd5afd-5b08-496e-bacc-63359090a777
timing-allow-origin: *
x-frame-options: DENY
x-resizerversion: 1.0
content-length: 4096
cache-control: public, max-age=431999
expires: Sat, 09 Dec 2023 20:00:12 GMT
date: Mon, 04 Dec 2023 20:00:13 GMT
X-Firefox-Spdy: h2

simcast.com/images/clipart/news/5.jpg

45.79.244.12

200 OK

12 kB

URL GET HTTP/1.1
simcast.com/images/clipart/news/5.jpg
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.00, resolution (DPI), density 96x96, segment length 16, comment: "LEAD Technologies Inc. V1.01", baseline, precision 8, 400x266, components 3\012- data
Size
12 kB (12067 bytes)
Hash
06ae355e5518c3f1d87c5b8c5434ba39
b8cb9cc007f95231ece6acadac95dcd43c003815
84498164a91e08f53e2ea5e8240452b0871643a928278b94b94f7793ac3ecc9d

HTTP Headers

GET /images/clipart/news/5.jpg HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:13 GMT
server: Apache/2.4.38 (Debian)
upgrade: h2
connection: Upgrade
last-modified: Thu, 26 May 2022 00:35:39 GMT
etag: "2f23-5dfdf5e801cfc"
accept-ranges: bytes
content-length: 12067
content-type: image/jpeg

simcast.com/images/clipart/news/2.jpg

45.79.244.12

200 OK

9.2 kB

URL GET HTTP/1.1
simcast.com/images/clipart/news/2.jpg
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.00, resolution (DPI), density 96x96, segment length 16, comment: "LEAD Technologies Inc. V1.01", baseline, precision 8, 181x272, components 3\012- data
Size
9.2 kB (9157 bytes)
Hash
73f6e54f4dd1e8ee6ba1306e00d48fac
a33c20546e5abf2f05bae6c6ea18770f2c7da4bb
d858e75f5a2828ab957722c99898bd7fa251bfdcbf7ce2385317d893adad7423

HTTP Headers

GET /images/clipart/news/2.jpg HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:13 GMT
server: Apache/2.4.38 (Debian)
upgrade: h2
connection: Upgrade
last-modified: Thu, 26 May 2022 00:35:39 GMT
etag: "23c5-5dfdf5e800d5c"
accept-ranges: bytes
content-length: 9157
content-type: image/jpeg

simcast.com/images/rsslogos/newscomau.gif

45.79.244.12

200 OK

3.5 kB

URL GET HTTP/1.1
simcast.com/images/rsslogos/newscomau.gif
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
GIF image data, version 89a, 23 x 23\012- data
Size
3.5 kB (3475 bytes)
Hash
89402696cfb0797191666c9713eaebb9
fa23d9f6e8183f36dd17b1eb6a7abea06da78fde
4d2331f6f86a430cde6092a58f66ceb15a25a9d2b1ef1fc2266da087aa7898f2

HTTP Headers

GET /images/rsslogos/newscomau.gif HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:13 GMT
server: Apache/2.4.38 (Debian)
upgrade: h2
connection: Upgrade
last-modified: Thu, 26 May 2022 00:35:39 GMT
etag: "d93-5dfdf5e802c9c"
accept-ranges: bytes
content-length: 3475
content-type: image/gif

simcast.com/images/rsslogos/cnn.gif

45.79.244.12

200 OK

3.7 kB

URL GET HTTP/1.1
simcast.com/images/rsslogos/cnn.gif
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
GIF image data, version 89a, 30 x 14\012- data
Size
3.7 kB (3692 bytes)
Hash
f8f2c743e68b78d7aebd48da729e2a41
46816ff3a2511465677fbca0a7ee921f60ce98a1
a99d12b6ff6d6acd839887a0eda9aa988f3a60e31888fd8f6d84c1d281f4cc2b

HTTP Headers

GET /images/rsslogos/cnn.gif HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:13 GMT
server: Apache/2.4.38 (Debian)
upgrade: h2
connection: Upgrade
last-modified: Thu, 26 May 2022 00:35:39 GMT
etag: "e6c-5dfdf5e802c9c"
accept-ranges: bytes
content-length: 3692
content-type: image/gif

img-s-msn-com.akamaized.net/tenant/amp/entityid/AA1kZkWF.img?h=100&w=100&x=713&y=522&m=5

23.36.76.145

200 OK

4.1 kB

URL GET HTTP/2
img-s-msn-com.akamaized.net/tenant/amp/entityid/AA1kZkWF.img?h=100&w=100&x=713&y=522&m=5
IP
23.36.76.145:443
ASN
#20940 Akamai International B.V.

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Size
4.1 kB (4096 bytes)
Hash
11b209135dbff1d5dd3d162aef357394
798859b1189b9264ede1ccd1726798ab0da25bcf
d59f3e374c6b7c39e2101ea7eeaad11b851d9c1a816ee55a102b5e630e59e8c7

HTTP Headers

GET /tenant/amp/entityid/AA1kZkWF.img?h=100&w=100&x=713&y=522&m=5 HTTP/1.1
Host: img-s-msn-com.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
access-control-allow-origin: *
content-location: https://img.s-msn.com/tenant/amp/entityid/AA1kZkWF?h=100&w=100&x=713&y=522&m=5
last-modified: Mon, 04 Dec 2023 20:00:13 GMT
x-source-length: 222155
x-datacenter: eastap
x-activityid: 5d614eee-9efa-4bc5-9ffb-108cabab6b15
timing-allow-origin: *
x-frame-options: DENY
x-resizerversion: 1.0
content-length: 4096
cache-control: public, max-age=432000
expires: Sat, 09 Dec 2023 20:00:13 GMT
date: Mon, 04 Dec 2023 20:00:13 GMT
X-Firefox-Spdy: h2

simcast.com/images/clipart/news/1.jpg

45.79.244.12

200 OK

14 kB

URL GET HTTP/1.1
simcast.com/images/clipart/news/1.jpg
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.00, resolution (DPI), density 96x96, segment length 16, comment: "LEAD Technologies Inc. V1.01", baseline, precision 8, 181x272, components 3\012- data
Size
14 kB (13632 bytes)
Hash
f3072f8d03777df78d907cdbbdfe48f3
27dedd3e00c23b614893414ce72664c3181342af
4a4cd5b87843e4ae89bbebed05317d9726d1224aebfccc35cceba4afd1e90b1a

HTTP Headers

GET /images/clipart/news/1.jpg HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:13 GMT
server: Apache/2.4.38 (Debian)
upgrade: h2
connection: Upgrade
last-modified: Thu, 26 May 2022 00:35:39 GMT
etag: "3540-5dfdf5e800d5c"
accept-ranges: bytes
content-length: 13632
content-type: image/jpeg

simcast.com/images/clipart/news/3.jpg

45.79.244.12

200 OK

21 kB

URL GET HTTP/1.1
simcast.com/images/clipart/news/3.jpg
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.00, resolution (DPI), density 96x96, segment length 16, comment: "LEAD Technologies Inc. V1.01", baseline, precision 8, 272x272, components 3\012- data
Size
21 kB (21209 bytes)
Hash
7fb9b35ab3acd12fd8e615c47c98a9fa
0302003119f9968e414ff769011e1aa286f7e74e
a166a0d34de7aa27ff15af1672ecdb4278a4f7ae37f7016be045fb64c979f5ef

HTTP Headers

GET /images/clipart/news/3.jpg HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:13 GMT
server: Apache/2.4.38 (Debian)
upgrade: h2
connection: Upgrade
last-modified: Thu, 26 May 2022 00:35:39 GMT
etag: "52d9-5dfdf5e801cfc"
accept-ranges: bytes
content-length: 21209
content-type: image/jpeg

img-s-msn-com.akamaized.net/tenant/amp/entityid/AA1kZkWF.img?h=70&w=95&x=713&y=522&m=5

23.36.76.145

200 OK

4.1 kB

URL GET HTTP/2
img-s-msn-com.akamaized.net/tenant/amp/entityid/AA1kZkWF.img?h=70&w=95&x=713&y=522&m=5
IP
23.36.76.145:443
ASN
#20940 Akamai International B.V.

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 95x70, components 3\012- data
Size
4.1 kB (4096 bytes)
Hash
89dc5cde312dd24dd1c397c4f15eadff
73fa7a2729c6ff82da131b7b9206b5d487fc1eeb
fe04e978b766a1f83045dd04951bcd652da1099a62d29999fa39fd89d9c36d63

HTTP Headers

GET /tenant/amp/entityid/AA1kZkWF.img?h=70&w=95&x=713&y=522&m=5 HTTP/1.1
Host: img-s-msn-com.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
access-control-allow-origin: *
content-location: https://img.s-msn.com/tenant/amp/entityid/AA1kZkWF?h=70&w=95&x=713&y=522&m=5
last-modified: Mon, 04 Dec 2023 20:00:13 GMT
x-source-length: 222155
x-datacenter: eastap
x-activityid: 8dec0b3a-1671-43d5-a41f-69b084b55a5f
timing-allow-origin: *
x-frame-options: DENY
x-resizerversion: 1.0
content-length: 4096
cache-control: public, max-age=432000
expires: Sat, 09 Dec 2023 20:00:13 GMT
date: Mon, 04 Dec 2023 20:00:13 GMT
X-Firefox-Spdy: h2

img-s-msn-com.akamaized.net/tenant/amp/entityid/AA18p8y1.img?h=70&w=95&x=1449&y=966&m=5

23.36.76.145

200 OK

4.1 kB

URL GET HTTP/2
img-s-msn-com.akamaized.net/tenant/amp/entityid/AA18p8y1.img?h=70&w=95&x=1449&y=966&m=5
IP
23.36.76.145:443
ASN
#20940 Akamai International B.V.

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
FingerprintA3:C7:B4:95:4E:16:BD:C5:8A:EE:85:53:5D:C1:C2:CD:43:E9:EC:B9
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 95x70, components 3\012- data
Size
4.1 kB (4096 bytes)
Hash
6aaed983dcd0408ad5a1dab121d492e9
295be79852d2cfaffc556770dbf05a982d885e1d
b5a7737469c754d5cdcbcd0d0fe506787ab6c5e7ff561a75d841e2be7e239563

HTTP Headers

GET /tenant/amp/entityid/AA18p8y1.img?h=70&w=95&x=1449&y=966&m=5 HTTP/1.1
Host: img-s-msn-com.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
access-control-allow-origin: *
content-location: https://img.s-msn.com/tenant/amp/entityid/AA18p8y1?h=70&w=95&x=1449&y=966&m=5
last-modified: Mon, 04 Dec 2023 20:00:13 GMT
x-source-length: 1969854
x-datacenter: eastus
x-activityid: ca461a4b-a399-40ea-b24a-4379a627696c
timing-allow-origin: *
x-frame-options: DENY
x-resizerversion: 1.0
content-length: 4096
cache-control: public, max-age=431952
expires: Sat, 09 Dec 2023 19:59:25 GMT
date: Mon, 04 Dec 2023 20:00:13 GMT
X-Firefox-Spdy: h2

simcast.com/templates/simcast/images/simcastlogo_35y.png

45.79.244.12

200 OK

1.3 kB

URL GET HTTP/1.1
simcast.com/templates/simcast/images/simcastlogo_35y.png
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
PNG image data, 169 x 35, 8-bit colormap, non-interlaced\012- data
Size
1.3 kB (1319 bytes)
Hash
a47a1c20ac49a1d3f3fb3bce46051738
ea8116556d2cf019822d463658dc23f9b6d7553d
87fa7d182089bd285590bc52ac7356f2af07229df6c6fbb9b9564421d0dbd466

HTTP Headers

GET /templates/simcast/images/simcastlogo_35y.png HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:13 GMT
server: Apache/2.4.38 (Debian)
upgrade: h2
connection: Upgrade
last-modified: Thu, 26 May 2022 00:35:40 GMT
etag: "527-5dfdf5e880c4a"
accept-ranges: bytes
content-length: 1319
content-type: image/png

cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json

151.101.129.229

200 OK

865 B

URL GET HTTP/2
cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json
IP
151.101.129.229:443
ASN
#54113 FASTLY

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JSON data\012- , ASCII text, with very long lines (1597), with no line terminators
Size
865 B (865 bytes)
Hash
7e86f9255a06fa5d12fc68c0186028f5
30cb79895ffbf4e3b01eeb0a047a0e16c2571db1
051976fca449e8fdfb40c2cd4c91097129730b7f1f8d2856ed669b8210601bff

HTTP Headers

GET /gh/prebid/currency-file@1/latest.json HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://simcast.com/
content-type: text/plain
Origin: https://simcast.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/json; charset=utf-8
x-jsd-version: 1.0.1894
x-jsd-version-type: version
etag: W/"63d-MMt5iV/79OOwHusKBHoOFsJXHbE"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Dec 2023 20:00:14 GMT
age: 14364
x-served-by: cache-fra-eddf8230103-FRA, cache-bma1678-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 865
X-Firefox-Spdy: h2

cat.hbwrapper.com/

192.241.157.60

200 OK

15 B

URL POST HTTP/1.1
cat.hbwrapper.com/
IP
192.241.157.60:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerLet's Encrypt
Subjectcat.hbwrapper.com
Fingerprint5F:2B:83:2C:0F:8D:18:CF:75:BA:9B:07:D3:DA:5E:C3:42:D0:02:5B
ValidityThu, 30 Nov 2023 08:29:40 GMT - Wed, 28 Feb 2024 08:29:39 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
15 B (15 bytes)
Hash
0f0479874bf6f4a7281099b15df27c27
55a490e280d48996e564d00492437eb17faadd28
a29ee2b15c494311c52521766e44af56a3ad2248e7a8ab465e5206463c13d288

HTTP Headers

POST / HTTP/1.1
Host: cat.hbwrapper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://simcast.com/
content-type: text/plain
Content-Length: 161
Origin: https://simcast.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 04 Dec 2023 20:00:14 GMT
Server: Apache
Access-Control-Allow-Origin: https://simcast.com
Access-Control-Allow-Credentials: true
Content-Length: 15
Connection: close
Content-Type: text/html; charset=UTF-8

www.googletagmanager.com/gtag/js?id=G-RFSL1NPH34&l=dataLayer&cx=c

142.250.74.168

200 OK

82 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-RFSL1NPH34&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (5955)
Size
82 kB (81742 bytes)
Hash
38ef89aa0f5a1b3ee56404ccc0007b62
16f6f80c3c4f70b3eb4586efda29add608e0c9d9
f2261441d786a8cf9fae11f1eb28cc2a33b44c226d2b4279f08ddd6d67ce219e

HTTP Headers

GET /gtag/js?id=G-RFSL1NPH34&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 04 Dec 2023 20:00:14 GMT
expires: Mon, 04 Dec 2023 20:00:14 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81742
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtm.js?id=GTM-KXJCD57

142.250.74.168

200 OK

81 kB

URL GET HTTP/3
www.googletagmanager.com/gtm.js?id=GTM-KXJCD57
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (65316)
Size
81 kB (81034 bytes)
Hash
1b3063761f7fc6cb80ed397ad08ba2ce
6161f7bd514b9d7dec7b541e7a993a638a9e62f3
cd86701f33df646a6a0903074ce59019332f89afa992483180f477f134187e57

HTTP Headers

GET /gtm.js?id=GTM-KXJCD57 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 04 Dec 2023 20:00:14 GMT
expires: Mon, 04 Dec 2023 20:00:14 GMT
cache-control: private, max-age=900
last-modified: Mon, 04 Dec 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81034
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ocsp.r2m03.amazontrust.com/

54.230.218.11

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
54.230.218.11:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
0e3b179febbb529908d57afd2b9f33dd
253ed908a948ca824b57ab82197fba61ee6d954d
f697a74e4643112c171ecbbbc75ef0113dfc1ec482b9547a5245a01a96422b06

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Mon, 04 Dec 2023 20:00:14 GMT
Last-Modified: Mon, 04 Dec 2023 18:58:42 GMT
Server: ECAcc (ska/F7A3)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: H93cCfnIg7_UZDJk4D7BEBGcW5Ao75qYk5fvOPc-PP7RhGTiUgYuMA==
Age: 3692

simcast.com/widgets/modal/modal.php?mm=113

45.79.244.12

200 OK

0 B

URL GET HTTP/1.1
simcast.com/widgets/modal/modal.php?mm=113
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /widgets/modal/modal.php?mm=113 HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006; _uc_referrer=http://67.225.218.6/; mess=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:14 GMT
server: Apache/2.4.38 (Debian)
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
upgrade: h2
connection: Upgrade
content-length: 0
content-type: text/html; charset=UTF-8

static.anonymised.io/light/loader.js

34.107.217.107

200 OK

313 B

URL GET HTTP/2
static.anonymised.io/light/loader.js
IP
34.107.217.107:443
ASN
#15169 GOOGLE

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerGoogle Trust Services LLC
Subjectanonymised.io
Fingerprint6B:0E:71:55:34:47:2C:82:DB:9B:9D:F1:8B:6B:D7:57:BE:40:E5:EC
ValiditySat, 18 Nov 2023 01:51:38 GMT - Fri, 16 Feb 2024 02:47:33 GMT

File type
ASCII text, with very long lines (448), with no line terminators
Size
313 B (313 bytes)
Hash
b0e92562b59509b5a446c978e501e978
4f6e55877170b8277b7dd4d0691ccc98296507a4
138fee977dc4ed5faa24d58c77ab2293a1d18e6549c35fa8479e04a008d48a09

HTTP Headers

GET /light/loader.js HTTP/1.1
Host: static.anonymised.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-guploader-uploadid: ABPtcPomGwcr6bJHASE2fETsXvObQyfStMPiGI-wP2hs6zyaM8bHcj1ykzONA-IrGQdNH2clxUgd47OBIA
x-goog-generation: 1701338687827402
x-goog-metageneration: 3
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 313
content-encoding: gzip
x-goog-hash: crc32c=ltRX8Q==, md5=FBvYkVzGm0r7SW6Gf8H/Jw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 313
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Mon, 04 Dec 2023 19:58:52 GMT
expires: Mon, 04 Dec 2023 20:08:52 GMT
cache-control: public,max-age=600
age: 82
last-modified: Thu, 30 Nov 2023 10:04:47 GMT
etag: "141bd8915cc69b4afb496e867fc1ff27"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

simcast.com/widgets/ms/ajaxjs.php?fra=0&p=0

45.79.244.12

200 OK

23 B

URL GET HTTP/1.1
simcast.com/widgets/ms/ajaxjs.php?fra=0&p=0
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
23 B (23 bytes)
Hash
7f6ffaa6bb0b408017b62254211691b5
601ca99d55f00a2e8e736676b606a4d31d374fdd
b1556dea32e9d0cdbfed038fd7787275775ea40939c146a64e205bcb349ad02f

HTTP Headers

GET /widgets/ms/ajaxjs.php?fra=0&p=0 HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/plain, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006; _uc_referrer=http://67.225.218.6/; mess=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:14 GMT
server: Apache/2.4.38 (Debian)
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
upgrade: h2
connection: Upgrade
vary: Accept-Encoding
content-encoding: gzip
content-length: 23
content-type: text/html; charset=UTF-8

simcast.com/widgets/modal/modal.php?mm=126

45.79.244.12

200 OK

0 B

URL GET HTTP/1.1
simcast.com/widgets/modal/modal.php?mm=126
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /widgets/modal/modal.php?mm=126 HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006; _uc_referrer=http://67.225.218.6/; mess=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:14 GMT
server: Apache/2.4.38 (Debian)
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
upgrade: h2
connection: Upgrade
content-length: 0
content-type: text/html; charset=UTF-8

p2.gcprivacy.com/v2/rtd?pid=Q6CV1VBC&u=https%3A%2F%2Fsimcast.com%2F%3Fd%3D67.225.218.6%26pcid%3D48%26rid%3D112%26a%3D0&

3.223.231.171

200 OK

19 B

URL GET HTTP/2
p2.gcprivacy.com/v2/rtd?pid=Q6CV1VBC&u=https%3A%2F%2Fsimcast.com%2F%3Fd%3D67.225.218.6%26pcid%3D48%26rid%3D112%26a%3D0&
IP
3.223.231.171:443
ASN
#14618 AMAZON-AES

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerAmazon
Subject*.gcprivacy.com
Fingerprint03:59:F4:54:80:C7:AF:32:7F:D2:0D:57:ED:43:9E:A0:49:2E:44:A0
ValidityFri, 03 Nov 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
19 B (19 bytes)
Hash
964a92e5419daac8ae68e977924aa00b
70bff08f67ea7be518b2d78ebe8683c96ae0769e
9bfe1bbdb54edf381f3b49b277e17504e1101e48f4ab612d78ab10f240544461

HTTP Headers

GET /v2/rtd?pid=Q6CV1VBC&u=https%3A%2F%2Fsimcast.com%2F%3Fd%3D67.225.218.6%26pcid%3D48%26rid%3D112%26a%3D0& HTTP/1.1
Host: p2.gcprivacy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://simcast.com/
content-type: text/plain
Origin: https://simcast.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 20:00:14 GMT
content-type: application/json
content-length: 19
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Max
access-control-allow-methods: GET
access-control-allow-origin: https://simcast.com
access-control-max-age: 86400
X-Firefox-Spdy: h2

static.anonymised.io/light/bundle.js?v=0.3.0t

34.107.217.107

200 OK

33 kB

URL GET HTTP/2
static.anonymised.io/light/bundle.js?v=0.3.0t
IP
34.107.217.107:443
ASN
#15169 GOOGLE

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerGoogle Trust Services LLC
Subjectanonymised.io
Fingerprint6B:0E:71:55:34:47:2C:82:DB:9B:9D:F1:8B:6B:D7:57:BE:40:E5:EC
ValiditySat, 18 Nov 2023 01:51:38 GMT - Fri, 16 Feb 2024 02:47:33 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
33 kB (32683 bytes)
Hash
4ef1bcd8e73c669c9ce6b15b65a28431
1f0b6513a4d5e2061307d22336b8ab5ebc1a6226
804dcbc892006cb041c6eed7a954330d2ee94f65f6a42bf571078f874709a190

HTTP Headers

GET /light/bundle.js?v=0.3.0t HTTP/1.1
Host: static.anonymised.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
x-guploader-uploadid: ABPtcPq2-mTqPz86CbVm-cAefuZLLcyqrIr3aaeCKULlntaKer7-W8gd9LQwPVd2bf5gGZNk-A-eqc5iYzoR7JnMZByOZwT7Q3F1
x-goog-generation: 1701338683306101
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 32683
content-encoding: gzip
x-goog-hash: crc32c=8SxeLw==, md5=m6ecPZvNr8vz/BkXL0gymQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 32683
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Mon, 04 Dec 2023 19:57:42 GMT
expires: Mon, 04 Dec 2023 20:17:42 GMT
cache-control: public,max-age=1200
age: 152
last-modified: Thu, 30 Nov 2023 10:04:43 GMT
etag: "9ba79c3d9bcdafcbf3fc19172f483299"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

aegis.anonymised.io/health

34.107.217.107

200 OK

0 B

URL GET HTTP/2
aegis.anonymised.io/health
IP
34.107.217.107:443
ASN
#15169 GOOGLE

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerGoogle Trust Services LLC
Subjectanonymised.io
Fingerprint6B:0E:71:55:34:47:2C:82:DB:9B:9D:F1:8B:6B:D7:57:BE:40:E5:EC
ValiditySat, 18 Nov 2023 01:51:38 GMT - Fri, 16 Feb 2024 02:47:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /health HTTP/1.1
Host: aegis.anonymised.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://simcast.com/
Origin: https://simcast.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
access-control-allow-headers: content-type
access-control-allow-methods: OPTIONS, GET
access-control-allow-origin: https://simcast.com
allow: OPTIONS, GET
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
x-request-id: CzjWOqGHegaMdvqrbycintgHLNdyLDBV
x-cloud-trace-context: a5ca0f6a095227489318ea5c258c5589
date: Mon, 04 Dec 2023 20:00:14 GMT
content-type: text/html
server: Google Frontend
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

parking3.parklogic.com/page/images/pe262/hero_nc.svg

45.79.244.209

200 OK

48 kB

URL GET HTTP/1.1
parking3.parklogic.com/page/images/pe262/hero_nc.svg
IP
45.79.244.209:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.parklogic.com
FingerprintD2:96:70:5E:83:A7:30:EF:05:87:20:AD:05:88:37:B5:E5:2E:0B:2F
ValidityMon, 19 Dec 2022 00:00:00 GMT - Fri, 19 Jan 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1738)
Size
48 kB (48097 bytes)
Hash
5a2c392e7acdf6e9de6e00129500503c
c8d0f80381e4ce180b5eb3c4c98539907292a7bb
878da09a057ec8f1775cdc522e5f7ec44966df547a87a9c29826ba114833c24b

HTTP Headers

GET /page/images/pe262/hero_nc.svg HTTP/1.1
Host: parking3.parklogic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:14 GMT
server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.5.38
last-modified: Mon, 08 Mar 2021 23:04:00 GMT
etag: "bbe1-5bd0e72fe1800"
accept-ranges: bytes
content-length: 48097
content-type: image/svg+xml
connection: close

simcast.com/lib/fontawesome-5.9.0/webfonts/fa-solid-900.woff2

45.79.244.12

200 OK

75 kB

URL GET HTTP/1.1
simcast.com/lib/fontawesome-5.9.0/webfonts/fa-solid-900.woff2
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 75440, version 329.-1049\012- data
Size
75 kB (75440 bytes)
Hash
b5cf8ae26748570d8fb95a47f46b69e1
07bed153d47f9129a944ee54dd72952deed074c8
cd398be1a91817126cef10224738e624358edf6f08043abad7e60c1aaeccc8d0

HTTP Headers

GET /lib/fontawesome-5.9.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/lib/fontawesome-5.9.0/css/all.min.css
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006; _uc_referrer=http://67.225.218.6/; mess=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:14 GMT
server: Apache/2.4.38 (Debian)
upgrade: h2
connection: Upgrade
last-modified: Thu, 26 May 2022 00:35:39 GMT
etag: "126b0-5dfdf5e80b93d"
accept-ranges: bytes
content-length: 75440
content-type: font/woff2

fonts.googleapis.com/css2?family=Open+Sans:wght@500;600&display=swap

142.250.74.106

200 OK

690 B

URL GET HTTP/2
fonts.googleapis.com/css2?family=Open+Sans:wght@500;600&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
gzip compressed data, max compression\012- data
Size
690 B (690 bytes)
Hash
616b7ed7757c11e6abee53340ad06379
3cde8601bd412410d218e8acfe7b2c838be584d4
c09e15139a56880b40746abaeab782d2c420ec0aa0ae17e66485bf08883018d9

HTTP Headers

GET /css2?family=Open+Sans:wght@500;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 04 Dec 2023 20:00:14 GMT
date: Mon, 04 Dec 2023 20:00:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.anonymised.io/light/bidderchecker.js?v=0.3.0t

34.107.217.107

200 OK

387 B

URL GET HTTP/3
static.anonymised.io/light/bidderchecker.js?v=0.3.0t
IP
34.107.217.107:443
ASN
#15169 GOOGLE

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerGoogle Trust Services LLC
Subjectanonymised.io
Fingerprint6B:0E:71:55:34:47:2C:82:DB:9B:9D:F1:8B:6B:D7:57:BE:40:E5:EC
ValiditySat, 18 Nov 2023 01:51:38 GMT - Fri, 16 Feb 2024 02:47:33 GMT

File type
ASCII text, with very long lines (961), with no line terminators
Size
387 B (387 bytes)
Hash
31a291b28c9e551241f87d35c05fd018
ca63128bd9294649ea2ab2580d71dbc0faed2b1b
722a4121ccf998eefa71a33203ddd5e99a0ba3243c0549cdf7302268fe0ba979

HTTP Headers

GET /light/bidderchecker.js?v=0.3.0t HTTP/1.1
Host: static.anonymised.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
x-guploader-uploadid: ABPtcPoAdQoeYJIcu7o7OO2zSRCf8TmzKfJTqpJRworVIVovb1yu1kerduo_7YmPEIl-zB7weHTMgOTD_9pWvL9WSzFsx8h_Rkct
x-goog-generation: 1701338682240510
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 387
content-encoding: gzip
x-goog-hash: crc32c=QMKBLA==, md5=qFR/c22KG6a4YqZF316UNg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 387
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Mon, 04 Dec 2023 19:48:02 GMT
expires: Mon, 04 Dec 2023 20:08:02 GMT
cache-control: public,max-age=1200
age: 732
last-modified: Thu, 30 Nov 2023 10:04:42 GMT
etag: "a8547f736d8a1ba6b862a645df5e9436"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdnjs.cloudflare.com/ajax/libs/TimeMe.js/2.0.0/timeme.min.js

104.17.24.14

200 OK

1.5 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/TimeMe.js/2.0.0/timeme.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (5690), with no line terminators
Size
1.5 kB (1532 bytes)
Hash
5ea26e1a2819a4a724eafedf1513bd07
1de7e90a4088ed7403e1d858495ebbf6479e2509
5725f04fd1f8882b1d02561933d648bb1a91349b0f33031e78ce0668d3751db3

HTTP Headers

GET /ajax/libs/TimeMe.js/2.0.0/timeme.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 04 Dec 2023 20:00:14 GMT
content-type: application/javascript; charset=utf-8
content-length: 1532
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03cf2-163a"
last-modified: Mon, 04 May 2020 16:04:02 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1086533
expires: Sat, 23 Nov 2024 20:00:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JwnjZSTkwK3TbPdlJ9eBR6ox%2FBPOOAWbGXrocZXfF8BIggl2Xn6uluGa%2B9aU7qt5BNLwiOWP5IhcQjWSv7719oiJgdIp3661GS2oY27zO8%2FC8PCKdH4HyI4Jyuk8U0Wta6KuKRRM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8306a26c1c9556c9-OSL
alt-svc: h3=":443"; ma=86400

storage.googleapis.com/idw_static_assets/anonymized_small_black.png

172.217.21.187

200 OK

1.7 kB

URL GET HTTP/2
storage.googleapis.com/idw_static_assets/anonymized_small_black.png
IP
172.217.21.187:443
ASN
#15169 GOOGLE

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerGoogle Trust Services LLC
Subjectstorage.googleapis.com
Fingerprint4D:66:EA:1A:AB:86:BB:C2:E9:29:62:76:DE:45:0D:60:53:70:6F:1F
ValidityMon, 23 Oct 2023 11:28:29 GMT - Mon, 15 Jan 2024 11:28:28 GMT

File type
PNG image data, 65 x 64, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1661 bytes)
Hash
d0042077edcb1feff233a5a0e095b327
882acf2c6aaa06d25a15c30d90f1a12e72b00004
05adb1a8ab31ced159adf8401bc91d0c28dc75777423ea84358b9565147b5925

HTTP Headers

GET /idw_static_assets/anonymized_small_black.png HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-guploader-uploadid: ABPtcPqXETjEoyABYVvtepXc1VmoorkVSvBxP3SMJ0a6YbwrYJQwO8JCwQpQyocMx991fdkAeGs
x-goog-generation: 1675331663329867
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1661
x-goog-hash: crc32c=A2Z1Vg==, md5=0AQgd+3LH+/yM6Wg4JWzJw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 1661
server: UploadServer
date: Mon, 04 Dec 2023 19:25:26 GMT
expires: Tue, 05 Mar 2024 03:05:26 GMT
cache-control: public,max-age=7890000,no-transform
age: 2088
last-modified: Thu, 02 Feb 2023 09:54:23 GMT
etag: "d0042077edcb1feff233a5a0e095b327"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.anonymised.io/light/collect.min.js?v=0.3.0t

34.107.217.107

200 OK

2.0 kB

URL GET HTTP/3
static.anonymised.io/light/collect.min.js?v=0.3.0t
IP
34.107.217.107:443
ASN
#15169 GOOGLE

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerGoogle Trust Services LLC
Subjectanonymised.io
Fingerprint6B:0E:71:55:34:47:2C:82:DB:9B:9D:F1:8B:6B:D7:57:BE:40:E5:EC
ValiditySat, 18 Nov 2023 01:51:38 GMT - Fri, 16 Feb 2024 02:47:33 GMT

File type
ASCII text, with very long lines (4630), with no line terminators
Size
2.0 kB (1975 bytes)
Hash
30af78709415899289cc0b1a4742d68c
4826d176448a946ce9f40131d267f0523d5ead5b
4421d90bbf983478021bbc14981742e33af47dcfbbbbd2df44b975257fde30cb

HTTP Headers

GET /light/collect.min.js?v=0.3.0t HTTP/1.1
Host: static.anonymised.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
x-guploader-uploadid: ABPtcPoDts8aHMzJ1w8WblNKK2bRwHl365ppEeZj461m6-aaPEoS0nCmWdVYDrIZg0Ts99xlBl-Mtben7_418qbjmRECUFG46vRK
x-goog-generation: 1701338684703619
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1975
content-encoding: gzip
x-goog-hash: crc32c=ybU+DA==, md5=p+feQAMaoWQ95wPiSViC1A==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 1975
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Mon, 04 Dec 2023 19:48:43 GMT
expires: Mon, 04 Dec 2023 20:08:43 GMT
cache-control: public,max-age=1200
age: 692
last-modified: Thu, 30 Nov 2023 10:04:44 GMT
etag: "a7e7de40031aa1643de703e2495882d4"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

static.anonymised.io/light/interestscores.js?v=0.3.0t

34.107.217.107

200 OK

1.6 kB

URL GET HTTP/3
static.anonymised.io/light/interestscores.js?v=0.3.0t
IP
34.107.217.107:443
ASN
#15169 GOOGLE

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerGoogle Trust Services LLC
Subjectanonymised.io
Fingerprint6B:0E:71:55:34:47:2C:82:DB:9B:9D:F1:8B:6B:D7:57:BE:40:E5:EC
ValiditySat, 18 Nov 2023 01:51:38 GMT - Fri, 16 Feb 2024 02:47:33 GMT

File type
ASCII text, with very long lines (3570), with no line terminators
Size
1.6 kB (1601 bytes)
Hash
948c5aa6b61efe3e198a0384e11555c3
f7992dd433d9daa9e731282d05ed9b4254d7cd67
0409134df4107fe3d86b26248e3e8253287e929e94b690173bbab16e35686cd6

HTTP Headers

GET /light/interestscores.js?v=0.3.0t HTTP/1.1
Host: static.anonymised.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
x-guploader-uploadid: ABPtcPqAn9PoZUZOyuI7uS89Fiau_5Rkoei5fnyg2Es7TxR1WZUZ_n--z-7XOD0M-duA9mfv8yoW0yudczeRpkPmTetV
x-goog-generation: 1701338686789745
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1601
content-encoding: gzip
x-goog-hash: crc32c=nJwSBw==, md5=of1rIySTxqtrzStgu6NvVg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 1601
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Mon, 04 Dec 2023 19:41:49 GMT
expires: Mon, 04 Dec 2023 20:01:49 GMT
cache-control: public,max-age=1200
age: 1106
last-modified: Thu, 30 Nov 2023 10:04:46 GMT
etag: "a1fd6b232493c6ab6bcd2b60bba36f56"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

simcast.com/templates/simcast/favicon.png

45.79.244.12

200 OK

486 B

URL GET HTTP/1.1
simcast.com/templates/simcast/favicon.png
IP
45.79.244.12:443
ASN
#63949 Linode, LLC

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerSectigo Limited
Subject*.simcast.com
Fingerprint4C:EB:A7:1C:C9:B3:CB:B5:7D:80:45:91:D6:98:47:12:5A:BF:E6:BB
ValidityMon, 09 Oct 2023 00:00:00 GMT - Thu, 29 Aug 2024 23:59:59 GMT

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size
486 B (486 bytes)
Hash
7338e3284b0d2d3222c666080b3b0fa1
38b3846196a7aeb85c6f7c5ed964fa407d7c1d2e
7962c200b80de04b6cd4fc25e4745f01c475bee72990d2933733140a3c26caba

HTTP Headers

GET /templates/simcast/favicon.png HTTP/1.1
Host: simcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Cookie: PHPSESSID=akahhhiktp7prc5o080mkdp4se; uidinfer=93533006; _uc_referrer=http://67.225.218.6/; mess=1; _ga_RFSL1NPH34=GS1.1.1701720019.1.0.1701720019.0.0.0; _ga=GA1.1.1531089510.1701720020
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Mon, 04 Dec 2023 20:00:14 GMT
server: Apache/2.4.38 (Debian)
upgrade: h2
connection: Upgrade
last-modified: Thu, 26 May 2022 00:35:40 GMT
etag: "1e6-5dfdf5e87fcaa"
accept-ranges: bytes
content-length: 486
content-type: image/png

cloudflare.com/cdn-cgi/trace

104.16.133.229

200 OK

276 B

URL GET HTTP/2
cloudflare.com/cdn-cgi/trace
IP
104.16.133.229:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simcast.com/?d=67.225.218.6&pcid=48&rid=112&a=0
Certificate
IssuerCloudflare, Inc.
Subjectcloudflare.com
Fingerprint20:A4:2E:7D:0F:60:42:46:53:48:51:85:51:14:07:44:BB:FB:58:13
ValidityFri, 01 Dec 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
276 B (276 bytes)
Hash
7dea552ca1793b91d8748a1247e538d1
c00b14b09824779447d0ba158dda8dba0377dda5
d27de375f89dc8fb460674ffd974fe054729bedcc8422300f6192c4de27e452b

HTTP Headers

GET /cdn-cgi/trace HTTP/1.1
Host: cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://simcast.com/
content-type: text/plain
Origin: https://simcast.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 04 Dec 2023 20:00:13 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 8306a2645ce3712a-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (28)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by