firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 02:45:12 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tCwTlj2Q74CEbDITiy7Ac0eNRsINsFZYQQeJwmreydQA0BJ6MDwv1g==
Age: 215
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12956
Expires: Tue, 06 Sep 2022 06:24:44 GMT
Date: Tue, 06 Sep 2022 02:48:48 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MecXoFVccnYQBYhMlb55ju-mJ_Q4UZ4bGgXDh50dFYmg79hDQm0tmg==
age: 5611
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 02:48:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
154.16.114.64301 Moved Permanently 0 B URL HTTP/1.1 biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?aff_id=15&subid2=6383_sessid20220906024845812&subid=466 HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Sep 2022 02:48:47 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
Content-Length: 0
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 06 Sep 2022 02:38:18 GMT
Cache-Control: max-age=3600
Expires: Tue, 06 Sep 2022 03:29:06 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nWljV9QRguubh6H7AVXY1XOVkavtLoBZa35_bonAWjTW2utCqis3aw==
Age: 630
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b57a9dd04797bf34612c80361f1dffb3
56573166d8b9cd9b8dae19fd905e4f3293af306b
b03552109f1e7d1e482aa14614ffb1e38fb53ae4951152aab307b927674dad98
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6159
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 02:48:48 GMT
Last-Modified: Tue, 06 Sep 2022 01:06:09 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
154.16.114.64301 Moved Permanently 0 B URL HTTP/2 biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?aff_id=15&subid2=6383_sessid20220906024845812&subid=466 HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
x-redirect-by: WordPress
location: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 06 Sep 2022 02:48:48 GMT
server: Apache
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.160.186.52101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.186.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bx1FUT9jMOGggnFwfgPoWA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VXOs2FhG7BMFWXjUpcXsfTfwwHE=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8189
Expires: Tue, 06 Sep 2022 05:05:19 GMT
Date: Tue, 06 Sep 2022 02:48:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8189
Expires: Tue, 06 Sep 2022 05:05:19 GMT
Date: Tue, 06 Sep 2022 02:48:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8189
Expires: Tue, 06 Sep 2022 05:05:19 GMT
Date: Tue, 06 Sep 2022 02:48:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8189
Expires: Tue, 06 Sep 2022 05:05:19 GMT
Date: Tue, 06 Sep 2022 02:48:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c23179b2131543088771e3fa84ff231
ae50ae4aecd962b698c19f2863857b51cea7fcec
660900ca69b1787a734c1dbe3d6b9b19656912b4bc4715964c4325edff57f008
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7855
x-amzn-requestid: d7c8054c-d7d3-4b76-815d-36c3a2e1f6a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYn6FwzoAMF40g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166e32-3ededbf27f83503978e0d775;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:46:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QFEoJOq9eyhQH3KTlAB_ctOvGWRfAkPMHiZUa34wae07KaezXFodBg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:57:14 GMT
age: 17496
etag: "ae50ae4aecd962b698c19f2863857b51cea7fcec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc784000-5c7c-4aa9-8318-e4d0319d1a09.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc784000-5c7c-4aa9-8318-e4d0319d1a09.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0d404793e430ea237e75be9cb1e2bce4
059b34d1809abedd223f7beec75e7831673878be
f180b1cdeb9a794ba3211348673783508d021aeaed419d782374be1a92a4c8dc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc784000-5c7c-4aa9-8318-e4d0319d1a09.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9300
x-amzn-requestid: dc833608-6b16-4baa-af21-d3885043556c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAWshHVxIAMFlGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166b1c-1710086818614ab247bcaf58;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: sPkksSz3FIV3WcWpoY8E8UYKmUTE8LJ2lr5WO2JVNCGIuAvpPwYMYg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:56:40 GMT
age: 17530
etag: "059b34d1809abedd223f7beec75e7831673878be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f82eaf-49aa-4cfd-ab46-894119225c29.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f82eaf-49aa-4cfd-ab46-894119225c29.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6287f68a964668d9dcd418f0f55cfa41
998cc906e470e1b8ec9b840ab5c3b93f1618a1e3
d1d6a242e8a5e3fa3166271473faa20fe2825f24f02a5e15c02180a066262b4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f82eaf-49aa-4cfd-ab46-894119225c29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13302
x-amzn-requestid: b3cc28ec-5792-4028-b62f-b24dd50a24af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-5FLgoAMFo9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-3ea9e3b364c0efe24b48e826;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: arLdjfE327MmTML3UwIQK2Y-ptUk35lzGyufht73gjkKYqbAxfUdEA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:42 GMT
etag: "998cc906e470e1b8ec9b840ab5c3b93f1618a1e3"
content-type: image/jpeg
age: 18128
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ce50dfa23e7f34ff68cc6426c2823f7
b1685694999272feb4d9fc39296418cd95480678
4df89827b1b34bb577f28f281ed85067a2e34dd48923b9bae1561e81f67be49b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7152
x-amzn-requestid: 2571ff54-e2f8-4072-8a26-3d0dd4cd3523
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAWsfHz_IAMFaXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166b1c-6a598849314cdc433f9f82f7;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: I6xmRiAaxHPKpBlCPaRWoMiISlrXRrltO57N3NayiuIvv3gCWTWCZQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:53:35 GMT
age: 17715
etag: "b1685694999272feb4d9fc39296418cd95480678"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7fe061740ad833cfe7ff0fe078d6810d
15d0fc3fdced758b5797361bae0fd53341e0581d
5409b6775bca5afd03901975c61c27f267efe2c8a8e739f05ebc52a938c5a368
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5459
x-amzn-requestid: a75bf8a5-dc96-4a88-9de5-b79d1d62ff21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XxB_bFMFoAMFkEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631049fc-2685c90962d8af5f4a7b5908;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 05:58:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rZh0s85w1Nt6qZdZybNBcQHEXMWQIJvtAyCbF4oWsYUOlIKuNS5Fpg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:15:34 GMT
age: 16396
etag: "15d0fc3fdced758b5797361bae0fd53341e0581d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa78f3c06-9254-405a-8dbf-2fa65b66376b.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa78f3c06-9254-405a-8dbf-2fa65b66376b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 022be15c9cc450f4af703fe8b9fcc702
82342473945f187bbf9b4455c440a01f9269c12b
df07001b8e2b79632e1a3100d957a215fcec7550a9802df87d6d3bee42c14696
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa78f3c06-9254-405a-8dbf-2fa65b66376b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8322
x-amzn-requestid: 9ea441c6-67b1-4325-96b0-54862e35c2bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYHkFKEIAMFR7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d63-5c6ce0ad219286c66f7280bd;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6uMJTARUoTKpxJQmsg2jOYLz1-wew33PQECfoW_7FR2s3ccBk8QqIg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:58:51 GMT
etag: "82342473945f187bbf9b4455c440a01f9269c12b"
content-type: image/jpeg
age: 17399
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb9bf29f1e0acaa7ac6d6566381370
dec1bea642dffbc11ebd6d65c94f87d6db95703a
b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 02:48:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb9bf29f1e0acaa7ac6d6566381370
dec1bea642dffbc11ebd6d65c94f87d6db95703a
b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 02:48:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleoptimize.com/optimize.js?id=OPT-PX828G2
142.250.74.46200 OK 41 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-PX828G2
IP 142.250.74.46:0
File type ASCII text, with very long lines (1615)
Hash 5523a3ddb5c19f2fd9ebcce271ae70a2
bb339def0d7e7653f2cc714ec71d95f973171953
4853d8c0ddc7a544f96e2089dfac21c31b0274cf0803832cda81fc554da14440
GET /optimize.js?id=OPT-PX828G2 HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 02:48:50 GMT
expires: Tue, 06 Sep 2022 02:48:50 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Sep 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41181
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-NWVJ02QJDT
142.250.74.72200 OK 74 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-NWVJ02QJDT
IP 142.250.74.72:0
File type ASCII text, with very long lines (15517)
Hash 5f216909f939ddb79d684568189d34aa
fc6863ac316d840e19b1e712bad588f3bd2f0c80
1a0b44a8e74125f43e584ddf383779f173c8163b2b82e784905d0a73168e0c38
GET /gtag/js?id=G-NWVJ02QJDT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 02:48:50 GMT
expires: Tue, 06 Sep 2022 02:48:50 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73903
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb9bf29f1e0acaa7ac6d6566381370
dec1bea642dffbc11ebd6d65c94f87d6db95703a
b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 02:48:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb9bf29f1e0acaa7ac6d6566381370
dec1bea642dffbc11ebd6d65c94f87d6db95703a
b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 02:48:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.biofungusnuker.com/sw.js?v=1662410778078
154.16.114.64200 OK 49 B URL HTTP/2 www.biofungusnuker.com/sw.js?v=1662410778078
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with no line terminators
Hash 6f25a7e5dfc97f9725b80ce6dab06a84
3c01ae61c07356a97633a3612b28ad5e4f99866a
ccab01b0139eb20f1b457278aefb951c6ca4d474b26a889fd4e3a59d9aba6f20
Analyzer Verdict Alert fortinet Phishing
GET /sw.js?v=1662410778078 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Feb 2022 11:44:29 GMT
accept-ranges: bytes
content-length: 49
content-type: application/javascript
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
code.jqueryoi.com/sw.js
67.212.173.78200 OK 776 B IP 67.212.173.78:0
Hash aa6261f6bcdea58ca6703b3109bd5eb6
788cbd4d7de687a942a7d0797e2119de29192e88
ab99cce1d646bd4caaca1f3d9af1f9e80a8a607031bde78f31b64c30d65cc8cd
Analyzer Verdict Alert fortinet Phishing
GET /sw.js HTTP/1.1
Host: code.jqueryoi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 02:48:50 GMT
content-type: application/javascript
content-length: 776
last-modified: Wed, 13 Jul 2022 18:17:53 GMT
vary: Accept-Encoding
etag: "62cf0c51-308"
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline';
X-Firefox-Spdy: h2
www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
154.16.114.64200 OK 244 kB URL HTTP/2 www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1706), with CRLF, LF line terminators
Size 244 kB (243914 bytes)
Hash 7f58c34c2596a24b7c74f2fed7f471d1
06e9ce7e9ff1337bb89498a4321782f339985015
217229c6d114f024e8391042cdd85ae01b9a9d755889ce75c69632ceddd41660
GET /?aff_id=15&subid2=6383_sessid20220906024845812&subid=466 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
link: <https://www.biofungusnuker.com/wp-json/>; rel="https://api.w.org/", <https://www.biofungusnuker.com/wp-json/wp/v2/pages/7>; rel="alternate"; type="application/json", <https://www.biofungusnuker.com/>; rel=shortlink
content-length: 243914
content-type: text/html; charset=UTF-8
date: Tue, 06 Sep 2022 02:48:49 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
154.16.114.64200 OK 90 kB URL HTTP/2 www.biofungusnuker.com/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (65451)
Hash b6f7093369a0e8b83703914ce731b13c
d1889f5c173c2a4b20288f1f84758599afd346ef
60240d5a27ede94fd35fea44bd110b88c7d8cfc08127f032d13b0c622b8be827
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Dec 2020 07:58:04 GMT
accept-ranges: bytes
content-length: 89496
content-type: application/javascript
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.6.11
154.16.114.64200 OK 1.8 kB URL HTTP/2 www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.6.11
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
Hash 270d05c0ca7ab3b98eb99183bf1e1ef2
c68771f89466e43ebc4ed54028627be4b3e33977
5803ac00778699dfa69a5f4fed086bf5c29164864bdb5b2f36fe0e3cc98736fb
GET /wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.6.11 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 01 Mar 2021 10:38:34 GMT
accept-ranges: bytes
content-length: 1822
content-type: text/css
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.6.11
154.16.114.64200 OK 4.3 kB URL HTTP/2 www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.6.11
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
Hash d1fdce218e486089ed3e3c56ffd451ed
f4fb6b3f4ed76c5de129bf84279086dff7ca871f
a5a0ac2b3d285a43297085af1b35a9021164746c3fbee207c8595fbea5d63a4a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.6.11 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 01 Mar 2021 10:38:34 GMT
accept-ranges: bytes
content-length: 4275
content-type: application/javascript
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/uploads/themify-css/concate/themify-concate-405c7d81c6c9e9fa1575869d440c7211.min.css
154.16.114.64200 OK 98 kB URL HTTP/2 www.biofungusnuker.com/wp-content/uploads/themify-css/concate/themify-concate-405c7d81c6c9e9fa1575869d440c7211.min.css
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (21878), with CRLF, LF line terminators
Hash 94ca64bb0f9c94eb19d206fba21db8f1
08e7d6eaf66073b41a81046ed19bec3a1255f3d6
eb5e4adf7f88966858873eb0c0d2f5a385e4004580a9cc2c56867902e6d815e1
GET /wp-content/uploads/themify-css/concate/themify-concate-405c7d81c6c9e9fa1575869d440c7211.min.css HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:28:12 GMT
accept-ranges: bytes
content-length: 98404
content-type: text/css
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8b3fc7b78a1c498440023dbb6004e984
688d8686e183a4e84577e0f70550350622796e2e
ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 02:48:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
code.jqueryoi.com/js/pub.min.js
67.212.173.78200 OK 1.5 kB URL HTTP/2 code.jqueryoi.com/js/pub.min.js
IP 67.212.173.78:0
File type ASCII text, with very long lines (3046)
Hash 6b59aef8edb9a8a745a3f09d386cebca
0c5831d854a3dcde9fd2ff6476484253219d9cf7
7dbd92ef041a0a0ca1a2b87f7bcf416eb60fd72670391ec82d2997e2dfd7b903
Analyzer Verdict Alert fortinet Malware
GET /js/pub.min.js HTTP/1.1
Host: code.jqueryoi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 02:48:50 GMT
content-type: application/javascript
content-length: 1547
last-modified: Wed, 22 Sep 2021 12:11:29 GMT
vary: Accept-Encoding
etag: "614b1d71-60b"
content-encoding: gzip
expires: Wed, 07 Sep 2022 02:48:50 GMT
cache-control: max-age=86400
strict-transport-security: max-age=31536000; includeSubdomains;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8b3fc7b78a1c498440023dbb6004e984
688d8686e183a4e84577e0f70550350622796e2e
ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 02:48:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
biofungusnuker.com/wp-content/uploads/2020/11/4r.jpg
154.16.114.64200 OK 175 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/4r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1500, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1000], progressive, precision 8, 600x900, components 3\012- data
Size 175 kB (174896 bytes)
Hash ee5c3a7b3d275bfa83e1b09fc7961fc6
c4138263bdca73d1f01c5ee5f7af8407862d87ca
308d9e3a68f8572302745735e22b29b13d8eba5ff0fbfadb878ba52f58010c19
GET /wp-content/uploads/2020/11/4r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:41 GMT
accept-ranges: bytes
content-length: 174896
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/28.-mONEY-bACK.png
154.16.114.64200 OK 7.3 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/28.-mONEY-bACK.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 746 x 152, 8-bit colormap, non-interlaced\012- data
Hash d1fb5a5d83c2b4979eb9a38a43802606
0c4ae4dcdbc2225423f6323927954ef1507141d3
ae4b6f2fc1e8d6f78110c5f0694ed905c6d599522f1ab5c30638bbb69fced66b
GET /wp-content/uploads/2020/10/28.-mONEY-bACK.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:56 GMT
accept-ranges: bytes
content-length: 7270
content-type: image/png
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/main.min.js?ver=5.0.5
154.16.114.64200 OK 26 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/main.min.js?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (553)
Hash 4f040ddd228d764d433ee31f2fd06868
88b4417a276a08bbb17c02e08c90bfc44179ac07
337f41195e18addb58f14268fbea93376cedcf62dc7f89e73e81177221637a37
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/themify/js/main.min.js?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 26408
content-type: application/javascript
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/BIO-FUNGUS-NUKER_2.png
154.16.114.64200 OK 17 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/BIO-FUNGUS-NUKER_2.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 1353 x 220, 8-bit/color RGBA, non-interlaced\012- data
Hash e84ccd880a21ae914e585d6c6d0f3968
acd7af3c0be0f9eed00b000deee5933714039a5e
cb8050910cf07d93e11b1a019a2b6f83730e31a27a048f3e3d9116aae6082ca9
GET /wp-content/uploads/2020/11/BIO-FUNGUS-NUKER_2.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Nov 2020 09:36:02 GMT
accept-ranges: bytes
content-length: 16693
content-type: image/png
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/1r.jpg
154.16.114.64200 OK 231 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/1r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 231 kB (231040 bytes)
Hash 3cc91d3adc5689ea23faa79a9860c982
15b017607ccd0bd87ad99c0aa704b730a183b382
9df5e3df32c0877bf589078c217f4989f67d1306952e0511834d2972c3fded65
GET /wp-content/uploads/2020/11/1r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:48 GMT
accept-ranges: bytes
content-length: 231040
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/26.-60-Day-Money-Back-Guarantee.png
154.16.114.64200 OK 49 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/26.-60-Day-Money-Back-Guarantee.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 480 x 480, 8-bit colormap, non-interlaced\012- data
Hash 19daf776b1c17b081e2382735f469ae1
02111774fb0f42d7025bab2f9a35db5c877e1ae7
0573acd36c523ebb9fb914409f42ad0d6fc51d59b3b2a0dc52ca8c11124ab6db
GET /wp-content/uploads/2020/10/26.-60-Day-Money-Back-Guarantee.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:25:00 GMT
accept-ranges: bytes
content-length: 49004
content-type: image/png
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/11r.jpg
154.16.114.64200 OK 115 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/11r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 115 kB (115168 bytes)
Hash d494e4fe791e67849f00b74375377d30
59ea2a7426ce425bb5d00ecdeb86035f9530a4a9
7bc7402d27fc4ed8424744b11435d41f3bb378024cb9a66eab87d1e596e683f9
GET /wp-content/uploads/2020/11/11r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:26 GMT
accept-ranges: bytes
content-length: 115168
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/7r.jpg
154.16.114.64200 OK 110 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/7r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 110 kB (109456 bytes)
Hash e44b3bd5bc837b9df1fd1cb74afdabd5
3f75200138c7b8e48d35ecf3b6618361aa9c8970
b9a0b47a56bbbc597bb6b8135d7281be2109187c03eaffbf96ae8c0aee47b4fa
GET /wp-content/uploads/2020/11/7r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:38 GMT
accept-ranges: bytes
content-length: 109456
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/30.-Easy-Fixes-For-Smelly-Feet.jpg
154.16.114.64200 OK 76 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/30.-Easy-Fixes-For-Smelly-Feet.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Hash 80083f083079d855125df3d5a07a91eb
23efdac2b1a0916adf1707c5581c39a90f4230ca
b6f15e99420334e2cc0ad01080358308a8847d493a76422bf14ef33fd0d71ff0
GET /wp-content/uploads/2020/10/30.-Easy-Fixes-For-Smelly-Feet.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:40 GMT
accept-ranges: bytes
content-length: 75750
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/5-rsToenail-Fungus-Transformation.jpg
154.16.114.64200 OK 284 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/5-rsToenail-Fungus-Transformation.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:10:23 14:56:22], progressive, precision 8, 900x900, components 3\012- data
Size 284 kB (284033 bytes)
Hash afff2562975f976e996acab16f1ef233
0f0b12eb817258085dd9bf2b0ab48036168aa581
80047c21c9c6ffb89abff2a12550e1d8cb67d1370df3d3e780a16f97cba77f4b
GET /wp-content/uploads/2020/10/5-rsToenail-Fungus-Transformation.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:23:14 GMT
accept-ranges: bytes
content-length: 284033
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/31-Lazy-Mnas-One-Day-Detox.jpg
154.16.114.64200 OK 84 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/31-Lazy-Mnas-One-Day-Detox.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Hash 708bd423f428c6632e2fec751c1ab8c4
4c4bb3eeb33bbcdc2e23014cc95cd55080a36250
6133f17999c0c1c9c42a30fd998028416232ce0e84ab7cd0c704f0809fc2b55a
GET /wp-content/uploads/2020/10/31-Lazy-Mnas-One-Day-Detox.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:36 GMT
accept-ranges: bytes
content-length: 84102
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/29.-Vitamins-And-Minerals-Handbook.jpg
154.16.114.64200 OK 92 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/29.-Vitamins-And-Minerals-Handbook.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Hash fe6a010f8602871f3888895d0f23455f
5ead712d31c9657696717a0f202861c8284af0b9
36e6cf2199e7785b2367f59e7e1c7deb9b36d61b95b5660d2a7ac933e557eec2
GET /wp-content/uploads/2020/10/29.-Vitamins-And-Minerals-Handbook.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:44 GMT
accept-ranges: bytes
content-length: 91998
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/Testimonial-Instagram-Quote-2.png
154.16.114.64200 OK 91 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/Testimonial-Instagram-Quote-2.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 1080 x 1080, 8-bit colormap, non-interlaced\012- data
Hash 96137593658435d55556106487a460ef
acd642d5071a3100f790a95dc5913134445cae58
28501541aa65ddddfcd2a87909ab80fa9aeb27e66f5fd21a300a7f5e4fdab335
GET /wp-content/uploads/2020/10/Testimonial-Instagram-Quote-2.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:07 GMT
accept-ranges: bytes
content-length: 91372
content-type: image/png
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/8r.jpg
154.16.114.64200 OK 143 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/8r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 143 kB (142959 bytes)
Hash dcde181b407e2a4fb76f073117795ef7
d776a33ae438bd23e39f0c2b3186ebf8fc9be87b
b343dddcd88fddb8f3f880190ff0fc8897341c49b2c360481f9de4f15807038a
GET /wp-content/uploads/2020/11/8r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:36 GMT
accept-ranges: bytes
content-length: 142959
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/2r.jpg
154.16.114.64200 OK 299 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/2r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 299 kB (299066 bytes)
Hash 330a705f21c79091070ff8997ab6d92b
41f244b2fb7ab11ac2259c3f525e7c51ddfecbc7
74658094ced3ba5e265b4e3e75f8877e0d2646d88bbd2df46731221ed5a83138
GET /wp-content/uploads/2020/11/2r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:45 GMT
accept-ranges: bytes
content-length: 299066
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-1.jpg
154.16.114.64200 OK 112 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-1.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Size 112 kB (112102 bytes)
Hash 445d6b54165ce12712a5375abfece8ef
ee4f3723c9b7b33ce0d5d5f8d2b187100d6612f9
7a64b93a68712b42d1f045407fd0d3bb8537b85c55705f4d15a7e8c5dd3659e2
GET /wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-1.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:24 GMT
accept-ranges: bytes
content-length: 112102
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/19-rs.jpg
154.16.114.64200 OK 112 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/19-rs.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:10:23 14:47:20], progressive, precision 8, 650x650, components 3\012- data
Size 112 kB (112289 bytes)
Hash faa98f31f05fefb116853a0a294911b8
0f556ef256ace144517df2597cf4fa3e8106a95f
275e3a03b42aab4217d1f52033cf0993e6f3b94bab37ee6875d45ddd4993b647
GET /wp-content/uploads/2020/10/19-rs.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:22:32 GMT
accept-ranges: bytes
content-length: 112289
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/1-BASIC.jpg
154.16.114.64200 OK 105 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/1-BASIC.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 13:45:59], progressive, precision 8, 267x670, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 24935-21573, spot sensor temperature 0.000000, unit fahrenheit, color scheme 0, calibration: offset 2619437658466756329472.000000, slope 4061723361280.000000\012- data
Size 105 kB (104858 bytes)
Hash 2355ea650107a94df0c7144fba4b3d40
ce7be156916a2dc632a93423e79feca8815ea908
0f680435887c21115d190f5116e0902f950e1726ebfaf3fd3a1674d57d12b02e
GET /wp-content/uploads/2020/11/1-BASIC.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:56 GMT
accept-ranges: bytes
content-length: 104858
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/9r.jpg
154.16.114.64200 OK 161 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/9r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 161 kB (161260 bytes)
Hash fa10f4caa0f4f1cc916f5e9e97e6d043
5f450ea6dee721828826576296baf132935e335d
1b88cf27e086bcee12b7969e39455928acd6254c091836fd210a200b33d56b17
GET /wp-content/uploads/2020/11/9r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:33 GMT
accept-ranges: bytes
content-length: 161260
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/10r.jpg
154.16.114.64200 OK 166 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/10r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 600x600, components 3\012- data
Size 166 kB (165871 bytes)
Hash 1c87ab47a38c289997ad53250b2ff537
3b30795949247a558bf650be75d4230cd3774ba9
8bd43efdd39131498a3776f7c708f0025066f4aeed8522070864f4bf7839d8f5
GET /wp-content/uploads/2020/11/10r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:29 GMT
accept-ranges: bytes
content-length: 165871
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/18-rs.jpg
154.16.114.64200 OK 122 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/18-rs.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:10:23 14:48:03], progressive, precision 8, 900x600, components 3\012- data
Size 122 kB (121901 bytes)
Hash 65be28f8a079f4436ac5d001d86175ec
385d7e68b60cf6fcbd40e70d367e3516cb6863e0
09f80355d12d6402915eef7f459f3d5d3e4fa27f665c6bf814e0ec0341772bb3
GET /wp-content/uploads/2020/10/18-rs.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:22:36 GMT
accept-ranges: bytes
content-length: 121901
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/3-STANDARD.jpg
154.16.114.64200 OK 126 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/3-STANDARD.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 13:46:17], progressive, precision 8, 267x670, components 3\012- data
Size 126 kB (125560 bytes)
Hash c0f4fa670859979e4e547f134faf8d26
59b5bc86311e2a9cfab95bb3b62f56ebf5d9ccc3
576e296fde222c8d182c0651bad7f587c8128eac395d9e7f22536b51279fbe49
GET /wp-content/uploads/2020/11/3-STANDARD.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:04 GMT
accept-ranges: bytes
content-length: 125560
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/themify-builder/js/themify.builder.script.min.js?ver=5.0.5
154.16.114.64200 OK 16 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/themify-builder/js/themify.builder.script.min.js?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (551)
Hash 3ca456c7ab74f2d523dca3ff999941ab
8543c902a8ff405d60332d3ad02863e5fb999b2b
3c96378b65d5fb22c3313952dce83f31f18e6c2662989107d0576d66617ba1d3
GET /wp-content/themes/themify-landing/themify/themify-builder/js/themify.builder.script.min.js?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 15697
content-type: application/javascript
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/13r.jpg
154.16.114.64200 OK 194 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/13r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 194 kB (194426 bytes)
Hash 1d24ebcf92fe37e9082c03c2b31e1df0
6107c9cd2b2a269594ce759119ab0ac99e48d42e
6ba149bf6cc9117c8318d71338eb2b5ad9c94f48d894be2828a11608bc78330c
GET /wp-content/uploads/2020/11/13r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:21 GMT
accept-ranges: bytes
content-length: 194426
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/js/themify.script.min.js?ver=5.0.6
154.16.114.64200 OK 1.0 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/js/themify.script.min.js?ver=5.0.6
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (501)
Hash 0b9070926d46b977161ec1a572299ae1
2fb0c7ff7534d73818f29cd22dd9884a8d9db0e3
3612092149ae982f6f94ef5d7af5f4a022dc8efa52eb18d8a382e47b6f76c7a2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/js/themify.script.min.js?ver=5.0.6 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 1001
content-type: application/javascript
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/media-queries.min.css?ver=5.0.6
154.16.114.64200 OK 4.2 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/media-queries.min.css?ver=5.0.6
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (4202)
Hash 6744c911c6ee2b8940f01439c284a7e4
72f0b106e1efcb4079c699665455901e3265926f
f38b8b8614425e370e4972fa42a7d9fe79cd181d03cbd04b12821f426d35a7ee
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/media-queries.min.css?ver=5.0.6 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:10 GMT
accept-ranges: bytes
content-length: 4203
content-type: text/css
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/uploads/themify-css/concate/themify-mobile-dee6a58368f16c5a779def98678d751a.min.css
154.16.114.64200 OK 6.1 kB URL HTTP/2 www.biofungusnuker.com/wp-content/uploads/themify-css/concate/themify-mobile-dee6a58368f16c5a779def98678d751a.min.css
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (6083)
Hash 9c65ab3d364b34be36f8ff1aaad5688d
e602603e0bcf1d9aa08fd1a40cc046a9dd61af32
c47271831ddb3c92e6a83a18e01c0d0f9a8450852bfa855a0a2a9f2e910edda4
GET /wp-content/uploads/themify-css/concate/themify-mobile-dee6a58368f16c5a779def98678d751a.min.css HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:17:39 GMT
accept-ranges: bytes
content-length: 6100
content-type: text/css
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-3.jpg
154.16.114.64200 OK 144 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-3.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Size 144 kB (144017 bytes)
Hash b446714ddbc04171e1e7b30767922365
5f3424525b71e12813a1c1de2083613c60269968
553beb0af1eb98b33eb14cd9dd992729a11faf22a104e31ee967b6a5384dba65
GET /wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-3.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:28 GMT
accept-ranges: bytes
content-length: 144017
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/6-PREMIUM.jpg
154.16.114.64200 OK 141 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/6-PREMIUM.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 13:45:34], progressive, precision 8, 281x700, components 3\012- data
Size 141 kB (141307 bytes)
Hash 294e82e9127a87607fc2a9d30f35b0d1
50372b3a9ab2d564c7373d099db87f9b07ccd416
81a1064f1dc34852f060c2e2cd570e2778e2a17fa6daabe2f504eb511c007906
GET /wp-content/uploads/2020/11/6-PREMIUM.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:59 GMT
accept-ranges: bytes
content-length: 141307
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/17r.jpg
154.16.114.64200 OK 146 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/17r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 14:14:27], progressive, precision 8, 700x467, components 3\012- data
Size 146 kB (145952 bytes)
Hash 5d5272b0e231020c86a3bcf45c9992b2
f5e8ac389ba65fdc181012499442b458509176a5
8b32015d819957ca6256bfec907393fdba75550a29c144cac4f075250a0b5d77
GET /wp-content/uploads/2020/11/17r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:10 GMT
accept-ranges: bytes
content-length: 145952
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/19.-Myco-Nuker-Fungal-Natural-Treatment.png
154.16.114.64200 OK 158 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/19.-Myco-Nuker-Fungal-Natural-Treatment.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 1080 x 1080, 8-bit colormap, non-interlaced\012- data
Size 158 kB (157703 bytes)
Hash 40e7b065f2ab8ab30acf837e07ed89f5
24132b610dcd903dc6fca42b118c60a89824a2d3
039b43040ad92a751498808e72a3e1c91f647748e09c71073276d2e338b55541
GET /wp-content/uploads/2020/10/19.-Myco-Nuker-Fungal-Natural-Treatment.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:25:57 GMT
accept-ranges: bytes
content-length: 157703
content-type: image/png
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/12r.jpg
154.16.114.64200 OK 206 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/12r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 206 kB (206418 bytes)
Hash 92861fa27a5685911446a022714d8ed0
81cd10ba9efaffc9d7e1e64c65af7d1473eb23c2
36bf0cd7ed9a85f23eb9c33147c7a8e304a1ede7373d310c3f70d59143dc0b26
GET /wp-content/uploads/2020/11/12r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:24 GMT
accept-ranges: bytes
content-length: 206418
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/15r.jpg
154.16.114.64200 OK 169 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/15r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 169 kB (168793 bytes)
Hash afeb8ede6d8acbbff45bcd7a3c87eed3
3c57bf4698f0ff51ed0c65984d37030fa27529f0
4525d1ce669ad72055146204530190614a26cc33d867359f21c97ac4a92def12
GET /wp-content/uploads/2020/11/15r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:15 GMT
accept-ranges: bytes
content-length: 168793
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/16r.jpg
154.16.114.64200 OK 194 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/16r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 194 kB (194250 bytes)
Hash 67840ca9c5d981ce5054ca2547e8f875
0390830f7e0f2a51682102b78559a9160f94fb1d
b67cd2b10f7e9875d9387ab500702b1c1e25eadc66de2c75d3c30d212a856912
GET /wp-content/uploads/2020/11/16r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:12 GMT
accept-ranges: bytes
content-length: 194250
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/23r.jpg
154.16.114.64200 OK 205 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/23r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 205 kB (204851 bytes)
Hash a8f904dc77916235b57c70f369b2bb6a
541bfb55b58b748d592237520ec28b498df34580
2de640b4f2f06b32e8c4460538f3dcd057048712b1c4b3f5ec83456982bccfae
GET /wp-content/uploads/2020/11/23r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:54 GMT
accept-ranges: bytes
content-length: 204851
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/24r.jpg
154.16.114.64200 OK 217 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/24r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 217 kB (217054 bytes)
Hash 77a624de1388541bdeb2a7ee2a8c0647
cc19a2a80d2498e325615bf9e4790f5a51d3ca3c
dd1dadcc668260627fa4446b9ed6047627132da7572ee75d29a7b10553b72502
GET /wp-content/uploads/2020/11/24r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:51 GMT
accept-ranges: bytes
content-length: 217054
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/14r.jpg
154.16.114.64200 OK 247 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/14r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 30050-16495, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 17875471468176858939392.000000, slope 75530841815994297227822967554048.000000\012- data
Size 247 kB (246645 bytes)
Hash 48c6967c890da1ab223f9a9d41b9bee9
35ac259c50008332f6c5b122546781dedc8ad029
06efc01636d9cbe89852bc48454b8d3bc8061dc69d0ace4aae812b5a68e6a9dd
GET /wp-content/uploads/2020/11/14r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:18 GMT
accept-ranges: bytes
content-length: 246645
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/Myco-Nuker-label.jpg
154.16.114.64200 OK 775 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/Myco-Nuker-label.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=675, bps=0, PhotometricIntepretation=CMYK, orientation=upper-left, width=1620], baseline, precision 8, 700x292, components 4\012- data
Size 775 kB (775000 bytes)
Hash 229c89df816b15531898ac6871bd7dbc
fdc27b5c9656642bda4c2838a39d393016b4d825
0fd52035dfea573b25022e5afd69753d820574f06638ffa5943fa35e5fc815e1
GET /wp-content/uploads/2020/11/Myco-Nuker-label.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 13:52:41 GMT
accept-ranges: bytes
content-length: 775000
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/To-get-from-this-2-scaled.jpg
154.16.114.64200 OK 115 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/To-get-from-this-2-scaled.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 2560x1707, components 3\012- data
Size 115 kB (114763 bytes)
Hash 8477f3a80322520148723e00f2c58463
717e7275df536587b767560785e5f4433fa30118
d7876ba55c7b43bafbb74da2258a2fdc2cdbbb7cab83f9377c096670b6063e1e
GET /wp-content/uploads/2020/10/To-get-from-this-2-scaled.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:57 GMT
accept-ranges: bytes
content-length: 114763
content-type: image/jpeg
date: Tue, 06 Sep 2022 02:48:51 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/32.-Fungus-Transformation-Myco-Nuker-1.png
154.16.114.64200 OK 3.0 MB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/32.-Fungus-Transformation-Myco-Nuker-1.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 5760 x 3000, 8-bit colormap, non-interlaced\012- data
Size 3.0 MB (2964360 bytes)
Hash 69c409c5bab0cc632d961368ca75ed3f
82f4f2817f4a30aa14d867ca1d2c5dde267c55a9
10e6c091e39402c70bac1d6b7cd82db1e1c771ef90f14886fc09f5d68eac8c55
GET /wp-content/uploads/2020/10/32.-Fungus-Transformation-Myco-Nuker-1.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:03 GMT
accept-ranges: bytes
content-length: 2964360
content-type: image/png
date: Tue, 06 Sep 2022 02:48:50 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 02:48:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 02:48:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2
142.250.74.163200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 17908, version 1.0\012- data
Hash e46b4e2e3b47cc232937ebf72b4c537e
2675bc06ee643b8c935370325a327efb74746e6a
d8543b5dcaea1fc4a0301dc12b5b2adc9079e0794dd6a45879588fb844f3438e
GET /s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.biofungusnuker.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 21:38:35 GMT
expires: Tue, 05 Sep 2023 21:38:35 GMT
cache-control: public, max-age=31536000
age: 18616
last-modified: Mon, 18 Jul 2022 19:23:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
go.maxweb.com/conversion/iframe/?a=6383&token=2ac0eb6f6c02b0fd4b48d31cd94f8f35
172.66.43.113200 OK 50 B URL HTTP/2 go.maxweb.com/conversion/iframe/?a=6383&token=2ac0eb6f6c02b0fd4b48d31cd94f8f35
IP 172.66.43.113:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash cbfb19b0c07aaa9aac4a8bc78b6fcb45
c1122a6862a96ddee43ba4b7011fefb71fae3890
90e91281fb39bab96d8c1f34f2feb5771a56848faa3fd848688857a01afcf742
GET /conversion/iframe/?a=6383&token=2ac0eb6f6c02b0fd4b48d31cd94f8f35 HTTP/1.1
Host: go.maxweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 02:48:51 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Tue, 06 Sep 2022 03:48:51 GMT
cache-control: max-age=3600, private
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7463e3560d3db4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 02:48:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/tf_wow.min.js?ver=5.0.5
154.16.114.64200 OK 2.1 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/tf_wow.min.js?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (533)
Hash 278c3a0b9f48985031858bd14f855519
2502887ebb26f397ad1152db01f00dc43677b32a
ad7c531720b78898150aacbcef72addf69bbd59ccef4eb718397290294b2f5c3
GET /wp-content/themes/themify-landing/themify/js/modules/tf_wow.min.js?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 2110
content-type: application/javascript
date: Tue, 06 Sep 2022 02:48:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/css/animate.min.css?ver=3.6.2
154.16.114.64200 OK 13 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/css/animate.min.css?ver=3.6.2
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (12838)
Hash 2691132c46dca8f1d65babd2fc8358ae
6ce52079fbd16ad1531ff93cbfa1d7eb32781ba2
9db57198bf6002de2c513968733286b6678a70645bc7c7770224a2c60490e272
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/themify/css/animate.min.css?ver=3.6.2 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 12852
content-type: text/css
date: Tue, 06 Sep 2022 02:48:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/jquery.imagesloaded.min.js?ver=4.1.4
154.16.114.64200 OK 3.9 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/jquery.imagesloaded.min.js?ver=4.1.4
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (3921)
Hash 1f323646e6ff48c37944512d867f49c9
27415be1e46996bd850ba10d193d44feb4f81a69
eb0045ba455512d20b72d4a2148abc8c75f3088ca96bcfeadff4a1b56eacbeab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/themify/js/modules/jquery.imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662410776.1.0.1662410782.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 3932
content-type: application/javascript
date: Tue, 06 Sep 2022 02:48:51 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/Myco-nuker_St.png
154.16.114.64200 OK 1.2 MB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/Myco-nuker_St.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 3000 x 3000, 8-bit colormap, non-interlaced\012- data
Size 1.2 MB (1157453 bytes)
Hash bcab79483fb09770c6956d1f626a44cd
07c874ded33c2cadaebe0e2f136f028051998c9b
cd33005bef59a3c2c13318f2db5cf691ece5f6a0b5d9cf7a8491150fae4c061f
GET /wp-content/uploads/2020/10/Myco-nuker_St.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662432526.2.0.1662432526.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220905204621196; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220905204644741; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:29:02 GMT
accept-ranges: bytes
content-length: 1157453
content-type: image/png
date: Tue, 06 Sep 2022 02:48:51 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/sw.js?v=1662432526654
154.16.114.64200 OK 49 B URL HTTP/2 www.biofungusnuker.com/sw.js?v=1662432526654
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with no line terminators
Hash 6f25a7e5dfc97f9725b80ce6dab06a84
3c01ae61c07356a97633a3612b28ad5e4f99866a
ccab01b0139eb20f1b457278aefb951c6ca4d474b26a889fd4e3a59d9aba6f20
Analyzer Verdict Alert fortinet Phishing
GET /sw.js?v=1662432526654 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: _ga_NWVJ02QJDT=GS1.1.1662432526.2.0.1662432526.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220906024817389; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220906024845812; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Feb 2022 11:44:29 GMT
accept-ranges: bytes
content-length: 49
content-type: application/javascript
date: Tue, 06 Sep 2022 02:48:51 GMT
server: Apache
X-Firefox-Spdy: h2
tracking.buygoods.com/track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6
172.66.40.234200 OK 5.9 kB URL HTTP/2 tracking.buygoods.com/track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6
IP 172.66.40.234:0
File type ASCII text, with CRLF line terminators
Hash 00f7cfb77e3e742456c69099270a96a1
5382ea4081cf56d5b2b6c506a30f25f199e63299
b5ba1873ee4c970ffd9f5ef097e79cf8a8d39fae5b06ad1f0ac70365b7e88018
GET /track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6 HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 02:48:51 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7463e355f96cb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/themify-builder/css/modules/frames.min.css?ver=5.0.5
154.16.114.64200 OK 705 B URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/themify-builder/css/modules/frames.min.css?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (704)
Hash ba5c5a4de0e92a943dfe7f3e86d4f840
9eadc3b9410cdfd4f3c019519c9002d4857897a6
0feede88e961b94693c86462d85a81249451c555c68d40aa9b39569cc8be94c4
GET /wp-content/themes/themify-landing/themify/themify-builder/css/modules/frames.min.css?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906024845812&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662432526.2.0.1662432526.0.0.0; _ga=GA1.1.520395576.1662410777; sessid2=sessid20220906024817389; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220906024845812; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:10 GMT
accept-ranges: bytes
content-length: 705
content-type: text/css
date: Tue, 06 Sep 2022 02:48:51 GMT
server: Apache
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-NWVJ02QJDT>m=2oe8v0&_p=772530567&cid=520395576.1662410777&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662432526&sct=2&seg=0&dl=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220906024845812%26subid%3D466&dt=Eradicate%20Fungus%20%7C%20BIO%20Fungus%20Nuker&en=page_view&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-NWVJ02QJDT>m=2oe8v0&_p=772530567&cid=520395576.1662410777&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662432526&sct=2&seg=0&dl=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220906024845812%26subid%3D466&dt=Eradicate%20Fungus%20%7C%20BIO%20Fungus%20Nuker&en=page_view&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-NWVJ02QJDT>m=2oe8v0&_p=772530567&cid=520395576.1662410777&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662432526&sct=2&seg=0&dl=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220906024845812%26subid%3D466&dt=Eradicate%20Fungus%20%7C%20BIO%20Fungus%20Nuker&en=page_view&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.biofungusnuker.com
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.biofungusnuker.com
date: Tue, 06 Sep 2022 02:48:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
code.jqueryoi.com/sw.js
67.212.173.78200 OK 776 B IP 67.212.173.78:0
Hash aa6261f6bcdea58ca6703b3109bd5eb6
788cbd4d7de687a942a7d0797e2119de29192e88
ab99cce1d646bd4caaca1f3d9af1f9e80a8a607031bde78f31b64c30d65cc8cd
Analyzer Verdict Alert fortinet Phishing
GET /sw.js HTTP/1.1
Host: code.jqueryoi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 02:48:52 GMT
content-type: application/javascript
content-length: 776
last-modified: Wed, 13 Jul 2022 18:17:53 GMT
vary: Accept-Encoding
etag: "62cf0c51-308"
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline';
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald:400,700%7CCrimson+Text:700i,400,700,400i&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald:400,700%7CCrimson+Text:700i,400,700,400i&display=swap
IP 142.250.74.10:0
GET /css?family=Oswald:400,700%7CCrimson+Text:700i,400,700,400i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 02:48:50 GMT
date: Tue, 06 Sep 2022 02:48:50 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=6213
172.66.40.141200 OK 0 B URL HTTP/2 display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=6213
IP 172.66.40.141:0
GET /v1/disclaimer?id=disclaimer&account_id=6213 HTTP/1.1
Host: display.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 02:48:50 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
strict-transport-security: max-age=31536000;
set-cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7463e3553ef9fac0-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2