r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3d0727e32cd103ddd4b73f28c81758aa
197a7bf43d63723fc532c23c6dced68d5cc36652
d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3261
Expires: Sun, 13 Nov 2022 01:59:44 GMT
Date: Sun, 13 Nov 2022 01:05:23 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5076aaa9f4ccd602540286ce0590cb9a
bbf7936a8413a564478971d9e19beb6338cbc869
00e3b967c579b0ccf709b78d497a43d95646b16eb50925fef1e2694c58f290b2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "00E3B967C579B0CCF709B78D497A43D95646B16EB50925FEF1E2694C58F290B2"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3658
Expires: Sun, 13 Nov 2022 02:06:21 GMT
Date: Sun, 13 Nov 2022 01:05:23 GMT
Connection: keep-alive
www.quickfixtest1.com/
301 Moved Permanently 233 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9b131e740615ed7d6c1ca6228bf0dee1
47ee53a1fe5d9adfc138baa00b668b3aa8d351bb
36f7101f49ea782e49129c326726b53e36c7581e3792779cab2c0a843ada7d9b
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: www.quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 13 Nov 2022 01:05:23 GMT
Server: Apache
Location: http://quickfixtest1.com/
Cache-Control: max-age=600
Expires: Sun, 13 Nov 2022 01:15:23 GMT
Content-Length: 233
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.digicert.com/
200 OK 471 B IP
Hash de470c6bab46e7c4b7cc69f392900fe7
189e4dcc4c2b8bf1f050e06bd68bce8a99618918
86f57134ddebd23a25615dc4d59c4b1ca8919e3e0495e1f006cbe7c0f39aa27e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4697
Cache-Control: max-age=125049
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:05:23 GMT
Etag: "636f75f3-1d7"
Expires: Mon, 14 Nov 2022 11:49:32 GMT
Last-Modified: Sat, 12 Nov 2022 10:31:15 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: CGSutnR2r8gx4gR15bXb0tMrWksZPmmVJChoxwZ1j0zBEvDm8cGECbXIejmv++am2Sv0KlSNjCfJqM48tZTmqA==
x-amz-request-id: MHHY07603RFEV9SB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 13 Nov 2022 00:50:29 GMT
age: 894
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 13 Nov 2022 00:44:05 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1278
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 13 Nov 2022 01:05:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
quickfixtest1.com/
301 Moved Permanently 234 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1d6f5e17b9ba1da2a46e15cb431d2deb
800b9f84fbc6dee5026877e075ed9da63ef1b89c
0088332a7dcbdc9a583aa5fcaff1813df3a16dcad2fe1d9f5c9d73d15a70b548
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 13 Nov 2022 01:05:23 GMT
Server: Apache
Location: https://quickfixtest1.com/
Cache-Control: max-age=600
Expires: Sun, 13 Nov 2022 01:15:23 GMT
Content-Length: 234
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 13 Nov 2022 00:44:48 GMT
cache-control: public,max-age=3600
age: 1235
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash ae51f1958554de4457c22a7d5a9ba8b6
173e90a8c6ee36b7ec569dbea47436a90d7e7c76
dc43a04e1e26243f63a8e628f2ebcb23a9527fd4bc40dc6d1d61879b0f95bb21
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4103
Cache-Control: max-age=119392
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:05:23 GMT
Etag: "636f622c-1d7"
Expires: Mon, 14 Nov 2022 10:15:15 GMT
Last-Modified: Sat, 12 Nov 2022 09:06:52 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
quickfixtest1.com/_next/static/7dwKpMgNY6sQEakHeHQcF/_ssgManifest.js
200 OK 170 B URL HTTP/2 quickfixtest1.com/_next/static/7dwKpMgNY6sQEakHeHQcF/_ssgManifest.js
IP
File type ASCII text, with no line terminators
Hash 3bdd8e3fa0993ddb72b393708ce6fc69
df0dfb9ac8859bbe8b2d7653836376beac56a270
44f5b4853ef88d66077883290e6994ac202b09007168b5b13e0d0b28b7288983
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/7dwKpMgNY6sQEakHeHQcF/_ssgManifest.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:40 GMT
etag: W/"11d-18357ca0180-gzip"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 13 Dec 2022 01:05:24 GMT
content-encoding: gzip
content-length: 170
server: Apache
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ibEHqsknQX1Ae6kdendH+g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wIGuQFiDXdiil8MDXZdIBAJg00s=
quickfixtest1.com/assets/images/eli-and-elm-logo.png
200 OK 9.5 kB URL HTTP/2 quickfixtest1.com/assets/images/eli-and-elm-logo.png
IP
File type PNG image data, 345 x 95, 8-bit colormap, non-interlaced\012- data
Hash 94bcacd0ebb6a38fba480e59b17a2dc9
3d85ae083c6f96913153a60ca77bafc39bd9e2d8
267644f6ea94960fb9059abbfb0597c37cbb057ef515ae3447d9eb38776ef93d
Analyzer Verdict Alert quad9 Sinkholed
GET /assets/images/eli-and-elm-logo.png HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=2592000
last-modified: Wed, 03 Aug 2022 15:28:34 GMT
etag: W/"251d-1826452a4d0"
content-type: image/png
content-length: 9501
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 13 Dec 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/7dwKpMgNY6sQEakHeHQcF/_middlewareManifest.js
200 OK 62 B URL HTTP/2 quickfixtest1.com/_next/static/7dwKpMgNY6sQEakHeHQcF/_middlewareManifest.js
IP
File type ASCII text, with no line terminators
Hash 53178dae8e49323bbfb37e5c8f183636
ef4fd9d00c9c8c89292e6c120a4e70fc2b4da2eb
c69fb311cd1dd93e2ed659397add666ac7bbef7cd957438ac1f4a2bbc0ebf6ac
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/7dwKpMgNY6sQEakHeHQcF/_middlewareManifest.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:40 GMT
etag: W/"5c-18357ca0180-gzip"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 13 Dec 2022 01:05:24 GMT
content-encoding: gzip
content-length: 62
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/assets/images/free1.webp
200 OK 1.3 kB URL HTTP/2 quickfixtest1.com/assets/images/free1.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8eea7783011110f2f1f8e2ed9637e27d
97fa8c29e650c69cae26271d8c8f36fb79684e34
f9ba67a7338f834a30fc570b07d8babaab35ae1ea0e1983d505e8777bf3f3697
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /assets/images/free1.webp HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=172800
last-modified: Wed, 03 Aug 2022 15:28:34 GMT
etag: W/"62e-1826452a4d0-gzip"
content-type: image/webp
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 15 Nov 2022 01:05:24 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1322
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/assets/images/free2.webp
200 OK 1.5 kB URL HTTP/2 quickfixtest1.com/assets/images/free2.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4e5323110dafaf3a7164e5b8b9092e24
6d9f46d389077abb460bce381a77f0be15be3129
5ab2856bf5947ee8fdab880ff64a12ed113fc49f3591736ec8a678ca73c68e3c
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /assets/images/free2.webp HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=172800
last-modified: Wed, 03 Aug 2022 15:28:34 GMT
etag: W/"6bc-1826452a4d0-gzip"
content-type: image/webp
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 15 Nov 2022 01:05:24 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1468
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/assets/fonts/AvenirMedium.woff2
200 OK 44 kB URL HTTP/2 quickfixtest1.com/assets/fonts/AvenirMedium.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 43988, version 1.0\012- data
Hash d4ac24acbb7fba6bef85192690d61d19
f4adcee62544b09eddd80de03420c18198758d47
f04a71c49955d2a6584192cc238e40b647dfd8ec4e9abf8b9b44543d4041ed28
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /assets/fonts/AvenirMedium.woff2 HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://quickfixtest1.com/_next/static/css/2ada0b9d4711d97c.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=172800
last-modified: Wed, 03 Aug 2022 15:28:34 GMT
etag: W/"abd4-1826452a4d0"
content-type: font/woff2
content-length: 43988
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 15 Nov 2022 01:05:24 GMT
vary: Accept-Encoding,User-Agent
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/assets/images/free3.webp
200 OK 1.2 kB URL HTTP/2 quickfixtest1.com/assets/images/free3.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash f7e32ce9c9fbf69ec02593d7d1235f7c
f7eab0b9539bb79447c7a1d638e6bec41d56d873
37b0d7307cdb5f69707616756a72a37273a52ad4f94a34bb03a94ebbf9585466
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /assets/images/free3.webp HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=172800
last-modified: Wed, 03 Aug 2022 15:28:34 GMT
etag: W/"5c4-1826452a4d0-gzip"
content-type: image/webp
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 15 Nov 2022 01:05:24 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1207
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/assets/images/free4.webp
200 OK 1.1 kB URL HTTP/2 quickfixtest1.com/assets/images/free4.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 815a15dd25f2a7bb2beef0b3f2a7ba23
e794a0a2d4cecbe71cd940abbbfa657a992064cd
e17ee1aed5c0df4e71319771d8a52dfee21f885f4ff3e592d5c88b6e1d2275a5
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /assets/images/free4.webp HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=172800
last-modified: Wed, 03 Aug 2022 15:28:34 GMT
etag: W/"57e-1826452a4d0-gzip"
content-type: image/webp
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 15 Nov 2022 01:05:24 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1136
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/assets/fonts/Didot.woff2
200 OK 35 kB URL HTTP/2 quickfixtest1.com/assets/fonts/Didot.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 34956, version 1.0\012- data
Hash 9f804d04d5ca49d36f0b1fca1c77bcae
70efa546b629b6411bb03082ba693b8dacfe6824
9cd84ed2d42118144c0330c8ccebebad3ca4ac9ea703f3806294b40cf18afc3e
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /assets/fonts/Didot.woff2 HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://quickfixtest1.com/_next/static/css/2ada0b9d4711d97c.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=172800
last-modified: Wed, 03 Aug 2022 15:28:34 GMT
etag: W/"888c-1826452a4d0"
content-type: font/woff2
content-length: 34956
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 15 Nov 2022 01:05:24 GMT
vary: Accept-Encoding,User-Agent
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/assets/images/quote-box.png
200 OK 1.7 kB URL HTTP/2 quickfixtest1.com/assets/images/quote-box.png
IP
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 234f1ef935873056f97617d58a3c6c5e
be91da030dc9c06efcd756ee2e2553b2f46ae4ed
a333a63131ae86519b862d79a2369bad6098e1ac31bcdb98de15821f5d4bcccb
Analyzer Verdict Alert quad9 Sinkholed
GET /assets/images/quote-box.png HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/_next/static/css/f03b7d08145b944f.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=2592000
last-modified: Wed, 03 Aug 2022 15:28:34 GMT
etag: W/"6c6-1826452a4d0"
content-type: image/png
content-length: 1734
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 13 Dec 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/assets/images/home-new-testimonial-bg.jpg
200 OK 50 kB URL HTTP/2 quickfixtest1.com/assets/images/home-new-testimonial-bg.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1500x721, components 3\012- data
Hash 0abeb77d516296b8e875b947b85f65f6
e638140c492268046c8579dadf23e673ac55f91d
2cc61fc4a6d7e2415bb437636517db022c3fc235bfad0462fccad166f66fcf24
Analyzer Verdict Alert quad9 Sinkholed
GET /assets/images/home-new-testimonial-bg.jpg HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/_next/static/css/f03b7d08145b944f.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=2592000
last-modified: Wed, 03 Aug 2022 15:28:34 GMT
etag: W/"c1e9-1826452a4d0"
content-type: image/jpeg
content-length: 49641
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 13 Dec 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/media/home-banner.44fc2a6f.jpg
200 OK 185 kB URL HTTP/2 quickfixtest1.com/_next/static/media/home-banner.44fc2a6f.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=558, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=1366], baseline, precision 8, 1920x784, components 3\012- data
Size 185 kB (184886 bytes)
Hash 421da2f0efdc270fa57d0c96638394c7
46736dc33c724f5f9676835c9eadc6ae9fea994d
4b6916524167b5280994ca8f1a30bb568e8dd1f2e77387ce5a9654bdf3f1a2f1
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/static/media/home-banner.44fc2a6f.jpg HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/_next/static/css/f03b7d08145b944f.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"2d236-18357c9bb30"
content-type: image/jpeg
content-length: 184886
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 13 Dec 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e7dc2623cb841be51d3e8857e015d8e1
cbfdb2a7b965598de893fef89d47e17763501acf
df1fc0809a603469e6abcf1f07a13d792550d68c862f80e38c00e47e9b233a5b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:05:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
quickfixtest1.com/assets/images/svg/tuck-logo.svg
200 OK 1.5 kB URL HTTP/2 quickfixtest1.com/assets/images/svg/tuck-logo.svg
IP
Hash e6e5c83b65937fcaa13632e82fef2108
aeefc3f3e40eb07e4060c3ebfcf015dfa3b20f29
69e853659b542a7f20d3b593e362f1e2c84c85b356b5c1b9132d05cb0e8d2392
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /assets/images/svg/tuck-logo.svg HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=172800
last-modified: Wed, 03 Aug 2022 15:28:34 GMT
etag: W/"7b2-1826452a4d0"
content-type: image/svg+xml
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 15 Nov 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 7ba0b74b5e2d208bbe411761cdf957a4
cd59ccac8d3487d1e8ad29a72c00b6176188c456
ad6d2d4d75776cbf90c32846b132c1c7d936f0ee41c2f7ec284a5a34da01da7c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 185
Cache-Control: max-age=86345
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:05:24 GMT
Etag: "636ef064-117"
Expires: Mon, 14 Nov 2022 01:04:29 GMT
Last-Modified: Sat, 12 Nov 2022 01:01:24 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 279
www.googletagmanager.com/gtag/js?id=UA-134569623-1
200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-134569623-1
IP
File type ASCII text, with very long lines (1921)
Hash bfbcf4e378ee82e7b0fdd8c85f98f4a1
58929db73dfc00bf3c0c6968c36eac9ce391bf2a
37b2540e7ab8a8af08c10e9c8091af8ae938532f2864c17d2812ed5ec4716d1f
GET /gtag/js?id=UA-134569623-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Sun, 13 Nov 2022 01:05:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44712
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
quickfixtest1.com/assets/images/elielmpillows-special.webp
200 OK 89 kB URL HTTP/2 quickfixtest1.com/assets/images/elielmpillows-special.webp
IP
Hash fa6e4e905952fee7b0889c43a683792d
dca2a13f631dfd8366357750f8e42be5b26dd416
823b5f5e7d4d512f82cfb3a640570c9aeb0ca72fc7c45a788cec3d35bada901a
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /assets/images/elielmpillows-special.webp HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=172800
last-modified: Wed, 03 Aug 2022 15:28:34 GMT
etag: W/"a3c0-1826452a4d0-gzip"
content-type: image/webp
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 15 Nov 2022 01:05:24 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/assets/images/salepopImg.webp
200 OK 24 kB URL HTTP/2 quickfixtest1.com/assets/images/salepopImg.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 680ffc0c005ac39a4275d3d0fe88c420
109f90155f1698ca7ac8571a9c751bfc3e18872c
d43be63de8d2240ecad9c5ca18acd27a265baa748987bd98b56bb09a4156821a
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /assets/images/salepopImg.webp HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Cookie: salepopupshown=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=172800
last-modified: Wed, 03 Aug 2022 15:28:34 GMT
etag: W/"5ca6-1826452a4d0-gzip"
content-type: image/webp
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 15 Nov 2022 01:05:24 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 23489
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/assets/images/svg/sleepopolis-logo.svg
200 OK 4.3 kB URL HTTP/2 quickfixtest1.com/assets/images/svg/sleepopolis-logo.svg
IP
Hash bee8e78de56fb3f09379daa55d8c9cf2
6a1994326e290c463a722fb97bb686001903a1fe
e89cc842938bbc97f300a3b895ce92d9542783a156c97dae7ee345d45da43af3
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /assets/images/svg/sleepopolis-logo.svg HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=172800
last-modified: Wed, 03 Aug 2022 15:28:34 GMT
etag: W/"1cd6-1826452a4d0"
content-type: image/svg+xml
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 15 Nov 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e7dc2623cb841be51d3e8857e015d8e1
cbfdb2a7b965598de893fef89d47e17763501acf
df1fc0809a603469e6abcf1f07a13d792550d68c862f80e38c00e47e9b233a5b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:05:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C82QJ0OJVRJLR9PJHCPG&lib=ttq
200 OK 45 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C82QJ0OJVRJLR9PJHCPG&lib=ttq
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (65467)
Hash 468b542c0a5b2d6b91989667aa1cfd85
1e33aff309aa7a440997ac96bd03035290e36399
4d8a768a92c8009f0e7b19360c1ba84ac50fe210998ca51d62fb658111e5ef67
GET /i18n/pixel/events.js?sdkid=C82QJ0OJVRJLR9PJHCPG&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221113010524D0651A0C7E3ED416DBB3
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6005cad3df0138822b44c6a3f7e177b671a2f7fc313fd447e6f16b2783838f209548678fa018f4e4174bb9622e9123a04a1b4c4d31acc4cde9f5ef6149a68f0ee023c8f85d7d968264ef20f16fa3396ab5
content-encoding: gzip
content-length: 45223
x-origin-response-time: 26,23.32.16.72
x-akamai-request-id: f0251358.23834461
expires: Sun, 13 Nov 2022 01:05:25 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 13 Nov 2022 01:05:25 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-32-16-72.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=106, origin; dur=26, inner; dur=3
x-parent-response-time: 132,23.36.79.28
X-Firefox-Spdy: h2
quickfixtest1.com/assets/images/svg/usa-today.svg
200 OK 958 B URL HTTP/2 quickfixtest1.com/assets/images/svg/usa-today.svg
IP
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 3464af6c1052029d4fe68fc29469a622
c235c84c9996a868de5eaec45247316cca3b787f
c97d12767eb081098551852d9548352b27e4ac8c8222d860d5e673078a5568dd
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /assets/images/svg/usa-today.svg HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=172800
last-modified: Wed, 03 Aug 2022 15:28:34 GMT
etag: W/"817-1826452a4d0"
content-type: image/svg+xml
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 15 Nov 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/data/7dwKpMgNY6sQEakHeHQcF/product/eli-elm-weighted-comforter.json
200 OK 4.9 kB URL HTTP/2 quickfixtest1.com/_next/data/7dwKpMgNY6sQEakHeHQcF/product/eli-elm-weighted-comforter.json
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (22043)
Hash 3ab85edd107b34480c98fb92bb3eb352
e1f1ea1ac8060bcb8c1e06c746419989ed9cba51
644d3ed06d90414229bad1a86f28653a0e8f0dc407c64c96b700ba75fd32d6ce
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/data/7dwKpMgNY6sQEakHeHQcF/product/eli-elm-weighted-comforter.json HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/
Connection: keep-alive
Cookie: salepopupshown=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-nextjs-cache: HIT
etag: "5634-HkkscNeMIgQX7bP6w141ADBLvgU"
content-type: application/json
cache-control: s-maxage=86400, stale-while-revalidate, max-age=172800
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 15 Nov 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/identify.js
200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/identify.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash ffecd73868745bcf1ef660c50848d4de
3a690182f2485da92b0d6eaf88a43f38df41b385
fc17c19c9c63c13214c1cdc1c902d2469b80e88eba5dd94f6ae792fa784ffd59
GET /i18n/pixel/identify.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221113010525D99175EFF962CE16F0AB
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6005cad3df0138822b44c6a3f7e177b671a2f7fc313fd447e6f16b2783838f2095b7c94922a68776fb5c293b6b7c12f19af8a4f2ed88cc674839563ce75325192a155a334f233e01617bd9e5ae56892a79
content-encoding: gzip
content-length: 30836
x-origin-response-time: 56,23.32.16.72
x-akamai-request-id: f0252312.238344cd
expires: Sun, 13 Nov 2022 01:05:25 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 13 Nov 2022 01:05:25 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-32-16-72.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=101, origin; dur=56, inner; dur=2
x-parent-response-time: 157,23.36.79.28
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 9.0 kB IP
ASN #20940 Akamai International B.V.
File type gzip compressed data, from Unix\012- data
Hash 4d9a2a737f9188a90c61337cc8d098f2
87fff06a4d000d499cb47862e41922f3bf2d0167
241b3baabe9a88c9c259261f27c820678bbea88be2370aeed137101a19618084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16532
Expires: Sun, 13 Nov 2022 05:40:57 GMT
Date: Sun, 13 Nov 2022 01:05:25 GMT
Connection: keep-alive
static.zdassets.com/ekr/snippet.js?key=4b27901d-35c7-4f6c-a8f3-8ceb4cd3701d
200 OK 6.7 kB URL HTTP/2 static.zdassets.com/ekr/snippet.js?key=4b27901d-35c7-4f6c-a8f3-8ceb4cd3701d
IP
File type ASCII text, with very long lines (23416), with no line terminators
Hash 406464962b3e083bfd1120a1562e86f5
d4e668098f610c53c622ad74eaebc6e735e15c04
eabf54100670ae34a3a119838c1c2aafd9dbae353b29a25d5255de032857f45e
GET /ekr/snippet.js?key=4b27901d-35c7-4f6c-a8f3-8ceb4cd3701d HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 13 Nov 2022 01:05:24 GMT
content-type: application/javascript
x-amz-id-2: 2vczt6VEQAujZh2Sn1saK7Q0yPHQMRKRQuuC+kOwLnJ40itjD1HXfy2Id85tVz8wD4O1ArN10VQ=
x-amz-request-id: 4MARQ9YY8PDZ70A8
x-amz-replication-status: PENDING
last-modified: Thu, 28 Jul 2022 23:44:02 GMT
etag: W/"5cae6ce528dce0c327b2bcbaad459fdb"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: TCAqq4sghBBBAAXd3MLZ8Fy8XIds..vO
cf-cache-status: HIT
age: 47
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XajfalF2mjBxJLzUHq%2B9G4kmkG2QM3GW16ZEnNPfOASyxY6WpE0yOkTTwTq2jz1jZV7ILC0age6s1VU6FWnedB8x6AudZ5DdTEdHUPcTh1k15pKFSrKwP9WeFcgnpjpswWvdAbQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 76939952dee80b4d-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16532
Expires: Sun, 13 Nov 2022 05:40:57 GMT
Date: Sun, 13 Nov 2022 01:05:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a88ef61-5cb3-45de-81c6-9e5627c95213.jpeg
200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a88ef61-5cb3-45de-81c6-9e5627c95213.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash efa90e098f0535727c631d3099650c7c
77dd6b28a62b7058d599bd56a207f10f7b6e149b
a9ff915a87d5d0b212652946f78e7d5e0e1bd20cf721ea2b4b1db79163094aa4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a88ef61-5cb3-45de-81c6-9e5627c95213.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7180
x-amzn-requestid: 59aeee14-0e74-4457-84b3-ca67c1ebc9a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bUWVKGwlIAMF48g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636b3754-19fe3bf61eae4fc43c09804d;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 05:15:00 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: 6k6VT5D68lwHpI9s0e7emNYXaswayEDjhFOUA9dswIrY-VS0ihR3Fg==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 01:10:46 GMT
age: 86079
etag: "77dd6b28a62b7058d599bd56a207f10f7b6e149b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb74e86a9-6c63-4a82-8e8b-64abdadca859.jpeg
200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb74e86a9-6c63-4a82-8e8b-64abdadca859.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e9320a4be9c69eeda4a855b5a9535a5
a91bbc712fc0194b44d33fb7e04e49724ddfe14a
7aa0049111b04d0514dd3378ebe62bf3207b8725a6c1facf3d07ab465c6a6095
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb74e86a9-6c63-4a82-8e8b-64abdadca859.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6729
x-amzn-requestid: 6ceabd9e-4ac5-4835-b112-4aaeb81c9576
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bgfNIEZkoAMFgGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63701253-0e9112ee682f0895683d80cb;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 21:38:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rgqstxXN7Y3hwQpctyn9jtlAnmhkC9zHQttCLjLJmjWKT09m1whn4A==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 21:47:17 GMT
age: 11888
etag: "a91bbc712fc0194b44d33fb7e04e49724ddfe14a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25a71d85-6d34-4bb8-8293-97875c72aa74.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25a71d85-6d34-4bb8-8293-97875c72aa74.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 221170365ec0ab6bb773472933bccb4e
2f8d80c36b9d52bbca60ddc946176b8bca2f05f5
c1fedf00b8a0defa4fada242cf3e28c90937bf5f1c10145aebb3494c5a0b5066
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25a71d85-6d34-4bb8-8293-97875c72aa74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9540
x-amzn-requestid: 69c339ec-ac3c-49a4-8029-01d21a7f50b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: be3itHj1oAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636f6c77-79d478af722a4ecf50a381a9;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 09:50:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uxbx0xudJDX6_72_MTyyW6R2FXmdfV_5APgpZhqG-6QIeE_yPdGxSg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 22:16:10 GMT
etag: "2f8d80c36b9d52bbca60ddc946176b8bca2f05f5"
content-type: image/jpeg
age: 10155
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8995ae3b-9ed6-4d82-aeda-bce16829dd81.jpeg
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8995ae3b-9ed6-4d82-aeda-bce16829dd81.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8bb9138fde16b4052595c61c9aae69a1
eba0fcacc61aed15fe7c4aa11a951e1b681f08d2
11b98e67b1e869b2456ace0e07aa6f5019d15f43c8132f482c76e322282d8e63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8995ae3b-9ed6-4d82-aeda-bce16829dd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7018
x-amzn-requestid: 81a4f5a1-d081-4d8d-9a2e-40618cba31f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bOBrDGPcIAMF7iw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6368afe0-09f756e70724e84e6a12d1a4;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 07:12:32 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: erLVAHcW3raRqNQ5PVI6Fxj89Mw4LBbVS9SKGJ8bxFtR1Mr_I7gMrg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 03:42:55 GMT
age: 76950
etag: "eba0fcacc61aed15fe7c4aa11a951e1b681f08d2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa23e03e8-7a4b-473b-801f-39322d374478.jpeg
200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa23e03e8-7a4b-473b-801f-39322d374478.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 31a009393081c25d9afbde558a278ebf
bf8de6c00f579baa320456bd0e79ab80978008bc
90e81f6a10d3dbc56a45e9cfd65dbcd6bddf9e3ab526b4cca270bc2f26404950
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa23e03e8-7a4b-473b-801f-39322d374478.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5149
x-amzn-requestid: 394f108e-48b9-4550-ab9f-5b4883792485
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bEIqfHOoIAMFlCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364bb0f-648124d07e289043410f1dd0;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 07:11:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tW81M1o1m_OdLZJLg7dvgbaugRKYpHzHx-8R1g4YcGH74YnIquTuAQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 07:45:08 GMT
age: 62417
etag: "bf8de6c00f579baa320456bd0e79ab80978008bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80441337-327d-4d34-9fe8-53269c39ac18.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80441337-327d-4d34-9fe8-53269c39ac18.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26249508ef18eac51cf62cf6e90339a4
a9922959c532dd26f21bda4f74ee1fa8496e862e
25075ef6337bae8e60412cdca98afbae6aca61d889aadce4cbad4a8522f4c4b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80441337-327d-4d34-9fe8-53269c39ac18.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7867
x-amzn-requestid: e05d4978-6f46-4395-8121-4d969a222328
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bgfLqFWIoAMF01A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6370124a-4033150d0180e56e2965e26e;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 21:38:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: YDkJ7OIcS3FiDPufRTj5VtL5CMxbNN2o2Zq50QQ9UNeDw4uE4j3jrw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 21:54:29 GMT
age: 11456
etag: "a9922959c532dd26f21bda4f74ee1fa8496e862e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 125323db3ff29b80f81fae08e2d58df6
5a407fed4d6d43f2a4ccc6d5168f147d7f2af4a2
6e100312be7aa9f36164adeb96b6cead8685c4c0a1d950334128f598b17a945b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4507
Cache-Control: max-age=116543
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:05:25 GMT
Etag: "636f5579-1d7"
Expires: Mon, 14 Nov 2022 09:27:48 GMT
Last-Modified: Sat, 12 Nov 2022 08:12:41 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 13 Nov 2022 00:41:09 GMT
expires: Sun, 13 Nov 2022 02:41:09 GMT
cache-control: public, max-age=7200
age: 1456
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash 0ac10debd3a9ea8147a26d045bb93e6e
ff45f3442508e8695f2303701682ebdb6e016464
5dee7b453b2c72c07ff1d62432493a044507835a8031ea62edf2fa7cc26219b9
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: mq1zSsvxV1q+mOp9DY+3nV3k6deZ/Ixdvvw2xJ0kBu+MnbYHeckCkFO/ZdGQythXI/2s8a+Uqe2ZFi+4YjIU6w==
content-length: 27337
x-fb-trip-id: 1904183273
date: Sun, 13 Nov 2022 01:05:25 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 4ef6e2c1ce8a37291edce6f6cfe4deda
d647fa5af963922fb0e87634ccd98c8b81fad825
fee4b56e075d514d14985cf3a555f26005a82aa017336fe64f42ce52cffeff9c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6494
Cache-Control: max-age=134746
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:05:25 GMT
Etag: "636f94d1-117"
Expires: Mon, 14 Nov 2022 14:31:11 GMT
Last-Modified: Sat, 12 Nov 2022 12:42:57 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 471 B IP
Hash 125323db3ff29b80f81fae08e2d58df6
5a407fed4d6d43f2a4ccc6d5168f147d7f2af4a2
6e100312be7aa9f36164adeb96b6cead8685c4c0a1d950334128f598b17a945b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6078
Cache-Control: max-age=118113
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:05:25 GMT
Etag: "636f5579-1d7"
Expires: Mon, 14 Nov 2022 09:53:58 GMT
Last-Modified: Sat, 12 Nov 2022 08:12:41 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
quickfixtest1.com/iconx/apple-touch-icon.png
200 OK 34 kB URL HTTP/2 quickfixtest1.com/iconx/apple-touch-icon.png
IP
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 8be42828236fb3084b4a5142cbea07e7
ff3cc1ddfa96772a2d21b84ab3b8dbff5adf8ca6
84b43c7faa875e3f5393eb372b410d6f4e8219d554580360c3e39e7f1e342cfa
Analyzer Verdict Alert quad9 Sinkholed
GET /iconx/apple-touch-icon.png HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.1.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=2592000
last-modified: Tue, 23 Aug 2022 00:37:12 GMT
etag: W/"83e8-182c821c2c0"
content-type: image/png
content-length: 33768
date: Sun, 13 Nov 2022 01:05:25 GMT
expires: Tue, 13 Dec 2022 01:05:25 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/favicon.png
200 OK 3.0 kB URL HTTP/2 quickfixtest1.com/favicon.png
IP
File type PNG image data, 76 x 76, 8-bit colormap, non-interlaced\012- data
Hash a8b8663b3dda3f92f5a719baff0f83f5
bacfc8d35023f5370458095e9a62a64daa7d267e
96a6be2d2783ab805b6921322145efd41fa0043209d9dc0114a33f01d7e62962
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.png HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.1.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=2592000
last-modified: Wed, 03 Aug 2022 15:28:34 GMT
etag: W/"bba-1826452a4d0"
content-type: image/png
content-length: 3002
date: Sun, 13 Nov 2022 01:05:25 GMT
expires: Tue, 13 Dec 2022 01:05:25 GMT
server: Apache
X-Firefox-Spdy: h2
api.quickfixtest1.com/api/cart/get-stored-cart.php?cart_key=
200 OK 242 B URL HTTP/2 api.quickfixtest1.com/api/cart/get-stored-cart.php?cart_key=
IP
File type JSON data\012- , ASCII text, with very long lines (532), with no line terminators
Hash b0ce89e83947960001df8be9a0054d77
ce60f61a870d246ff20ca40e5a88c776dc3eb7a6
986e85cdff064ab3c9729b0747add850610ecd3672f24e679a30123ea126d28f
Analyzer Verdict Alert quad9 Sinkholed
GET /api/cart/get-stored-cart.php?cart_key= HTTP/1.1
Host: api.quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/
Origin: https://quickfixtest1.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, X-Request-With
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, max-age=0
pragma: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
last-modified: Sun, 13 Nov 2022 01:05:25 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 242
content-type: application/json; charset=utf-8
date: Sun, 13 Nov 2022 01:05:25 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 9e68546de527e266dbe51efb3870cb7d
885b1bfa2c9addba5feaefa7266c441c1c1a2c4d
311f7ba74683b30596d230500640b3d7d645399565ae0bddbb7d691ede43b6d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=93350
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:05:25 GMT
Etag: "636f0c7b-116"
Expires: Mon, 14 Nov 2022 03:01:15 GMT
Last-Modified: Sat, 12 Nov 2022 03:01:15 GMT
Server: nginx
Content-Length: 278
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0df79cbc834bd5e53cf14431365341dc
00e5191435de6d5804d36e8db45d1858dfc67e62
6a4d0997ea345b437ad5f53d41699920f946ba31bbc2b01e005516485328d033
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:05:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-134569623-1&cid=778695410.1668301524&jid=944396539&gjid=1837352479&_gid=1264772223.1668301525&_u=YADAAUAAAAAAACAAI~&z=792086648
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-134569623-1&cid=778695410.1668301524&jid=944396539&gjid=1837352479&_gid=1264772223.1668301525&_u=YADAAUAAAAAAACAAI~&z=792086648
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-134569623-1&cid=778695410.1668301524&jid=944396539&gjid=1837352479&_gid=1264772223.1668301525&_u=YADAAUAAAAAAACAAI~&z=792086648 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://quickfixtest1.com
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://quickfixtest1.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 13 Nov 2022 01:05:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ekr.zdassets.com/compose/4b27901d-35c7-4f6c-a8f3-8ceb4cd3701d
200 OK 723 B URL HTTP/2 ekr.zdassets.com/compose/4b27901d-35c7-4f6c-a8f3-8ceb4cd3701d
IP
File type JSON data\012- , ASCII text, with very long lines (401), with no line terminators
Hash 456fa46fb7e92e092af0a2606e8b8b41
89baf716d8342bda2daee9f239271e2253e354f9
ac4f912e2fd591a2a3d94c8ab26ae733997359051a73fdc90c6da0ee39a0cd11
GET /compose/4b27901d-35c7-4f6c-a8f3-8ceb4cd3701d HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quickfixtest1.com
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 13 Nov 2022 01:05:25 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=600, public, s-maxage=60, stale-while-revalidate=600, stale-if-error=3600
etag: W/"4fa8f4044bc70ec65cdccad650addab8"
x-request-id: 769399534f72b503-SEA, 769399534f72b503-SEA
x-runtime: 0.002488
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MjA93Y8RpcFpXeLeMnic2qEBFbrLUDt9HlvtrOAl%2FcRsxDKw3lGQkt3o%2Fn37kI%2FumHNXIwyJWGP2e2UbHD%2Bmz%2FIwn1Fsju%2BT6nKAP82scVQtw59uc7cTEwjJmmzy5hs1ZdQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 769399534f72b503-OSL
content-encoding: br
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-YFVLNJXBZ7>m=2oeb90&_p=1271662462&cid=778695410.1668301524&ul=en-us&sr=1280x1024&_s=1&sid=1668301524&sct=1&seg=0&dl=https%3A%2F%2Fquickfixtest1.com%2F&dt=Eli%20%26%20Elm%20Pillows%20%7C%20Luxury%20Pillows%20and%20Bedding&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-YFVLNJXBZ7>m=2oeb90&_p=1271662462&cid=778695410.1668301524&ul=en-us&sr=1280x1024&_s=1&sid=1668301524&sct=1&seg=0&dl=https%3A%2F%2Fquickfixtest1.com%2F&dt=Eli%20%26%20Elm%20Pillows%20%7C%20Luxury%20Pillows%20and%20Bedding&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-YFVLNJXBZ7>m=2oeb90&_p=1271662462&cid=778695410.1668301524&ul=en-us&sr=1280x1024&_s=1&sid=1668301524&sct=1&seg=0&dl=https%3A%2F%2Fquickfixtest1.com%2F&dt=Eli%20%26%20Elm%20Pillows%20%7C%20Luxury%20Pillows%20and%20Bedding&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quickfixtest1.com
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://quickfixtest1.com
date: Sun, 13 Nov 2022 01:05:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
api.quickfixtest1.com/api/cart/get-stored-cart.php?cart_key=394e555aa0e8c0a16e52a27eac198d48
200 OK 242 B URL HTTP/2 api.quickfixtest1.com/api/cart/get-stored-cart.php?cart_key=394e555aa0e8c0a16e52a27eac198d48
IP
File type JSON data\012- , ASCII text, with very long lines (532), with no line terminators
Hash b0ce89e83947960001df8be9a0054d77
ce60f61a870d246ff20ca40e5a88c776dc3eb7a6
986e85cdff064ab3c9729b0747add850610ecd3672f24e679a30123ea126d28f
Analyzer Verdict Alert quad9 Sinkholed
GET /api/cart/get-stored-cart.php?cart_key=394e555aa0e8c0a16e52a27eac198d48 HTTP/1.1
Host: api.quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/
Origin: https://quickfixtest1.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, X-Request-With
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, max-age=0
pragma: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
last-modified: Sun, 13 Nov 2022 01:05:25 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 242
content-type: application/json; charset=utf-8
date: Sun, 13 Nov 2022 01:05:25 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 86d1ab5f5a5b326dd100a4bfcda8ceed
ed17be3586e93321dd2ab1a340ae41d6f86e293d
db7591e84a7adaa4ff3ddd38458e379bbb15751e31a10937c6202cba94a8c602
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:05:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7178c97c15d49f214dd4e238628d8123
60c15885ccb9910621dd369fc0578a344bdab734
c668912ace8d705981ac3a28ffef7075f373ef1352b58d6384f44aae1c386baf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:05:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-134569623-1&cid=778695410.1668301524&jid=944396539&_u=YADAAUAAAAAAACAAI~&z=322693276
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-134569623-1&cid=778695410.1668301524&jid=944396539&_u=YADAAUAAAAAAACAAI~&z=322693276
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-134569623-1&cid=778695410.1668301524&jid=944396539&_u=YADAAUAAAAAAACAAI~&z=322693276 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 13 Nov 2022 01:05:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-134569623-1&cid=778695410.1668301524&jid=944396539&_u=YADAAUAAAAAAACAAI~&z=322693276
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-134569623-1&cid=778695410.1668301524&jid=944396539&_u=YADAAUAAAAAAACAAI~&z=322693276
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-134569623-1&cid=778695410.1668301524&jid=944396539&_u=YADAAUAAAAAAACAAI~&z=322693276 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 13 Nov 2022 01:05:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
d10lpsik1i8c69.cloudfront.net/graphics/blink_green.png
200 OK 1.3 kB URL HTTP/2 d10lpsik1i8c69.cloudfront.net/graphics/blink_green.png
IP
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 2e4ff7ec8bf18d247ee942621e0f9d65
8a95379165f6eec4bd32371ea005476eb9738e17
9746bbc8be1eacd912bb90f2226b3f9141b15938f7b0281825c74999c0040c9b
GET /graphics/blink_green.png HTTP/1.1
Host: d10lpsik1i8c69.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1283
date: Sun, 04 Sep 2022 04:50:29 GMT
last-modified: Fri, 02 Sep 2022 19:59:47 GMT
etag: "2e4ff7ec8bf18d247ee942621e0f9d65"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cYzInrhZzWDHa15fw_akNdyYCaIY-ypaVdJeIARhpSMbegLGsbxevA==
age: 6034498
X-Firefox-Spdy: h2
d10lpsik1i8c69.cloudfront.net/graphics/logo-light.png
200 OK 1.1 kB URL HTTP/2 d10lpsik1i8c69.cloudfront.net/graphics/logo-light.png
IP
File type PNG image data, 68 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 35ce74c31e3ef54462a234340af702d7
237486e74119f2e28f466d401c26fbc64d0a5cdb
8c34bc7bc1985e63394c3c2afff88cdcfc06e501320432dd23eaff83ea6754eb
GET /graphics/logo-light.png HTTP/1.1
Host: d10lpsik1i8c69.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1143
date: Sun, 04 Sep 2022 05:58:27 GMT
last-modified: Fri, 02 Sep 2022 19:59:47 GMT
etag: "35ce74c31e3ef54462a234340af702d7"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5z0dpzwXYTWkaPxiGxbxHLB1pGLAqtRYB2WLBGxsnkUquGlH4rTs3w==
age: 6030420
X-Firefox-Spdy: h2
d10lpsik1i8c69.cloudfront.net/graphics/sound-on-white.png
200 OK 277 B URL HTTP/2 d10lpsik1i8c69.cloudfront.net/graphics/sound-on-white.png
IP
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 76f1993de0fd323f67cece8d8e63bfa2
a95e6e665260a90968d0ff818d5c196dc7684f27
da0c1bc51d4ebfa2570f3e7546d9d3ccfb3f9d3c1199b1ca49869510aa79392a
GET /graphics/sound-on-white.png HTTP/1.1
Host: d10lpsik1i8c69.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 277
date: Thu, 06 Oct 2022 14:26:17 GMT
last-modified: Fri, 02 Sep 2022 19:59:47 GMT
etag: "76f1993de0fd323f67cece8d8e63bfa2"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YqJO3XpMMAn5rZ6w1sMIf7IqIF30kWyXd-Lc5a-DFW4CygJ5S7dKIQ==
age: 3235150
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8407d0e10edccb49f0046879825b7141
c9c4dcfc9e674053ed246cc99500d4dd10065bce
9e41f526c12734040e62aac8d4b8b093f60977d9b00feb10e81f78db19de8c26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:05:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7178c97c15d49f214dd4e238628d8123
60c15885ccb9910621dd369fc0578a344bdab734
c668912ace8d705981ac3a28ffef7075f373ef1352b58d6384f44aae1c386baf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:05:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0b7f4ab1aec83348ebbc6f2798921d14
5ead8008265d099144d1aaa45891a61dd36bfe24
c75805fe0e214a90b61ec71584b397efab23e153c99ac968b8f0dce3dd72710f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75805FE0E214A90B61EC71584B397EFAB23E153C99AC968B8F0DCE3DD72710F"
Last-Modified: Fri, 11 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13570
Expires: Sun, 13 Nov 2022 04:51:36 GMT
Date: Sun, 13 Nov 2022 01:05:26 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bc899b30225dac7a22aa3989f746404f
a3fd15e650b69875d383045a55476ee34f81a9aa
e4afa3762001059171f5af3db58e7b73fdda0754b361d0e0c04708f069ca7bca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E4AFA3762001059171F5AF3DB58E7B73FDDA0754B361D0E0C04708F069CA7BCA"
Last-Modified: Thu, 10 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3473
Expires: Sun, 13 Nov 2022 02:03:19 GMT
Date: Sun, 13 Nov 2022 01:05:26 GMT
Connection: keep-alive
in.visitors.live/socket.io/?EIO=3&transport=websocket
101 Switching Protocols 0 B URL HTTP/1.1 in.visitors.live/socket.io/?EIO=3&transport=websocket
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?EIO=3&transport=websocket HTTP/1.1
Host: in.visitors.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://quickfixtest1.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /rRUYHR4Tpl13CDY07r6fw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Upgrade: websocket
Connection: Upgrade
Sec-WebSocket-Accept: UNVfdaUZTDmrKej1aUsYAuX5usA=
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets
Date: Sun, 13 Nov 2022 01:05:26 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
visitors.live/socket.io/?siteId=325582&EIO=3&transport=websocket
101 Switching Protocols 0 B URL HTTP/1.1 visitors.live/socket.io/?siteId=325582&EIO=3&transport=websocket
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?siteId=325582&EIO=3&transport=websocket HTTP/1.1
Host: visitors.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://quickfixtest1.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mZqSFMCkTbT1uwg2C8PKDw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Upgrade: websocket
Connection: Upgrade
Sec-WebSocket-Accept: b35o19PtQ7e96HQORHfCVAxFZkk=
Sec-WebSocket-Extensions: permessage-deflate; client_no_context_takeover
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets
Date: Sun, 13 Nov 2022 01:05:26 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0b7f4ab1aec83348ebbc6f2798921d14
5ead8008265d099144d1aaa45891a61dd36bfe24
c75805fe0e214a90b61ec71584b397efab23e153c99ac968b8f0dce3dd72710f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75805FE0E214A90B61EC71584B397EFAB23E153C99AC968B8F0DCE3DD72710F"
Last-Modified: Fri, 11 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13570
Expires: Sun, 13 Nov 2022 04:51:36 GMT
Date: Sun, 13 Nov 2022 01:05:26 GMT
Connection: keep-alive
static.zdassets.com/web_widget/latest/classic/web-widget-classic-8262d85.js
200 OK 198 kB URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-classic-8262d85.js
IP
File type ASCII text, with very long lines (13518), with no line terminators
Size 198 kB (198408 bytes)
Hash 5b83640deb01052d92a3aac3e672f6a0
9bca97b80e560b8474a4085b7dc24194ee8ca423
a9092b25473911f1a36d8603da4bb0d4859983a2f6ff9e1f454c824886dfab59
GET /web_widget/latest/classic/web-widget-classic-8262d85.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 13 Nov 2022 01:05:26 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: mWnRfpCEH9R5mcm8PpL3+jDd4NStstHm+hEkXV0G+p2JntNFayLQGF32BV9EZR9NLR+AqJ2FehU=
x-amz-request-id: B4XG0G7DZXF19BN7
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Nov 2022 03:33:08 GMT
etag: W/"240f4301c065057931ce34a2ad6eafa0"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 03:33:07 GMT
x-amz-version-id: wz6a7iiHMeoOhXK5vZ7qzIQEBvhPmp5x
cf-cache-status: HIT
age: 847431
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qsGoCz9CHCd2xvnt4GAcjx4%2BAHvNH%2BN%2FZlJvLJtNtgX59kOfOWq21gQWCqKEKW3egbKoI6Ghc%2FPmbC%2B%2F6aOFuW1vjDI4B1kct2zkm8NG%2FIpf33f79MmQWMMMIdFo2tmhQnTOhnk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 76939959fb1a0b4d-OSL
content-encoding: br
X-Firefox-Spdy: h2
d10lpsik1i8c69.cloudfront.net/css/reset.css
200 OK 793 B URL HTTP/2 d10lpsik1i8c69.cloudfront.net/css/reset.css
IP
File type ASCII text, with very long lines (2362), with no line terminators
Hash 5714aaddacdc46b502aabb95fd0184d9
20ea35d49e0085eb55708e295cb1cb75e1490110
f95207d1fb2f484d5ca950beee6aeb7e4f0fb7dc688974694fe7ea1c2c3c5200
GET /css/reset.css HTTP/1.1
Host: d10lpsik1i8c69.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Wed, 28 Sep 2022 01:07:49 GMT
last-modified: Fri, 02 Sep 2022 19:59:47 GMT
etag: W/"7144eaceff0b31347712515a6116074e"
cache-control: max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VfaoBLKt55URAk0k9Zn3yWO30P_pJDs_L7iSlfp_DosC_xgFtS3sdQ==
age: 3974258
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/7dwKpMgNY6sQEakHeHQcF/_ssgManifest.js
200 OK 170 B URL HTTP/2 quickfixtest1.com/_next/static/7dwKpMgNY6sQEakHeHQcF/_ssgManifest.js
IP
File type ASCII text, with no line terminators
Hash 3bdd8e3fa0993ddb72b393708ce6fc69
df0dfb9ac8859bbe8b2d7653836376beac56a270
44f5b4853ef88d66077883290e6994ac202b09007168b5b13e0d0b28b7288983
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/7dwKpMgNY6sQEakHeHQcF/_ssgManifest.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:40 GMT
etag: W/"11d-18357ca0180-gzip"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
date: Sun, 13 Nov 2022 01:05:26 GMT
expires: Tue, 13 Dec 2022 01:05:26 GMT
content-encoding: gzip
content-length: 170
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/6893-4510cb4cf7dd257d.js
200 OK 275 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/6893-4510cb4cf7dd257d.js
IP
File type ASCII text, with very long lines (374), with no line terminators
Hash 17f5bb4be3979baec497f1adab832da6
3d637a1ce97663ae576def4dc2d9485b79a28411
d260bfa2cf70defea0d81878a7dd4763b5ff6969272c7f9bc92f8480ec65ec74
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/6893-4510cb4cf7dd257d.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"176-18357c9bb30-gzip"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
date: Sun, 13 Nov 2022 01:05:27 GMT
expires: Tue, 13 Dec 2022 01:05:27 GMT
content-encoding: gzip
content-length: 275
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/78e521c3-7e50c99c61c77168.js
200 OK 344 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/78e521c3-7e50c99c61c77168.js
IP
File type ASCII text, with very long lines (540), with no line terminators
Hash 99eccfeb12df41b490bd0900d74f1c46
dd5ff98851119b2d53e3265fc62a0280a21eb3ac
9f1d8c5b7980fa8d61630114a7d43494a66636a68d551cde9087b0e9398dcd10
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/78e521c3-7e50c99c61c77168.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"21c-18357c9bb30-gzip"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
date: Sun, 13 Nov 2022 01:05:28 GMT
expires: Tue, 13 Dec 2022 01:05:28 GMT
content-encoding: gzip
content-length: 344
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/7920.15e0986822b7b764.js
200 OK 343 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/7920.15e0986822b7b764.js
IP
File type HTML document, ASCII text, with very long lines (479), with no line terminators
Hash c3d70afcf7eee2cca09e5148147ef6ac
6e22697db2b960739d320df7e5d982b8a1107068
b9d83482ed5da1c1ec8f3db973998e2d9d0d3b52b74482213588e6ca64149f5b
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/7920.15e0986822b7b764.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"1df-18357c9bb30-gzip"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
date: Sun, 13 Nov 2022 01:05:28 GMT
expires: Tue, 13 Dec 2022 01:05:28 GMT
content-encoding: gzip
content-length: 343
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/d64684d8-8a0d4acb5082fd62.js
200 OK 269 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/d64684d8-8a0d4acb5082fd62.js
IP
File type ASCII text, with very long lines (363), with no line terminators
Hash 7abad7fb9dee8a2a96eac5d10a2ad2a3
2d9dd164104b1f05f26e192e1b03c7b64fcd4848
e88b4f0f989c1ec095f6d65e2d83a7652bf2aba4b2a3fd3237dce6bddfcc51fb
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/d64684d8-8a0d4acb5082fd62.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"16b-18357c9bb30-gzip"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
date: Sun, 13 Nov 2022 01:05:28 GMT
expires: Tue, 13 Dec 2022 01:05:28 GMT
content-encoding: gzip
content-length: 269
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/pages/%5Bslug%5D-c6fca10725def766.js
200 OK 129 kB URL HTTP/2 quickfixtest1.com/_next/static/chunks/pages/%5Bslug%5D-c6fca10725def766.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 129 kB (129096 bytes)
Hash de54778a036833fb12ed2967580c6ae1
4bf2b7508454da72bf71416e1da71cf462aca58f
b8282a53d2810eb2765d2ffbe63760bc64ad8762d50f889cadddddfd61e7ca86
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/pages/%5Bslug%5D-c6fca10725def766.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"2460-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:29 GMT
expires: Tue, 13 Dec 2022 01:05:29 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/pages/_offline-4d6f85e42641e6ef.js
200 OK 265 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/pages/_offline-4d6f85e42641e6ef.js
IP
File type ASCII text, with very long lines (399), with no line terminators
Hash 33bbc21523158bdda9f88d87848cd384
b8206f30b26ce643801b9f86ce788eecf37eb795
351fef8228137a70ebad8d2b3bfc9d6e1fd14d09144fff05255860648181412c
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/pages/_offline-4d6f85e42641e6ef.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"18f-18357c9bb30-gzip"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
date: Sun, 13 Nov 2022 01:05:29 GMT
expires: Tue, 13 Dec 2022 01:05:29 GMT
content-encoding: gzip
content-length: 265
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/pages/checkoutv2-09a32fdd50a3a62c.js
200 OK 11 kB URL HTTP/2 quickfixtest1.com/_next/static/chunks/pages/checkoutv2-09a32fdd50a3a62c.js
IP
File type ASCII text, with very long lines (39415), with no line terminators
Hash cce0cde8b931a8ae20f8ae6889ec6093
06ffcfd123efae9a77f16be80ff054e5ecbac8e9
6fd6c3e9905ad68083283c4e14365cd55e3f71c4f04474c4020d697cec5e7911
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/pages/checkoutv2-09a32fdd50a3a62c.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"25fd-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:31 GMT
expires: Tue, 13 Dec 2022 01:05:31 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/main-275cf21d6262bbf1.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/main-275cf21d6262bbf1.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/main-275cf21d6262bbf1.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"1ef5b-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 13 Dec 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/sw.js
200 OK 0 B IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /sw.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=2592000
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"9b87-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:25 GMT
expires: Tue, 13 Dec 2022 01:05:25 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/pages/checkout/order-received/%5Border_id%5D-bee93e4ad6a50310.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/pages/checkout/order-received/%5Border_id%5D-bee93e4ad6a50310.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/pages/checkout/order-received/%5Border_id%5D-bee93e4ad6a50310.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"9fc1-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:30 GMT
expires: Tue, 13 Dec 2022 01:05:30 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/3586-3474b549e825770c.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/3586-3474b549e825770c.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/3586-3474b549e825770c.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"1d7a1-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:27 GMT
expires: Tue, 13 Dec 2022 01:05:27 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/7f0c75c1-117de355bc59117b.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/7f0c75c1-117de355bc59117b.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/7f0c75c1-117de355bc59117b.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"4b6-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:28 GMT
expires: Tue, 13 Dec 2022 01:05:28 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/pages/_app-ae6fa2da4b144912.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/pages/_app-ae6fa2da4b144912.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/pages/_app-ae6fa2da4b144912.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"644ab-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 13 Dec 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/web-widget-framework-3d118a1c2798bf0a2233.js
200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/web-widget-framework-3d118a1c2798bf0a2233.js
IP
GET /web_widget/latest/web-widget-framework-3d118a1c2798bf0a2233.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 13 Nov 2022 01:05:25 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: A/5/l5AvOUgCZB8FAUtH1q3feRFRHLnY2wLn7+zSS7y+Qm5SOHiwmJaNO3l6o2DDDn5jk+7RdqQ=
x-amz-request-id: B4XTBB1MSVSCCW3Y
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Nov 2022 03:30:25 GMT
etag: W/"4e0ec768e1b5323b0c06d0cc3a5c9c2a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Fri, 03 Nov 2023 03:30:23 GMT
x-amz-version-id: DGABZmS_HLmr0OkIATNtJHXvAYbWspsE
cf-cache-status: HIT
age: 847431
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2BKZfXIDQgtB2O0zXT08SZSEcOXPPuOJai0QjGIpPU34GRyx4Z6LLvJW87wZmoOwJI%2FVh5uyxY156oppLXIXCY391rkX2e11OO8BqLXBgCerWUpDU7hv9ChjtD6uDnF5RXIU5Eo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 7693995609620b4d-OSL
content-encoding: br
X-Firefox-Spdy: h2
quickfixtest1.com/workbox-6a1bf588.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/workbox-6a1bf588.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /workbox-6a1bf588.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/sw.js
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=2592000
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"5c30-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:26 GMT
expires: Tue, 13 Dec 2022 01:05:26 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/data/7dwKpMgNY6sQEakHeHQcF/shop.json
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/data/7dwKpMgNY6sQEakHeHQcF/shop.json
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/data/7dwKpMgNY6sQEakHeHQcF/shop.json HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/
Connection: keep-alive
Cookie: salepopupshown=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-nextjs-cache: HIT
etag: "2003-JLbS0OWzkRvvb7u+rzCm7cdvbpY"
content-type: application/json
cache-control: s-maxage=86400, stale-while-revalidate, max-age=172800
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 15 Nov 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/9324-d0c59ba4c64b1381.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/9324-d0c59ba4c64b1381.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/9324-d0c59ba4c64b1381.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"4740-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:28 GMT
expires: Tue, 13 Dec 2022 01:05:28 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/css/f03b7d08145b944f.css
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/css/f03b7d08145b944f.css
IP
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/static/css/f03b7d08145b944f.css HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"4ad5-18357c9bb30"
content-type: text/css; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 13 Dec 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/pages/index-51c8e4e0637ee7eb.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/pages/index-51c8e4e0637ee7eb.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/pages/index-51c8e4e0637ee7eb.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"4d85-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 13 Dec 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/main-275cf21d6262bbf1.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/main-275cf21d6262bbf1.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/main-275cf21d6262bbf1.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"1ef5b-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:29 GMT
expires: Tue, 13 Dec 2022 01:05:29 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/7dwKpMgNY6sQEakHeHQcF/_buildManifest.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/7dwKpMgNY6sQEakHeHQcF/_buildManifest.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/7dwKpMgNY6sQEakHeHQcF/_buildManifest.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"18e5-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 13 Dec 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/1529-8a50da56d6a49f44.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/1529-8a50da56d6a49f44.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/1529-8a50da56d6a49f44.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"8e1c-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:26 GMT
expires: Tue, 13 Dec 2022 01:05:26 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/framework-a070cbfff3c750c5.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/framework-a070cbfff3c750c5.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/framework-a070cbfff3c750c5.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"1fbbc-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:29 GMT
expires: Tue, 13 Dec 2022 01:05:29 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/webpack-6fdfade0d3cdf873.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/webpack-6fdfade0d3cdf873.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/webpack-6fdfade0d3cdf873.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"1058-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 13 Dec 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
settings.luckyorange.net/?u=https%3A%2F%2Fquickfixtest1.com%2F&s=325582
200 OK 0 B URL HTTP/2 settings.luckyorange.net/?u=https%3A%2F%2Fquickfixtest1.com%2F&s=325582
IP
GET /?u=https%3A%2F%2Fquickfixtest1.com%2F&s=325582 HTTP/1.1
Host: settings.luckyorange.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/
Origin: https://quickfixtest1.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 13 Nov 2022 01:05:25 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-headers: Authorization,Content-Type,Accept,Origin,User-Agent,DNT,Cache-Control,Keep-Alive,X-Requested-With,If-Modified-Since
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: https://quickfixtest1.com
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tXuu%2BpRnehIOFjOk43861TaGx7OSVaqyWO10LftDPZLrqxIgvX6diWKgUM6TRWzTtrKjd%2BpaTCvvhqiavJY6gKJWe5PhVM%2Fa3wDLpP3vV%2FRWgwK%2FBZkzXJ40tCT65nU6jU4JR8kA05xCLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76939956cbf6b521-OSL
content-encoding: br
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/7dwKpMgNY6sQEakHeHQcF/_buildManifest.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/7dwKpMgNY6sQEakHeHQcF/_buildManifest.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/7dwKpMgNY6sQEakHeHQcF/_buildManifest.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"18e5-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:26 GMT
expires: Tue, 13 Dec 2022 01:05:26 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/data/7dwKpMgNY6sQEakHeHQcF/pillows.json
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/data/7dwKpMgNY6sQEakHeHQcF/pillows.json
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/data/7dwKpMgNY6sQEakHeHQcF/pillows.json HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/
Connection: keep-alive
Cookie: salepopupshown=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-nextjs-cache: STALE
etag: "12fe-B7hyiXkbwuO/wQ+j6ZPJC7TgvWc"
content-type: application/json
cache-control: s-maxage=86400, stale-while-revalidate, max-age=172800
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 15 Nov 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
d10lpsik1i8c69.cloudfront.net/js/clickstream.js?v=e708588
200 OK 0 B URL HTTP/2 d10lpsik1i8c69.cloudfront.net/js/clickstream.js?v=e708588
IP
GET /js/clickstream.js?v=e708588 HTTP/1.1
Host: d10lpsik1i8c69.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quickfixtest1.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 10 Nov 2022 15:51:19 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Fri, 02 Sep 2022 19:59:47 GMT
etag: W/"6a7ba000cc0f3518baa46608eb12410c"
cache-control: max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _fbePHsBzIJjxf_wAyqYwNyIotKRHFgqN3Kv9VSl3hOAE9MAs7LYLg==
age: 206047
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/d7eeaac4-8eb6ae311b7b4766.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/d7eeaac4-8eb6ae311b7b4766.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/d7eeaac4-8eb6ae311b7b4766.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"4e8-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:28 GMT
expires: Tue, 13 Dec 2022 01:05:28 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/pages/my-account/additional-address-6739590116dd1aa4.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/pages/my-account/additional-address-6739590116dd1aa4.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/pages/my-account/additional-address-6739590116dd1aa4.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quickfixtest1.com/sw.js
Connection: keep-alive
Cookie: salepopupshown=true; _ga_YFVLNJXBZ7=GS1.1.1668301524.1.0.1668301524.0.0.0; _ga=GA1.2.778695410.1668301524; _tt_enable_cookie=1; _ttp=c04ac219-6954-436c-84bf-86da52455f00; _gid=GA1.2.1264772223.1668301525; _gat_gtag_UA_134569623_1=1; cart_key=394e555aa0e8c0a16e52a27eac198d48; _lo_uid=325582-1668301525664-6bd34a8809587eea; _lorid=325582-1668301525664-58a8f2f1baeb3a0e; _lo_v=1; __lotl=https%3A%2F%2Fquickfixtest1.com%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"35ce-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:32 GMT
expires: Tue, 13 Dec 2022 01:05:32 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/css/2ada0b9d4711d97c.css
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/css/2ada0b9d4711d97c.css
IP
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/static/css/2ada0b9d4711d97c.css HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"e429-18357c9bb30"
content-type: text/css; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 13 Dec 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/framework-a070cbfff3c750c5.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/framework-a070cbfff3c750c5.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/framework-a070cbfff3c750c5.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"1fbbc-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 13 Dec 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/assets/fonts/Avenir-Black.woff2
200 OK 0 B URL HTTP/2 quickfixtest1.com/assets/fonts/Avenir-Black.woff2
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /assets/fonts/Avenir-Black.woff2 HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://quickfixtest1.com/_next/static/css/2ada0b9d4711d97c.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0, max-age=172800
last-modified: Wed, 03 Aug 2022 15:28:34 GMT
etag: W/"7344-1826452a4d0"
content-type: font/woff2
content-length: 29508
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 15 Nov 2022 01:05:24 GMT
vary: Accept-Encoding,User-Agent
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/
200 OK 0 B IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: Next.js
etag: "7def-sUYWVUGzk7jfRwXwo6IswRcZVpI"
content-type: text/html; charset=utf-8
cache-control: private, no-cache, no-store, max-age=0, must-revalidate, max-age=600
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:23 GMT
expires: Sun, 13 Nov 2022 01:15:23 GMT
server: Apache
X-Firefox-Spdy: h2
quickfixtest1.com/_next/static/chunks/1529-8a50da56d6a49f44.js
200 OK 0 B URL HTTP/2 quickfixtest1.com/_next/static/chunks/1529-8a50da56d6a49f44.js
IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /_next/static/chunks/1529-8a50da56d6a49f44.js HTTP/1.1
Host: quickfixtest1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quickfixtest1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000, immutable, max-age=2592000
accept-ranges: bytes
last-modified: Mon, 19 Sep 2022 22:06:22 GMT
etag: W/"8e1c-18357c9bb30"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding,User-Agent
content-encoding: gzip
date: Sun, 13 Nov 2022 01:05:24 GMT
expires: Tue, 13 Dec 2022 01:05:24 GMT
server: Apache
X-Firefox-Spdy: h2
67.227.175.40
23.36.77.32
31.13.72.12
104.18.72.113
93.184.220.29