Report - 139.59.49.76/34363?click=pub0918740c6a4f41f2a29400d6cee98983&pubid=8378b37a

Report Overview

Submitted URL
139.59.49.76/34363?click=pub0918740c6a4f41f2a29400d6cee98983&pubid=8378b37a
IP
139.59.49.76
ASN
#14061 DIGITALOCEAN-ASN
Submitted
2022-11-01 00:00:16
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	1.4 kB	2.8 kB	93.184.220.29
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	54.191.210.155
armr.trckswrm.com	55379	2021-03-19T17:06:28Z	2023-02-14T13:31:14Z	1.1 kB	373 B	88.99.70.114
trk78.zzzperform.com	unknown			531 B	13 kB	172.67.163.214
popcash.net	11104	2012-10-10T15:08:00Z	2023-03-10T07:01:25Z	484 B	740 B	104.21.52.38
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	343 B	700 B	142.250.74.3
139.59.49.76	unknown	2019-08-01T19:32:12Z	2023-02-27T01:04:38Z	406 B	842 B	139.59.49.76
zerossl.ocsp.sectigo.com	4049	2020-05-09T21:05:29Z	2023-03-10T05:16:10Z	348 B	1.2 kB	172.64.155.188
poqueras.com	37434	2020-07-06T11:32:12Z	2023-03-10T07:50:00Z	505 B	1.5 kB	172.67.160.121
dakotatraff.com	77607	2022-01-10T17:35:18Z	2023-02-19T09:40:27Z	523 B	944 B	172.67.161.197
t2.lowtid.com	unknown	2022-08-03T15:42:14Z	2023-03-09T11:02:33Z	529 B	285 B	51.161.115.163
ron.trffclb.com	unknown	2022-09-30T15:04:48Z	2023-03-09T23:44:14Z	1.6 kB	1.4 kB	51.83.143.92
redir.tealwinds.xyz	unknown	2022-07-28T07:22:11Z	2022-12-09T12:09:16Z	516 B	649 B	198.211.113.186
ps.popcash.net	67692	2018-12-04T14:00:05Z	2023-03-09T23:44:18Z	815 B	751 B	34.232.21.200
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	3.4 kB	8.9 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.2 kB	45 kB	34.120.237.76
t3.lowtid.com	unknown	2022-08-03T15:42:14Z	2023-03-10T15:20:55Z	598 B	357 B	51.161.115.163
67.us.blowingwind.xyz	unknown	2022-10-20T14:02:12Z	2022-11-21T04:51:59Z	589 B	250 B	23.235.251.114
dipaka-ead.com	unknown	2022-10-31T14:23:43Z	2023-03-09T07:08:17Z	510 B	651 B	3.208.247.235
www.affectionwave.com	unknown	2019-07-06T15:07:41Z	2023-03-09T13:43:02Z	21 kB	105 kB	178.62.22.16
e1.o.lencr.org	6159	2021-08-20T09:36:30Z	2023-03-10T11:39:59Z	1.4 kB	2.9 kB	23.36.76.226
t5.lowtid.com	unknown	2022-08-03T15:42:14Z	2023-03-10T12:13:24Z	574 B	340 B	51.161.115.163
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-10T13:03:15Z	392 B	44 kB	142.250.74.168
bercioles.com	34901	2020-09-02T12:50:26Z	2023-03-10T07:49:59Z	579 B	642 B	172.67.138.217

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-31	medium	trffclb.com	Sinkholed
2022-10-31	medium	trffclb.com	Sinkholed
2022-10-31	medium	trffclb.com	Sinkholed

JavaScript (72)

	URL	Size	First Seen	Last Seen
	ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p	243 B	2023-03-07	2023-04-02
Pretty URL ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p IP 51.83.143.92 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:48 Last Seen2023-04-02 21:16:29 Times Seen4 Hash c5ece1e9d202b87cb431d3d96e5575b6 f6d83964155d7c1613c5708b3dd802cedd431061 f2bbcb4681e3c185c2ab19b1c09ce623d2d516dc49f32d3773e769ae0db74be4 Loading...

	www.affectionwave.com/static/assets/24e5e0b3.js	43 kB	2023-03-07	2024-04-18
Pretty URL www.affectionwave.com/static/assets/24e5e0b3.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2024-04-18 11:26:46 Times Seen433 Hash 21dd946e54c751be923244a3eb5a7cfa 97368b1fdc51b43d344b4a16810503757b7e0aba 5d6fcc49f0d1e0b04ac7ac2561cc91ce6ad72f242f81b3b9bd3ae30cf045b935 Loading...

	poqueras.com/noid/slope?lame=2H9bknzlz6BNNCcn10k5gQ%3D%3D	383 B	2023-03-07	2023-04-01
Pretty URL poqueras.com/noid/slope?lame=2H9bknzlz6BNNCcn10k5gQ%3D%3D IP 172.67.160.121 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:42:27 Last Seen2023-04-01 10:52:49 Times Seen3 Hash 0bf6f3ca1d8c63d14913111cfb29058f d3e5bdc765f8965aa332512686a924a3b4ec2052 125a7434d757fdc56e9da877b4879fb1968a534e6335c103beaa92562564cc34 Loading...

	ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p	288 B	2023-03-07	2023-04-02
Pretty URL ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p IP 51.83.143.92 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:48 Last Seen2023-04-02 21:16:29 Times Seen4 Hash 39b0d0273a1fb864d830216dd7c2e357 dc5db9208682c1f704ac3f47978f9667c1371fb5 6e15d354cc231f333118b1508b21ece489e38854d556fa95d1e0cd222a8ea570 Loading...

	www.affectionwave.com/js/messages/no/messages_notifications.js	688 B	2023-03-07	2024-01-21
Pretty URL www.affectionwave.com/js/messages/no/messages_notifications.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2024-01-21 16:04:11 Times Seen132 Hash 4c2169634207eac86614315a6012ab83 165fb3926941da550411f81329f671af38943f23 e69701eec98d408f7fe421bb511d2932a1bd9f817699403197b03e56556c467f Loading...

	www.affectionwave.com/join#pc151445	2.3 kB	2023-03-07	2023-03-11
Pretty URL www.affectionwave.com/join#pc151445 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2023-03-11 23:37:50 Times Seen1 Hash f097dac532f810456380124c6a9692fc 5fb2dfef96e5f7673253ac4cbb0286d6d3e6eab0 ed661db748c184ee267a1a8182411b5665c71a662d115aa7c3a976eb82860ebc Loading...

	bercioles.com/redirect?id=737&auth=337e46e86a8ca0952bfc1828039f4d15ccd12eea&sid=90&clk=BCYI850AAAGEMHzyawAAAycAAABaAAABNQAAAAAP	250 B	2023-03-08	2023-03-12
Pretty URL bercioles.com/redirect?id=737&auth=337e46e86a8ca0952bfc1828039f4d15ccd12eea&sid=90&clk=BCYI850AAAGEMHzyawAAAycAAABaAAABNQAAAAAP IP 172.67.138.217 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:16:31 Last Seen2023-03-12 06:42:29 Times Seen1 Hash 260ba7aa7e62d6c0ca167cd18a8e1626 3e3e5f7496c45c165add8a91f75e726da0281fa5 a25a759b067068a49659b70dbbdea6efe5c813da850e6a7bd6fee98542485e61 Loading...

	www.googletagmanager.com/gtag/js?id=UA-154588724-16	111 kB	2023-03-10	2023-03-10
Pretty URL www.googletagmanager.com/gtag/js?id=UA-154588724-16 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:23:18 Last Seen2023-03-10 18:23:18 Times Seen1 Hash 5a7a558235f24eb9a8d1260f8dde923f a37762ef8071f7a4b5ce26fba353ec981ddb6331 6804331f066e334849e3b668a9920503cf535b6748e521b8373ad561a501ec70 Loading...

	www.affectionwave.com/js/messages/no/messages_jquery_jab.js	158 B	2023-03-07	2024-01-21
Pretty URL www.affectionwave.com/js/messages/no/messages_jquery_jab.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2024-01-21 16:04:12 Times Seen132 Hash 9e6157f6dbb6b4f0fe617687465c4001 3fe1733b0ea436072be0c63a1df8f77d4e124170 2703b533b53996f704b3feb6fdbb522666ae7d0a43567a1378c044c52a7cdb43 Loading...

	www.affectionwave.com/static/assets/c247a8e1.js	2.4 kB	2023-03-08	2023-05-27
Pretty URL www.affectionwave.com/static/assets/c247a8e1.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:49:05 Last Seen2023-05-27 08:08:44 Times Seen9 Hash 630d9887203712c791823755ff387429 f8501cc0b235a5a70d706b4a636695e41b9926f7 b771efd5c8a7e2ebf349723e0bf3d8cb31e47a7c23529890149760feb2508170 Loading...

	www.affectionwave.com/static/assets/846cfccf.js	135 kB	2023-03-08	2023-03-13
Pretty URL www.affectionwave.com/static/assets/846cfccf.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:02 Last Seen2023-03-13 18:51:11 Times Seen1 Hash bc472dd7012f3dec7c22fe06b73cab63 f575a6991545d67b61df03d71bbee535d7617bd7 052bdd17decf4d44a87739679736e0b729ab369e3a19cec46b8a6e71184c6cd9 Loading...

	www.affectionwave.com/join#pc151445	168 B	2023-03-08	2023-12-23
Pretty URL www.affectionwave.com/join#pc151445 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:49:05 Last Seen2023-12-23 00:26:01 Times Seen17 Hash e7dff9c3541fd221b2edf45fb1e71199 abeb0f8e308305bb20f62d63d2bf3925812a4f1e feedf8b3dab3636924989d4e3eb7c57ea544c85df45ce8e385bd2615c79f0a9a Loading...

	ps.popcash.net/go/134600/317194	386 B	2023-03-10	2023-03-10
Pretty URL ps.popcash.net/go/134600/317194 IP 34.232.21.200 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:23:18 Last Seen2023-03-10 18:23:18 Times Seen1 Hash 5ce179d42c409423aadbf27336e42f51 89b5d5ad22d38a9f7c86743ff0d7fb4073c9ebce 73a0f3b6fccb8b3513deb687b2aec0e31d5787130e7d8f475fad14bc33da7611 Loading...

	www.affectionwave.com/static/assets/5b0b6082.js	1.6 kB	2023-03-07	2023-03-17
Pretty URL www.affectionwave.com/static/assets/5b0b6082.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2023-03-17 10:26:00 Times Seen1 Hash c1384ae774af1aa5b1918804736666ee 4a888e4e0c9aab6621ea0942c6cca3883fe760a3 bcfb02897a34de5cbad310e1ce46d61126514a913b240551e81c3e962c610e6d Loading...

	armr.trckswrm.com/recommendation?rec_link_id=309&pub_id=90&pub_click_id=22K01053004A0343630298907k89L&pub_sub_id=34363&pub_sub_sub_id=undefined	166 B	2023-03-10	2023-03-10
Pretty URL armr.trckswrm.com/recommendation?rec_link_id=309&pub_id=90&pub_click_id=22K01053004A0343630298907k89L&pub_sub_id=34363&pub_sub_sub_id=undefined IP 88.99.70.114 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:23:18 Last Seen2023-03-10 18:23:18 Times Seen1 Hash 0c58e48baa852d8e3d4661bf8504a8d5 25a9113f17648a00f8d1764faa8dc0331dbb14db 64e5800fb884adff387a2e7be62baafe782d161618ba868bb329504ad4bc69ad Loading...

	www.affectionwave.com/static/assets/32df6410.js	8.3 kB	2023-03-07	2023-03-17
Pretty URL www.affectionwave.com/static/assets/32df6410.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2023-03-17 10:26:00 Times Seen1 Hash a2bf8444a14d8d9fe185f2ea680bb1f2 07e06ac382373cc734b0ebee43343326cede7314 28ee833406d2cb79395e4f0ffc12345f39b7291e550f81ccf003556d86af81b1 Loading...

	www.affectionwave.com/join#pc151445	64 B	2023-03-10	2023-03-10
Pretty URL www.affectionwave.com/join#pc151445 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:23:18 Last Seen2023-03-10 18:23:18 Times Seen1 Hash 7110e347adddc4ec57223d7abee3d815 443dc844d82e2d69fb6a9b0e9cea61dddd8297c1 4d6b5b612fde7f3b9e5231c76c5da9502e8f8c170f665da318e4e9c61547c267 Loading...

	www.affectionwave.com/static/assets/770ad0e4.js	2.2 kB	2023-03-07	2024-01-21
Pretty URL www.affectionwave.com/static/assets/770ad0e4.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2024-01-21 16:04:11 Times Seen134 Hash 32479b43cf053dc5129e94d636b54fd4 39bf0882363d233ae3d0d72541e71bc2dcb0e7aa 2ebc9e9fa9fab8a1799173d6ce6a9c2edafb0103ae39faaea07ddb804a19a079 Loading...

	www.affectionwave.com/static/assets/fa6902f0.js	1.0 kB	2023-03-08	2023-12-23
Pretty URL www.affectionwave.com/static/assets/fa6902f0.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:49:05 Last Seen2023-12-23 00:26:02 Times Seen19 Hash 5bc9363bf776ea6ed336de43060519d7 efd82114da88f912c1c8ee986633f0a4390334ca 96c79c5883ab7ea72e427f1713276f1d0881953f01478985b5e1c714375b955c Loading...

	www.affectionwave.com/static/assets/5497bff0.js	3.2 kB	2023-03-08	2023-05-27
Pretty URL www.affectionwave.com/static/assets/5497bff0.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:49:05 Last Seen2023-05-27 08:08:44 Times Seen9 Hash 48637836ae03f134ded3559dcf476f54 4afdabcf9260e46378ffc6fc78848e67adee14f2 de8dfd9ccba11fb22af6b59e164dfb552eadce81ee542ff41bcb39370fe4d5a0 Loading...

	www.affectionwave.com/static/assets/83ab9aeb.js	3.0 kB	2023-03-07	2023-12-23
Pretty URL www.affectionwave.com/static/assets/83ab9aeb.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2023-12-23 00:26:02 Times Seen92 Hash 5dab23a3e58f4b57ad86360179d88e30 ab1a483e2d09ac4589715e8de197b00154575d32 c621bdb11df82eb81474daab9888ada851af1aca4209a47ce4b6d912ab502513 Loading...

	www.affectionwave.com/static/assets/37e7367d.js	891 B	2023-03-08	2023-12-23
Pretty URL www.affectionwave.com/static/assets/37e7367d.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:02 Last Seen2023-12-23 00:26:01 Times Seen28 Hash c95a8a7c62c44cc1a363f4bf08cf5af4 a325bf9fe1e5bc8d9c2931ecea9c1a68ec7a7deb dbf16adc52b5d8e391e54155e5564393d99b5678357bf22307f8caa51929e890 Loading...

	trk78.zzzperform.com/l/270226461dc64814f22c?sub=%7ByourClickId%7D&source=ww&url=https%3A%2F%2Ft3.lowtid.com%2Fe.php%3Fp%3Dc%3A7omnig4vvdmjho1zq%26d%3D635151a79ddd643b302b5908%26pid%3Dbmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287%26s%3D139445_ww&vId=bmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287&hash=270226461dc64814f22c&ete=true	40 B	2023-03-07	2023-11-10
Pretty URL trk78.zzzperform.com/l/270226461dc64814f22c?sub=%7ByourClickId%7D&source=ww&url=https%3A%2F%2Ft3.lowtid.com%2Fe.php%3Fp%3Dc%3A7omnig4vvdmjho1zq%26d%3D635151a79ddd643b302b5908%26pid%3Dbmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287%26s%3D139445_ww&vId=bmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287&hash=270226461dc64814f22c&ete=true IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:51:16 Last Seen2023-11-10 11:33:12 Times Seen9 Hash c6d1dd7ac3f2244d71bfaecf7b2ed5bf 36d8407e29188e2e1176c14159745475d54e3bb0 6e6ce1d374867d08dccece318a99f64d9744ffe0dc9549836192a45c1b2f203d Loading...

	www.affectionwave.com/static/assets/a45513bc.js	150 kB	2023-03-08	2023-03-14
Pretty URL www.affectionwave.com/static/assets/a45513bc.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:02 Last Seen2023-03-14 13:46:07 Times Seen1 Hash a082eaae25b83219fcc8c0407b642621 4ecb2c321c1b5cfe3479820edeb51a20020fafc5 f5ab5dc11fdba376d19651be5f8702a03a201b98a9ac0b0480d4723c752d9539 Loading...

	www.affectionwave.com/static/assets/2409f906.js	9.0 kB	2023-03-07	2023-12-23
Pretty URL www.affectionwave.com/static/assets/2409f906.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2023-12-23 00:26:01 Times Seen99 Hash 36cd18b84b36dfbffef72788926af694 80e5bf00a34e04bed05ca9ef2a0718fc2fc185d7 b77ee85475032c6f7c2b717d2bfcd4bbfded3f1f5ed40462cf55cebe9fde2503 Loading...

	www.affectionwave.com/static/assets/95d6c938.js	786 B	2023-03-07	2023-03-17
Pretty URL www.affectionwave.com/static/assets/95d6c938.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2023-03-17 10:26:00 Times Seen1 Hash 18d54b7b2d18e83c20cf4a5d5047fa37 9d5d0775fc902a19e3321aa66f68bedd787bbe2e 16c54a2c6408a6836c6b6d439566162ac8151076e4dd376bd4baca7317b75df2 Loading...

	www.affectionwave.com/static/assets/949c3926.js	584 B	2023-03-07	2023-03-17
Pretty URL www.affectionwave.com/static/assets/949c3926.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2023-03-17 10:26:00 Times Seen1 Hash fbc5ada0e975f253782f6af8d1c8f050 5ef47a5621d78f073fa71e6a6e1bed448a110d36 008c6937f2120c63a71854dabc980a4c3a7d89726815c54a39ace94c23f33383 Loading...

	trk78.zzzperform.com/gw.js?sub=%7ByourClickId%7D&source=ww&url=https%3A%2F%2Ft3.lowtid.com%2Fe.php%3Fp%3Dc%3A7omnig4vvdmjho1zq%26d%3D635151a79ddd643b302b5908%26pid%3Dbmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287%26s%3D139445_ww&vId=bmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287&hash=270226461dc64814f22c&ete=true	613 B	2023-03-07	2023-04-01
Pretty URL trk78.zzzperform.com/gw.js?sub=%7ByourClickId%7D&source=ww&url=https%3A%2F%2Ft3.lowtid.com%2Fe.php%3Fp%3Dc%3A7omnig4vvdmjho1zq%26d%3D635151a79ddd643b302b5908%26pid%3Dbmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287%26s%3D139445_ww&vId=bmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287&hash=270226461dc64814f22c&ete=true IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:51:16 Last Seen2023-04-01 10:52:49 Times Seen6 Hash 4c2b45dd53048181315d13b481703379 717b62750e976e0ef74d828a4bb2e05721a9c560 2b43920ed2a85698654fe35ab182c8fac38a5af66af95de7d065196470938c14 Loading...

	www.affectionwave.com/static/js/jquery.autocomplete.js?v=5489	17 kB	2023-03-07	2023-04-01
Pretty URL www.affectionwave.com/static/js/jquery.autocomplete.js?v=5489 IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:14:56 Last Seen2023-04-01 10:52:49 Times Seen28 Hash 34d7157c7046ce2b86e9707b5cb2d44f b3ed8e516ee9e4c307b61079397e67d95f51e7b9 85a7468e5c98948aeb5e6127be70b9fd06e083ae01c95afd0a92937b9dc2d539 Loading...

	www.affectionwave.com/static/assets/f67027d8.js	199 B	2023-03-08	2023-12-23
Pretty URL www.affectionwave.com/static/assets/f67027d8.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:02 Last Seen2023-12-23 00:26:01 Times Seen28 Hash c06bf590d9203a4038d00c196d98c6fd bfcc51391b939bfd763e51f84030b748ece03133 85b29731c339eb99aaeb116941a30d1615e88b316978668f827fa7fa49896b0e Loading...

	trk78.zzzperform.com/l/270226461dc64814f22c.js?sub={yourClickId}&source=ww&wnw=false	36 kB	2023-03-07	2023-04-01
Pretty URL trk78.zzzperform.com/l/270226461dc64814f22c.js?sub={yourClickId}&source=ww&wnw=false IP 172.67.163.214 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32:12 Last Seen2023-04-01 10:52:49 Times Seen6 Hash bae9d72de4ce69ca853503d298faebca fb1d3086f1451d468387c2eee8ef7c4a8ed4125a eca5eb0eb5dbb762654434f9c247d7917fa045b6fe6f827074b6bb2b48f8d061 Loading...

	trk78.zzzperform.com/l/270226461dc64814f22c?sub=%7ByourClickId%7D&source=ww&url=https%3A%2F%2Ft3.lowtid.com%2Fe.php%3Fp%3Dc%3A7omnig4vvdmjho1zq%26d%3D635151a79ddd643b302b5908%26pid%3Dbmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287%26s%3D139445_ww&vId=bmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287&hash=270226461dc64814f22c&ete=true	159 B	2023-03-07	2023-04-01
Pretty URL trk78.zzzperform.com/l/270226461dc64814f22c?sub=%7ByourClickId%7D&source=ww&url=https%3A%2F%2Ft3.lowtid.com%2Fe.php%3Fp%3Dc%3A7omnig4vvdmjho1zq%26d%3D635151a79ddd643b302b5908%26pid%3Dbmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287%26s%3D139445_ww&vId=bmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287&hash=270226461dc64814f22c&ete=true IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:51:16 Last Seen2023-04-01 10:52:49 Times Seen6 Hash 48a83ec90ead9e71bd4f736446b3799f bc01f9a8ecece2e213fb3b342a73326f00fd7222 8f0223a2f90bed29d68bc83b2984d1de709a8f44bc1b144a7d88afef403c2ff9 Loading...

		Size	First Seen	Last Seen
	#1 Eval - e2ecf2c0048567cd02d6ed97824597ee	15 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen407 Hash e2ecf2c0048567cd02d6ed97824597ee 9db637ab084a17ac81478a045a51d8242d7e6da5 aaebde6c0138d8b568f293a11ba445d4c9dc4fb34e022a2074ad1c3112077765 Loading...

	#2 Eval - abd10cc67723bbf05a0f38eb5ba9058e	38 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash abd10cc67723bbf05a0f38eb5ba9058e 297983f5805ae4a50ed94114df66165bc5c4a75b c900a412ca2d12202f50bec97c2dc0566743d5b7b020d8c84f5f12d24411cfd9 Loading...

	#3 Eval - 6a9ddfbfe8ff1188bef9ef5e09955706	41 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash 6a9ddfbfe8ff1188bef9ef5e09955706 6481f4c5b667a5f4102b0b7909fd1c6fb53c5bb4 c918021525d5a508a6ee88ae5b2919c810cd36835373ea16ca9f09b9eb289e61 Loading...

	#4 Eval - 75d557989a7d84881ee6bbe75a674962	22 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:03:05 Last Seen2024-04-24 15:51:42 Times Seen9059 Hash 75d557989a7d84881ee6bbe75a674962 b4a08279a6c2f3a2cd5a7861e81943a755b9d452 e924fcaf65b8ea057cb30e32bbdf04fdafe2bde622539d6d1abc466b050917d5 Loading...

	#5 Eval - f9b016ddf28ced27645fb46b350c8201	21 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash f9b016ddf28ced27645fb46b350c8201 0bbeeafe56373d82d07ed1ef5486f9a4981ce33f 617f4e071f976d4ae9458cf8ab193bf49417269d8284920ec60978cbca63e713 Loading...

	#6 Eval - 43969c1751dca880abf8119487e82ec3	18 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash 43969c1751dca880abf8119487e82ec3 3df4b4966aa38ec32d1edb4967055a5d0310f8fc 0d2f3394781da0c545d8f949a21bfbd964bbd4f07abac88cdb582a1a3a3bd140 Loading...

	#7 Eval - cd030a4b3969e32dacd186e3c0912811	38 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash cd030a4b3969e32dacd186e3c0912811 1f8fb0ce63af8c056b182f9ba0795e64429d990b 3fa07f862121f35b008c155351b6665a7fdb947a74fc6aca770122abf30700e4 Loading...

	#8 Eval - 5fb534891569d6413d689c1b4594d8dc	3.1 kB	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen162 Hash 5fb534891569d6413d689c1b4594d8dc 2b8592f3cec6530c5ed7b2ef418cd73e7cd293ba 385970f3623318c3bd082439513869627469eaaa858b885a67ec1bbaa988d74d Loading...

	#9 Eval - 63d943c1c3aebc696a21a8fd7a2d5b44	76 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash 63d943c1c3aebc696a21a8fd7a2d5b44 885dbb8e851952d0e567d2208670df567b2cd9ef 14cb904bdbbc5327a1550650ad0eeffe68de8e895cc7e63b6356a74e538e47f3 Loading...

	#10 Eval - e6b391a8d2c4d45902a23a8b6585703d	3 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash e6b391a8d2c4d45902a23a8b6585703d 0e2d9b0777a485c1276de0803c12a7d76fbc5c39 e7a241debad56609ee660a5d2ef258a1aceb7357ff210ac66d7280b3add02a9a Loading...

	#11 Eval - 7263dd2f047f8b494a8086d163be753a	20 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash 7263dd2f047f8b494a8086d163be753a ef858c8b012746f4e9330eaafb1a304c4ad91cf5 fe783a681fdabdcde7ecbdaeb564698108cb572b848309094f69ccfa33c755dc Loading...

	#12 Eval - 720ea2c69788d95e12b9c3b0bd538193	16 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen407 Hash 720ea2c69788d95e12b9c3b0bd538193 948abeacef6f8ee9f6be695c91a2f241486b159c 41d81863b376579e97e0f208f9909f29e8cea98f7e1a73c6d7312910fb551211 Loading...

	#13 Eval - cf9cdead93f342096e12fb07dbf0f25a	17 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash cf9cdead93f342096e12fb07dbf0f25a 9aae4c180de3d75c4b16763fea8dbaf062a9bf00 4e497366a4892d5ce875783f193da0137ebdd0809471b7631b2f712d6d44f16b Loading...

	#14 Eval - c17b56846490df41520a80b9987a2251	1.3 kB	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen162 Hash c17b56846490df41520a80b9987a2251 75bca933200c106b6a01f9034a0d7e335cbb6585 074aee63ecc5a52f2c0457953b9be56fbbcc3d50810ae18d89f52df9e70cbaff Loading...

	#15 Eval - b0acce158f38828b26bd4ecdd6cdfc91	630 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen162 Hash b0acce158f38828b26bd4ecdd6cdfc91 e34c08b94568d0db79f9cd46dad5d2372dd1fa5d 0691180dfac608e37240d76f4d59d8d8b7ba9c44f7eeb1a4c9012096924859d3 Loading...

	#16 Eval - d6f10c9b96ce8ed6149055b4c20ecca8	17 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash d6f10c9b96ce8ed6149055b4c20ecca8 b11b5724b6f0343682d7cef359dcd026df80289a 8b77c9a9de902d58a53938c86d1d570871b8ca4c3acbad1e382f411ee6142932 Loading...

	#17 Eval - abd10008cf7bfff0f99f98ae26fe96bf	23 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash abd10008cf7bfff0f99f98ae26fe96bf 6267c80703db1545ef3153facebf8a16d8432e82 774279bde1e7d1190e16dc05e65262e65007181a10ba40f2c7b61a5d449d930e Loading...

	#18 Eval - 2437f34dc794c2126dcbf41744b93b8c	42 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash 2437f34dc794c2126dcbf41744b93b8c a67dcb74626eb4b4fe7fc88c6dfad99aa7051832 8021241bc73e6ad2ba02b800b416826bb30799b35ee8dadf3f2202ee662f891e Loading...

	#19 Eval - bdbd9c49004d433b414edf02e880d0e2	54 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash bdbd9c49004d433b414edf02e880d0e2 c170810cb79016c74f7e783128167201438f1e37 348582d0671fd396a0e0893c01f4641478cf0ffb00224707b334e32da0336b82 Loading...

	#20 Eval - eb69d1a27b72c3bec9532026c3bf88e5	52 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash eb69d1a27b72c3bec9532026c3bf88e5 8043ab5b87e9adb4316eb4ce996db3dcf4354fdb b259c748fbda3ff0fb3da7cc981f211f5bc1900479085eb42b364e7e279196db Loading...

	#21 Eval - c9f7198c57735fa7a7a8ac2cc18dd542	9 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:02:46 Last Seen2024-04-24 18:48:49 Times Seen24911 Hash c9f7198c57735fa7a7a8ac2cc18dd542 d78ec33d89c7283a59982f10f71e7e305fa1ce93 ebf49dcd836f810084c14e0f2dab4dc1768bbdc5980481bf201fcf76771dff7a Loading...

	#22 Eval - 276043837e86ab6e15dd6813dc504fa1	26 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash 276043837e86ab6e15dd6813dc504fa1 ddadf24faf6b8f6234f2878fc27709995e302c39 05e674baeafb9b1b474f62bf6437edac3d766d9a4f970a9b8c426dd5944b1b78 Loading...

	#23 Eval - db2387b454fa37117acebfd67dd00f58	18 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:03:05 Last Seen2024-04-24 15:51:41 Times Seen9916 Hash db2387b454fa37117acebfd67dd00f58 77737fb669256fdd8c0854d1bf4768bb1720ef3a 318e5db431b7c9515f38ae97da21d7c4e75ec281aea96271c0d0f4e22b35df92 Loading...

	#24 Eval - e9980b7c356217c47dd4d8d7b82ad06b	49 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash e9980b7c356217c47dd4d8d7b82ad06b d4d65eb911677c2993304398ac678464c29425a0 12d2b5201aa32533f9a8142347fd314085d590c0e325c4fd829d969f641c7597 Loading...

	#25 Eval - 4c8dca5a179c77207820c3f0b4d87561	1.8 kB	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen162 Hash 4c8dca5a179c77207820c3f0b4d87561 7d8b7a59fd58a0dbd6b2d98f10717591c248abce 2d5dac43cfde111edda5f946f94cf0d6867e9a8cad4452d43c5b24dbb2d5c104 Loading...

	#26 Eval - be9ac7e669a2dad91228483f1dbf4f0c	40 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash be9ac7e669a2dad91228483f1dbf4f0c ac7936e641085e0899459a091e5d742b663aab50 c0da1926a7d52f271508d4547b78c55bbef88cd5a68256a8b8691ff5a1211421 Loading...

	#27 Eval - 05b8c74cbd96fbf2de4c1a352702fbf4	6 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-24 18:48:50 Times Seen54551 Hash 05b8c74cbd96fbf2de4c1a352702fbf4 320ad267d8d969f285eda5c184f5455bd29c8c95 44ff7b02c80d38b26dd6aa31d9470aed81b32e10331a3c994fb1a9945fd847ba Loading...

	#28 Eval - 975b8c363a87e4ef9f390b77ca94f121	26 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash 975b8c363a87e4ef9f390b77ca94f121 3dccf60ab1bc21dccf98bcf89aeb26208a744111 40176e2bc67dbefc1e99be7ebf106c9cff44d45fb5d0181163ae073c69761e45 Loading...

	#29 Eval - f1373b88a8e42e70fd21ef8693083788	100 B	2023-03-07	2024-01-21
Pretty Observations First Seen2023-03-07 14:51:16 Last Seen2024-01-21 09:36:55 Times Seen176 Hash f1373b88a8e42e70fd21ef8693083788 5cde31f50640bb224d8101b4164f9fb801f6a57f 06ece9358b63a292af4dc21453776609d975e7efee612a2f6d35b939a4f6e526 Loading...

	#30 Eval - bdd15425ab0584b3d2fe1d5be3f2cf51	59 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash bdd15425ab0584b3d2fe1d5be3f2cf51 fabc10c0dabb6396f15c74bfe2add519e2038e9b 4dbb92eef409c5f6426c45bf565656b0aae763e6ab69368dd19531e45705a0de Loading...

	#31 Eval - d131919a6f38e1c01c64d72e1b7f84a0	25 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:03:05 Last Seen2024-04-24 15:51:42 Times Seen9617 Hash d131919a6f38e1c01c64d72e1b7f84a0 d64e30aba61c17c8d9f1a0ce1e7011f1d15c8ab0 63d0de96ffe6e24d709e64517f883a6e6a72e3629aea379ee43b727541794c64 Loading...

	#32 Eval - fdc3bdefb79cec8eb8211d2499e04704	8 B	2023-03-07	2024-04-22
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2024-04-22 00:22:16 Times Seen1394 Hash fdc3bdefb79cec8eb8211d2499e04704 4f8278c89ad16da05fec4fdfc61fe44798b92720 43cc23fa52b87b4cc1d02b5b114154151d6adddb17c9fddc06b027fa99e24008 Loading...

	#33 Eval - 2c56c360580420d293172f42d85dfbed	3 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash 2c56c360580420d293172f42d85dfbed 194e13da720a1f025685e5d677eba8a1aff3860a b581e46042cbfbb0af4542a858079a84fd3ae98e5563f615710191d5b3597680 Loading...

	#34 Eval - eab3301c164f2e6984d71e6ca62f59e6	11 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash eab3301c164f2e6984d71e6ca62f59e6 8d2633e8db0b0db919d7623353132b8a9a3fc523 27433b327855c10be2aaf833f5d519d87462f5951d1224a8681b9ded1df2dda7 Loading...

	#35 Eval - a33f9cb37f91269a9ba5dc827fd93e92	24 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash a33f9cb37f91269a9ba5dc827fd93e92 d3b2ae0aa2d40bc825f48d998592e0cf28111b95 9e181f34333f16f006fb93f681f35568351e8a816193ce3de96c6138aa577c25 Loading...

	#36 Eval - 497031794414a552435f90151ac3b54b	6 B	2023-03-07	2024-04-22
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2024-04-22 17:35:35 Times Seen1535 Hash 497031794414a552435f90151ac3b54b 2883f191bc5ebfdc16c0813eff659b35363ea69b 62a6da8735c18e2d66fe5de3dc5440252a1da49e3cbaa7c1d2d5068ad73ffba0 Loading...

	#37 Eval - 6e8f1bdc7cf4cf152e9c37e5d2ff4f6e	15 kB	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen162 Hash 6e8f1bdc7cf4cf152e9c37e5d2ff4f6e 131c388eedf3f5b6bfd1f5e6c39e1f5990f14c55 43aaae6e00287913b88e92416d2d175c9ee2aaae8f1f115231c42be1a0d62e4f Loading...

	#38 Eval - 14d5ed5041bb7fc6577c66372f2aa799	24 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:03:04 Last Seen2024-04-24 15:51:42 Times Seen9615 Hash 14d5ed5041bb7fc6577c66372f2aa799 c38816db0aebc6ba8ba2bc6076384279b8331515 893fe12669f916947d99616b788aa245f8b45c5b8b34544df4114a6a789217ab Loading...

	#39 Eval - efc8033fd3386d2dd5ab870d20475f67	29 B	2023-03-07	2023-11-19
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-11-19 14:52:41 Times Seen406 Hash efc8033fd3386d2dd5ab870d20475f67 6cbe37002f89c5492bc7a6928d6d3ea15392c0bc 9e3d1a931a20eb74656e83030fd1c7d1bb1275e9e0d1add27e892cf03fd6bb36 Loading...

	#40 Eval - 515d9d3a40c12e616a5ee2e443306b2b	13 B	2023-03-07	2023-12-29
Pretty Observations First Seen2023-03-07 01:32:12 Last Seen2023-12-29 23:05:23 Times Seen411 Hash 515d9d3a40c12e616a5ee2e443306b2b 23a99b82bdb21bccdadb6d44bc05536a9bc5b778 fdc6239283e9394f98bc62316f403605aaa0604c839721aebeed1ef1116b02d0 Loading...

HTTP Transactions (90)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
59be8dfdd6f4ab82f394d3d5b927e065
dc8e8f1bbae495f84322e5efd0c42a39ef5be56c
7f251408f64b28bebfe96f3db5c3dde3d5ad5febbaf2964b3516c114eaa51f4d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7F251408F64B28BEBFE96F3DB5C3DDE3D5AD5FEBBAF2964B3516C114EAA51F4D"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4943
Expires: Tue, 01 Nov 2022 01:22:27 GMT
Date: Tue, 01 Nov 2022 00:00:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de47d7f9f8d5035d5490f0386442d813
fe86a705a7540c619fddd835ba720bccd2f17cfc
1b3bb62c83f8117b31f021c532a77dfea594a33ea40b5ed62dc67a29f6d15115

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1B3BB62C83F8117B31F021C532A77DFEA594A33EA40B5ED62DC67A29F6D15115"
Last-Modified: Sun, 30 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19721
Expires: Tue, 01 Nov 2022 05:28:45 GMT
Date: Tue, 01 Nov 2022 00:00:04 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
37c018b30f8ecbca9d4c0606287c01d8
9f1ce6e9b6ee40dc53da9f686c35c985485b2425
e16c2bf8d2e615c8fcd5adc5faf01cd9cc523d0ef7fa29b648b372d2ecdc95c3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5333
Cache-Control: max-age=125994
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 00:00:04 GMT
Etag: "635f95d9-1d7"
Expires: Wed, 02 Nov 2022 10:59:58 GMT
Last-Modified: Mon, 31 Oct 2022 09:31:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: H9EG0dnDBmbaadWX/2Mpv9tdmgzdCvP0L4A9TwBUKfjjvJ6a0bBKlLF2wv/DfqAlS/7/Z8xbrr8=
x-amz-request-id: BXAVD1RDV292ZHHA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 31 Oct 2022 23:11:44 GMT
age: 2900
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

139.59.49.76/34363?click=pub0918740c6a4f41f2a29400d6cee98983&pubid=8378b37a

139.59.49.76

302 Found

378 B

URL HTTP/1.1
139.59.49.76/34363?click=pub0918740c6a4f41f2a29400d6cee98983&pubid=8378b37a
IP
139.59.49.76:0
ASN
#14061 DIGITALOCEAN-ASN

File type
HTML document, ASCII text, with very long lines (378), with no line terminators
Size
378 B (378 bytes)
Hash
a92bf989230bf1205711471a96d28dad
e56838be46f2f4a09f769d90c41fe3650730d325
168d7dd3e5bc89139a19fb04211d30a22a2fde45145ade2f6eee0efd3a81c4e3

HTTP Headers

GET /34363?click=pub0918740c6a4f41f2a29400d6cee98983&pubid=8378b37a HTTP/1.1
Host: 139.59.49.76
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
x-powered-by: Express
surrogate-control: no-store
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
location: https://armr.trckswrm.com/recommendation?rec_link_id=309&pub_id=90&pub_click_id=22K01053004A0343630298907k89L&pub_sub_id=34363&pub_sub_sub_id=undefined
vary: Accept, Accept-Encoding
content-type: text/html; charset=utf-8
content-length: 378
date: Tue, 01 Nov 2022 00:00:04 GMT

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f646a3a97223c35e424ccb52d0ff73da
d88c49b4ac278348e6c669792334170911fb43dd
065a4e4db1b5f7d8231afbd3cb75ce74f0a74aee63bc12a79f5a8d050f55a05b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2419
Cache-Control: max-age=118021
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 00:00:05 GMT
Etag: "635f8217-1d7"
Expires: Wed, 02 Nov 2022 08:47:06 GMT
Last-Modified: Mon, 31 Oct 2022 08:06:47 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

zerossl.ocsp.sectigo.com/

172.64.155.188

200 OK

727 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
77d815f00f414ef4bedae6f0ef885469
bd4c0594c0af5183b5a1c2dd61acffcef6d40a53
eb467995bc69c0699e70fe46f9df436e9b18b34e2aa50fc2a7e98da86bf62542

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 01 Nov 2022 00:00:05 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sun, 30 Oct 2022 04:17:09 GMT
Expires: Sun, 06 Nov 2022 04:17:08 GMT
Etag: "bd4c0594c0af5183b5a1c2dd61acffcef6d40a53"
Cache-Control: max-age=446822,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 763059205c4db524-OSL

push.services.mozilla.com/

54.191.210.155

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.191.210.155:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: u5GWHM0ugcHhro1toHpjKg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Kssm/aTeklPapsbFsZJWb0X+2fc=

armr.trckswrm.com/recommendation?rec_link_id=309&pub_id=90&pub_click_id=22K01053004A0343630298907k89L&pub_sub_id=34363&pub_sub_sub_id=undefined

88.99.70.114

200 OK

218 B

URL HTTP/1.1
armr.trckswrm.com/recommendation?rec_link_id=309&pub_id=90&pub_click_id=22K01053004A0343630298907k89L&pub_sub_id=34363&pub_sub_sub_id=undefined
IP
88.99.70.114:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document, ASCII text
Size
218 B (218 bytes)
Hash
97c51f5a71f49ab74e9d48134cdb7593
2ac7886f4339ed49432eb3123f1989e734fb8280
4bc1980a0b32349320ceccd609f786a95a92dda3968ad662211e7f4bbe401084

HTTP Headers

GET /recommendation?rec_link_id=309&pub_id=90&pub_click_id=22K01053004A0343630298907k89L&pub_sub_id=34363&pub_sub_sub_id=undefined HTTP/1.1
Host: armr.trckswrm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
content-length: 218
date: Tue, 01 Nov 2022 00:00:05 GMT

armr.trckswrm.com/favicon.ico

88.99.70.114

404 Not Found

0 B

URL HTTP/1.1
armr.trckswrm.com/favicon.ico
IP
88.99.70.114:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: armr.trckswrm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://armr.trckswrm.com/recommendation?rec_link_id=309&pub_id=90&pub_click_id=22K01053004A0343630298907k89L&pub_sub_id=34363&pub_sub_sub_id=undefined
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
content-length: 0
date: Tue, 01 Nov 2022 00:00:05 GMT

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
dd1957fe93ea2d36664d9861650ce527
455e5e7f86469b3c91eb9dcbc001fed36eeef3d2
0c03dc36513fc3cc329386c56580e15c3c66cc42901d5fa29cc341a13d97b49a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=98298
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 00:00:06 GMT
Etag: "635f3e80-117"
Expires: Wed, 02 Nov 2022 03:18:24 GMT
Last-Modified: Mon, 31 Oct 2022 03:18:24 GMT
Server: nginx
Content-Length: 279

poqueras.com/noid/slope?lame=2H9bknzlz6BNNCcn10k5gQ%3D%3D

172.67.160.121

200 OK

843 B

URL HTTP/2
poqueras.com/noid/slope?lame=2H9bknzlz6BNNCcn10k5gQ%3D%3D
IP
172.67.160.121:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
843 B (843 bytes)
Hash
9eb98605b23e132a3fa07b9bd7becb67
072cddfeb2e8ae0956f574afac0df5ceb4498598
755e625a5077db8902d6eddb3c5499911faf4211d38b930fd0285ee8ee780074

HTTP Headers

GET /noid/slope?lame=2H9bknzlz6BNNCcn10k5gQ%3D%3D HTTP/1.1
Host: poqueras.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bercioles.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 01 Nov 2022 00:00:06 GMT
content-type: text/html;charset=ISO-8859-1
referrer-policy: origin
cache-control: no-store, no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1kZbvm4t6%2BzqAH9s1oZe%2FEj4TKkXsA8quw2EDoiF5pTs3qsEAUgldMCTAteBcdapuAXwqAioLQZfSgzUIz9VxgNDy8xiFm7hh0Ehw6C6k8gzGZ7ctwhh9mWpjNkKxFQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76305926a95cb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
81bf3de5bcfa3974af4e36376f4cff07
3221e2b38051aef5d3bc68f3d2fdb6a012bb394b
fa35b626980c259b3b761a4564663a2fbafab4b5456eefd1da3d68f24a32d589

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "FA35B626980C259B3B761A4564663A2FBAFAB4B5456EEFD1DA3D68F24A32D589"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21571
Expires: Tue, 01 Nov 2022 05:59:37 GMT
Date: Tue, 01 Nov 2022 00:00:06 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
81bf3de5bcfa3974af4e36376f4cff07
3221e2b38051aef5d3bc68f3d2fdb6a012bb394b
fa35b626980c259b3b761a4564663a2fbafab4b5456eefd1da3d68f24a32d589

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "FA35B626980C259B3B761A4564663A2FBAFAB4B5456EEFD1DA3D68F24A32D589"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21571
Expires: Tue, 01 Nov 2022 05:59:37 GMT
Date: Tue, 01 Nov 2022 00:00:06 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
df470919311cc0786eafb387f0854e35
50beeea0eb69c86e9435abac0329b9bc02ec2ca9
3dfeff082e7185740aa0921fd443c4eca6f4fd00c6b154924ff1dd8406a111a2

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "3DFEFF082E7185740AA0921FD443C4ECA6F4FD00C6B154924FF1DD8406A111A2"
Last-Modified: Mon, 31 Oct 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15954
Expires: Tue, 01 Nov 2022 04:26:00 GMT
Date: Tue, 01 Nov 2022 00:00:06 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
df470919311cc0786eafb387f0854e35
50beeea0eb69c86e9435abac0329b9bc02ec2ca9
3dfeff082e7185740aa0921fd443c4eca6f4fd00c6b154924ff1dd8406a111a2

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "3DFEFF082E7185740AA0921FD443C4ECA6F4FD00C6B154924FF1DD8406A111A2"
Last-Modified: Mon, 31 Oct 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15954
Expires: Tue, 01 Nov 2022 04:26:00 GMT
Date: Tue, 01 Nov 2022 00:00:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7957
Expires: Tue, 01 Nov 2022 02:12:43 GMT
Date: Tue, 01 Nov 2022 00:00:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7957
Expires: Tue, 01 Nov 2022 02:12:43 GMT
Date: Tue, 01 Nov 2022 00:00:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f286e64f8de8d0158fe2a83cea74da23
b0e9fd228565aaf58ec455d743e39559a548fdbb
21c7fb0f3d2486d6655b5d6817dd90faafa18836c820a684215f9a29f1a4451c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "21C7FB0F3D2486D6655B5D6817DD90FAAFA18836C820A684215F9A29F1A4451C"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7957
Expires: Tue, 01 Nov 2022 02:12:43 GMT
Date: Tue, 01 Nov 2022 00:00:06 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66755462-8673-4014-b8b7-42348fcb2463.jpeg

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66755462-8673-4014-b8b7-42348fcb2463.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5297 bytes)
Hash
c276081f8178d671424a68ebf0490758
f71414e946798b28442cc46c28041527d9a2f238
f2c46ba608ede798855b886d5eec285599a5c880125c7cd763de18c68f493297

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66755462-8673-4014-b8b7-42348fcb2463.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5297
x-amzn-requestid: 909a78a5-fc98-462f-9acd-809dcff3509d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a49IlGB3IAMF2Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63604236-5bddd0206a5129af3bafde7e;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 21:46:30 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QLyHOOb0cJx1kU7N457Vzq0YRs4XVlZV-GTfho_OIKYPLTeUXtvJ7w==
via: 1.1 5abfab33f248090bb0f31ca137ce9464.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 21:46:43 GMT
age: 8003
etag: "f71414e946798b28442cc46c28041527d9a2f238"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10527 bytes)
Hash
bd006407a4ea0fbeec2f1351a71f30bc
d1625420cdc79643e759247b0e9ac89dadfbe956
fd461665ee463fad26300630684a11e3c520485e3b001c2f08439d50589ddbb7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10527
x-amzn-requestid: de61bb34-5db0-4e30-8937-d9eb960bf406
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a4vAnHBpIAMFkZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63602b9d-1f4d59b63a268ec06144afbb;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 20:10:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YiQiNvM-5wyduNFW_yEQF44vnaYMuL9oWOaBujo48gqVqo-XnhXjFQ==
via: 1.1 0cf6c59c77f0fff670ae085179adc458.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 22:21:09 GMT
age: 5937
etag: "d1625420cdc79643e759247b0e9ac89dadfbe956"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.1 kB (5136 bytes)
Hash
ace7660d2948795997e3c7cb9cf12495
fed9b6693077d233f60cc7394c7b667291ffade7
fd4718a6649572cbaf13f46b8e2961cd1c680afa1494b0bacd5fda9010a95098

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5136
x-amzn-requestid: fa63f569-2f1f-4b73-9f37-c330ed943de2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a5BbgHZaIAMFcRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63604916-16d3bd67219a340609573dcf;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 22:15:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: nU430-NvnChNChLvZ_rg5c06-ZzJX8NHpbijNkzdPLZo1XtCCo2cIg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 22:57:59 GMT
age: 3727
etag: "fed9b6693077d233f60cc7394c7b667291ffade7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52af0964-7b9f-421a-9881-3600d8c6f8e4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5930 bytes)
Hash
ba04b351b7991163ce2fbbb50e7b9146
9696e761b1442094e358cb8bf9dd4eb9351e333b
0d1a80839ccf615665eafd34f3563d12ef74bfd35c62b3e769a83599a949a58d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52af0964-7b9f-421a-9881-3600d8c6f8e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5930
x-amzn-requestid: 09d266ca-d00a-47cb-aa5e-52bd2a5df5e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a47JYG5ooAMFq7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63603f08-5166163f44ab23133ef2011f;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 21:32:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BZjM-KFKN5aukdq-lusfCzdqtBHkfD0OZuZWHHuNtQvCvFV_xbwp5g==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 21:50:32 GMT
age: 7774
etag: "9696e761b1442094e358cb8bf9dd4eb9351e333b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601f85a4-810b-4251-8f3b-08e2b832a061.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.6 kB (4571 bytes)
Hash
e8a237b3e7dcb5481bdb688f9d62b7dd
c1c81e9f689d7faa1193baba9895ffc8b0d2de55
ef622da986a55b2a727bddd4295f159ee4fd9d02dfcd96b0ba72a29c9ba4ce17

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601f85a4-810b-4251-8f3b-08e2b832a061.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4571
x-amzn-requestid: 25c92e9d-bf11-461a-8b8b-c2fc894c003f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a47JZGyQIAMFmmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63603f08-41da8005238fe0ec28530f24;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 21:32:56 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lUYX1_V2ISmfo2TOPlbmDM-c37YCAd6BzsVdwR7ozxJHI7Of_uamqA==
via: 1.1 94be61e339880d0097634de6934f7710.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 21:55:24 GMT
age: 7482
etag: "c1c81e9f689d7faa1193baba9895ffc8b0d2de55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa85c6304-6f72-4904-bb25-968b35616ef5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7428 bytes)
Hash
4f9f8683351154be3300311e3a7e29e3
4fc868d652910c7dcf4ef0e87531de4ee6007c45
d4f012729e0eddc20948ad98d653794204f80344a5840142877dcaa8d2520a71

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa85c6304-6f72-4904-bb25-968b35616ef5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7428
x-amzn-requestid: 0eabcd9d-372d-4be6-aa58-26f3ce15d7bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aioHzF3dIAMFQ4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635753cb-7332e0ae76cbda142a20fe13;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 03:11:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iA1PJ6f0-rk_HhrwpNtu5ItDneJFBG8PhDtHpHkhdlcpf6QujNmuDQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 31 Oct 2022 09:08:55 GMT
age: 53471
etag: "4fc868d652910c7dcf4ef0e87531de4ee6007c45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

trk78.zzzperform.com/l/270226461dc64814f22c.js?sub={yourClickId}&source=ww&wnw=false

172.67.163.214

200 OK

12 kB

URL HTTP/2
trk78.zzzperform.com/l/270226461dc64814f22c.js?sub={yourClickId}&source=ww&wnw=false
IP
172.67.163.214:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (36828)
Size
12 kB (12485 bytes)
Hash
f2dea40037a586c961a8b69a1c0680ff
f412ca885ba682142150926692fdee5704c69a6d
aff6929a574425e3879437a95bcc5b6b461dbd23a67d7e45ddcfc8fb76e304c5

HTTP Headers

GET /l/270226461dc64814f22c.js?sub={yourClickId}&source=ww&wnw=false HTTP/1.1
Host: trk78.zzzperform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://poqueras.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 01 Nov 2022 00:00:06 GMT
content-type: text/html
last-modified: Fri, 27 Mar 2020 14:29:49 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 3564
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fJpMzTva%2BtWFeLvI6vQsimangeGB9crfDbHfh9FQbejAq5rcN4dPLXBrXPmh9ojtPdWLEfpkpHIX060TTrGzC8euq4laYN%2BHRXOPUjEJOtwQzxPguwdQx3VmQGJHUc4YaJwLBvOq5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76305929fdd3b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

t3.lowtid.com/e.php?p=c:7omnig4vvdmjho1zq&d=635151a79ddd643b302b5908&pid=bmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287&s=139445_ww

51.161.115.163

302 Found

0 B

URL HTTP/1.1
t3.lowtid.com/e.php?p=c:7omnig4vvdmjho1zq&d=635151a79ddd643b302b5908&pid=bmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287&s=139445_ww
IP
51.161.115.163:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /e.php?p=c:7omnig4vvdmjho1zq&d=635151a79ddd643b302b5908&pid=bmconv_20221101010006_855b02b6_c267_4f77_b9ea_476a808c1287&s=139445_ww HTTP/1.1
Host: t3.lowtid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://trk78.zzzperform.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx
Date: Tue, 01 Nov 2022 00:00:07 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Round: 12pi7agi21
Raund: 1um
Location: https://pdxx-7fmavzpxk2xlm-4-2.lowsea.fun/emw/v1/dt?sid=67.no.firefox.&k=bfb&url=https%3A%2F%2Ftrk78.zzzperform.com%2F&xrw=&lid=63606187aa40815e576243b1&fid=67

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5932290d8317cfd8b48ac1171ce25958
90a129aa0005045075bd6b18a74cfbdfc405620a
cdc73eb5bcfc4498d563433c51e996cf4caa70a08429abd034c57d3bd74867ac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CDC73EB5BCFC4498D563433C51E996CF4CAA70A08429ABD034C57D3BD74867AC"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=428
Expires: Tue, 01 Nov 2022 00:07:15 GMT
Date: Tue, 01 Nov 2022 00:00:07 GMT
Connection: keep-alive

dakotatraff.com/l/270226461dc64814f22c?sub={yourClickId}&source=ww&wnw=false

172.67.161.197

302 Found

164 B

URL HTTP/2
dakotatraff.com/l/270226461dc64814f22c?sub={yourClickId}&source=ww&wnw=false
IP
172.67.161.197:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
164 B (164 bytes)
Hash
813f9846b49c0ada805648edf1b2fdbd
caa24890460f73e6a72bb49426351e67e83b053d
8f03491247cbfa8a2e60e0f7ec62d63b5070659f60383a1c81abeb2b20221be3

HTTP Headers

GET /l/270226461dc64814f22c?sub={yourClickId}&source=ww&wnw=false HTTP/1.1
Host: dakotatraff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://poqueras.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Tue, 01 Nov 2022 00:00:06 GMT
location: https://trk78.zzzperform.com/l/270226461dc64814f22c.js?sub={yourClickId}&source=ww&wnw=false
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZQDo73qGWdk1p%2FvT0yPv%2BLZx8mqkdu1imvOEtR2unEFCsi6jbjl%2BQX0jrLbe3msDlqm%2FDv0UIad2q33cA5ojZz7D8hGekZJrJtf4%2FKUi%2BBdtAJH%2Fky8FH%2F4BYjUw204ZdeU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763059290efdb517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

t5.lowtid.com/d.php?p=c:ub_a64rij70pog14q&d=6351542976534b739b5850d5&pid=63606187aa40815e576243b1&source=67.no.firefox.

51.161.115.163

302 Found

0 B

URL HTTP/1.1
t5.lowtid.com/d.php?p=c:ub_a64rij70pog14q&d=6351542976534b739b5850d5&pid=63606187aa40815e576243b1&source=67.no.firefox.
IP
51.161.115.163:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /d.php?p=c:ub_a64rij70pog14q&d=6351542976534b739b5850d5&pid=63606187aa40815e576243b1&source=67.no.firefox. HTTP/1.1
Host: t5.lowtid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trk78.zzzperform.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx
Date: Tue, 01 Nov 2022 00:00:08 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Round: 12pi7lnzt9
Raund: 1uq
Location: https://67.us.blowingwind.xyz/feed/?link=true&tid=67&subid=67.no.windows&ref=https%3A%2F%2Ftrk78.zzzperform.com%2F&s1=63606188a6593414732f397c

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8a365609bb2c6c108bf922e547dcbaa8
e332e8b7e70304b2c2c76b6c44b78eb9de4db345
862d4a23f4f0be13702d7a14644decffcb69e48a1a1016ebcd5ec5013bc2210a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "862D4A23F4F0BE13702D7A14644DECFFCB69E48A1A1016EBCD5EC5013BC2210A"
Last-Modified: Mon, 31 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21544
Expires: Tue, 01 Nov 2022 05:59:12 GMT
Date: Tue, 01 Nov 2022 00:00:08 GMT
Connection: keep-alive

67.us.blowingwind.xyz/feed/?link=true&tid=67&subid=67.no.windows&ref=https%3A%2F%2Ftrk78.zzzperform.com%2F&s1=63606188a6593414732f397c

23.235.251.114

301 Moved Permanently

0 B

URL HTTP/1.1
67.us.blowingwind.xyz/feed/?link=true&tid=67&subid=67.no.windows&ref=https%3A%2F%2Ftrk78.zzzperform.com%2F&s1=63606188a6593414732f397c
IP
23.235.251.114:0
ASN
#19437 SS-ASH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /feed/?link=true&tid=67&subid=67.no.windows&ref=https%3A%2F%2Ftrk78.zzzperform.com%2F&s1=63606188a6593414732f397c HTTP/1.1
Host: 67.us.blowingwind.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trk78.zzzperform.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Cache-Control: no-cache
Location: https://redir.tealwinds.xyz/click/invalid/?tid=67&subid=67.no.windows
Date: Tue, 01 Nov 2022 00:00:10 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Transfer-Encoding: chunked

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
179e0777fa26c2ca5afbdfd32d7125c2
de7d32ad6e46ebdb7dce93d99908b478fe1331e7
bebf5ae51553b00f7d8ed55a3236704a602fe46a283ea4746467bd72fa6a5c6f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BEBF5AE51553B00F7D8ED55A3236704A602FE46A283EA4746467BD72FA6A5C6F"
Last-Modified: Sun, 30 Oct 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4885
Expires: Tue, 01 Nov 2022 01:21:35 GMT
Date: Tue, 01 Nov 2022 00:00:10 GMT
Connection: keep-alive

redir.tealwinds.xyz/click/invalid/?tid=67&subid=67.no.windows

198.211.113.186

302 Found

224 B

URL HTTP/1.1
redir.tealwinds.xyz/click/invalid/?tid=67&subid=67.no.windows
IP
198.211.113.186:0
ASN
#14061 DIGITALOCEAN-ASN

File type
HTML document, ASCII text, with no line terminators
Size
224 B (224 bytes)
Hash
585810573a1a686b9cd3c49ef3d3e912
d5b8220a03ba07d2bee9346ae06e074f4285675c
a004b5fe2cfc5d4163625c61ce2c66699b52d0956b14bff1f18f21f71487a755

HTTP Headers

GET /click/invalid/?tid=67&subid=67.no.windows HTTP/1.1
Host: redir.tealwinds.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trk78.zzzperform.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
X-Powered-By: Express
Surrogate-Control: no-store
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate
Pragma: no-cache
Expires: 0
Location: https://t2.lowtid.com/l.php?p=c:1ighcayppnss2p5b2&d=63526ec4faf797126b433250&s=67p
Vary: Accept
Content-Type: text/html; charset=utf-8
Content-Length: 224
Date: Tue, 01 Nov 2022 00:00:10 GMT
Connection: keep-alive
Keep-Alive: timeout=5

t2.lowtid.com/l.php?p=c:1ighcayppnss2p5b2&d=63526ec4faf797126b433250&s=67p

51.161.115.163

302 Found

0 B

URL HTTP/1.1
t2.lowtid.com/l.php?p=c:1ighcayppnss2p5b2&d=63526ec4faf797126b433250&s=67p
IP
51.161.115.163:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /l.php?p=c:1ighcayppnss2p5b2&d=63526ec4faf797126b433250&s=67p HTTP/1.1
Host: t2.lowtid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trk78.zzzperform.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx
Date: Tue, 01 Nov 2022 00:00:10 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Round: 1217p3t0dz
Raund: 1yh
Location: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a0d6497453fa448d686f5e7c2d7f4a20
f6a219bac5b221fc38a16049005b346d71911333
3bcad33d44663ac3287cb74b0429b32bf0e62b33f00b2d06814b868b78f61d48

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3BCAD33D44663AC3287CB74B0429B32BF0E62B33F00B2D06814B868B78F61D48"
Last-Modified: Sun, 30 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19114
Expires: Tue, 01 Nov 2022 05:18:45 GMT
Date: Tue, 01 Nov 2022 00:00:11 GMT
Connection: keep-alive

ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p

51.83.143.92

200 OK

490 B

URL HTTP/1.1
ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p
IP
51.83.143.92:0
ASN
#16276 OVH SAS

File type
HTML document text\012- HTML document, ASCII text, with very long lines (537)
Size
490 B (490 bytes)
Hash
b1e6dceed9b516118edddba0d01d1d92
60c3b3ac3a3c9002e8b5b64fc25d014a3536b6dd
7a005398b328c24583a982e12346f65b32d2236799a1bdeebc8e8310f88ca5f0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trk78.zzzperform.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 01 Nov 2022 00:00:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=6360618b9d5c440c657bab69; expires=Fri, 04-Nov-2022 00:00:11 GMT; Max-Age=259200; path=/; domain=ron.trffclb.com; HttpOnly
Content-Encoding: gzip

ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p&bv=1

51.83.143.92

302 Found

0 B

URL HTTP/1.1
ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p&bv=1
IP
51.83.143.92:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p&bv=1 HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p
Cookie: bt-603611c5b7eaf46891533240=6360618b9d5c440c657bab69
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 302 Found
Server: nginx
Date: Tue, 01 Nov 2022 00:00:11 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=ron.trffclb.com; HttpOnly
Round: 119cdtswvl
Raund: 2g2
Location: https://popcash.net/world/go/134600/317194

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
2900875a983c560083e7b18f92e0e5f2
1a0f3e3ea471c1fb7208510fdb6e4f9ecc0cbe9e
bd1c20426329fa2be7732a4c654a84a4003af92307623ca314d0312534ae68cc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6595
Cache-Control: max-age=99861
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 00:00:11 GMT
Etag: "635f2add-117"
Expires: Wed, 02 Nov 2022 03:44:32 GMT
Last-Modified: Mon, 31 Oct 2022 01:54:37 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279

ron.trffclb.com/favicon.ico

51.83.143.92

200 OK

20 B

URL HTTP/1.1
ron.trffclb.com/favicon.ico
IP
51.83.143.92:0
ASN
#16276 OVH SAS

File type
data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys-67p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 01 Nov 2022 00:00:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip

popcash.net/world/go/134600/317194

104.21.52.38

301 Moved Permanently

162 B

URL HTTP/2
popcash.net/world/go/134600/317194
IP
104.21.52.38:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /world/go/134600/317194 HTTP/1.1
Host: popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ron.trffclb.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
date: Tue, 01 Nov 2022 00:00:11 GMT
content-type: text/html
content-length: 162
location: http://ps.popcash.net/go/134600/317194
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=igD323cmtNZDRbtqCcVLS45QHpCmIzLR7n7R5AWaCDlhCJA%2F87z%2B%2BH%2BYKYHOOgJnALPI92cl5uuOs7pi6R3KC1oWU7IbLJvBfhfXlJU2EJ7ooy7Wp5aEqdYOV%2ByD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 763059466ce8b51b-OSL
X-Firefox-Spdy: h2

ps.popcash.net/go/134600/317194

34.232.21.200

200 OK

272 B

URL HTTP/1.1
ps.popcash.net/go/134600/317194
IP
34.232.21.200:0
ASN
#14618 AMAZON-AES

File type
HTML document, ASCII text
Size
272 B (272 bytes)
Hash
489c8ac0b26ed4d88b86e90442eaecc0
e0a2a4ca9398f6173023c0f79c793da33d0b88cc
e48f27f1ee3dba5f30461fff253146fc2e5897b3f53a2dc83a0474e48fd77e87

HTTP Headers

GET /go/134600/317194 HTTP/1.1
Host: ps.popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Content-Encoding: gzip
Content-Type: text/html
Date: Tue, 01 Nov 2022 00:00:11 GMT
Server: nginx
Vary: Accept-Encoding
Content-Length: 272
Connection: keep-alive

ps.popcash.net/ad/ad?p=134600&w=317194&t=0a886db387ec67ad&r=&vw=1280&vh=0

34.232.21.200

303 See Other

0 B

URL HTTP/1.1
ps.popcash.net/ad/ad?p=134600&w=317194&t=0a886db387ec67ad&r=&vw=1280&vh=0
IP
34.232.21.200:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ad/ad?p=134600&w=317194&t=0a886db387ec67ad&r=&vw=1280&vh=0 HTTP/1.1
Host: ps.popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ps.popcash.net/go/134600/317194
Upgrade-Insecure-Requests: 1

HTTP/1.1 303 See Other
Date: Tue, 01 Nov 2022 00:00:11 GMT
Location: http://dipaka-ead.com/zcvisitor/27cac0a3-5978-11ed-afc7-12ee95acec45/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=206ac2c0-7581-11ea-b16e-12e5dcaa70ed#pc151445
Server: nginx
Content-Length: 0
Connection: keep-alive

dipaka-ead.com/zcvisitor/27cac0a3-5978-11ed-afc7-12ee95acec45/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=206ac2c0-7581-11ea-b16e-12e5dcaa70ed

3.208.247.235

302

0 B

URL HTTP/1.1
dipaka-ead.com/zcvisitor/27cac0a3-5978-11ed-afc7-12ee95acec45/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=206ac2c0-7581-11ea-b16e-12e5dcaa70ed
IP
3.208.247.235:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /zcvisitor/27cac0a3-5978-11ed-afc7-12ee95acec45/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=206ac2c0-7581-11ea-b16e-12e5dcaa70ed HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ps.popcash.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 
Date: Tue, 01 Nov 2022 00:00:11 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Location: https://www.affectionwave.com/
Server: eCRVAMXx

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
80f303f19a42449306371f158d03f42d
82209daddd83a0254f2e1eb901e2dd9a6fb1e54e
a74206d18a13b05c6ca6a5c27f2cf84ac25c48d110cd67774b21366c23c5388f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A74206D18A13B05C6CA6A5C27F2CF84AC25C48D110CD67774B21366C23C5388F"
Last-Modified: Sun, 30 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 01 Nov 2022 06:00:12 GMT
Date: Tue, 01 Nov 2022 00:00:12 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2cfe049433e4c9f547c3204de6e04e28
f1a51b3bd67e2244fa9581471838483bdc50fc95
b483ff5359c23e1a800755ffef6c989d2b41c0da18883eb01389f551436917ca

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 01 Nov 2022 00:00:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-154588724-16

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-154588724-16
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1588)
Size
44 kB (43567 bytes)
Hash
5065a8167a1e6dd0003360600d4748de
a70ebe6b7603beea6c958675cfd305d336724f08
9014e280846f949c891ff322993cc5315a88c0c605be4601c282124123903eec

HTTP Headers

GET /gtag/js?id=UA-154588724-16 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 01 Nov 2022 00:00:13 GMT
expires: Tue, 01 Nov 2022 00:00:13 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43567
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.affectionwave.com/

178.62.22.16

302 Found

12 kB

URL HTTP/2
www.affectionwave.com/
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type
data
Size
12 kB (11912 bytes)
Hash
394a0d538cd28a309a5fad1877ac4676
cd4a14778541069610d70aedd7808d8d704e1173
57c1107d3b3a589d5b85362e8b2d999676ff56a1fd2af759e3e37ebbf30b8395

HTTP Headers

GET / HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ps.popcash.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Tue, 01 Nov 2022 00:00:12 GMT
content-type: text/html; charset=UTF-8
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
set-cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; path=/; secure; HttpOnly
userReferrerUrl=ps.popcash.net; expires=Thu, 03-Nov-2022 00:00:12 GMT; Max-Age=172800; path=/; secure; HttpOnly
cache-control: max-age=0, private, must-revalidate, no-cache, private
location: /join
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-medium-webfont.woff2

178.62.22.16

200 OK

20 kB

URL HTTP/2
www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-medium-webfont.woff2
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type
Web Open Font Format (Version 2), TrueType, length 20524, version 1.0\012- data
Size
20 kB (20524 bytes)
Hash
0a082fc9f0c23f322b0e39f9084ba52b
dec485cd41c9508dbea59bbeb5ddd5515361e190
44e9527b0677c5db49883b18b6812b45e079279f2624786fc05067188bf7a307

HTTP Headers

GET /static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-medium-webfont.woff2 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.affectionwave.com/static/assets/ab581ec0.css
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/octet-stream
content-length: 20524
last-modified: Mon, 18 Dec 2017 07:34:44 GMT
etag: "5a376f94-502c"
access-control-allow-origin: *
accept-ranges: bytes
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/24e5e0b3.js

178.62.22.16

200 OK

36 kB

URL HTTP/2
www.affectionwave.com/static/assets/24e5e0b3.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text, with very long lines (42861), with no line terminators
Size
36 kB (36116 bytes)
Hash
367a7023797dbafd8170d745a742945c
15f37d209f8bba5b77dd5618c3d09debb3b1a0d8
1ae3f2f372cec226b6d2ef5a2b17401b54bb3cb77996ac09d47d1015c12ea6f2

HTTP Headers

GET /static/assets/24e5e0b3.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 14:02:14 GMT
etag: W/"63500366-a76d"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/js/messages/no/messages_jquery_jab.js

178.62.22.16

200 OK

21 kB

URL HTTP/2
www.affectionwave.com/js/messages/no/messages_jquery_jab.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text, with no line terminators
Size
21 kB (21267 bytes)
Hash
bab31f8fd1d130a91391f10f2d458191
3319de05eff0bf2a8add84f28272bd8338e354fa
ea73e76166e4328830842257afb0a486cace1194c766668ed512abfb07c58943

HTTP Headers

GET /js/messages/no/messages_jquery_jab.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/javascript;charset=UTF-8
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=2592000, private
last-modified: Thu, 01 Jan 1970 01:31:29 GMT
expires: Thu, 01 Dec 2022 00:00:13 GMT
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/5497bff0.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/5497bff0.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/5497bff0.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:47 GMT
etag: W/"62f10a2b-cb1"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/a45513bc.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/a45513bc.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/a45513bc.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 12:07:35 GMT
etag: W/"635bc607-24bd9"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/949c3926.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/949c3926.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/949c3926.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-248"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/_dating/_default/s/payment-logos.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/_dating/_default/s/payment-logos.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/_dating/_default/s/payment-logos.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Thu, 14 Jul 2022 10:16:05 GMT
etag: W/"62cfece5-c79"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/js/jquery.autocomplete.js?v=5489

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/js/jquery.autocomplete.js?v=5489
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/js/jquery.autocomplete.js?v=5489 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Thu, 15 Sep 2022 08:55:25 GMT
etag: W/"6322e87d-43b2"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/resources/get/4/8d7168c75f888f4e8f6d2cfebaa7029f

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/resources/get/4/8d7168c75f888f4e8f6d2cfebaa7029f
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /resources/get/4/8d7168c75f888f4e8f6d2cfebaa7029f HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/resources/get/4/39100eb00726207674808593babbf9e2

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/resources/get/4/39100eb00726207674808593babbf9e2
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /resources/get/4/39100eb00726207674808593babbf9e2 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/dd6a3ac9.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/dd6a3ac9.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/dd6a3ac9.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 08:42:53 GMT
etag: W/"633e950d-bfe0"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/63f0b6bf.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/63f0b6bf.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/63f0b6bf.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-ae0"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

bercioles.com/redirect?id=737&auth=337e46e86a8ca0952bfc1828039f4d15ccd12eea&sid=90&clk=BCYI850AAAGEMHzyawAAAycAAABaAAABNQAAAAAP

172.67.138.217

200 OK

0 B

URL HTTP/2
bercioles.com/redirect?id=737&auth=337e46e86a8ca0952bfc1828039f4d15ccd12eea&sid=90&clk=BCYI850AAAGEMHzyawAAAycAAABaAAABNQAAAAAP
IP
172.67.138.217:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /redirect?id=737&auth=337e46e86a8ca0952bfc1828039f4d15ccd12eea&sid=90&clk=BCYI850AAAGEMHzyawAAAycAAABaAAABNQAAAAAP HTTP/1.1
Host: bercioles.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://armr.trckswrm.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 01 Nov 2022 00:00:06 GMT
content-type: text/html;charset=utf-8
referrer-policy: origin
vary: accept-encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=smvl54z%2F%2BQ%2BtbrjlX%2F7xrbQNwMZfGRMgKHOq5JLjc1%2FiEG%2BzGuIFKE7W8%2ByfVmwqG04NrmMloaOou74S6cfYf6JH8PYw3%2FTuEOtoz7ZLsc6wpThiGPn%2FCLR86wXExBSO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76305924ad8db4e8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/211b41b8.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/211b41b8.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/211b41b8.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-892"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/c247a8e1.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/c247a8e1.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/c247a8e1.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:47 GMT
etag: W/"62f10a2b-947"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/5b0b6082.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/5b0b6082.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/5b0b6082.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-666"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/95d6c938.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/95d6c938.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/95d6c938.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-312"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/ab581ec0.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/ab581ec0.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/ab581ec0.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Tue, 04 Oct 2022 13:02:46 GMT
etag: W/"633c2ef6-c8a1"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/be5b1fa8.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/be5b1fa8.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/be5b1fa8.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 14:02:14 GMT
etag: W/"63500366-10df"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/32df6410.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/32df6410.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/32df6410.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:51 GMT
etag: W/"62f10a2f-206f"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/37e7367d.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/37e7367d.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/37e7367d.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-37b"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/f67027d8.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/f67027d8.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/f67027d8.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-c7"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/resources/get/4/c1321eb5f027095b5c50f520a56fed23

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/resources/get/4/c1321eb5f027095b5c50f520a56fed23
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /resources/get/4/c1321eb5f027095b5c50f520a56fed23 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/fbf73bde.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/fbf73bde.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/fbf73bde.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-1ba5"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/2409f906.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/2409f906.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/2409f906.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-2325"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/770ad0e4.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/770ad0e4.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/770ad0e4.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-8b6"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/js/messages/no/messages_notifications.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/js/messages/no/messages_notifications.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/messages/no/messages_notifications.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/javascript;charset=UTF-8
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=2592000, private
last-modified: Thu, 01 Jan 1970 01:31:29 GMT
expires: Thu, 01 Dec 2022 00:00:13 GMT
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/_dating/_default/i/payment_logos/diners.svg

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/_dating/_default/i/payment_logos/diners.svg
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/_dating/_default/i/payment_logos/diners.svg HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/_dating/_default/s/payment-logos.css
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 07:36:01 GMT
etag: W/"62cd2461-21e3"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/f608025f.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/f608025f.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/f608025f.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-8539"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/9ca75e15.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/9ca75e15.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/9ca75e15.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-549"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/fa6902f0.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/fa6902f0.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/fa6902f0.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:47 GMT
etag: W/"62f10a2b-402"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/83ab9aeb.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/83ab9aeb.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/83ab9aeb.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 12:07:35 GMT
etag: W/"635bc607-baf"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/846cfccf.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/846cfccf.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/846cfccf.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 09:32:57 GMT
etag: W/"635a5049-20f30"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/_dating/_default/i/payment_logos/jcb.svg

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/_dating/_default/i/payment_logos/jcb.svg
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/_dating/_default/i/payment_logos/jcb.svg HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/_dating/_default/s/payment-logos.css
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 07:36:01 GMT
etag: W/"62cd2461-10ab"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/resources/logo

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/resources/logo
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /resources/logo HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/png
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/f56f0d59.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/f56f0d59.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/f56f0d59.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-f80"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/resources/get/4/4b1cf29a1d9833888ce9a3fa87ebff68

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/resources/get/4/4b1cf29a1d9833888ce9a3fa87ebff68
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /resources/get/4/4b1cf29a1d9833888ce9a3fa87ebff68 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/resources/get/4/cc9166cd2f801d8aeac627092b2c813f

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/resources/get/4/cc9166cd2f801d8aeac627092b2c813f
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /resources/get/4/cc9166cd2f801d8aeac627092b2c813f HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/resources/get/4/1a1def99fcc6d5942a5dd7639de1533d

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/resources/get/4/1a1def99fcc6d5942a5dd7639de1533d
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /resources/get/4/1a1def99fcc6d5942a5dd7639de1533d HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/fad0beb3.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/fad0beb3.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/fad0beb3.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Mon, 12 Sep 2022 06:40:07 GMT
etag: W/"631ed447-13c3"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/1d9702dc.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/1d9702dc.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/1d9702dc.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=pv7eci011tanto8alelmg3avv9471pea9nhm6ji6; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 01 Nov 2022 00:00:13 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 14:02:14 GMT
etag: W/"63500366-581"
access-control-allow-origin: *
expires: Thu, 01 Dec 2022 00:00:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (72)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations