code.jquery.com/jquery-3.6.0.min.js
69.16.175.42200 OK 31 kB URL GET HTTP/2 code.jquery.com/jquery-3.6.0.min.js
IP 69.16.175.42:443
Requested by https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
Certificate IssuerSectigo Limited
Subject*.jquery.com
Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83
ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wildfunweb.com
DNT: 1
Connection: keep-alive
Referer: https://wildfunweb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 11:21:05 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1684927265.dop017.sk1.t,1684927265.cds256.sk1.hn,1684927265.cds210.sk1.c
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js
151.101.129.229200 OK 23 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js
IP 151.101.129.229:443
Requested by https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F
ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT
File type ASCII text, with very long lines (65299)
Hash f81d0a1705048649befc8b595e455a94
aec551e4d573463088fca7d14fb644eb389f1839
b0212543cc5a4a0a31c1b5a9d1e8973261992116b4cfde3e7dfcf33b4e81a97b
GET /npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wildfunweb.com
DNT: 1
Connection: keep-alive
Referer: https://wildfunweb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.6.0
x-jsd-version-type: version
etag: W/"1499a-rsVR5NVzRjCI/KfRT7ZE6zifGDk"
content-encoding: br
accept-ranges: bytes
date: Wed, 24 May 2023 11:21:05 GMT
age: 6042080
x-served-by: cache-fra-eddf8230133-FRA, cache-bma1657-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23377
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/css/bootstrap.min.css
151.101.129.229200 OK 26 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/css/bootstrap.min.css
IP 151.101.129.229:443
Requested by https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F
ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT
File type ASCII text, with very long lines (65326)
Hash d432e4222814b62dd30c9513dcc29440
2cac4afc120983921411296bd4e8fd8a94ba237e
4ffcc598ee6cff4692c1cea272cd8a2f195f6dec32473e94370d6cdcfa5fe601
GET /npm/bootstrap@4.6.0/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wildfunweb.com
DNT: 1
Connection: keep-alive
Referer: https://wildfunweb.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.6.0
x-jsd-version-type: version
etag: W/"27681-LKxK/BIJg5IUESlr1Oj9ipS6I34"
content-encoding: br
accept-ranges: bytes
date: Wed, 24 May 2023 11:21:05 GMT
age: 5886960
x-served-by: cache-fra-eddf8230111-FRA, cache-bma1657-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26291
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.21.226 1.5 kB URL ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.21.226:0
Hash 96d65b177401d7bf035b648a98ed179d
d827317f6386b17b815dc1476d024f92026e9f84
cc498b8275f3dd635ab022e839ebe021bcde6bd392da1fc2d035f7e4bd46790c
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 May 2023 11:21:06 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "5B6DAA35AA8231A819095A236C93286C9CCD4D3A"
Expires: Wed, 24 May 2023 22:00:00 GMT
Last-Modified: Wed, 24 May 2023 10:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1914
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7cc527358ebd0b65-OSL
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=7deea0368b
172.64.202.28200 OK 32 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=7deea0368b
IP 172.64.202.28:443
Requested by https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:14:F2:7A:2C:AE:36:01:38:B7:F7:3D:DB:44:3E:3F:5C:FB:6B:15
ValidityFri, 12 Aug 2022 00:00:00 GMT - Sat, 12 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (2774)
Hash f2e0b2680d9b0bcb6e0039c4424e5a59
1ea995cea90b79f3ad16c318572313a671718645
7f8b63bff49fba3c5bae30f4eb39f2fd6d088fbe9d7292bdf37b0ef4a1ec68d6
GET /releases/v5.15.4/css/free-v4-font-face.min.css?token=7deea0368b HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wildfunweb.com/
Origin: https://wildfunweb.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 11:21:06 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"f2e0b2680d9b0bcb6e0039c4424e5a59"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d6030d5ab753695c0198f874d4276eb2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: vi5WdKr3Xgp-OnSY4YRM4iT6xeoMgDBeAgGo8QHLeVtTvKkr4b8sbQ==
age: 523352
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=58AroEmpnBDq0GHq5Y7GmM8CxfheQJE9XNDUL1FpYfoSmKvTjK4KoyzMSE5E50KpPYHRspwZeH2D9xOg9zKQIrrjP%2F8QWwok1jKWzXd6Kvezg80yNtBmehqcGcVMDG3IpTi%2FAhcMZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc527370a59068a-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.wildfunweb.com/land/banners/boxgrotate.css
104.26.14.6200 OK 949 B URL GET HTTP/2 cdn.wildfunweb.com/land/banners/boxgrotate.css
IP 104.26.14.6:443
Requested by https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
Certificate IssuerGoogle Trust Services LLC
Subjectwildfunweb.com
Fingerprint60:A1:5D:81:16:49:FE:1D:06:4D:F3:EE:87:1C:F9:BD:A4:FD:79:67
ValiditySun, 30 Apr 2023 12:05:53 GMT - Sat, 29 Jul 2023 12:05:52 GMT
Hash e8593b95e61b1a1a110aaab5195653ff
6efe6e2c361ac6701d905c58e4b6e1054077ac4e
a33f2ab603751a3849b2bc0a9d1de69291cc47c7d87046b80998585921f88037
GET /land/banners/boxgrotate.css HTTP/1.1
Host: cdn.wildfunweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wildfunweb.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 May 2023 11:21:05 GMT
content-type: text/css
etag: W/"e8593b95e61b1a1a110aaab5195653ff"
last-modified: Fri, 21 Apr 2023 11:16:20 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 5181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kgIrcIUCmNvSpUp9E0Obch0KAlq15mi%2FIpUSPhQbbC0io6ry9kRxTy%2BsOPlfRUZ38mtmriEFi2pVcf8Bx%2FBtNJtuNQ3jmZHzxt4WhuVVzvlS7GUvlGfASH2M%2BljwWT0wzilSLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc527328a89b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
kit.fontawesome.com/7deea0368b.js
104.18.22.52200 OK 11 kB URL GET HTTP/2 kit.fontawesome.com/7deea0368b.js
IP 104.18.22.52:443
Requested by https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
Certificate IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (11018)
Hash e62478b6530cc566658fd2d20001b706
20026b56cb872f10c8adcc59b61721693da05e95
1b0d4be6be687d94e93e9c393f65ea1238654394490b5ed2bad59887a678f04c
GET /7deea0368b.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wildfunweb.com
DNT: 1
Connection: keep-alive
Referer: https://wildfunweb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 11:21:05 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F2A0MjrtFxRv1TcQWe9k
cf-cache-status: HIT
server: cloudflare
cf-ray: 7cc527338e10b50f-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=7deea0368b
172.64.202.28200 OK 60 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=7deea0368b
IP 172.64.202.28:443
Requested by https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:14:F2:7A:2C:AE:36:01:38:B7:F7:3D:DB:44:3E:3F:5C:FB:6B:15
ValidityFri, 12 Aug 2022 00:00:00 GMT - Sat, 12 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (60130)
Hash a12ec7ebe75a4d59a5dd6b79e2ba2e16
28f5dcc595ee6d4163481ef64170180502c8629b
fc5128dfdcdfa0c3a9967a6d2f19399d7bf1aaae6ad7571b96b03915a1f30dda
GET /releases/v5.15.4/css/free.min.css?token=7deea0368b HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wildfunweb.com/
Origin: https://wildfunweb.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 11:21:06 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 59970c86d3717db509a968eaad0da4de.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: iaaEMv6O0AoBOcSJA--YoGRDVblzaaSRP7Kxpl6eTF1e7FwF1VnaFg==
age: 523352
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FzA1nuogez9iCP01T98B%2FmRGlRfPO084jAK9mUl33AIruqEMKkqJJmsXfxaP6MZ7GNE8gLHZWj8PRvHWSgsrAdxPqip8DXZxDJQrQAvw3tgjisi1maGBCcDi%2BqtXnj4JQqWJ5VoWkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc52736fa47068a-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dn7u3i0t165w2.cloudfront.net/venta/images/aeu_16072021_720612.gif?1.0
54.230.245.69200 OK 31 kB URL GET HTTP/2 dn7u3i0t165w2.cloudfront.net/venta/images/aeu_16072021_720612.gif?1.0
IP 54.230.245.69:443
Requested by https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type GIF image data, version 89a, 300 x 250\012- data
Hash ac94aa6420f7ebec061b2b590d677734
2b2c46f0251df22ed43925d64aaab671b823606b
77bb91847d990f6f7cbcfe1812d98eef075f274fecd37ec1ac5361141c072137
GET /venta/images/aeu_16072021_720612.gif?1.0 HTTP/1.1
Host: dn7u3i0t165w2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wildfunweb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
content-length: 31115
last-modified: Fri, 16 Jul 2021 12:52:48 GMT
accept-ranges: bytes
server: AmazonS3
date: Wed, 24 May 2023 08:42:41 GMT
etag: "ac94aa6420f7ebec061b2b590d677734"
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: R1k7b_XSpYDbyNqUHbRUrI709-CpGYDs6yQydLaf4IkTGCux8r37lQ==
age: 9506
X-Firefox-Spdy: h2
cdn.wildfunweb.com/land/banners/functions.js?v=1
104.26.14.6200 OK 3.5 kB URL GET HTTP/2 cdn.wildfunweb.com/land/banners/functions.js?v=1
IP 104.26.14.6:443
Requested by https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
Certificate IssuerGoogle Trust Services LLC
Subjectwildfunweb.com
Fingerprint60:A1:5D:81:16:49:FE:1D:06:4D:F3:EE:87:1C:F9:BD:A4:FD:79:67
ValiditySun, 30 Apr 2023 12:05:53 GMT - Sat, 29 Jul 2023 12:05:52 GMT
File type Unicode text, UTF-8 text, with very long lines (3780), with no line terminators
Hash 6d5c9d03316e29a9727efa3cd4721ab6
94b5ab0e7342032b0ca67769a10fcad235648c64
51db40a6410db2b3a9d9106edd641ee50907e36322b6750335f8e65533f36714
GET /land/banners/functions.js?v=1 HTTP/1.1
Host: cdn.wildfunweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wildfunweb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 11:21:05 GMT
content-type: application/javascript
etag: W/"4a02b51b59e7ed04f4612597ddf601d3"
last-modified: Fri, 27 Jan 2023 19:45:28 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 5181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zXIS4eFhbGL9TGP%2Bh4Yg5ti16%2BB7gnE925sdRv7DEeOw4ELHrL3n3biuFM9fEPUxPKWDyzWZxcZ1bUf%2FAdWFbYC%2BhBb%2FbytD9aDF9UtcqHjLbPhaGrNbFk2Mo4HdfW35a0XRCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc527328a8cb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
gauvaiho.net/pfe/current/micro.tag.min.js?z=4681922&sw=/sw-check-permissions-7c336.js
139.45.197.251200 OK 42 kB URL GET HTTP/2 gauvaiho.net/pfe/current/micro.tag.min.js?z=4681922&sw=/sw-check-permissions-7c336.js
IP 139.45.197.251:443
Requested by https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
Certificate IssuerLet's Encrypt
Subjectgauvaiho.net
Fingerprint48:F2:59:24:62:D2:38:17:BE:F0:80:94:87:94:4B:7D:CB:39:2D:D2
ValidityThu, 16 Mar 2023 06:02:59 GMT - Wed, 14 Jun 2023 06:02:58 GMT
File type C source, ASCII text, with very long lines (41979), with no line terminators
Hash d44fd7b96fceca8f81b472766025d0d2
237541097413baf5cd3e703413f8bc9ea538a4db
b6c7c1e7fb1a437f100bdcb253df8b0468f130835fbb82c5687505a099997d16
GET /pfe/current/micro.tag.min.js?z=4681922&sw=/sw-check-permissions-7c336.js HTTP/1.1
Host: gauvaiho.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wildfunweb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 May 2023 11:21:06 GMT
content-type: application/javascript
last-modified: Thu, 11 May 2023 14:20:13 GMT
etag: W/"645cf99d-a3fb"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=7deea0368b
172.64.202.28200 OK 27 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=7deea0368b
IP 172.64.202.28:443
Requested by https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:14:F2:7A:2C:AE:36:01:38:B7:F7:3D:DB:44:3E:3F:5C:FB:6B:15
ValidityFri, 12 Aug 2022 00:00:00 GMT - Sat, 12 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (26500)
Hash 76f34b71fc9fb641507ff6a822cc07f5
73ed2f8f21cd40fb496e61306acbb5849d4dbff4
6dea47458a4cd7cd7312cc780a53c62e0c8b3ccc8d0b13c1ac0ea6e3dfcecea8
GET /releases/v5.15.4/css/free-v4-shims.min.css?token=7deea0368b HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wildfunweb.com/
Origin: https://wildfunweb.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 11:21:06 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"76f34b71fc9fb641507ff6a822cc07f5"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f546fae491a152f9c1396e6d0a62bb42.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: xgVgKR-Ev2aWUqvTQ52j2fwP4DgQdn0fHUI1VDBwENrLOciGIJ7fDQ==
age: 523352
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HMDa6ZQyWtBuhTCYRA02cnvqRvZYPI1vNoEUxk8ua%2BHoTsSqdNRLpYSiQlUB0Ay3nOfC9wK3Vojqjal%2BegtwtrVHQ5Oo2OmWspgYlisLIjT2Snov9LTGIxcdeQWhDzYCimiz4hzK1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc527370a61068a-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
wildfunweb.com/favicon.ico
104.26.14.6200 OK 150 B URL GET HTTP/2 wildfunweb.com/favicon.ico
IP 104.26.14.6:443
Requested by https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
Certificate IssuerGoogle Trust Services LLC
Subjectwildfunweb.com
Fingerprint60:A1:5D:81:16:49:FE:1D:06:4D:F3:EE:87:1C:F9:BD:A4:FD:79:67
ValiditySun, 30 Apr 2023 12:05:53 GMT - Sat, 29 Jul 2023 12:05:52 GMT
File type MS Windows icon resource - 2 icons, 1x1, 2 colors, 1x1, 2 colors\012- data
Hash b16ffe438aae1df8db0437e8466b9a2d
4891ca58b0df9d4b67f190eb5f6406f9dd188875
972206ec635266c0b99c42350817a834e92fbb64f1d7cbf5eb5ad7a26d7a41b9
GET /favicon.ico HTTP/1.1
Host: wildfunweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 11:21:06 GMT
content-type: image/x-icon
last-modified: Wed, 24 May 2023 07:46:57 GMT
etag: W/"646dc0f1-96"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EyIW%2BxsHGeADn3a3VTbeCyInPGONclSGdP41nVlmS8q79eFOc5NSuFBjIeSuNUVnIkyRkni1%2BmcpS6XkRZ9tIB44Tbb0BVvzsDSd8Glm6HN6sP71KRsGyxutIiR9mLsL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cc527392d68b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
gauvaiho.net/zone?&pub=0&zone_id=4681922&is_mobile=false&domain=wildfunweb.com&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest
139.45.197.251200 OK 0 B URL POST HTTP/2 gauvaiho.net/zone?&pub=0&zone_id=4681922&is_mobile=false&domain=wildfunweb.com&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest
IP 139.45.197.251:443
Requested by https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
Certificate IssuerLet's Encrypt
Subjectgauvaiho.net
Fingerprint48:F2:59:24:62:D2:38:17:BE:F0:80:94:87:94:4B:7D:CB:39:2D:D2
ValidityThu, 16 Mar 2023 06:02:59 GMT - Wed, 14 Jun 2023 06:02:58 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=4681922&is_mobile=false&domain=wildfunweb.com&var=&ymid=&var_3=&var_4=&dsig=&action=prerequest HTTP/1.1
Host: gauvaiho.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wildfunweb.com
DNT: 1
Connection: keep-alive
Referer: https://wildfunweb.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Wed, 24 May 2023 11:21:06 GMT
content-length: 0
x-trace-id: 47263ed1e1398488777fdb5c3457046a
access-control-allow-origin: https://wildfunweb.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
letsbewinners.com/cl/tar/sur6box-350/196
104.26.11.153302 Found 4.4 kB URL User Request GET HTTP/2 letsbewinners.com/cl/tar/sur6box-350/196
IP 104.26.11.153:443
Certificate IssuerGoogle Trust Services LLC
Subjectletsbewinners.com
Fingerprint29:0A:D0:A1:5E:AF:46:BB:23:5A:E2:20:79:BF:30:56:23:15:21:19
ValidityWed, 10 May 2023 10:25:06 GMT - Tue, 08 Aug 2023 10:25:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /cl/tar/sur6box-350/196 HTTP/1.1
Host: letsbewinners.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 24 May 2023 11:21:04 GMT
content-type: text/html; charset=UTF-8
location: https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OsYthScOsMulOQBR9qDiC0diH4jjwz7GgTIGFCKNHzr%2Fvmxf8LTCA4E7zTJleIU%2FlGJiuVhQO%2BsArqap6KVGReBUbZnyTSSoLyFJzSnEbwIANTw60vrST7S9HNuD3zyInPRF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc5272b98bab509-OSL
X-Firefox-Spdy: h2
wildfunweb.com/sw-check-permissions-7c336.js
104.26.14.6404 Not Found 0 B URL GET HTTP/2 wildfunweb.com/sw-check-permissions-7c336.js
IP 104.26.14.6:443
Requested by https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
Certificate IssuerGoogle Trust Services LLC
Subjectwildfunweb.com
Fingerprint60:A1:5D:81:16:49:FE:1D:06:4D:F3:EE:87:1C:F9:BD:A4:FD:79:67
ValiditySun, 30 Apr 2023 12:05:53 GMT - Sat, 29 Jul 2023 12:05:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /sw-check-permissions-7c336.js HTTP/1.1
Host: wildfunweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Wed, 24 May 2023 11:21:07 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xuDcJmF8EyAUoMUQn0ekPU0qlWBm5H9o4F1WPmFtoQG8EfvTyqOmHGxFwTf18EOvD%2F7qSrFlMjg%2FVh7bSWCQBzn73Q4WwVyD7YAWWfbR1DozWwPuUlgb0OZlFkyTDto6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc52739ee7eb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
104.26.14.6200 OK 4.4 kB URL User Request GET HTTP/2 wildfunweb.com/land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode=
IP 104.26.14.6:443
Certificate IssuerGoogle Trust Services LLC
Subjectwildfunweb.com
Fingerprint60:A1:5D:81:16:49:FE:1D:06:4D:F3:EE:87:1C:F9:BD:A4:FD:79:67
ValiditySun, 30 Apr 2023 12:05:53 GMT - Sat, 29 Jul 2023 12:05:52 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4584), with no line terminators
Hash e61e0fdb89afa57e63978860f8fadfe8
06ea8e080222f94f2ed805310ef8c32755c617b6
0a55bb3f82877abd8797d774efec096ae35523eeab4c46aa7f655f45e63130cf
GET /land/offers/GB-en?campaign=&utm_campaign=&web=1&tcode= HTTP/1.1
Host: wildfunweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 11:21:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, private
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dl8pADQu4KOKmCblCGJntNkAEFmWg13W3e16b0CSCCnNy1tWKBsr18eERupiz5IguBbiEW1sTGbIIZCdCFMMoKA02RvJ4vY26A2OnP1ws6TeuH0dVInKG9v9wXYc2FZK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cc5272d896bb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2