parisgroupsrealty.com/profilereview/document/resultcheking/?email=3mail@slurpmail.net
91.235.116.232302 Found 6 B URL User Request GET HTTP/2 parisgroupsrealty.com/profilereview/document/resultcheking/?email=3mail@slurpmail.net
IP 91.235.116.232:443
ASN #51177 THC Projects SRL
Certificate IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT
File type ASCII text, with CRLF line terminators
Hash 81051bcc2cf1bedf378224b0a93e2877
ba8ab5a0280b953aa97435ff8946cbcbb2755a27
7eb70257593da06f682a3ddda54a9d260d4fc514f645237f5ca74b08f8da61a6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /profilereview/document/resultcheking/?email=3mail@slurpmail.net HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D
content-type: text/html; charset=UTF-8
content-length: 6
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 May 2023 02:48:12 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
parisgroupsrealty.com/profilereview/document/resultcheking/sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D
91.235.116.232200 OK 1.2 kB URL User Request GET HTTP/2 parisgroupsrealty.com/profilereview/document/resultcheking/sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D
IP 91.235.116.232:443
ASN #51177 THC Projects SRL
Certificate IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 80193c74633f424ad75fa4e68225a1c1
51e88686ac1e7e6326870b6d14335ef809442a1c
605e950b266eef4f71e3589aba212ade6167a4fdb6a51da9218dcdc1111d7c45
Analyzer Verdict Alert fortinet Phishing
GET /profilereview/document/resultcheking/sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 1168
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 May 2023 02:48:12 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
parisgroupsrealty.com/profilereview/document/resultcheking/script.js
91.235.116.232200 OK 466 B URL GET HTTP/3 parisgroupsrealty.com/profilereview/document/resultcheking/script.js
IP 91.235.116.232:443
ASN #51177 THC Projects SRL
Requested by https://parisgroupsrealty.com/profilereview/document/resultcheking/sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D
Certificate IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT
File type ASCII text, with CRLF line terminators
Hash 211f8cf5a7bcd739db5dfcd593f44007
b274a28026a44e149ca5b702366e36c46b714fed
15b7340efe5017cea897a832b6d84c5c83b884e7971b08402455fae9ea323836
GET /profilereview/document/resultcheking/script.js HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/profilereview/document/resultcheking/sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Wed, 31 May 2023 02:48:13 GMT
content-type: application/javascript
last-modified: Fri, 09 Oct 2020 11:05:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 466
date: Wed, 24 May 2023 02:48:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.24.14200 OK 5.6 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.24.14:443
Requested by https://parisgroupsrealty.com/profilereview/document/resultcheking/sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 02:48:13 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 106305
expires: Mon, 13 May 2024 02:48:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qz8D%2BBkwlogUuAm7T6i8SkEExYWGeiek8mEWEGUCX192r1ShE5Ls5RIohu%2FscnudgB1XxtI88djnQSddo6fede6jArkDXzp%2B8O36V8qFmlJOwmFX4wlEPee7QjC4hmF3KLgjJnCR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cc237eb2a06b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
142.250.74.106200 OK 31 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP 142.250.74.106:443
Requested by https://parisgroupsrealty.com/profilereview/document/resultcheking/sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (65451)
Hash dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 02:07:55 GMT
expires: Thu, 23 May 2024 02:07:55 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 2418
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/s2/favicons?sz=32&domain_url=slurpmail.net
142.250.74.132301 Moved Permanently 333 B URL GET HTTP/2 www.google.com/s2/favicons?sz=32&domain_url=slurpmail.net
IP 142.250.74.132:443
Requested by https://parisgroupsrealty.com/profilereview/document/resultcheking/sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint85:AD:43:66:C0:73:07:1B:B5:5D:4A:83:4B:76:3F:DA:4B:2B:E1:F8
ValidityMon, 24 Apr 2023 12:01:16 GMT - Mon, 17 Jul 2023 12:01:15 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash f5b62d01edb89c8017e4d92d2d4519f7
e4047ed3f5c0c3277a176ee2f2f41946e2bd297f
5e6c38cf2b07f57b9d409ab67c352a1a872e06662ec76f157a16f36aa19f6b62
GET /s2/favicons?sz=32&domain_url=slurpmail.net HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://slurpmail.net&size=32
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 24 May 2023 02:48:13 GMT
expires: Wed, 24 May 2023 03:18:13 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 333
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/s2/favicons?sz=32&domain_url=slurpmail.net
142.250.74.132301 Moved Permanently 333 B URL GET HTTP/2 www.google.com/s2/favicons?sz=32&domain_url=slurpmail.net
IP 142.250.74.132:443
Requested by https://parisgroupsrealty.com/profilereview/document/resultcheking/sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint85:AD:43:66:C0:73:07:1B:B5:5D:4A:83:4B:76:3F:DA:4B:2B:E1:F8
ValidityMon, 24 Apr 2023 12:01:16 GMT - Mon, 17 Jul 2023 12:01:15 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash f5b62d01edb89c8017e4d92d2d4519f7
e4047ed3f5c0c3277a176ee2f2f41946e2bd297f
5e6c38cf2b07f57b9d409ab67c352a1a872e06662ec76f157a16f36aa19f6b62
GET /s2/favicons?sz=32&domain_url=slurpmail.net HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://slurpmail.net&size=32
x-content-type-options: nosniff
server: sffe
content-length: 333
x-xss-protection: 0
date: Wed, 24 May 2023 02:48:13 GMT
expires: Wed, 24 May 2023 03:18:13 GMT
cache-control: public, max-age=1800
content-type: text/html; charset=UTF-8
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://slurpmail.net&size=32
142.250.74.100 1.7 kB URL t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://slurpmail.net&size=32
IP 142.250.74.100:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash f1d87791241b755a9714191cc2015d5c
917264cd421c31bdc204641837685149ace30b2b
9eaa735a6cd2b884f7ea1383917b93bfa493a44595f566438888026374119eb8
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://slurpmail.net&size=32 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://parisgroupsrealty.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
content-location: http://slurpmail.net/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 1687
date: Wed, 24 May 2023 02:48:13 GMT
expires: Wed, 31 May 2023 02:48:13 GMT
cache-control: public, max-age=604800
last-modified: Wed, 29 Nov 2017 12:34:19 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://slurpmail.net&size=32
142.250.74.100 1.7 kB URL t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://slurpmail.net&size=32
IP 142.250.74.100:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash f1d87791241b755a9714191cc2015d5c
917264cd421c31bdc204641837685149ace30b2b
9eaa735a6cd2b884f7ea1383917b93bfa493a44595f566438888026374119eb8
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://slurpmail.net&size=32 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://parisgroupsrealty.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-location: http://slurpmail.net/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 1687
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 02:48:13 GMT
expires: Wed, 31 May 2023 02:48:13 GMT
cache-control: public, max-age=604800
last-modified: Wed, 29 Nov 2017 12:34:19 GMT
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
parisgroupsrealty.com/profilereview/document/resultcheking/img/default.jpg
91.235.116.232200 OK 1.2 MB URL GET HTTP/3 parisgroupsrealty.com/profilereview/document/resultcheking/img/default.jpg
IP 91.235.116.232:443
ASN #51177 THC Projects SRL
Requested by https://parisgroupsrealty.com/profilereview/document/resultcheking/sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D
Certificate IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size 1.2 MB (1151108 bytes)
Hash 5efc2b3dfffbd019548e9aede04ec1fe
5cacecc6d3765a9ca66ba8ab0fe40313c1bf9b3a
a6baa596c961ffab09d260ba7d7c743114ff7016e13e853b9b0f25bceac17255
GET /profilereview/document/resultcheking/img/default.jpg HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/profilereview/document/resultcheking/sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Wed, 31 May 2023 02:48:13 GMT
content-type: image/jpeg
last-modified: Fri, 09 Oct 2020 02:13:10 GMT
accept-ranges: bytes
content-length: 1151108
date: Wed, 24 May 2023 02:48:13 GMT
server: LiteSpeed
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
104.18.10.207200 OK 31 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.18.10.207:443
Requested by https://parisgroupsrealty.com/profilereview/document/resultcheking/sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://parisgroupsrealty.com
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 02:48:13 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 05/01/2023 15:40:29
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 93853f81ea8a788b2befa54431a5a121
cdn-cache: HIT
cf-cache-status: HIT
age: 53527
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7cc237eb2e1b0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.4.1/css/bootstrap.min.css
104.18.11.207200 OK 122 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.4.1/css/bootstrap.min.css
IP 104.18.11.207:443
Requested by https://parisgroupsrealty.com/profilereview/document/resultcheking/sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (65369)
Size 122 kB (121457 bytes)
Hash 7f89537eaf606bff49f5cc1a7c24dbca
b0972fdcce82fd583d4c2ccc3f2e3df7404a19d0
6d92dfc1700fd38cd130ad818e23bc8aef697f815b2ea5face2b5dfad22f2e11
GET /bootstrap/3.4.1/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 02:48:13 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 632, 617
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 2021-03-10 20:26:25
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 61d285a2b452357d1d833ab142fef512
cdn-cache: HIT
cf-cache-status: HIT
age: 2671269
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7cc237eb3a18b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://slurpmail.net&size=32
142.250.74.100200 OK 1.7 kB URL GET HTTP/2 t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://slurpmail.net&size=32
IP 142.250.74.100:443
Requested by https://parisgroupsrealty.com/profilereview/document/resultcheking/sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash f1d87791241b755a9714191cc2015d5c
917264cd421c31bdc204641837685149ace30b2b
9eaa735a6cd2b884f7ea1383917b93bfa493a44595f566438888026374119eb8
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://slurpmail.net&size=32 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://parisgroupsrealty.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-location: http://slurpmail.net/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 1687
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 02:48:13 GMT
expires: Wed, 31 May 2023 02:48:13 GMT
cache-control: public, max-age=604800
last-modified: Wed, 29 Nov 2017 12:34:19 GMT
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://slurpmail.net&size=32
142.250.74.100200 OK 1.7 kB URL GET HTTP/2 t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://slurpmail.net&size=32
IP 142.250.74.100:443
Requested by https://parisgroupsrealty.com/profilereview/document/resultcheking/sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash f1d87791241b755a9714191cc2015d5c
917264cd421c31bdc204641837685149ace30b2b
9eaa735a6cd2b884f7ea1383917b93bfa493a44595f566438888026374119eb8
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://slurpmail.net&size=32 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://parisgroupsrealty.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
content-location: http://slurpmail.net/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 1687
date: Wed, 24 May 2023 02:48:13 GMT
expires: Wed, 31 May 2023 02:48:13 GMT
cache-control: public, max-age=604800
last-modified: Wed, 29 Nov 2017 12:34:19 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.4.1/js/bootstrap.min.js
104.18.11.207200 OK 40 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.4.1/js/bootstrap.min.js
IP 104.18.11.207:443
Requested by https://parisgroupsrealty.com/profilereview/document/resultcheking/sign/?fixyouincominge_hjdhjsjhsnmw5455jhjhjs4454aha=M21haWxAc2x1cnBtYWlsLm5ldA%3D%3D
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (39553)
Hash 2f34b630ffe30ba2ff2b91e3f3c322a1
b16fd8226bd6bfb08e568f1b1d0a21d60247cefb
9ee2fcff6709e4d0d24b09ca0fc56aade12b4961ed9c43fd13b03248bfb57afe
GET /bootstrap/3.4.1/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 May 2023 02:48:13 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 2021-08-01 19:19:12
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 6923066369371d6997c92d232b1a01f3
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 20518027
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7cc237eb3a16b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2