Report - track.gositego.live/sl?id=6372315a14cb732daa6b203e&pid=930&sub1=pub02b0353b73584be2b6ea6d9660ad0ead&sub2=ecf9f503

Report Overview

Submitted URL
track.gositego.live/sl?id=6372315a14cb732daa6b203e&pid=930&sub1=pub02b0353b73584be2b6ea6d9660ad0ead&sub2=ecf9f503_a251613s106
IP
34.141.179.97
ASN
#396982 GOOGLE-CLOUD-PLATFORM
Submitted
2022-12-30 22:47:55
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	392 B	44 kB	142.250.74.168
track.gositego.live	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	456 B	463 B	34.91.234.242
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.13.173.34
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ciar-kep.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	508 B	651 B	3.208.247.235
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	686 B	1.4 kB	142.250.74.131
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	21 kB	142.250.74.14
t3.blowingwnd.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	577 B	305 B	51.161.115.163
ron.trffclb.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	1.5 kB	51.83.143.92
popcash.net	11104	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	484 B	740 B	104.21.52.38
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	56 kB	34.120.237.76
ps.popcash.net	67692	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	815 B	749 B	54.205.43.136
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	9.7 kB	95.101.11.115
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.4 kB	93.184.220.29
www.affectionwave.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	28 kB	136 kB	178.62.22.16

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-30	medium	ps.popcash.net/go/134600/317194	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-30	medium	trffclb.com	Sinkholed
2022-12-30	medium	trffclb.com	Sinkholed
2022-12-30	medium	trffclb.com	Sinkholed

JavaScript (31)

	URL	Size	First Seen	Last Seen
	www.affectionwave.com/static/assets/f92676e5.js	3.0 kB	2023-03-07	2023-12-23
Pretty URL www.affectionwave.com/static/assets/f92676e5.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2023-12-23 00:26:02 Times Seen92 Hash 5dab23a3e58f4b57ad86360179d88e30 ab1a483e2d09ac4589715e8de197b00154575d32 c621bdb11df82eb81474daab9888ada851af1aca4209a47ce4b6d912ab502513 Loading...

	www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/16.bundle.js	57 kB	2023-03-07	2023-03-17
Pretty URL www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/16.bundle.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2023-03-17 10:26:00 Times Seen1 Hash a3a5336c02b661db70fe20937db072b5 7157b154f7269fab33b341fa1ac6755bf83c987d 06ed98b3f535f036fb67ee2a7a5f589d5872bc43d2809c89112ca63fd95cedea Loading...

	www.affectionwave.com/static/assets/949c3926.js	584 B	2023-03-07	2023-03-17
Pretty URL www.affectionwave.com/static/assets/949c3926.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2023-03-17 10:26:00 Times Seen1 Hash fbc5ada0e975f253782f6af8d1c8f050 5ef47a5621d78f073fa71e6a6e1bed448a110d36 008c6937f2120c63a71854dabc980a4c3a7d89726815c54a39ace94c23f33383 Loading...

	www.affectionwave.com/join#pc151445	3.0 kB	2023-03-09	2023-03-12
Pretty URL www.affectionwave.com/join#pc151445 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 03:35:50 Last Seen2023-03-12 20:08:52 Times Seen1 Hash f40b843009ee08f9228a682869e357df 85307f1d2a29463cc2b19cf638e5d7713fc60cdd 4a229b198fcea02635bc2339e872a005deb866df01e61d914d50f5e31d1f4d45 Loading...

	www.affectionwave.com/js/messages/no/messages_notifications.js	688 B	2023-03-07	2024-01-21
Pretty URL www.affectionwave.com/js/messages/no/messages_notifications.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2024-01-21 16:04:11 Times Seen132 Hash 4c2169634207eac86614315a6012ab83 165fb3926941da550411f81329f671af38943f23 e69701eec98d408f7fe421bb511d2932a1bd9f817699403197b03e56556c467f Loading...

	www.affectionwave.com/static/assets/0cc1b2a8.js	150 kB	2023-03-08	2023-03-14
Pretty URL www.affectionwave.com/static/assets/0cc1b2a8.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:02 Last Seen2023-03-14 13:46:07 Times Seen1 Hash a082eaae25b83219fcc8c0407b642621 4ecb2c321c1b5cfe3479820edeb51a20020fafc5 f5ab5dc11fdba376d19651be5f8702a03a201b98a9ac0b0480d4723c752d9539 Loading...

	ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106	243 B	2023-03-07	2023-04-02
Pretty URL ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106 IP 51.83.143.92 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:48 Last Seen2023-04-02 21:16:29 Times Seen4 Hash c5ece1e9d202b87cb431d3d96e5575b6 f6d83964155d7c1613c5708b3dd802cedd431061 f2bbcb4681e3c185c2ab19b1c09ce623d2d516dc49f32d3773e769ae0db74be4 Loading...

	www.affectionwave.com/static/assets/2409f906.js	9.0 kB	2023-03-07	2023-12-23
Pretty URL www.affectionwave.com/static/assets/2409f906.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2023-12-23 00:26:01 Times Seen99 Hash 36cd18b84b36dfbffef72788926af694 80e5bf00a34e04bed05ca9ef2a0718fc2fc185d7 b77ee85475032c6f7c2b717d2bfcd4bbfded3f1f5ed40462cf55cebe9fde2503 Loading...

	www.affectionwave.com/static/assets/e529ff93.js	135 kB	2023-03-08	2023-03-13
Pretty URL www.affectionwave.com/static/assets/e529ff93.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:02 Last Seen2023-03-13 18:51:11 Times Seen1 Hash bc472dd7012f3dec7c22fe06b73cab63 f575a6991545d67b61df03d71bbee535d7617bd7 052bdd17decf4d44a87739679736e0b729ab369e3a19cec46b8a6e71184c6cd9 Loading...

	www.affectionwave.com/join#pc151445	64 B	2023-03-12	2023-03-12
Pretty URL www.affectionwave.com/join#pc151445 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 11:39:26 Last Seen2023-03-12 11:39:26 Times Seen1 Hash 5a1a66889616eff4bd1a64adff952ddc 16a7cc2614c4dc317e22e3e5b9776e02d47e1245 2ebdaa3525687187b0c68ca85ca582f72041863e35de32c421cb4dd01bb77d0e Loading...

	www.affectionwave.com/static/assets/5b0b6082.js	1.6 kB	2023-03-07	2023-03-17
Pretty URL www.affectionwave.com/static/assets/5b0b6082.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2023-03-17 10:26:00 Times Seen1 Hash c1384ae774af1aa5b1918804736666ee 4a888e4e0c9aab6621ea0942c6cca3883fe760a3 bcfb02897a34de5cbad310e1ce46d61126514a913b240551e81c3e962c610e6d Loading...

	www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/3.bundle.js	49 kB	2023-03-09	2023-03-13
Pretty URL www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/3.bundle.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:27:29 Last Seen2023-03-13 00:44:45 Times Seen1 Hash 3d8b7c3cd3bb93a73fe25e47e45eba03 239334938a05018b100275807272ccec3b98dfc3 6b9187efc3a62d1c95a709c28d082b3ff50de240bd80d9be81e341254d791394 Loading...

	ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106	288 B	2023-03-07	2023-04-02
Pretty URL ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106 IP 51.83.143.92 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:48 Last Seen2023-04-02 21:16:29 Times Seen4 Hash 39b0d0273a1fb864d830216dd7c2e357 dc5db9208682c1f704ac3f47978f9667c1371fb5 6e15d354cc231f333118b1508b21ece489e38854d556fa95d1e0cd222a8ea570 Loading...

	www.affectionwave.com/static/assets/770ad0e4.js	2.2 kB	2023-03-07	2024-01-21
Pretty URL www.affectionwave.com/static/assets/770ad0e4.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2024-01-21 16:04:11 Times Seen134 Hash 32479b43cf053dc5129e94d636b54fd4 39bf0882363d233ae3d0d72541e71bc2dcb0e7aa 2ebc9e9fa9fab8a1799173d6ce6a9c2edafb0103ae39faaea07ddb804a19a079 Loading...

	www.affectionwave.com/js/messages/no/messages_jquery_jab.js	158 B	2023-03-07	2024-01-21
Pretty URL www.affectionwave.com/js/messages/no/messages_jquery_jab.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2024-01-21 16:04:12 Times Seen132 Hash 9e6157f6dbb6b4f0fe617687465c4001 3fe1733b0ea436072be0c63a1df8f77d4e124170 2703b533b53996f704b3feb6fdbb522666ae7d0a43567a1378c044c52a7cdb43 Loading...

	www.affectionwave.com/static/assets/5497bff0.js	3.2 kB	2023-03-08	2023-05-27
Pretty URL www.affectionwave.com/static/assets/5497bff0.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:49:05 Last Seen2023-05-27 08:08:44 Times Seen9 Hash 48637836ae03f134ded3559dcf476f54 4afdabcf9260e46378ffc6fc78848e67adee14f2 de8dfd9ccba11fb22af6b59e164dfb552eadce81ee542ff41bcb39370fe4d5a0 Loading...

	www.affectionwave.com/static/assets/c247a8e1.js	2.4 kB	2023-03-08	2023-05-27
Pretty URL www.affectionwave.com/static/assets/c247a8e1.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:49:05 Last Seen2023-05-27 08:08:44 Times Seen9 Hash 630d9887203712c791823755ff387429 f8501cc0b235a5a70d706b4a636695e41b9926f7 b771efd5c8a7e2ebf349723e0bf3d8cb31e47a7c23529890149760feb2508170 Loading...

	www.affectionwave.com/static/assets/24e5e0b3.js	43 kB	2023-03-07	2024-04-18
Pretty URL www.affectionwave.com/static/assets/24e5e0b3.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2024-04-18 11:26:46 Times Seen433 Hash 21dd946e54c751be923244a3eb5a7cfa 97368b1fdc51b43d344b4a16810503757b7e0aba 5d6fcc49f0d1e0b04ac7ac2561cc91ce6ad72f242f81b3b9bd3ae30cf045b935 Loading...

	www.affectionwave.com/join#pc151445	168 B	2023-03-08	2023-12-23
Pretty URL www.affectionwave.com/join#pc151445 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:49:05 Last Seen2023-12-23 00:26:01 Times Seen17 Hash e7dff9c3541fd221b2edf45fb1e71199 abeb0f8e308305bb20f62d63d2bf3925812a4f1e feedf8b3dab3636924989d4e3eb7c57ea544c85df45ce8e385bd2615c79f0a9a Loading...

	www.affectionwave.com/static/assets/fa6902f0.js	1.0 kB	2023-03-08	2023-12-23
Pretty URL www.affectionwave.com/static/assets/fa6902f0.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:49:05 Last Seen2023-12-23 00:26:02 Times Seen19 Hash 5bc9363bf776ea6ed336de43060519d7 efd82114da88f912c1c8ee986633f0a4390334ca 96c79c5883ab7ea72e427f1713276f1d0881953f01478985b5e1c714375b955c Loading...

	www.affectionwave.com/static/assets/95d6c938.js	786 B	2023-03-07	2023-03-17
Pretty URL www.affectionwave.com/static/assets/95d6c938.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2023-03-17 10:26:00 Times Seen1 Hash 18d54b7b2d18e83c20cf4a5d5047fa37 9d5d0775fc902a19e3321aa66f68bedd787bbe2e 16c54a2c6408a6836c6b6d439566162ac8151076e4dd376bd4baca7317b75df2 Loading...

	www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/6.bundle.js	7.9 kB	2023-03-07	2023-03-13
Pretty URL www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/6.bundle.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:14:17 Last Seen2023-03-13 18:51:11 Times Seen1 Hash 2383d60405c4bf80624062eebf210154 2c545def6ed1183ddcbc524dd174c0583d98928a bfca772fcf5ed8a86b6624b52be54d17f441b00c145e7174443846d6de11ffd9 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-19
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-19 19:03:21 Times Seen1521 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	www.affectionwave.com/static/assets/e13eeaf7.js	8.1 kB	2023-03-08	2023-03-13
Pretty URL www.affectionwave.com/static/assets/e13eeaf7.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:02 Last Seen2023-03-13 10:09:17 Times Seen1 Hash 0e3eb58dfd41337b6b9cd2d7fda0f403 41a8ac0dabe664e0f34a0c99c49a4f421e9183dc e3f1e0cfde493b42065418edba0369192d7120f5dbc46a20bfc2907704438d95 Loading...

	www.affectionwave.com/static/assets/37e7367d.js	891 B	2023-03-08	2023-12-23
Pretty URL www.affectionwave.com/static/assets/37e7367d.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:02 Last Seen2023-12-23 00:26:01 Times Seen28 Hash c95a8a7c62c44cc1a363f4bf08cf5af4 a325bf9fe1e5bc8d9c2931ecea9c1a68ec7a7deb dbf16adc52b5d8e391e54155e5564393d99b5678357bf22307f8caa51929e890 Loading...

	www.affectionwave.com/static/assets/f67027d8.js	199 B	2023-03-08	2023-12-23
Pretty URL www.affectionwave.com/static/assets/f67027d8.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:02 Last Seen2023-12-23 00:26:01 Times Seen28 Hash c06bf590d9203a4038d00c196d98c6fd bfcc51391b939bfd763e51f84030b748ece03133 85b29731c339eb99aaeb116941a30d1615e88b316978668f827fa7fa49896b0e Loading...

	www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/10.bundle.js	6.0 kB	2023-03-08	2023-03-13
Pretty URL www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/10.bundle.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:02 Last Seen2023-03-13 18:51:11 Times Seen1 Hash 44242cfb717825e5c59bb295f1663c38 0d95d266232fc2391aef4bea63d39ae7f0cf0cad 437c7fabac28dbe0667e612aa34849aa2abb6cb04b81c176283d29c88efde2a9 Loading...

	ps.popcash.net/go/134600/317194	386 B	2023-03-12	2023-03-12
Pretty URL ps.popcash.net/go/134600/317194 IP 54.205.43.136 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 11:39:26 Last Seen2023-03-12 11:39:26 Times Seen1 Hash a6075347116f39d586fce64db1d4dd70 c54ba0c96ccc48f4cf70c779ad5c4c71d8672f14 7f62254ad32757daf37bfc95a5160811f8402940ae7fb1fe4fda61a9ca4504a3 Loading...

	www.googletagmanager.com/gtag/js?id=UA-154588724-16	112 kB	2023-03-12	2023-03-12
Pretty URL www.googletagmanager.com/gtag/js?id=UA-154588724-16 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 11:39:26 Last Seen2023-03-12 11:39:26 Times Seen1 Hash 74bb2b5a5f434cca71dc20772a42195c 0af1317cb0a67f14961194ed7dc38277f6d9962b 1049366daea091e368b3619f3fc66f1dd6b3015eb2046ce23dd471ac900f0ee7 Loading...

	www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/1.bundle.js	296 kB	2023-03-07	2023-03-13
Pretty URL www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/1.bundle.js IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:18 Last Seen2023-03-13 18:51:11 Times Seen1 Hash b65fc8d453ae893dce76b65e7b232fb3 9754dc52b6625d49f4e937ef001c6009edede4cb 6e42d5b493e5449eccc89e2e14d1570b46deacdb17437424ba97c65fdb10ef78 Loading...

	www.affectionwave.com/static/js/jquery.autocomplete.js?v=5623	17 kB	2023-03-07	2023-04-01
Pretty URL www.affectionwave.com/static/js/jquery.autocomplete.js?v=5623 IP 178.62.22.16 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:14:56 Last Seen2023-04-01 10:52:49 Times Seen28 Hash 34d7157c7046ce2b86e9707b5cb2d44f b3ed8e516ee9e4c307b61079397e67d95f51e7b9 85a7468e5c98948aeb5e6127be70b9fd06e083ae01c95afd0a92937b9dc2d539 Loading...

HTTP Transactions (90)

URL IP Response Size

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d3098a490e8d38d4150d961624aa7b64
6ecbca59302d0ac5436f1723137d42523f629ea1
158e277ba0220577b59b15e4017b6c27f59295bcd7e5d0e52d027dc7c4309f0b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "158E277BA0220577B59B15E4017B6C27F59295BCD7E5D0E52D027DC7C4309F0B"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9347
Expires: Sat, 31 Dec 2022 01:23:31 GMT
Date: Fri, 30 Dec 2022 22:47:44 GMT
Connection: keep-alive

track.gositego.live/sl?id=6372315a14cb732daa6b203e&pid=930&sub1=pub02b0353b73584be2b6ea6d9660ad0ead&sub2=ecf9f503_a251613s106

34.91.234.242

302 Found

0 B

URL HTTP/1.1
track.gositego.live/sl?id=6372315a14cb732daa6b203e&pid=930&sub1=pub02b0353b73584be2b6ea6d9660ad0ead&sub2=ecf9f503_a251613s106
IP
34.91.234.242:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sl?id=6372315a14cb732daa6b203e&pid=930&sub1=pub02b0353b73584be2b6ea6d9660ad0ead&sub2=ecf9f503_a251613s106 HTTP/1.1
Host: track.gositego.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Server: nginx
Date: Fri, 30 Dec 2022 22:47:44 GMT
Content-Length: 0
Connection: keep-alive
X-Adjust-Use-Original-Forwarded-For: 1
Location: https://t3.blowingwnd.com/p.php?p=c:8pnojh5wwryg9ycmq&d=61b86bb2caff0c3520644fec&pid=CLICKID&s=SUBID&pid=63af6a90ee77b500019c9e54&s=930_ecf9f503_a251613s106
Set-Cookie: afclick=63af6a90ee77b500019c9e54; expires=Sat, 30 Dec 2023 22:47:44 GMT; secure; SameSite=None
Access-Control-Allow-Origin: *

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ab3625faa748b97df39d95f3265ccd14
3930df2e3cb45a1abe47de735002fba535de4f08
0b0a1eb64c4a23598884f08be0a9694c8fcaeffc4b0df790a678104f44fe1c14

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0B0A1EB64C4A23598884F08BE0A9694C8FCAEFFC4B0DF790A678104F44FE1C14"
Last-Modified: Fri, 30 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6034
Expires: Sat, 31 Dec 2022 00:28:18 GMT
Date: Fri, 30 Dec 2022 22:47:44 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
428881081ad357fb55af33ebf9d12c16
29b7be72f76da07db4a03fb1bc57ffe16d520a22
9adff7f91b147b0d93166bc4ece0dd31fd19fd8b2c269a6a596a1e902f49a1fe

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9ADFF7F91B147B0D93166BC4ECE0DD31FD19FD8B2C269A6A596A1E902F49A1FE"
Last-Modified: Wed, 28 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6104
Expires: Sat, 31 Dec 2022 00:29:28 GMT
Date: Fri, 30 Dec 2022 22:47:44 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 30 Dec 2022 22:47:04 GMT
content-type: application/json
age: 40
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: A7n+OwlYf+7s8ebe8mN/3y/LmqHtum1vBB9gApnL+haoGcAY+hAlJ096vg9kb056SeVI2c7Lqljm+s1YORtIeA==
x-amz-request-id: 15TPCWZ0EQMQ47DM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 30 Dec 2022 21:59:21 GMT
age: 2903
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:44 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 30 Dec 2022 22:33:31 GMT
age: 853
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
553f97ab8a2c2f1abe4ee932cf6dab42
9e9433075523efb0cf7d13b6811d237c4b48f099
8a7c26f298fb34ec9d5cbd977a2677118b9360ad3134bb56171c13d4d13da540

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5055
Cache-Control: max-age=128597
Content-Type: application/ocsp-response
Date: Fri, 30 Dec 2022 22:47:45 GMT
Etag: "63aeaa27-1d7"
Expires: Sun, 01 Jan 2023 10:31:02 GMT
Last-Modified: Fri, 30 Dec 2022 09:06:47 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.13.173.34

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.13.173.34:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oA5o3tvgJsqMdzozV3W/CA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: a4dzrevxwNlfDpi/vvlFxEpsDUs=

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0f139dab2b9095e84334bcb1a5a1543e
16a7870181deb406b0522fd359dc1f1dcb13501f
2d67a6f2f30d596c35f495f283c61df5e7b2d2edb894d3d155cea78c01bad1f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2D67A6F2F30D596C35F495F283C61DF5E7B2D2EDB894D3D155CEA78C01BAD1F9"
Last-Modified: Fri, 30 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17980
Expires: Sat, 31 Dec 2022 03:47:25 GMT
Date: Fri, 30 Dec 2022 22:47:45 GMT
Connection: keep-alive

t3.blowingwnd.com/p.php?p=c:8pnojh5wwryg9ycmq&d=61b86bb2caff0c3520644fec&pid=CLICKID&s=SUBID&pid=63af6a90ee77b500019c9e54&s=930_ecf9f503_a251613s106

51.161.115.163

302 Found

0 B

URL HTTP/1.1
t3.blowingwnd.com/p.php?p=c:8pnojh5wwryg9ycmq&d=61b86bb2caff0c3520644fec&pid=CLICKID&s=SUBID&pid=63af6a90ee77b500019c9e54&s=930_ecf9f503_a251613s106
IP
51.161.115.163:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p.php?p=c:8pnojh5wwryg9ycmq&d=61b86bb2caff0c3520644fec&pid=CLICKID&s=SUBID&pid=63af6a90ee77b500019c9e54&s=930_ecf9f503_a251613s106 HTTP/1.1
Host: t3.blowingwnd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 Found
Server: nginx
Date: Fri, 30 Dec 2022 22:47:45 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Round: 1217p3t0dz
Raund: xi
Location: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
97f56fef70f8761d83912c751378bf5c
54850a88cfa10dd89d2c0893cdcaeb15fc7883f6
3ef64d7e2f19f3fed03e9352f85123dbf8a169c10c83e878130b97bdb82984cf

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3EF64D7E2F19F3FED03E9352F85123DBF8A169C10C83E878130B97BDB82984CF"
Last-Modified: Thu, 29 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15807
Expires: Sat, 31 Dec 2022 03:11:12 GMT
Date: Fri, 30 Dec 2022 22:47:45 GMT
Connection: keep-alive

ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106

51.83.143.92

200 OK

508 B

URL HTTP/1.1
ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106
IP
51.83.143.92:0
ASN
#16276 OVH SAS

File type
HTML document text\012- HTML document, ASCII text, with very long lines (558)
Size
508 B (508 bytes)
Hash
f8b7820dfa5847a8169dd2c2cad26d0e
38491dc5669cedf19fd75056e147c4ecf69f0bac
3f27fa7ce97fca9b8d6cdce3e122601cc284faab14e37b7d118bb5cacbf29497

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106 HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 30 Dec 2022 22:47:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=63af6a913acb7a73e9543c2a; expires=Mon, 02-Jan-2023 22:47:45 GMT; Max-Age=259200; path=/; domain=ron.trffclb.com; HttpOnly
Content-Encoding: gzip

ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106&bv=1

51.83.143.92

302 Found

0 B

URL HTTP/1.1
ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106&bv=1
IP
51.83.143.92:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106&bv=1 HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106
Cookie: bt-603611c5b7eaf46891533240=63af6a913acb7a73e9543c2a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 302 Found
Server: nginx
Date: Fri, 30 Dec 2022 22:47:45 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: bt-603611c5b7eaf46891533240=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=ron.trffclb.com; HttpOnly
Round: 119cdtswvl
Raund: 12uf2w0vxv-2v5
Location: https://popcash.net/world/go/134600/317194

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
5ab769c5d6ab8de85d084d89c3eecd6b
00c4d25a8661c8915d408e4eff66b8878a48773a
67f6a9e751465aa6746f52a7410063103895840b7812eac03e979f554a8f5ffc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4028
Cache-Control: max-age=105242
Content-Type: application/ocsp-response
Date: Fri, 30 Dec 2022 22:47:46 GMT
Etag: "63ae52f0-117"
Expires: Sun, 01 Jan 2023 04:01:48 GMT
Last-Modified: Fri, 30 Dec 2022 02:54:40 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279

ron.trffclb.com/favicon.ico

51.83.143.92

200 OK

20 B

URL HTTP/1.1
ron.trffclb.com/favicon.ico
IP
51.83.143.92:0
ASN
#16276 OVH SAS

File type
data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: ron.trffclb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d=603611c5b7eaf46891533240&s=ys_930_ecf9f503_a251613s106
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 30 Dec 2022 22:47:46 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip

popcash.net/world/go/134600/317194

104.21.52.38

301 Moved Permanently

162 B

URL HTTP/2
popcash.net/world/go/134600/317194
IP
104.21.52.38:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /world/go/134600/317194 HTTP/1.1
Host: popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ron.trffclb.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
date: Fri, 30 Dec 2022 22:47:46 GMT
content-type: text/html
content-length: 162
location: http://ps.popcash.net/go/134600/317194
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t5EnOnEOHrzPdBrZdwBYhmnFXqF6hdguWTFfnK%2BmrIYflsTJWDj7hsPrvC9Y9%2Bo3l6myBX2I4c6S%2Fw6uM%2BFGj23mio9G4VdlehXXAFr4AJbNyFeom3yGF9u%2B3epq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 781e51b09a80b4f3-OSL
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2156f5045eb474b5c02d0c6f64f02c4e
5cc884658ca6b9b357478137cb431f694e773bd8
3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9292
Expires: Sat, 31 Dec 2022 01:22:38 GMT
Date: Fri, 30 Dec 2022 22:47:46 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2156f5045eb474b5c02d0c6f64f02c4e
5cc884658ca6b9b357478137cb431f694e773bd8
3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9292
Expires: Sat, 31 Dec 2022 01:22:38 GMT
Date: Fri, 30 Dec 2022 22:47:46 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2156f5045eb474b5c02d0c6f64f02c4e
5cc884658ca6b9b357478137cb431f694e773bd8
3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9292
Expires: Sat, 31 Dec 2022 01:22:38 GMT
Date: Fri, 30 Dec 2022 22:47:46 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2156f5045eb474b5c02d0c6f64f02c4e
5cc884658ca6b9b357478137cb431f694e773bd8
3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9292
Expires: Sat, 31 Dec 2022 01:22:38 GMT
Date: Fri, 30 Dec 2022 22:47:46 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2156f5045eb474b5c02d0c6f64f02c4e
5cc884658ca6b9b357478137cb431f694e773bd8
3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9292
Expires: Sat, 31 Dec 2022 01:22:38 GMT
Date: Fri, 30 Dec 2022 22:47:46 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F39ae26c1-8b46-483b-a677-bcdb29df22f0.jpeg

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F39ae26c1-8b46-483b-a677-bcdb29df22f0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.1 kB (6090 bytes)
Hash
9d24641b2340aa1dcd1e90821ca7aae4
7ef95226664efc320e453f027c51229c958ad46d
3f6a6e8abbfb7057b09cd3aebbebfa3fde792aaf31fc09681de2ff448ab8209b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F39ae26c1-8b46-483b-a677-bcdb29df22f0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6090
x-amzn-requestid: 3d385ba2-3e1c-4d01-801f-379311dd71f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dxTYLFz1oAMFSDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a9ff67-5efe60b33d2c07ba5ce61b13;Sampled=0
x-amzn-remapped-date: Mon, 26 Dec 2022 20:09:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HZYcmd2Qspa3SyAIl029KK6HiXV1ZVDWPiY9q7sgCGEtnYG9oJALVQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Dec 2022 21:54:27 GMT
age: 3199
etag: "7ef95226664efc320e453f027c51229c958ad46d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd15a04f2-dfb7-43aa-a68f-a66b09103321.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10852 bytes)
Hash
7964d022ff14521de4d976a064f85ec2
779f19f138ec6bffc9bc7acccaaf0fb21a472c72
5afd4f020a59512b06fe5ff4e274d5b3a49682a36a0cbe7d2f008e03c524d04f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd15a04f2-dfb7-43aa-a68f-a66b09103321.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10852
x-amzn-requestid: 9857cefa-942d-4dab-b50c-48e5c45ef887
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dy0lKEHAIAMFdaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63aa9aed-7bb36efe1522c84302b926f9;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 07:12:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VvTDPEelKpzQxIXf5Sj6Encj5FttGhm7_S3oDW5FfVgaU4bVmwjFrw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Dec 2022 14:26:59 GMT
age: 30047
etag: "779f19f138ec6bffc9bc7acccaaf0fb21a472c72"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e6c2763-3047-4d8a-adab-82148ff57727.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7660 bytes)
Hash
dc62c3ca8bc387a91c7d4711b5bc2409
7a984b459227e11984faa2539569a90875a58d29
e14a0e22b58fc1f3f392b842573e3abff7b24eb66db6b351046a186acc3b2954

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e6c2763-3047-4d8a-adab-82148ff57727.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7660
x-amzn-requestid: 9338abf2-1191-47da-95ff-0a201604fbc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d-sKCEDhoAMFZ4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63af5a40-433f4ba9780dbc7a485ccbe9;Sampled=0
x-amzn-remapped-date: Fri, 30 Dec 2022 21:38:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yR6kZT7use-SXKKXM3rRmo56EFDJN9VUcRSlzb0cG7nn_pblH0uL6g==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Dec 2022 21:47:12 GMT
etag: "7a984b459227e11984faa2539569a90875a58d29"
content-type: image/jpeg
age: 3634
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6e3dd3e-163b-404d-a10f-230f060e85c7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8187 bytes)
Hash
ba629c9334582ac5e37a14fceb073b43
54adf501819f973ada947a82bf1d28c7de76ef72
9fd8cbe35dc6051926698405e2d9eac24a903148ac425d6cf314eb77b14fbc76

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6e3dd3e-163b-404d-a10f-230f060e85c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8187
x-amzn-requestid: aaf90c51-50ac-47ca-ae8f-f4afd190b0d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d5fsAEGUoAMF2Bw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ad464c-3f2838fd1d7b16e10f1beb98;Sampled=0
x-amzn-remapped-date: Thu, 29 Dec 2022 07:48:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VEipOlCxzx5CSXab3Xcl6vk1pk8qF23HmAbDV34A7uWMIcmFYW0W1g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Dec 2022 21:47:21 GMT
age: 3625
etag: "54adf501819f973ada947a82bf1d28c7de76ef72"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5624258d-94f6-4e81-8a25-b463441eda5b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7588 bytes)
Hash
b0315eb77a560b4d754ab8ee615df800
802bf93d607d1bcc39ba76e8abdb8e1b67910b8b
641cdc2e26d529035fd28dd3c5ac19a56a0a0d0a9d38cc2b368841ab04a4bd68

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5624258d-94f6-4e81-8a25-b463441eda5b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7588
x-amzn-requestid: ab898206-6aa2-497b-bc76-3d42c81f12d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d2Gp1GuxIAMFWkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63abeb0b-3cd68a563297fdd464d979b4;Sampled=0
x-amzn-remapped-date: Wed, 28 Dec 2022 07:06:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dKNyfNUT2B4S82zoZUKL--2RKy_5DHUMwDHgXOEisa7J5R15CNcduQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Dec 2022 12:27:33 GMT
age: 37213
etag: "802bf93d607d1bcc39ba76e8abdb8e1b67910b8b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff12dbe60-fb32-429a-a7e0-6948ca6afe86.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9231 bytes)
Hash
69a5d8a625e43be4ddf016561d484cfd
e0b81a0b39e80d922d121ed6d6968da849fc21a6
46932455a3da8043f6185a1595c2ea15902aa593d391b1b14cc46d30f69dbc01

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff12dbe60-fb32-429a-a7e0-6948ca6afe86.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9231
x-amzn-requestid: 2dcf90fd-c5a0-4bb5-9d27-340b56f20d45
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dvh8SGKdIAMFvfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a949e8-4cbb236f6bb647844d1537f7;Sampled=0
x-amzn-remapped-date: Mon, 26 Dec 2022 07:14:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: voMNdPtZhlhaXEYuNHALSIX7zslf6pquVdJA8-il3-_brev_MPq5uQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Dec 2022 20:38:22 GMT
age: 7764
etag: "e0b81a0b39e80d922d121ed6d6968da849fc21a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ps.popcash.net/go/134600/317194

54.205.43.136

200 OK

272 B

URL HTTP/1.1
ps.popcash.net/go/134600/317194
IP
54.205.43.136:0
ASN
#14618 AMAZON-AES

File type
HTML document, ASCII text
Size
272 B (272 bytes)
Hash
6bb2d209a449a684d5deab8170b8bc0c
2aa57b18f5b711614f85686d11983e92b6959b53
3e4b322c979ed61deb93fc052459f571d8374fe8db38804214ff1b48cd618fa0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /go/134600/317194 HTTP/1.1
Host: ps.popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Content-Encoding: gzip
Content-Type: text/html
Date: Fri, 30 Dec 2022 22:47:46 GMT
Server: nginx
Vary: Accept-Encoding
Content-Length: 272
Connection: keep-alive

ps.popcash.net/ad/ad?p=134600&w=317194&t=f8958c07501dc893&r=&vw=1280&vh=0

54.205.43.136

303 See Other

0 B

URL HTTP/1.1
ps.popcash.net/ad/ad?p=134600&w=317194&t=f8958c07501dc893&r=&vw=1280&vh=0
IP
54.205.43.136:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ad/ad?p=134600&w=317194&t=f8958c07501dc893&r=&vw=1280&vh=0 HTTP/1.1
Host: ps.popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ps.popcash.net/go/134600/317194
Upgrade-Insecure-Requests: 1

HTTP/1.1 303 See Other
Date: Fri, 30 Dec 2022 22:47:46 GMT
Location: http://ciar-kep.com/zcvisitor/fad18ac3-8893-11ed-9abf-129cc52713bd/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=206ac2c0-7581-11ea-b16e-12e5dcaa70ed#pc151445
Server: nginx
Content-Length: 0
Connection: keep-alive

ciar-kep.com/zcvisitor/fad18ac3-8893-11ed-9abf-129cc52713bd/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=206ac2c0-7581-11ea-b16e-12e5dcaa70ed

3.208.247.235

302

0 B

URL HTTP/1.1
ciar-kep.com/zcvisitor/fad18ac3-8893-11ed-9abf-129cc52713bd/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=206ac2c0-7581-11ea-b16e-12e5dcaa70ed
IP
3.208.247.235:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /zcvisitor/fad18ac3-8893-11ed-9abf-129cc52713bd/7fcf9220-c93c-11e7-9820-0e06c6fba698?campaignid=206ac2c0-7581-11ea-b16e-12e5dcaa70ed HTTP/1.1
Host: ciar-kep.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ps.popcash.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 
Date: Fri, 30 Dec 2022 22:47:47 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Location: https://www.affectionwave.com/
Server: hbzJsbSY

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0c01d65bbaefb679b0480b365c27ea53
2b5d0bf0d9c98ce9565138f1fd76cf966d772533
f1bf4528ffb1e2dcbdf715681a6115087858bfebfd95345bf02f25bf72a39d7e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F1BF4528FFB1E2DCBDF715681A6115087858BFEBFD95345BF02F25BF72A39D7E"
Last-Modified: Wed, 28 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12722
Expires: Sat, 31 Dec 2022 02:19:49 GMT
Date: Fri, 30 Dec 2022 22:47:47 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2b5593d2ab79d3712ed8b96dd22b5465
653a41ce6edf4a7bba2ddf88cd525291fcb2ca0b
34fc88630bd744b6e764b96eecfbddb1bb9166eec8de596081e3e97839631dea

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Dec 2022 22:47:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-154588724-16

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-154588724-16
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43565 bytes)
Hash
c4f662d5018f1c7600c1315746818c48
e3bbb9d0b8da97e166b99170092dd1cc994c3b57
cc8a6d119be52b67463fdc1a2525a097268fc6a935c23e5e6ebf3e30587dd17e

HTTP Headers

GET /gtag/js?id=UA-154588724-16 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 30 Dec 2022 22:47:48 GMT
expires: Fri, 30 Dec 2022 22:47:48 GMT
cache-control: private, max-age=900
last-modified: Fri, 30 Dec 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43565
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2b5593d2ab79d3712ed8b96dd22b5465
653a41ce6edf4a7bba2ddf88cd525291fcb2ca0b
34fc88630bd744b6e764b96eecfbddb1bb9166eec8de596081e3e97839631dea

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 30 Dec 2022 22:47:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-medium-webfont.woff2

178.62.22.16

200 OK

20 kB

URL HTTP/2
www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-medium-webfont.woff2
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type
Web Open Font Format (Version 2), TrueType, length 20524, version 1.0\012- data
Size
20 kB (20524 bytes)
Hash
0a082fc9f0c23f322b0e39f9084ba52b
dec485cd41c9508dbea59bbeb5ddd5515361e190
44e9527b0677c5db49883b18b6812b45e079279f2624786fc05067188bf7a307

HTTP Headers

GET /static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-medium-webfont.woff2 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.affectionwave.com/static/assets/4049ba9b.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: application/octet-stream
content-length: 20524
last-modified: Mon, 18 Dec 2017 07:34:44 GMT
etag: "5a376f94-502c"
access-control-allow-origin: *
accept-ranges: bytes
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-regular-webfont.woff2

178.62.22.16

200 OK

21 kB

URL HTTP/2
www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-regular-webfont.woff2
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type
Web Open Font Format (Version 2), TrueType, length 21172, version 1.0\012- data
Size
21 kB (21172 bytes)
Hash
29130fff013f66fc83a6e990677dbe91
9890dbd4e221dc771c74bf4ba857a3d23df1cc11
748c9082cb339ec05b60a43e84d5726d6cda18b0588ccf8399b9ec859d81fff2

HTTP Headers

GET /static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/roboto-regular-webfont.woff2 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.affectionwave.com/static/assets/4049ba9b.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: application/octet-stream
content-length: 21172
last-modified: Mon, 18 Dec 2017 07:34:44 GMT
etag: "5a376f94-52b4"
access-control-allow-origin: *
accept-ranges: bytes
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/icons/icomoon.ttf

178.62.22.16

200 OK

26 kB

URL HTTP/2
www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/icons/icomoon.ttf
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Size
26 kB (26036 bytes)
Hash
2b965fc96fe08e5c85e2384902216328
e01abf30a2ec4f952c98fc8578f1a35cb47e6f9e
930c21cfd99f37e3312fde34192803566e6172b49209712c4ada47c688905a3d

HTTP Headers

GET /static/_wl_traditional/_wl_skin_compliance_wl_09/fonts/icons/icomoon.ttf HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/assets/203b1fe7.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: application/octet-stream
content-length: 26036
last-modified: Mon, 12 Sep 2022 06:39:53 GMT
etag: "631ed439-65b4"
access-control-allow-origin: *
accept-ranges: bytes
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.14

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.14:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 30 Dec 2022 21:34:02 GMT
expires: Fri, 30 Dec 2022 23:34:02 GMT
cache-control: public, max-age=7200
age: 4427
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.affectionwave.com/static/_dating/_default/i/payment_logos/cup.svg

178.62.22.16

200 OK

48 kB

URL HTTP/2
www.affectionwave.com/static/_dating/_default/i/payment_logos/cup.svg
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (11124)
Size
48 kB (47715 bytes)
Hash
d848719590f1b7d3e5849e149630b07c
5743bce92e283c41fc51cb84a221837b92640fb4
8008f8e1d445c198f9d9580baea9484c1fe4bd5ccd68cb35d9dc5a461dffecc6

HTTP Headers

GET /static/_dating/_default/i/payment_logos/cup.svg HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/_dating/_default/s/payment-logos.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 07:36:01 GMT
etag: W/"62cd2461-3031"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/resources/get/4/4b1cf29a1d9833888ce9a3fa87ebff68

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/resources/get/4/4b1cf29a1d9833888ce9a3fa87ebff68
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /resources/get/4/4b1cf29a1d9833888ce9a3fa87ebff68 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/static/_dating/_default/i/payment_logos/mastercard.svg

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/_dating/_default/i/payment_logos/mastercard.svg
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/_dating/_default/i/payment_logos/mastercard.svg HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/_dating/_default/s/payment-logos.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 07:36:01 GMT
etag: W/"62cd2461-720"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/10.bundle.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/10.bundle.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/_wl_traditional/_wl_skin_compliance_/js/10.bundle.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: application/javascript
last-modified: Fri, 09 Dec 2022 16:54:44 GMT
etag: W/"63936854-1768"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/f56f0d59.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/f56f0d59.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/f56f0d59.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-f80"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/63f0b6bf.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/63f0b6bf.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/63f0b6bf.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-ae0"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/f608025f.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/f608025f.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/f608025f.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-8539"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/e529ff93.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/e529ff93.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/e529ff93.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Fri, 09 Dec 2022 16:54:47 GMT
etag: W/"63936857-20f30"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/be5b1fa8.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/be5b1fa8.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/be5b1fa8.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 14:02:14 GMT
etag: W/"63500366-10df"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/resources/get/4/c1321eb5f027095b5c50f520a56fed23

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/resources/get/4/c1321eb5f027095b5c50f520a56fed23
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /resources/get/4/c1321eb5f027095b5c50f520a56fed23 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/resources/get/4/8d7168c75f888f4e8f6d2cfebaa7029f

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/resources/get/4/8d7168c75f888f4e8f6d2cfebaa7029f
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /resources/get/4/8d7168c75f888f4e8f6d2cfebaa7029f HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/1.bundle.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/1.bundle.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/_wl_traditional/_wl_skin_compliance_/js/1.bundle.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: application/javascript
last-modified: Fri, 09 Dec 2022 16:54:44 GMT
etag: W/"63936854-485da"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/c247a8e1.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/c247a8e1.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/c247a8e1.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:47 GMT
etag: W/"62f10a2b-947"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/dd6a3ac9.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/dd6a3ac9.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/dd6a3ac9.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 08:42:53 GMT
etag: W/"633e950d-bfe0"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/_dating/_default/i/payment_logos/visa.svg

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/_dating/_default/i/payment_logos/visa.svg
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/_dating/_default/i/payment_logos/visa.svg HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/_dating/_default/s/payment-logos.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: image/svg+xml
last-modified: Mon, 14 Feb 2022 13:31:55 GMT
etag: W/"620a59cb-435"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/1f197a76.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/1f197a76.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/1f197a76.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Tue, 06 Dec 2022 08:52:51 GMT
etag: W/"638f02e3-5d1"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/203b1fe7.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/203b1fe7.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/203b1fe7.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Tue, 06 Dec 2022 08:52:50 GMT
etag: W/"638f02e2-141b"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/e13eeaf7.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/e13eeaf7.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/e13eeaf7.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Thu, 17 Nov 2022 09:23:46 GMT
etag: W/"6375fda2-1fc6"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/js/jquery.autocomplete.js?v=5623

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/js/jquery.autocomplete.js?v=5623
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/js/jquery.autocomplete.js?v=5623 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Thu, 15 Sep 2022 08:55:25 GMT
etag: W/"6322e87d-43b2"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/js/messages/no/messages_jquery_jab.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/js/messages/no/messages_jquery_jab.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/messages/no/messages_jquery_jab.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/javascript;charset=UTF-8
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=2592000, private
last-modified: Thu, 01 Jan 1970 01:33:43 GMT
expires: Sun, 29 Jan 2023 22:47:48 GMT
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/_dating/_default/i/payment_logos/diners.svg

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/_dating/_default/i/payment_logos/diners.svg
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/_dating/_default/i/payment_logos/diners.svg HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/_dating/_default/s/payment-logos.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 07:36:01 GMT
etag: W/"62cd2461-21e3"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/3.bundle.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/_wl_traditional/_wl_skin_compliance_/js/3.bundle.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/_wl_traditional/_wl_skin_compliance_/js/3.bundle.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: application/javascript
last-modified: Fri, 09 Dec 2022 16:54:44 GMT
etag: W/"63936854-be5f"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/site/captcha

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/site/captcha
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /site/captcha HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: text/html; charset=UTF-8
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/fbf73bde.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/fbf73bde.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/fbf73bde.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-1ba5"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/0cc1b2a8.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/0cc1b2a8.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/0cc1b2a8.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Fri, 30 Dec 2022 09:13:27 GMT
etag: W/"63aeabb7-24bd9"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/5497bff0.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/5497bff0.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/5497bff0.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:47 GMT
etag: W/"62f10a2b-cb1"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/37e7367d.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/37e7367d.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/37e7367d.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-37b"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/770ad0e4.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/770ad0e4.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/770ad0e4.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-8b6"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/js/messages/no/messages_notifications.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/js/messages/no/messages_notifications.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/messages/no/messages_notifications.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/javascript;charset=UTF-8
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=2592000, private
last-modified: Thu, 01 Jan 1970 01:33:43 GMT
expires: Sun, 29 Jan 2023 22:47:48 GMT
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/resources/get/4/1a1def99fcc6d5942a5dd7639de1533d

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/resources/get/4/1a1def99fcc6d5942a5dd7639de1533d
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /resources/get/4/1a1def99fcc6d5942a5dd7639de1533d HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/resources/logo

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/resources/logo
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /resources/logo HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: image/png
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/4049ba9b.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/4049ba9b.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/4049ba9b.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Tue, 06 Dec 2022 08:52:50 GMT
etag: W/"638f02e2-cb28"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/_dating/_default/s/payment-logos.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/_dating/_default/s/payment-logos.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/_dating/_default/s/payment-logos.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Thu, 14 Jul 2022 10:16:05 GMT
etag: W/"62cfece5-c79"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/949c3926.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/949c3926.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/949c3926.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-248"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/9ca75e15.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/9ca75e15.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/9ca75e15.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-549"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/_dating/_default/i/payment_logos/american_express.svg

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/_dating/_default/i/payment_logos/american_express.svg
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/_dating/_default/i/payment_logos/american_express.svg HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/_dating/_default/s/payment-logos.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 07:36:01 GMT
etag: W/"62cd2461-1135"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/_dating/_default/i/payment_logos/discover.svg

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/_dating/_default/i/payment_logos/discover.svg
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/_dating/_default/i/payment_logos/discover.svg HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.affectionwave.com/static/_dating/_default/s/payment-logos.css
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:49 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Jul 2022 07:36:01 GMT
etag: W/"62cd2461-1394"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/211b41b8.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/211b41b8.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/211b41b8.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-892"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/24e5e0b3.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/24e5e0b3.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/24e5e0b3.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 14:02:14 GMT
etag: W/"63500366-a76d"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/resources/get/4/cc9166cd2f801d8aeac627092b2c813f

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/resources/get/4/cc9166cd2f801d8aeac627092b2c813f
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /resources/get/4/cc9166cd2f801d8aeac627092b2c813f HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/f67027d8.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/f67027d8.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/f67027d8.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-c7"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/root.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/root.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /root.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css;charset=UTF-8
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/1d9702dc.css

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/1d9702dc.css
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/1d9702dc.css HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 14:02:14 GMT
etag: W/"63500366-581"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/5b0b6082.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/5b0b6082.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/5b0b6082.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-666"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/95d6c938.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/95d6c938.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/95d6c938.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-312"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/fa6902f0.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/fa6902f0.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/fa6902f0.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:47 GMT
etag: W/"62f10a2b-402"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/

178.62.22.16

302 Found

0 B

URL HTTP/2
www.affectionwave.com/
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ps.popcash.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Fri, 30 Dec 2022 22:47:47 GMT
content-type: text/html; charset=UTF-8
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
set-cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; path=/; secure; HttpOnly
userReferrerUrl=ps.popcash.net; expires=Sun, 01-Jan-2023 22:47:47 GMT; Max-Age=172800; path=/; secure; HttpOnly
cache-control: max-age=0, private, must-revalidate, no-cache, private
location: /join
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/f92676e5.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/f92676e5.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/f92676e5.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Fri, 30 Dec 2022 09:13:27 GMT
etag: W/"63aeabb7-baf"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/static/assets/2409f906.js

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/static/assets/2409f906.js
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/assets/2409f906.js HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 13:05:53 GMT
etag: W/"62f10a31-2325"
access-control-allow-origin: *
expires: Sun, 29 Jan 2023 22:47:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
content-encoding: br
X-Firefox-Spdy: h2

www.affectionwave.com/resources/get/4/39100eb00726207674808593babbf9e2

178.62.22.16

200 OK

0 B

URL HTTP/2
www.affectionwave.com/resources/get/4/39100eb00726207674808593babbf9e2
IP
178.62.22.16:0
ASN
#14061 DIGITALOCEAN-ASN

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /resources/get/4/39100eb00726207674808593babbf9e2 HTTP/1.1
Host: www.affectionwave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.affectionwave.com/join
Connection: keep-alive
Cookie: PHPSESSID=cgneshodrb5ta08j70lrdviq3j2gm727q32f1e8t; userReferrerUrl=ps.popcash.net
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 30 Dec 2022 22:47:48 GMT
content-type: image/jpeg
content-security-policy: frame-ancestors 'self'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=86400, private
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (31)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations