| www.rosequake.com/ | 188.114.97.1 | | 167 B |
IP188.114.97.1:0
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Thu, 18 Apr 2024 06:24:21 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 18 Apr 2024 07:24:21 GMT
Location: https://www.rosequake.com/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7K4IBOrgc4M9jlh4dfC9fLEd9VcOF0zq1GrEfm7%2F6sNjKXdKCIkSDwETd%2Fwyunrmrf2FMkAaNNvwalTYJrk6AMcvTjHxkCxaQySzo4mb8m3eg59aQbaUkm09PqbArNUEZseYUg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 876292471ca90b45-OSL
alt-svc: h2=":443"; ma=60
|
|
| rosequake.com//Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html | 172.67.157.116 | 301 Moved Permanently | 167 B |
URL User Request GET HTTP/2rosequake.com//Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html IP172.67.157.116:443
CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET //Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html HTTP/1.1
Host: rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 18 Apr 2024 06:24:25 GMT
content-type: text/html
content-length: 167
location: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
cache-control: max-age=3600
expires: Thu, 18 Apr 2024 07:24:25 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lpFSCu5UAdvhGMee3yCVrnOuQXkdbE3a5FWUcwe0E%2BJkhxWzeSdVfeWH0V3KrZRD7mJpBHbU38gBvAp%2BaKJmtrjvuYNNKzFrZwd8zTM7rL8A7bdGa05YCJqri426hsFj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87629260ae7d569f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/images/banner/Lubes.jpg | 188.114.96.1 | 200 OK | 26 kB |
URL GET HTTP/3www.rosequake.com/images/banner/Lubes.jpg IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=370, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=250], progressive, precision 8, 250x370, components 3 Hasha9b60d0957a594aef6c5308ee1a7e7a3 7e8cf1b57078bd4a4ea67f9d6c9d6e6e71eab8c7 27850d7149f91cb4d4ddc03826a99af23ad2d111023d3cf6627f4c652a035d63
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/banner/Lubes.jpg HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/jpeg
content-length: 26501
last-modified: Wed, 06 Dec 2023 18:28:52 GMT
etag: "22fd64107228da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5800
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=erw7sGnNHvDTUo9bqlPRYO6tvK4pJIyQ9RStML4KlLbpsjB22GNVyEXIHohZ75rIFEgiI5hKtJMEEO3JmgCIspyD%2FLMR4JMcf8y%2FgVvXmt2CkxHnN6N%2FzrPWmT0powHX7z4fZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876292789d5e56ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdnjs.cloudflare.com/ajax/libs/Swiper/11.0.5/swiper-bundle.min.js | 104.17.24.14 | 200 OK | 36 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/Swiper/11.0.5/swiper-bundle.min.js IP104.17.24.14:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65278) Hash1aba3b60641d8dc579dca329a28d74d8 1a54fa817a49108dfdf2e75ce2ae507f007ac2bd 6942f0873b6a7108e18a983b4192ad469011a8131317f88161d6f0917058da22
GET /ajax/libs/Swiper/11.0.5/swiper-bundle.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 35885
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "655ecea0-8c2d"
last-modified: Thu, 23 Nov 2023 04:01:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 131798
expires: Tue, 08 Apr 2025 06:24:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Msoc%2BTJq6qy0GQvDdsMkOKPMcLVmtXlCa1YvLHJclk3UjJYAeRuj2MyBRuBHXYP5sT3%2F6gZ%2B8nNcK%2FE4yDOAfV0gnixRTxg9x7mdPRY7i6LO168GbEBNNcNkT7nbm3QoTyBoPU3m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876292788de556be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/images/RoseQuake.png | 188.114.96.1 | 200 OK | 114 kB |
URL GET HTTP/3www.rosequake.com/images/RoseQuake.png IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typePNG image data, 540 x 410, 8-bit/color RGBA, non-interlaced Size114 kB (113985 bytes) Hashb997cd9eaa87e5814d06814c9b8dff7a 20769ae44e304fde943d84b3cbc8c6137630a6ec 75a534c6e3aacab57d49bc39fe6abc0f96b6e71461da7c9337e7d9b49967d916
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/RoseQuake.png HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/png
content-length: 113985
last-modified: Sat, 07 Oct 2023 23:46:41 GMT
etag: "b2b35f8578f9d91:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5801
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2DB9HnE6jwYQLplDD9fGcgMeILz%2FTtoEGgWe39m8jsqa3cw5hId3QUfvrnzQBSJL1oWR1bdhwhTmSpMGinkHNMgC%2BXbyNLSM248lyG72PqnYTvpMZ5Fu9HMUpuJLa1SN3TOmQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876292789d5656ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/images/banner/ForHim.jpg | 188.114.96.1 | 200 OK | 16 kB |
URL GET HTTP/3www.rosequake.com/images/banner/ForHim.jpg IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJPEG image data, progressive, precision 8, 250x370, components 3 Hash0bcb0688e586ccd6e854a96e1a6d3735 fab6cdd1c8a300cca54be5949e81be0f7a8d1240 ec731030ef100326fa916f2d77806ff11285cd9568ae227c160b207709ff5f4e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/banner/ForHim.jpg HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/jpeg
content-length: 16225
last-modified: Wed, 06 Dec 2023 18:13:34 GMT
etag: "b6d238ed6f28da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5801
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZRyx3nqtw4DSsdJa%2FRxH%2B65x9jMCDbfcgHSyRktQRE2x0tlo9MWVhimPD8rdLigwTvnvlFcf7Gl%2B96BF1Jzb%2F8uD9wlDU8o2oiUHfMHb7gxOnUBGw0eXrB56k9x76Xda2V2RCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876292789d5756ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/images/banner/ForHer.jpg | 188.114.96.1 | 200 OK | 16 kB |
URL GET HTTP/3www.rosequake.com/images/banner/ForHer.jpg IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJPEG image data, progressive, precision 8, 250x370, components 3 Hash8781648f65a20f75389e7d4087a1f125 52fa3cd0a42e4817ca66784c6e221da3f812d862 fc7e4d8c9b6226b2c4036191a0e0b154903adfe269086ea2e958d303eb33768e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/banner/ForHer.jpg HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/jpeg
content-length: 15810
last-modified: Wed, 06 Dec 2023 18:14:06 GMT
etag: "8ce12807028da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5800
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r%2BEVqRsGg%2FM1Aq4LEFXN4o8v4aO7R%2F%2B5%2FcPt%2B7KzimraDJGS8%2FgCjKiXqKsOw8RdYstYM1AiMz5BsNdOjNEUh6U%2Ftr77BQ33l9wPYKnp7YQP89g9oi9Um5gMI4vg0xLky4Ta5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876292789d5956ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/images/banner/Couple.jpg | 188.114.96.1 | 200 OK | 16 kB |
URL GET HTTP/3www.rosequake.com/images/banner/Couple.jpg IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJPEG image data, progressive, precision 8, 250x370, components 3 Hashec033fa43120a42803c965454f25ddea 6d4779f8b929123af1a8984271093b3c3e43a091 f4de491f8f691d2554bbbfb1aa7fd479aa50fdcb133486889cfe4776f57e54df
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/banner/Couple.jpg HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/jpeg
content-length: 16499
last-modified: Wed, 06 Dec 2023 18:14:19 GMT
etag: "6e7f1387028da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5800
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ouIDFNJYBeQaa9ejVv9F21h1Xv36MPXJV1yJTLsDK9BMji1bfEdx9Fqg0hJa%2BU%2BeteSuEjcPKe1n%2FqDNBtIyr%2FVEC81hPc4EjiwHjkUeofg98K7EQiJFncQp7od%2FjdhtdBA6wQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876292789d5c56ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/Images/blank.gif | 188.114.96.1 | 200 OK | 123 B |
URL GET HTTP/3www.rosequake.com/Images/blank.gif IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeGIF image data, version 89a, 75 x 75 Hashaeaad81449b30b1cfa2844c54ef496ee 2d735dd13b9faa084b4ac2778e7f0959e664dca3 52d0dbe6ba1d11ebc403a5ee2d98b707b61f48516ee2c2cf6187ace9191ae1a8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Images/blank.gif HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/gif
content-length: 123
last-modified: Wed, 13 May 2015 02:06:04 GMT
etag: "d162215e218dd01:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2014
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6b44%2Fx%2BTe7Glb5EeuMJh3ftGUdlUDbUeqAIAco6knz1ad1Jd8CC1uKJbnI7CkwiuSwsXvK7%2FtSWWbsGfZKaPjPtgJIKBErMslKcn4zLdUtSVGQRy2RaLA0Xpt4sdpzaKoOdlig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876292789d6156ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdnjs.cloudflare.com/ajax/libs/Swiper/11.0.5/swiper-bundle.css | 104.17.24.14 | 200 OK | 4.6 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/Swiper/11.0.5/swiper-bundle.css IP104.17.24.14:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (2240) Hashdedb655afa22e72add3bc9f46bdbed8c da69cab8478bbc98bd3f8cd3a75b8ca99ea2ff31 587a037b9ee024fa8e83e1a90c05cc0dcc4359c47a93173ea657f25d0480129c
GET /ajax/libs/Swiper/11.0.5/swiper-bundle.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css; charset=utf-8
content-length: 4646
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "655ecea0-1226"
last-modified: Thu, 23 Nov 2023 04:01:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2946354
expires: Tue, 08 Apr 2025 06:24:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qfgnwGBa5rrVQkTvPH%2F2TGUXspU%2BhultARFCGYl0cK6NSxOxMkmeOc8eWiJKTrXvNHQtQkyY1C%2B349amn4lGFn69rBNI2f3SynbrDlyob1EEtkDuCb4MpDDvPrylkfa3g8TTlq7z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876292791e8156be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/Images/loading4.gif | 188.114.96.1 | 200 OK | 6.6 kB |
URL GET HTTP/3www.rosequake.com/Images/loading4.gif IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeGIF image data, version 89a, 60 x 60 Hashee3e67267342c680d45aa26e7a766e0a 456c0413f2d2d7b41218ecc02207c05c31ab4737 ddaf92bbcc4785ceb3b77454898fae6603a82a75ff1b646dd8c387e9bbeb9922
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Images/loading4.gif HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/gif
content-length: 6581
last-modified: Wed, 13 May 2015 02:06:07 GMT
etag: "7c219c5f218dd01:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2014
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TzLtpdQ6EEOgLCJdE7AsmPEY0M4PdPnrFTiawuY6v8DrJ%2BPFFlqslOQ5jSGmvItWt%2FKgEyzaWu39qfB9NqFw8nSZ2m1LZrugFc%2F8wnBj5patIaOaz45vZO332Bzkh2h026pOQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876292791e1456ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/images/loading4.gif | 188.114.96.1 | 200 OK | 6.6 kB |
URL GET HTTP/3www.rosequake.com/images/loading4.gif IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeGIF image data, version 89a, 60 x 60 Hashee3e67267342c680d45aa26e7a766e0a 456c0413f2d2d7b41218ecc02207c05c31ab4737 ddaf92bbcc4785ceb3b77454898fae6603a82a75ff1b646dd8c387e9bbeb9922
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/loading4.gif HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/gif
content-length: 6581
last-modified: Wed, 13 May 2015 02:06:07 GMT
etag: "7c219c5f218dd01:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5800
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OeF52yznKb1yHaFobzHyuukqr1EUtMfYGDWM%2FKLCGEhtrUCIlgT1%2FrxGhvR05uWjRGjOqlEdQ4aW9w05Uyoc7hZsVOh92AuxSVQDWCO5VGQAxF8zovwRnS%2BdFFfkf1e2mNV8Yg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876292791e1c56ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| global.akating.com/static/images/country/US.png | 104.21.11.35 | 200 OK | 1.7 kB |
URL GET HTTP/2global.akating.com/static/images/country/US.png IP104.21.11.35:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectakating.com FingerprintD4:E7:F9:72:45:4E:79:7D:33:B1:39:44:15:02:59:D9:B0:38:BE:48 ValidityTue, 20 Feb 2024 09:48:29 GMT - Mon, 20 May 2024 09:48:28 GMT
File typePNG image data, 120 x 80, 8-bit/color RGBA, non-interlaced Hash8d4c6abfb5a2710d832c9ccefe0aee40 fdb1f9fe27953b701fbd8c37b201c99e33910d77 4a22c5ebceef499edbb389f78c5d81fd3b1fcb43528adf5fb00fc40e2d9205bc
GET /static/images/country/US.png HTTP/1.1
Host: global.akating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/png
content-length: 1662
last-modified: Sat, 16 May 2020 04:28:09 GMT
etag: "2afc4673a2bd61:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 2014
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7DUufYLDs3oE0BUL6ir9kB9s3vOPlbXc51g8vV94d7odZoU%2FJwm3FCVWw%2BYoLWlg0X9qTFS9peGw8rd%2BN6wLh39SZtPGES84oEiyq1FQW9MJIFB5kIfiOu2l2eox5LMKhlx5%2FeU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876292794c0eb4ee-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=AW-11401501348 | 142.250.74.168 | 200 OK | 88 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=AW-11401501348 IP142.250.74.168:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash73775e8db56e42fa0d45fc771d233c6a 06a92ae8cf6e7bcbd8e68a0e7a9671a60927e3aa a0d01fd692e7fb3ef66c4210190e602ce685c4823a2683be80f38b16395747c7
GET /gtag/js?id=AW-11401501348 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 18 Apr 2024 06:24:29 GMT
expires: Thu, 18 Apr 2024 06:24:29 GMT
cache-control: private, max-age=900
last-modified: Thu, 18 Apr 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 87792
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/45a2c95a69cd27a85ef342bf2daa3c00_100x.gif | 104.19.234.103 | 200 OK | 24 kB |
URL GET HTTP/2img.staticdj.com/45a2c95a69cd27a85ef342bf2daa3c00_100x.gif IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hashb015fe5843ec4ee5498184ac437d459f 0c4639d22722561f1d9497c59dc566045a8cdb11 a4a6cde65a86e5f12012f31a1e64b958244fc90395346fd43701a4385cfba28a
GET /45a2c95a69cd27a85ef342bf2daa3c00_100x.gif HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 24518
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=gif, origSize=26770
content-disposition: inline; filename="45a2c95a69cd27a85ef342bf2daa3c00_100x.webp"
request-id: 162a42e8-c479-4617-a490-bf2e2c869789
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Wed, 10 Apr 2024 12:51:34 GMT
cf-cache-status: HIT
age: 585103
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lwOgwahonAtVAmiO10vio98Prsf5RiEZJKDEy52lel2GA1G%2FF5Pll7rfxARcw4zoR%2BruwGFuyH5GWfRA%2FmMg7NK7Cx9rx94IuVnsBNqPm2jD9Gw8cWO%2BJQutZ5RvRkO%2Fz2c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=16.000032
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279a8d256c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-B1QS3P765Z | 142.250.74.168 | 200 OK | 100 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-B1QS3P765Z IP142.250.74.168:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size100 kB (100096 bytes) Hash94dbd990f109a923f9c1ffc226fd825b a79f4c77dda73a6260dc4c4c5af7d49cf7cd9d28 d75501be2cc8673b8017535df1bb17499ba39849cd592e5d8980235a8c0d0e37
GET /gtag/js?id=G-B1QS3P765Z HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 18 Apr 2024 06:24:29 GMT
expires: Thu, 18 Apr 2024 06:24:29 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100096
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/80adccb4e2f90342fb67891ed9da7a24_100x.webp | 104.18.20.211 | 200 OK | 4.3 kB |
URL GET HTTP/2img.fantaskycdn.com/80adccb4e2f90342fb67891ed9da7a24_100x.webp IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash64e9e334d8c4d253fb7d20bace6e53a6 0c22897ca4623c773e2e80f5dd89e82177e46bb1 752eb54be905922b4d1eb0517ad4928ff44cc6a3f69d89d4f48916ab98cf32eb
GET /80adccb4e2f90342fb67891ed9da7a24_100x.webp HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 4342
cache-control: public, max-age=31557600
content-disposition: inline; filename="80adccb4e2f90342fb67891ed9da7a24.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: 4c679df7-3e72-412b-ae5c-f9435b6448af
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 4c679df7-3e72-412b-ae5c-f9435b6448af
x-xss-protection: 1; mode=block
last-modified: Wed, 10 Apr 2024 12:51:34 GMT
cf-cache-status: HIT
age: 343418
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd3356cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/50272156a1a0c797faa091824bb8291f_100x.png | 104.19.234.103 | 200 OK | 5.4 kB |
URL GET HTTP/2img.staticdj.com/50272156a1a0c797faa091824bb8291f_100x.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hashbe1a0dd407aca3aef2d9b42630396272 6142a42606a2b4ad1270309d828c12fca79a97c7 73aa11f3b422b5e3900ab166c5158320aaf21202fc8865d3503b12ea6f11c3e2
GET /50272156a1a0c797faa091824bb8291f_100x.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 5368
cache-control: public, max-age=31557600, max-age=3600, public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=8628
content-disposition: inline; filename="50272156a1a0c797faa091824bb8291f_100x.webp"
expires: Fri, 29 Mar 2024 20:48:08 GMT
request-id: 8416f203-65e0-4aee-888e-a8f72ec10522
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 8416f203-65e0-4aee-888e-a8f72ec10522
x-xss-protection: 1; mode=block
last-modified: Fri, 29 Mar 2024 19:48:08 GMT
cf-cache-status: HIT
age: 1568170
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=orDrbdkhZr1CqCKWPtNekKvQi9Yl4Gj70ogZyuxfry01IwHENV4zSRFPBoxjweO8DYm40CZM1GFDa1xu6c4oG4CnCHjjoFoli3Lqqd4f4jCh8Snl1HK4YzganNzq9oGlq60%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=23.000002
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279a8d456c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/@fancyapps/ui@5.0/dist/fancybox/fancybox.umd.js | 151.101.1.229 | 200 OK | 45 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/@fancyapps/ui@5.0/dist/fancybox/fancybox.umd.js IP151.101.1.229:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash0cb6b36bc12b1753e10d64eacb992fab 2dbee8e916c97fdceab2894629fa2240cff0573b 862504070144a4b17a0e507cb065e52a8e243d9e3a522e2a1a9774beb5643a6e
GET /npm/@fancyapps/ui@5.0/dist/fancybox/fancybox.umd.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.0.36
x-jsd-version-type: version
etag: W/"22c19-Lb7o6RbJf9zqsolGKfoiQM/wVzs"
content-encoding: br
accept-ranges: bytes
date: Thu, 18 Apr 2024 06:24:29 GMT
age: 10723
x-served-by: cache-fra-etou8220130-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 44571
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/ff6e45cd717d09b3f5f76e5b03c605e9_100x.jpeg | 104.18.20.211 | 200 OK | 5.8 kB |
URL GET HTTP/2img.fantaskycdn.com/ff6e45cd717d09b3f5f76e5b03c605e9_100x.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hashbe6002dffc65c5f547b85e769f929d72 e072c73f27d3e2176d65d726a9678fcbf08c83ba 104502d1c957a7a07706ce5222fd3d9cab8534118245237e3ebaeac25abe1452
GET /ff6e45cd717d09b3f5f76e5b03c605e9_100x.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 5802
cache-control: public, max-age=31557600
content-disposition: inline; filename="ff6e45cd717d09b3f5f76e5b03c605e9.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: f9d123fe-8e17-4c6e-a0f6-c1e56f67303f
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: f9d123fe-8e17-4c6e-a0f6-c1e56f67303f
x-xss-protection: 1; mode=block
last-modified: Sat, 23 Mar 2024 18:55:46 GMT
cf-cache-status: HIT
age: 1568170
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd3e56cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/96e8f72babfb5f47220eab02f69908bd_100x.jpg | 104.19.234.103 | 200 OK | 2.7 kB |
URL GET HTTP/2img.staticdj.com/96e8f72babfb5f47220eab02f69908bd_100x.jpg IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hashc6ec293d4233ec5e1be355b6f3c6d22a 826e4ddadfc784e7e72caa9814929a9222989093 dddd7e4d1730f2bc15df76308f8ad837996cd208d37bd4163f6a67a95534021c
GET /96e8f72babfb5f47220eab02f69908bd_100x.jpg HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 2674
cache-control: public, max-age=31557600, max-age=3600, public
content-disposition: inline; filename="96e8f72babfb5f47220eab02f69908bd.webp"
expires: Fri, 29 Mar 2024 20:48:07 GMT
request-id: 088628d8-89e8-49da-ac20-9f25ac56c819
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 088628d8-89e8-49da-ac20-9f25ac56c819
x-xss-protection: 1; mode=block
last-modified: Fri, 29 Mar 2024 19:48:07 GMT
cf-cache-status: HIT
age: 1568170
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pg%2FfcdVPim%2Fb%2FuVoV%2BXlT8bUl9vYNqvTqnEuAHI7iukC9t3e0sEb%2FrTi6nItb0ht554xGGLM19hgOyOV6hbp8B8wpiIaCH6gEt09dLo2ZblCBLpuQ%2F%2B1qwQyrOSTdx%2FasmA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=26.000023
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279a8d656c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/@fancyapps/ui@5.0/dist/fancybox/fancybox.css | 151.101.1.229 | 200 OK | 5.6 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/@fancyapps/ui@5.0/dist/fancybox/fancybox.css IP151.101.1.229:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with very long lines (25343), with no line terminators Hash6273cfb7c536e571916509ef02d26aa5 82269e38f05f2221dac05e27069718c211f16041 cccf165ed1b87949fb74a28d313ba8599b9bfbe56749f68ea40ffc3c97ef4c1a
GET /npm/@fancyapps/ui@5.0/dist/fancybox/fancybox.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.0.36
x-jsd-version-type: version
etag: W/"62ff-giaeOPBfIiHawF4nBpcYwhHxYEE"
content-encoding: br
accept-ranges: bytes
date: Thu, 18 Apr 2024 06:24:29 GMT
age: 10722
x-served-by: cache-fra-eddf8230077-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5627
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/56133f0731ed2d78cd01c8cbea676c15_100x.webp | 104.18.20.211 | 200 OK | 3.3 kB |
URL GET HTTP/2img.fantaskycdn.com/56133f0731ed2d78cd01c8cbea676c15_100x.webp IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash677838b4b6021ee3a546dd224d408fde 9ef52c94cf5a73b2b91a6aba19319a768d5699e3 fc141fc6227a84dbc77f3243c65be99d3f4423cfd948d0f438228b84ae3543db
GET /56133f0731ed2d78cd01c8cbea676c15_100x.webp HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 3304
cache-control: public, max-age=31557600
content-disposition: inline; filename="56133f0731ed2d78cd01c8cbea676c15.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: dfbba02b-15e7-4da2-995b-52761329d2c1
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: dfbba02b-15e7-4da2-995b-52761329d2c1
x-xss-protection: 1; mode=block
last-modified: Sat, 23 Mar 2024 18:55:47 GMT
cf-cache-status: HIT
age: 1568169
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd3756cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/0d7bc31dbb3082bc196883b82bf9a7d8_100x.gif | 104.19.234.103 | 200 OK | 2.9 kB |
URL GET HTTP/2img.staticdj.com/0d7bc31dbb3082bc196883b82bf9a7d8_100x.gif IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hash804d3188acc496a6ddaafa4d3be95c7f 540e0c3e16bf2f64689102ebba740b52e4e662a1 4f15c50eaed4855a40597310feeba2f0ffd9a937e24c3560a457d50e2f2c453c
GET /0d7bc31dbb3082bc196883b82bf9a7d8_100x.gif HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 2936
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=gif, origSize=8775
content-disposition: inline; filename="0d7bc31dbb3082bc196883b82bf9a7d8_100x.webp"
request-id: 300d23a8-c3d8-4a10-9433-6c86118a54b3
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Thu, 04 Apr 2024 21:09:33 GMT
cf-cache-status: HIT
age: 343420
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XLddhZRe5ishvbtTQEAb3y4Cz%2BOnJ69wbtAR27JfbnKl7MgFXwu2lV%2FJowxfFkvAFRflq4w7s%2FWeiQRSmKhUj8CvsYko%2BDSbo4TDrg9PNuydXzScHIyG8vrEObenQh%2FtLqo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=26.000023
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279b8e856c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/45fddd898b4a7079e4da96004a8c3dd1_100x.png | 104.19.234.103 | 200 OK | 9.6 kB |
URL GET HTTP/2img.staticdj.com/45fddd898b4a7079e4da96004a8c3dd1_100x.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hashc4645cbde65c442609ee256facb3eaf1 5fa6c1bfcec90b52dd55fb875c5914a3f9e1b2ea b582edea099caec31b9c19cc4e4f418832be647ef2aca320073f0a580a1a4b4c
GET /45fddd898b4a7079e4da96004a8c3dd1_100x.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 9646
cache-control: public, max-age=31557600, max-age=3600, public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=14809
content-disposition: inline; filename="45fddd898b4a7079e4da96004a8c3dd1_100x.webp"
expires: Tue, 16 Apr 2024 04:26:11 GMT
request-id: fd5a509f-57b4-4ff7-b4fd-dcb480a8c83f
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: fd5a509f-57b4-4ff7-b4fd-dcb480a8c83f
x-xss-protection: 1; mode=block
last-modified: Tue, 16 Apr 2024 03:26:11 GMT
cf-cache-status: HIT
age: 95197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jgz0M9xzeWvhgDkksty%2B6LVt2cSJ509xULEfew4RudqKRkWK%2FYpuVeSDkDN95iLV8c5Nflh%2FJRCWqkGQ01Ek%2FPY6wVDmo2SPS5c3XZHJ7JagG3iGmM8G0XGbkof41DL1row%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=22.000074
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279b8de56c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/83f1ec8467f20fc72e13a281433f3261_100x.png | 104.19.234.103 | 200 OK | 11 kB |
URL GET HTTP/2img.staticdj.com/83f1ec8467f20fc72e13a281433f3261_100x.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hash79bdd2a769891048c6c2c4e8546b1aba f474563a4b3dc62ed2c403c077882b0186720634 078b6d3bb090bc08f61b6bee62e7f237eb893ea1920c6118c857f69f49f65073
GET /83f1ec8467f20fc72e13a281433f3261_100x.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 11104
cache-control: public, max-age=31557600, max-age=3600, public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=16211
content-disposition: inline; filename="83f1ec8467f20fc72e13a281433f3261_100x.webp"
expires: Thu, 11 Apr 2024 22:52:31 GMT
request-id: d887a7f3-564b-45d6-9aeb-216c756511e9
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: d887a7f3-564b-45d6-9aeb-216c756511e9
x-xss-protection: 1; mode=block
last-modified: Thu, 11 Apr 2024 21:52:31 GMT
cf-cache-status: HIT
age: 95197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ujFK9uosDthVuNvf0EFRldltYbSVG%2FSll11RCvZZYVQoxouaQL%2BZD5z8SRd0IiSjcrFqyJPJYBKGEFt%2FAIpJ0pt3YJRqbk1rWSbGF4nhZxp2%2Bj8pgxs9BFbpr28mC3%2FMnT0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=22.000074
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279b8e756c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/ad266d9f76c677e8e59da4143e68436e_100x.png | 104.19.234.103 | 200 OK | 11 kB |
URL GET HTTP/2img.staticdj.com/ad266d9f76c677e8e59da4143e68436e_100x.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hashd1d634771d7f291c58d6bce2b2a09f32 ecd31b55aa6bd82891f3fdb480faa9e18afa05c8 792f7f4e3e4e5e2ad1ac6db8d484e0cea849b68e58bb73495966e830338a0595
GET /ad266d9f76c677e8e59da4143e68436e_100x.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 11092
cache-control: public, max-age=31557600, max-age=3600, public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=16187
content-disposition: inline; filename="ad266d9f76c677e8e59da4143e68436e_100x.webp"
expires: Tue, 16 Apr 2024 09:22:46 GMT
request-id: 128ea2fc-5f2d-4a80-9857-0ed79de92dc6
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 128ea2fc-5f2d-4a80-9857-0ed79de92dc6
x-xss-protection: 1; mode=block
last-modified: Tue, 16 Apr 2024 08:22:46 GMT
cf-cache-status: HIT
age: 95197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bDtpAZD3eNGy6YKIgyMdWdPt4zHMU2OaWWnqYDDghfKo2SOCI%2FvCzn1lNBJjKg4RoUNzQV%2FyfXKqJ16f5Kjxadupp2EoTfog2U4vjRVTBn%2BT0ST8L%2FVJLBu9YTYaEpigS%2FA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=23.999929
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279b8f256c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/ad266d9f76c677e8e59da4143e68436e_600x.png | 104.19.234.103 | 200 OK | 163 kB |
URL GET HTTP/2img.staticdj.com/ad266d9f76c677e8e59da4143e68436e_600x.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Size163 kB (163308 bytes) Hash7f5d2d7708f76c2d72bcede719a59257 b4405e20a7b046713fa75bc3fe7379a7c51e2961 9b5f65a12cc97ba58bb6f50ae2d2815ba1f716d046af25ac4748816613eae82b
GET /ad266d9f76c677e8e59da4143e68436e_600x.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 163308
cache-control: public, max-age=31557600, max-age=3600, public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=286496
content-disposition: inline; filename="ad266d9f76c677e8e59da4143e68436e_600x.webp"
expires: Sat, 23 Mar 2024 19:55:46 GMT
request-id: 7ac8ec30-50eb-4fd8-a1ff-e126887577ba
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 7ac8ec30-50eb-4fd8-a1ff-e126887577ba
x-xss-protection: 1; mode=block
last-modified: Sat, 23 Mar 2024 18:55:46 GMT
cf-cache-status: HIT
age: 1594851
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ddYoDK3l6bwwU%2F%2FijWNdIy%2F5VVmSlzXjH%2Fxh6QeiOAlBZHUUMHYNJ4ow4%2FNo82VYxGD96NyXEpk%2FXbOvf1h4bXgWwVBTuTvKBpzafv1Mvf8Jmnc06YUWADc6ZfwYDw%2F%2BHEw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=26.999950
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279a8d356c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/61af13b8f606ca04e64df4c968abfab8_100x.webp | 104.18.20.211 | 200 OK | 5.0 kB |
URL GET HTTP/2img.fantaskycdn.com/61af13b8f606ca04e64df4c968abfab8_100x.webp IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash7fcc84c14d185cc2cf29a9ee4282b99d 35f82ca95d35027df27b29d0e6ded795515c0e77 f5747560f68905f6e54e3172ab470991b503022c2bbf537b294f2c6d4adaee28
GET /61af13b8f606ca04e64df4c968abfab8_100x.webp HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 5018
cache-control: public, max-age=31557600
content-disposition: inline; filename="61af13b8f606ca04e64df4c968abfab8.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: 448bf8f9-7814-429d-9c99-ac142e2179a2
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 448bf8f9-7814-429d-9c99-ac142e2179a2
x-xss-protection: 1; mode=block
last-modified: Mon, 18 Mar 2024 23:05:58 GMT
cf-cache-status: HIT
age: 1568169
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd3556cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/7ed8d46d83f9b9f88a99e39312e40996_100x.webp | 104.18.20.211 | 200 OK | 2.1 kB |
URL GET HTTP/2img.fantaskycdn.com/7ed8d46d83f9b9f88a99e39312e40996_100x.webp IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hashd229a688719a03fbd2b1bae60c6918cd f7a2319a9470d45edd210e9ebea260c83d574c46 349948a9e92fbe9f5cc008629da7c16f9935a663175352469861d99ec8fef36f
GET /7ed8d46d83f9b9f88a99e39312e40996_100x.webp HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 2078
cache-control: public, max-age=31557600
content-disposition: inline; filename="7ed8d46d83f9b9f88a99e39312e40996.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: f1679f08-5726-4560-81e4-3627570a8ffd
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: f1679f08-5726-4560-81e4-3627570a8ffd
x-xss-protection: 1; mode=block
last-modified: Sat, 23 Mar 2024 18:55:46 GMT
cf-cache-status: HIT
age: 1568169
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd3956cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/acbf0edcc73d91c82749df198ea3c00b_100x.jpg | 104.19.234.103 | 200 OK | 3.0 kB |
URL GET HTTP/2img.staticdj.com/acbf0edcc73d91c82749df198ea3c00b_100x.jpg IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hash63de9673babbd4ccf98ee308c359127a db77b273e22d8034a3dd76191f0dcec44f0bfa7d 9fc49c999e033474558b51479ba38139cae8ac59716fbec847bccb5123ee767b
GET /acbf0edcc73d91c82749df198ea3c00b_100x.jpg HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 2994
cache-control: public, max-age=31557600, max-age=3600, public
content-disposition: inline; filename="acbf0edcc73d91c82749df198ea3c00b.webp"
expires: Thu, 21 Mar 2024 05:33:34 GMT
request-id: 3830401b-9c3a-420a-b7c8-236d7365ce61
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 3830401b-9c3a-420a-b7c8-236d7365ce61
x-xss-protection: 1; mode=block
last-modified: Thu, 21 Mar 2024 04:33:34 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mTWnKqEsBhC1DNkIe5gvaL0zlN2wkO9YIaRveXV0TH7llRSi2Gd862YpxBeV0dP%2FqM0NzJKvWI4Dr843ixH5v3g0uFCeMb%2FPVrvpRfytXU1u1l86Dcp%2Bu6RKr6PKjfIVzTA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=204.999924
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279a8d856c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/136c129d98f025ac6b7e2504e72bde73_100x.webp | 104.18.20.211 | 200 OK | 1.8 kB |
URL GET HTTP/2img.fantaskycdn.com/136c129d98f025ac6b7e2504e72bde73_100x.webp IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hashec7d409f36711c89e5c1a4ddd6019445 d3a4a55fd4024fb29dac3c0c7da06adedcafa463 1774c8a8727a623c09942208995aae5c3bdb994ee27408f92451623d4401862d
GET /136c129d98f025ac6b7e2504e72bde73_100x.webp HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 1818
cache-control: public, max-age=31557600
content-disposition: inline; filename="136c129d98f025ac6b7e2504e72bde73.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: 7a5266c6-e8ce-4ab7-83e2-4afb63826483
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 7a5266c6-e8ce-4ab7-83e2-4afb63826483
x-xss-protection: 1; mode=block
last-modified: Sun, 24 Mar 2024 02:18:29 GMT
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd3a56cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/static/assets/sass/base/animation/animation.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 3.3 kB |
URL GET HTTP/3www.rosequake.com/static/assets/sass/base/animation/animation.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with very long lines (588), with no line terminators Hashae3be075920a0f6383941a562ca1d463 f69e0cf75305a350af184bfb68c8a76a4e04241b a9689c4c62542817e9915a50df62020a909a63b566cd09af80f42bd5d427b33d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/assets/sass/base/animation/animation.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 06:06:14 GMT
etag: W/"0fde1f6db0d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A1D4nx5rhTFH2JXWqIckGX5zjGymYiVr156CnSM89ODg5io%2Fo73fmLiiag6snFZzxmmvuEW7mHK6%2F0nh%2FZiToixDBqSXSrt4p80qHyLyMczErXv6VLchBJTeAyRYSBAvAestFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292780c9b56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| img.fantaskycdn.com/91875d1a4d8d0b55cdba307df10a32e1_100x.jpeg | 104.18.20.211 | 200 OK | 2.7 kB |
URL GET HTTP/2img.fantaskycdn.com/91875d1a4d8d0b55cdba307df10a32e1_100x.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hashe647ff885aa98f537d416b6d6e886b94 65411f60c18bfea87acced73e7fbb81a075bba7d e71c0cdebb773bcaf83f1993b2c6da3d9409e3b30c357a85d7910d73ab84e9cf
GET /91875d1a4d8d0b55cdba307df10a32e1_100x.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 2744
cache-control: public, max-age=31557600
content-disposition: inline; filename="91875d1a4d8d0b55cdba307df10a32e1.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: 9fae59d9-ab34-436c-ae2f-e8ec35ea0c27
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 9fae59d9-ab34-436c-ae2f-e8ec35ea0c27
x-xss-protection: 1; mode=block
last-modified: Fri, 08 Mar 2024 05:11:23 GMT
cf-cache-status: HIT
age: 1568168
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd4056cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/10235b6219f14001ba6e3b7756c90915_100x.webp | 104.18.20.211 | 200 OK | 2.0 kB |
URL GET HTTP/2img.fantaskycdn.com/10235b6219f14001ba6e3b7756c90915_100x.webp IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash6991ae232ada765ce7569646af78cafb 1cc1e550a9b9f0294579a3793869b1630cff2351 fff4965ebf698102fdb47da681988006977f3a4d39e7069dd9158c17be7b6c05
GET /10235b6219f14001ba6e3b7756c90915_100x.webp HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 1994
cache-control: public, max-age=31557600
content-disposition: inline; filename="10235b6219f14001ba6e3b7756c90915.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: 00c238fa-5a2d-4767-ac44-867df4fb90b7
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 00c238fa-5a2d-4767-ac44-867df4fb90b7
x-xss-protection: 1; mode=block
last-modified: Sat, 23 Mar 2024 05:29:07 GMT
cf-cache-status: HIT
age: 1568169
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd4656cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/8e4d9edcc2e668f45368c52a5c1bdc0c_100x.webp | 104.18.20.211 | 200 OK | 3.6 kB |
URL GET HTTP/2img.fantaskycdn.com/8e4d9edcc2e668f45368c52a5c1bdc0c_100x.webp IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hashe31c9f11e570efac6c769c8ac78ca678 0bb03c84559559ecf74cc77ca6cec908ca2de7c7 582ab4d6a2d8ff1a676cda7fc5ea328a655c3dd26ed0ae48b4eb56a97336d457
GET /8e4d9edcc2e668f45368c52a5c1bdc0c_100x.webp HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 3638
cache-control: public, max-age=31557600
content-disposition: inline; filename="8e4d9edcc2e668f45368c52a5c1bdc0c.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: 16bcc03f-55f1-4cdc-bd11-2a18053a2f45
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 16bcc03f-55f1-4cdc-bd11-2a18053a2f45
x-xss-protection: 1; mode=block
last-modified: Wed, 10 Apr 2024 12:51:34 GMT
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd4756cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/767d0a6661a574a3b8dc42865ced828c_100x.jpeg | 104.18.20.211 | 200 OK | 5.1 kB |
URL GET HTTP/2img.fantaskycdn.com/767d0a6661a574a3b8dc42865ced828c_100x.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash63e61d4d72f3ca1e867940023694a1b8 bf5c79f6d414aeae0a06eba9d4341b43f65588eb a95423267f0f4ca92d537520a6372f2f84973dff16f23a75c54dac3eacf05d7c
GET /767d0a6661a574a3b8dc42865ced828c_100x.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 5100
cache-control: public, max-age=31557600
content-disposition: inline; filename="767d0a6661a574a3b8dc42865ced828c.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: 5a746aab-4a61-4498-b2ef-cff01da33fa2
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 5a746aab-4a61-4498-b2ef-cff01da33fa2
x-xss-protection: 1; mode=block
last-modified: Wed, 06 Mar 2024 21:32:00 GMT
cf-cache-status: HIT
age: 1568167
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd4b56cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/f85007e18003ad4974a89d6487ebed51_100x.jpeg | 104.18.20.211 | 200 OK | 4.2 kB |
URL GET HTTP/2img.fantaskycdn.com/f85007e18003ad4974a89d6487ebed51_100x.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash17c77ad50f57d9d93e49dce8569b1d86 2cd6a6cd08eda62665d81b912d7313fce9c41729 9380d97d282ee1d21909c2e162e19b68b519f80b7854b08ca7214cc2a17b8e43
GET /f85007e18003ad4974a89d6487ebed51_100x.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 4154
cache-control: public, max-age=31557600
content-disposition: inline; filename="f85007e18003ad4974a89d6487ebed51.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: 8574397c-6b7b-4d39-9a7a-19527be8f1a1
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 8574397c-6b7b-4d39-9a7a-19527be8f1a1
x-xss-protection: 1; mode=block
last-modified: Fri, 29 Mar 2024 19:48:10 GMT
cf-cache-status: HIT
age: 343417
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd5456cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/ed845227949d90e1f9b0cce6cc85f045_100x.webp | 104.18.20.211 | 200 OK | 3.5 kB |
URL GET HTTP/2img.fantaskycdn.com/ed845227949d90e1f9b0cce6cc85f045_100x.webp IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash558332586636c5fb779e67d776881955 ab5c94ae7c3eadb776610093d4f331180d54c682 65fa48325e33111cafbdeaabfe5ba92f4db071af38fce8db14441d35b6337c95
GET /ed845227949d90e1f9b0cce6cc85f045_100x.webp HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 3478
cache-control: public, max-age=31557600
content-disposition: inline; filename="ed845227949d90e1f9b0cce6cc85f045.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: a91e3524-7e7e-4001-a9e0-2320db9295b2
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: a91e3524-7e7e-4001-a9e0-2320db9295b2
x-xss-protection: 1; mode=block
last-modified: Wed, 06 Mar 2024 21:32:00 GMT
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd5156cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/71d039ffe10cc1717e8a93b8124eaad4_100x.webp | 104.18.20.211 | 200 OK | 3.1 kB |
URL GET HTTP/2img.fantaskycdn.com/71d039ffe10cc1717e8a93b8124eaad4_100x.webp IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash96e7bf33bc78b3c7a65a778f030623df ab4399cfc83bc7ac20c42de03b11327aca9d1f35 718af0e0a0ec7f60b981844bafa61748116167b05f54fec8c7ead263c08bdad1
GET /71d039ffe10cc1717e8a93b8124eaad4_100x.webp HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 3062
cache-control: public, max-age=31557600
content-disposition: inline; filename="71d039ffe10cc1717e8a93b8124eaad4.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: aa1e55c8-f8e2-487d-a593-8021a9bf545b
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: aa1e55c8-f8e2-487d-a593-8021a9bf545b
x-xss-protection: 1; mode=block
last-modified: Thu, 28 Mar 2024 22:01:51 GMT
cf-cache-status: HIT
age: 1568167
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd5556cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/1c6f19216f4436d9bc07de43ca6d2d17_100x.webp | 104.18.20.211 | 200 OK | 2.3 kB |
URL GET HTTP/2img.fantaskycdn.com/1c6f19216f4436d9bc07de43ca6d2d17_100x.webp IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash22e39eb19defa02ca086f28de5bc16ae 46ca5c70138d27d19296bbc4cc5d2e91e5eedd06 b2908d8bfb66b47cf05c6b4fc45efe7d58c64a01d6a38e1d688701a51a86f60a
GET /1c6f19216f4436d9bc07de43ca6d2d17_100x.webp HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 2252
cache-control: public, max-age=31557600
content-disposition: inline; filename="1c6f19216f4436d9bc07de43ca6d2d17.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: 1648b8ad-8ae0-464d-ada8-d2e277355edb
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 1648b8ad-8ae0-464d-ada8-d2e277355edb
x-xss-protection: 1; mode=block
last-modified: Fri, 08 Mar 2024 05:11:27 GMT
cf-cache-status: HIT
age: 1568167
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd5956cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/67106972cd20a13889c09a5f2c856635_100x.jpeg | 104.18.20.211 | 200 OK | 5.5 kB |
URL GET HTTP/2img.fantaskycdn.com/67106972cd20a13889c09a5f2c856635_100x.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash894bc7035de7ffe14efb775089f5c7eb 66b0d49ac3aa16baa90962b06a561f31ff1ea627 0fb54c1750ee8130306978a1d06820e0a75e1b3e5ab16b91af873a7f174f2544
GET /67106972cd20a13889c09a5f2c856635_100x.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 5496
cache-control: public, max-age=31557600
content-disposition: inline; filename="67106972cd20a13889c09a5f2c856635.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: ce0a0533-6fb8-4ea4-bc79-42c6a34127e9
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: ce0a0533-6fb8-4ea4-bc79-42c6a34127e9
x-xss-protection: 1; mode=block
last-modified: Tue, 02 Apr 2024 18:09:53 GMT
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd5b56cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/6f67bc5c5a6c98b8037dc791664d28dd_100x.jpeg | 104.18.20.211 | 200 OK | 3.5 kB |
URL GET HTTP/2img.fantaskycdn.com/6f67bc5c5a6c98b8037dc791664d28dd_100x.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash39051cc4813a4d98c40a4e48e0260928 d0cd8c78eaa1411fefe9052e4cfe2cbc0f770b37 8707c387f8902a6734db56e16a07710b022479bd1140baf20613b73c10335567
GET /6f67bc5c5a6c98b8037dc791664d28dd_100x.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 3520
cache-control: public, max-age=31557600
content-disposition: inline; filename="6f67bc5c5a6c98b8037dc791664d28dd.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: bc6febb6-e9d6-4865-81c4-ada9194fd87c
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: bc6febb6-e9d6-4865-81c4-ada9194fd87c
x-xss-protection: 1; mode=block
last-modified: Wed, 10 Apr 2024 12:51:35 GMT
cf-cache-status: HIT
age: 343417
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd5f56cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/56133f0731ed2d78cd01c8cbea676c15.webp | 104.18.20.211 | 200 OK | 53 kB |
URL GET HTTP/2img.fantaskycdn.com/56133f0731ed2d78cd01c8cbea676c15.webp IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 432x936, Scaling: [none]x[none], YUV color, decoders should clamp Hash56133f0731ed2d78cd01c8cbea676c15 20d03deab76c33095386a348c0c9200af82ab9ec ec43c56c442d8dd62526acde11e0d6bde7088218278eecd63a4e6146f40479ff
GET /56133f0731ed2d78cd01c8cbea676c15.webp HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 53292
cache-control: public, max-age=31557600
request-id: 3d3f8e74-662f-4ca4-8b79-bf3129de5e79
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Wed, 10 Apr 2024 12:01:15 GMT
cf-cache-status: HIT
age: 343417
expires: Fri, 18 Apr 2025 12:24:29 GMT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd5656cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/1c6f19216f4436d9bc07de43ca6d2d17.webp | 104.18.20.211 | 200 OK | 82 kB |
URL GET HTTP/2img.fantaskycdn.com/1c6f19216f4436d9bc07de43ca6d2d17.webp IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 960x960, Scaling: [none]x[none], YUV color, decoders should clamp Hash1c6f19216f4436d9bc07de43ca6d2d17 4d2edcc5144b9aa515a10791167d6ac036119fa2 f59364f171a482bbe1b81ebd0260f3b3dd51032c2ab595c9d9d1275d83b93d9f
GET /1c6f19216f4436d9bc07de43ca6d2d17.webp HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 82388
cache-control: public, max-age=31557600
request-id: 3b7714fe-b95d-4e65-ae28-14fd9ef57722
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Thu, 28 Mar 2024 22:01:51 GMT
cf-cache-status: HIT
age: 1568167
expires: Fri, 18 Apr 2025 12:24:29 GMT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd5c56cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/a9afe979e5e3520d52893d8e170257aa.jpeg | 104.18.20.211 | 200 OK | 61 kB |
URL GET HTTP/2img.fantaskycdn.com/a9afe979e5e3520d52893d8e170257aa.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 432x936, components 3 Hasha6865db845b866eeb27f3f2cd53785f9 fae49b0ee32b51a274e68c0495bf2e080e867627 e014d9e9b511487a69f8433fa9e9f1f87436e43f0d30abe05e3d5147547edb26
GET /a9afe979e5e3520d52893d8e170257aa.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/jpeg
content-length: 61047
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origSize=63430
request-id: 6c9823a0-824b-4922-bc9a-dd2ac6185829
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Wed, 06 Mar 2024 21:32:00 GMT
cf-cache-status: HIT
expires: Fri, 18 Apr 2025 12:24:29 GMT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd4956cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/theme.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 0 B |
URL GET HTTP/3www.rosequake.com/theme.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /theme.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
content-length: 0
cache-control: private
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HjOJwWgPjrGsPX6kkfAP3Farx1VpNH58zaIrrQ9hg%2BPjKqwkF1dC0nWoaX243JHPWaYOINrGtJjnJFzm5K%2FQj2i4Ac%2BAnCfG91TDaZKoSXLHYfOANicVfpvjRz%2FMimNGDRZ%2FRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876292786d1356ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.fantaskycdn.com/7ed8d46d83f9b9f88a99e39312e40996.webp | 104.18.20.211 | 200 OK | 34 kB |
URL GET HTTP/2img.fantaskycdn.com/7ed8d46d83f9b9f88a99e39312e40996.webp IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash7ed8d46d83f9b9f88a99e39312e40996 f3134927ec65b7285bd4f7f000019ec6e34d9c32 4a91dc103030fd19854cba892cbdaa7692a450a1c911936baeda778435a48dc0
GET /7ed8d46d83f9b9f88a99e39312e40996.webp HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 33530
cache-control: public, max-age=31557600
request-id: 18bc3af4-e374-4938-9c91-6776c5a0b7a0
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Fri, 29 Mar 2024 15:57:03 GMT
cf-cache-status: HIT
expires: Fri, 18 Apr 2025 12:24:29 GMT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd4856cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/286dd43bd70b0de620aa7d30fe219546.jpeg | 104.18.20.211 | 200 OK | 98 kB |
URL GET HTTP/2img.fantaskycdn.com/286dd43bd70b0de620aa7d30fe219546.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 638x851, components 3 Hash82e50c93839d2157c2e24212bfb65c82 a2621f4d290b54fc343d1f845699beda25890ea5 a9d0edc4df51e0decb3c8c0a46b48fafc34cc425895117b6f30f360e0391f3d9
GET /286dd43bd70b0de620aa7d30fe219546.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/jpeg
content-length: 98014
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origSize=99786
request-id: 9ef35f43-cd7d-40d5-8bdd-5b9aef6a39a6
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Wed, 06 Mar 2024 21:32:00 GMT
cf-cache-status: HIT
age: 1568167
expires: Fri, 18 Apr 2025 12:24:29 GMT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd3256cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/a4ad66e99a859656e5a3128c09213c5f_100x.jpeg | 104.19.234.103 | 200 OK | 2.7 kB |
URL GET HTTP/2img.staticdj.com/a4ad66e99a859656e5a3128c09213c5f_100x.jpeg IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hash6f5a6f85bda6086f5240e7fff6a98e7c 4ece20800b084ce819f17cc25bb6145dc0c44155 b99d00833d62ce4b9c77454bd7dae852cbcfe424d4b0427b78c932d22d23c36f
GET /a4ad66e99a859656e5a3128c09213c5f_100x.jpeg HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 2674
cache-control: public, max-age=31557600, max-age=3600, public
content-disposition: inline; filename="a4ad66e99a859656e5a3128c09213c5f.webp"
expires: Wed, 17 Apr 2024 22:35:29 GMT
request-id: 35116541-a3a1-458b-88c7-6fa3161adb68
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 35116541-a3a1-458b-88c7-6fa3161adb68
x-xss-protection: 1; mode=block
last-modified: Wed, 17 Apr 2024 21:35:29 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9bVEOoODnkpsytFvyW7treV3DiUmr3tfGPuKBZousiSDYZCDcpdJQUAHOTxYdvI5lDbtglOuauyDK5IsPX0GnUyhisRkcTg8XvLE96GPXcaMQWzwWdMLeT3m4QBfbOzNeIQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=216.000080
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279a8d756c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/bc18609143ce3076b9c87d68819bab39_100x.gif | 104.19.234.103 | 200 OK | 23 kB |
URL GET HTTP/2img.staticdj.com/bc18609143ce3076b9c87d68819bab39_100x.gif IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hash83153f9a539fe14fa01ac5a13a4b7fff 755d01b647c0f11d012a318175f64417b6ff5a30 ed65a4d21225ec824dfe67eeb6b78b5468f0a7524abcae39469dec2b3390fa3a
GET /bc18609143ce3076b9c87d68819bab39_100x.gif HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 23198
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=gif, origSize=29295
content-disposition: inline; filename="bc18609143ce3076b9c87d68819bab39_100x.webp"
request-id: 308e8bc0-202f-4795-b48b-6a7762d7c681
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Mon, 15 Apr 2024 22:49:02 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7Su6%2BjtXZyD9oJEoV8vGL9n3NGR8MFNFfLr5KF8YP9rRwh%2Fjirn%2BxsXVi3Q5K%2FlH7ZpUGw8sbFOkkO5FhsgqML%2BGS27Gr5H%2FQC0erp4tTmizi3lNzz5y2EkR7WjIcv1GBrU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=243.000031
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279a8d556c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/theme.js?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 0 B |
URL GET HTTP/3www.rosequake.com/theme.js?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /theme.js?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:30 GMT
content-type: application/x-javascript
content-length: 0
cache-control: private
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yNqmLvigwHbAM7Sp4gODgvXI%2F9VsJhJanri9LR1UU4Ly%2BXZT61ybhgzNTyRLbGUzHt9sitAsVwCqBR84UF6EnWXmZ8M%2FQuIpyygOqv8INrl7DX%2FIZ1HuJFjq09f0E%2F%2F4zWPlJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876292786d1456ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/lib/fancybox/fancybox.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 395 kB |
URL GET HTTP/3www.rosequake.com/static/lib/fancybox/fancybox.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with very long lines (474), with CRLF line terminators Size395 kB (394797 bytes) Hash8934fc2cc6952be05b710c87d7476178 f305054afdaf4c1df87f57a53724754cd0bc052f 1a9d522b9594ba76d8def2c0e4a6d26b6497cbce380c7ac87b51dd5548153c98
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/lib/fancybox/fancybox.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 06:06:14 GMT
etag: W/"0fde1f6db0d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l69itlvNefa8DATXjEra6daxaRcwbPkau4ru%2FguaaYoh5Wu36B2j%2BTvA77pCi%2FBiWw8Krl2pma6V%2BmE%2B4Q7Rtkml88HnQSOIZPDTFwm5ne%2B77QqCjaUGpcEJrmono3Xzuelpew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292781cb656ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| img.fantaskycdn.com/767d0a6661a574a3b8dc42865ced828c.jpeg | 104.18.20.211 | 200 OK | 130 kB |
URL GET HTTP/2img.fantaskycdn.com/767d0a6661a574a3b8dc42865ced828c.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 375x500, components 3 Size130 kB (129709 bytes) Hashba80d00f664ce057cca024c97702dee6 ba72ae72e0a447cec5a08d0eb1271c28c2782c40 cba3a3e3c42d43a09689596cc216c0595659af5654fb569f90fa0ce5c6453c8f
GET /767d0a6661a574a3b8dc42865ced828c.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:30 GMT
content-type: image/jpeg
content-length: 129709
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origSize=137991
request-id: 60907a6c-230e-4b26-9c8e-bbbec266d19f
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Wed, 10 Apr 2024 12:51:35 GMT
cf-cache-status: HIT
expires: Fri, 18 Apr 2025 12:24:29 GMT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd5356cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/f85007e18003ad4974a89d6487ebed51.jpeg | 104.18.20.211 | 200 OK | 139 kB |
URL GET HTTP/2img.fantaskycdn.com/f85007e18003ad4974a89d6487ebed51.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 976x732, components 3 Size139 kB (139028 bytes) Hash90274ccc42b67f0997a4b9b8f726afe3 6fbb87b28582344e83626051aae2474fe0706422 edecc911ebe324bddf6ea1eefea42265ff154235043438dfce2dd48355588a94
GET /f85007e18003ad4974a89d6487ebed51.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:30 GMT
content-type: image/jpeg
content-length: 139028
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origSize=144147
request-id: 0f5fdd53-5602-4c60-949d-c53ffbe306f5
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Wed, 06 Mar 2024 21:32:00 GMT
cf-cache-status: HIT
expires: Fri, 18 Apr 2025 12:24:29 GMT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd5756cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/ca252388765c31eca70a1b408533be5e_100x.jpeg | 104.18.20.211 | 200 OK | 6.1 kB |
URL GET HTTP/2img.fantaskycdn.com/ca252388765c31eca70a1b408533be5e_100x.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hasheb0ef9a134a1e4615402dc7b08b933a9 64f54759395d8eafa61d19b108e7ec63e09331b3 df9dbcbb775580e816de9c7f074c714066e32e31f682a0275c757b44f2277677
GET /ca252388765c31eca70a1b408533be5e_100x.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:30 GMT
content-type: image/webp
content-length: 6090
cache-control: public, max-age=31557600
content-disposition: inline; filename="ca252388765c31eca70a1b408533be5e.webp"
expires: Fri, 18 Apr 2025 12:24:30 GMT
request-id: 95c219d4-5d4c-45fd-8c68-5d9f80e97f02
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 95c219d4-5d4c-45fd-8c68-5d9f80e97f02
x-xss-protection: 1; mode=block
last-modified: Wed, 06 Mar 2024 22:32:16 GMT
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd3c56cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/static/assets/sass/popup/popup.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 7.2 kB |
URL GET HTTP/3www.rosequake.com/static/assets/sass/popup/popup.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with very long lines (10522), with CRLF line terminators Hash482bbe70e21e778f2c511a467d994090 5ac17271181cc9bb17adc708b7645208b11c532f ada0ffd438f67248313dce1f0f7e7c391e48d0f1089a06900892f827b721dc17
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/assets/sass/popup/popup.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Sat, 28 Oct 2023 21:20:33 GMT
etag: W/"b481ff95e49da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r9BnOiNe2RKTe0Bvyl6otfdRreOEohWWv%2BGdl%2F%2B%2BgiYhT9LI2GjZuwsQoCBdzAPrW3KEEYRxQn450kyNkVex4Zv8B0M%2BPCq9qdPOdZX0KO84pU39Qop8lunVPXmQtNISTI%2Fy8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292781cb156ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| img.fantaskycdn.com/a9afe979e5e3520d52893d8e170257aa_100x.jpeg | 104.18.20.211 | 200 OK | 4.3 kB |
URL GET HTTP/2img.fantaskycdn.com/a9afe979e5e3520d52893d8e170257aa_100x.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash2f7186117b8bb4d6993b1edfcda78cc2 e2ca803fd1006c62afa0e139b33a06ca30ecf501 0f3a22e41c6b9ceca5e5e69a6926edafbe67595871e3ff864cae65061bd55910
GET /a9afe979e5e3520d52893d8e170257aa_100x.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:30 GMT
content-type: image/webp
content-length: 4328
cache-control: public, max-age=31557600
content-disposition: inline; filename="a9afe979e5e3520d52893d8e170257aa.webp"
expires: Fri, 18 Apr 2025 12:24:30 GMT
request-id: 4edeb69d-594a-46cd-bdd5-b89c3cd69014
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 4edeb69d-594a-46cd-bdd5-b89c3cd69014
x-xss-protection: 1; mode=block
last-modified: Wed, 17 Apr 2024 18:39:29 GMT
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd4556cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/34a4cd5817e86745c513faf3a0cd3bfd_100x.webp | 104.18.20.211 | 200 OK | 3.1 kB |
URL GET HTTP/2img.fantaskycdn.com/34a4cd5817e86745c513faf3a0cd3bfd_100x.webp IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash996d2a64f55ebbaf17abb44328a12a48 1ff7d478497976819799333cbf43c8aaf1a3b83c 8b12e42aecdb5fc4fd9847413adb9e97aa96ad9f412d2dd3e8a743550d2d76d3
GET /34a4cd5817e86745c513faf3a0cd3bfd_100x.webp HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:30 GMT
content-type: image/webp
content-length: 3062
cache-control: public, max-age=31557600
content-disposition: inline; filename="34a4cd5817e86745c513faf3a0cd3bfd.webp"
expires: Fri, 18 Apr 2025 12:24:30 GMT
request-id: 50c4906a-12c6-491c-adde-8eaf16adc85c
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 50c4906a-12c6-491c-adde-8eaf16adc85c
x-xss-protection: 1; mode=block
last-modified: Thu, 18 Apr 2024 06:22:01 GMT
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd4256cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/b15c735cea372d278d62b8472571517e_100x.jpg | 104.19.234.103 | 200 OK | 2.3 kB |
URL GET HTTP/2img.staticdj.com/b15c735cea372d278d62b8472571517e_100x.jpg IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hashd45628d178aeeaa30586782e56ecabdf 67e5f5ba1c8f5209723a2f13c5dc138762ba39f4 c69c8627e7297bc337c93ac983111d6396c6e8d972a4d2f74216084737c007c9
GET /b15c735cea372d278d62b8472571517e_100x.jpg HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:30 GMT
content-type: image/webp
content-length: 2264
cache-control: public, max-age=31557600, max-age=3600, public
content-disposition: inline; filename="b15c735cea372d278d62b8472571517e.webp"
expires: Sun, 24 Mar 2024 03:18:30 GMT
request-id: ffd6adfb-0adf-4f29-9f0a-a626b5a060c2
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: ffd6adfb-0adf-4f29-9f0a-a626b5a060c2
x-xss-protection: 1; mode=block
last-modified: Sun, 24 Mar 2024 02:18:30 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n92vUOebX6AtglbN41W1zpcMGOk7wLXG0a8fIxPhDHZ6KXbu7lckaPlHoQawO%2BeKsQuXQYqFv3W1H%2FXZiKxRlUM1lqLnT7j9FdyoxTq2WpPCmLtE6xa4hMXuKlY%2BvxogFjc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=742.000103
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279a8da56c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/286dd43bd70b0de620aa7d30fe219546_100x.jpeg | 104.18.20.211 | 200 OK | 3.1 kB |
URL GET HTTP/2img.fantaskycdn.com/286dd43bd70b0de620aa7d30fe219546_100x.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash758e617ee89af4fab1efe082531c77c0 75e63ee697aa2fc73294fe79db35927f5116b09d b6c351e37bab8fc7f01c6ab057dedebdc5cced498c010940969a59d65450fbac
GET /286dd43bd70b0de620aa7d30fe219546_100x.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:30 GMT
content-type: image/webp
content-length: 3088
cache-control: public, max-age=31557600
content-disposition: inline; filename="286dd43bd70b0de620aa7d30fe219546.webp"
expires: Fri, 18 Apr 2025 12:24:30 GMT
request-id: dd958705-21bb-4000-bcdc-099222ef8d53
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: dd958705-21bb-4000-bcdc-099222ef8d53
x-xss-protection: 1; mode=block
last-modified: Tue, 16 Apr 2024 06:54:09 GMT
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd5856cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/871188d6cf0c5c39f825f4f4154bf292_100x.jpeg | 104.18.20.211 | 200 OK | 4.5 kB |
URL GET HTTP/2img.fantaskycdn.com/871188d6cf0c5c39f825f4f4154bf292_100x.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash166bdf4725cc38d74a31b2ad35c1d8de b6bc480a908f67e2df3b5f6c78a4e32c3d08eb0c 054ee282b22056021f4cabb00a0d372ee7e7a6c9034766fbfbd31bc2b561b318
GET /871188d6cf0c5c39f825f4f4154bf292_100x.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:30 GMT
content-type: image/webp
content-length: 4454
cache-control: public, max-age=31557600
content-disposition: inline; filename="871188d6cf0c5c39f825f4f4154bf292.webp"
expires: Fri, 18 Apr 2025 12:24:30 GMT
request-id: cb3fd8ef-695c-4e7f-9beb-3d13e5e9f31e
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: cb3fd8ef-695c-4e7f-9beb-3d13e5e9f31e
x-xss-protection: 1; mode=block
last-modified: Wed, 17 Apr 2024 22:13:47 GMT
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd5d56cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/static/assets/sass/sidebar/sidebar.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 9.4 kB |
URL GET HTTP/3www.rosequake.com/static/assets/sass/sidebar/sidebar.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with very long lines (41614), with no line terminators Hash30514b5eb429ab4f3e8b766d6c6ac06c a5c42cda1bb44a83c4fe9ca5221825ca1d0e53cb 31d5a65ed4f290361fa9f6431b3fda6ec771b90d0f7cc1403576637af527b9bb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/assets/sass/sidebar/sidebar.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 06:06:14 GMT
etag: W/"0fde1f6db0d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RXfs6aSigl3M1bbtCeDazJi%2FVn%2BJUOIXoAS8%2FS4M0oeXHjTQb%2BrgFrsgw85bA4UrqE6SbgUU6ELxBNOUCkW9DrAypjgrWpzHj3RGmAkaCIRiB5U9n%2FLlHOKZTd52WlCkOAMxYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292781cb456ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/css/Reviews.css?v=d | 188.114.96.1 | 200 OK | 13 kB |
URL GET HTTP/3www.rosequake.com/css/Reviews.css?v=d IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (1538), with CRLF line terminators Hash0d3ba8dba10e0b81cf49f099ede727ad 1b8b5b8310125046a30c961f417e1f4ad9c1b203 e52e6908bed9baab9424bafd2913cce893c4c12971c3f3e41f6396236fc2f0f5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/Reviews.css?v=d HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Sat, 03 Feb 2024 06:08:16 GMT
etag: W/"a26e99606756da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2015
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=deecUwId1pVCYYMt1oqLCR5KhUIYdJbhC6iteFVZMvxXj3ZcrWKbUZ0kAqxQ6Ag7xWvPcvT2OYHsSy2nz5ft5WmqwEbKlD6PcuqEPD9Go3xDbz5ZoG%2Bj7ZZRyMn5U9WJc139sQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292789d5556ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| img.sellercube.com/imgsgroup1/M00/7B/C8/rB9kfVvf41GAS4a7AAFSpmjpxWM372.png | 90.84.161.29 | 200 OK | 87 kB |
URL GET HTTP/2img.sellercube.com/imgsgroup1/M00/7B/C8/rB9kfVvf41GAS4a7AAFSpmjpxWM372.png IP90.84.161.29:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerShenzhen Digital Certificate Authority Center Co., Ltd Subject*.sellercube.com Fingerprint16:10:6F:DA:3E:03:ED:4E:C3:36:5C:9C:FA:64:43:83:B1:93:91:C6 ValidityMon, 24 Apr 2023 02:31:01 GMT - Tue, 23 Apr 2024 02:31:00 GMT
File typePNG image data, 730 x 381, 8-bit/color RGBA, non-interlaced Hashef79a71bdc67de83f7490245fd59f8e4 23e49f55bbc27f428881e0caab588f696112c937 fb6915b7019dd030387d82f5a7a2b9e09bcbdd257a21f74e93b69efc6e1d3115
GET /imgsgroup1/M00/7B/C8/rB9kfVvf41GAS4a7AAFSpmjpxWM372.png HTTP/1.1
Host: img.sellercube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:31 GMT
content-type: image/png
content-length: 86694
server: openresty
cloudservicediscount: CDN
x-obs-request-id: 000001781136FE289308729C670DB0C6
etag: "ef79a71bdc67de83f7490245fd59f8e4"
last-modified: Thu, 21 Jan 2021 08:16:18 GMT
x-obs-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSOOnIkfncVLjFYASomBJEGgx8b03l8F
via: EU-GER-frankfurt-EDGE5-CACHE5[3],EU-GER-frankfurt-EDGE5-CACHE3[0,TCP_HIT,2],EU-FRA-paris-GLOBAL1-CACHE8[632],EU-FRA-paris-GLOBAL1-CACHE3[444,TCP_MISS,631],EA-HKG-GLOBAL1-CACHE24[71],EA-HKG-GLOBAL1-CACHE34[0,TCP_HIT,70],CHN-SH-GLOBAL1-CACHE159[3],CHN-SH-GLOBAL1-CACHE51[0,TCP_HIT,2]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 1209600
nginx-hit: 1
age: 34730567
accept-ranges: bytes
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/images/bg.png | 188.114.96.1 | 200 OK | 90 kB |
URL GET HTTP/3www.rosequake.com/images/bg.png IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typePNG image data, 750 x 900, 8-bit/color RGBA, non-interlaced Hashccf77e016e248189f1010ef460854b41 ba7980d6188a7581acc6e8e38c7bb3d3377af87b 58eab8be48f2cdd0eff40a5c8834dee3df3295020cc35104611ea2d0346357f9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/bg.png HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/static/CBDStyle.css?v=cac22025232-20240418
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:31 GMT
content-type: image/png
content-length: 89690
last-modified: Mon, 16 Oct 2023 18:33:27 GMT
etag: "82b653415f0da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2016
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vZIfFFZihgbh2hZECOVcythYzgGyBx3zscpaKs30VOlpww0DFA8qSvzsG%2FgMHRIajiEfaDEy0KUAnwAr4teA31VmlZ4CDazapipPNLAf0SXai%2FodrR%2FGuaAHlYfuOE0zfyNCaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87629284cdd956ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=G-B1QS3P765Z&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 100 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-B1QS3P765Z&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size100 kB (100156 bytes) Hash402aa56d32cfbabe980fb66e3eeb69e2 7ce1d4c48c36eef00fe61f85a16625afd0e6c2a9 06d351610ac57ee6247d7cce901ab3bfc1402aec6f49a2a45f682a95076376b8
GET /gtag/js?id=G-B1QS3P765Z&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 18 Apr 2024 06:24:31 GMT
expires: Thu, 18 Apr 2024 06:24:31 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100156
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| we.chatsoftly.com/js/im_load.js | 172.67.194.34 | 200 OK | 2.3 kB |
URL GET HTTP/2we.chatsoftly.com/js/im_load.js IP172.67.194.34:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerLet's Encrypt Subjectchatsoftly.com FingerprintB5:CE:E5:95:0F:6B:BB:E2:D4:E0:32:34:86:00:B8:EB:C8:3F:A6:E5 ValidityWed, 06 Mar 2024 04:41:15 GMT - Tue, 04 Jun 2024 04:41:14 GMT
File typeJavaScript source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Hashcc1080d492f422ebfdcc091aa525580d 249685a9d4bec1dd1c3f7761254ef9d23265fad4 9c4416858603f97c66642e57c2a727280558f897be9cd9e52bee4e631ad48671
GET /js/im_load.js HTTP/1.1
Host: we.chatsoftly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Wed, 13 Sep 2023 15:41:56 GMT
etag: W/"07a42d358e6d91:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5801
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VRVzjvSIjS1ItVO5TyYI%2BPkOx4paCNc0VL3NhDCgCKAZThp4FGI2FgBucUllfY2EAz%2FYGVOjI78W9I9otMxvlF3Apba8EB06fyMHdSizHFPbl3gnf2f2a3%2F%2BMLdZqXec5jizAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8762927a9b12b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 | 142.250.74.163 | 200 OK | 7.8 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 IP142.250.74.163:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7816, version 1.0 Hash25b0e113ca7cce3770d542736db26368 cb726212d5d525021752a1d8470a0fb593e0c49e 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rosequake.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:13:09 GMT
expires: Tue, 15 Apr 2025 23:13:09 GMT
cache-control: public, max-age=31536000
age: 198682
last-modified: Fri, 22 Mar 2024 00:00:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiDyp8kv8JHgFVrJJLmy15VF9eO.woff2 | 142.250.74.163 | 200 OK | 8.6 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiDyp8kv8JHgFVrJJLmy15VF9eO.woff2 IP142.250.74.163:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 8596, version 1.0 Hash858549c2cb50c37c733cfa191fdb07ea 50900cbabf4ae9e1e174162f091404e343585c65 4b0864712c6e7ca75f8c003f7bc1a9270af33d6becd4119463771593274c48d2
GET /s/poppins/v21/pxiDyp8kv8JHgFVrJJLmy15VF9eO.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rosequake.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8596
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 10:46:42 GMT
expires: Wed, 16 Apr 2025 10:46:42 GMT
cache-control: public, max-age=31536000
age: 157069
last-modified: Fri, 22 Mar 2024 00:00:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/static/SizeCharts.css | 188.114.96.1 | 200 OK | 153 kB |
URL GET HTTP/3www.rosequake.com/static/SizeCharts.css IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (906), with CRLF line terminators Size153 kB (152773 bytes) Hash9fd511c0270eb87d17193be06b79edd2 8d2e4e567aecba4560c1eac7e4aaf80ca7f2df59 2038ca8fe1cac017156c21db21be5eb6706402a1a0f6982302727e9421248632
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/SizeCharts.css HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Tue, 10 May 2022 16:32:32 GMT
etag: W/"897ac8c8b64d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2015
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5yHz18o94PThpuFQpq1Q866nWK%2F7zZEq0xIiYLYkVyfZmAvbd9k9uBf5Iqjm0TcwEs1V0LJ0jxW3ubXz1PYEpAF9E1l6s8lD4jtX0cub2nmSHLiyjTPH1rCHwcV3wI%2FFyjlcDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292788d3656ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/images/starIcon.png | 188.114.96.1 | 200 OK | 2.8 kB |
URL GET HTTP/3www.rosequake.com/images/starIcon.png IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typePNG image data, 80 x 96, 8-bit/color RGBA, non-interlaced Hash80b32f34f8b4a9310abfc8d91ca5a6f8 29b5f72686bfe80f4f1ed1ad4765645285cc13c2 74c692972ae3c1c83ac74969fc5c7891d5de6abdfb69625a21a2e777739bb16a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/starIcon.png HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/static/CBDStyle.css?v=cac22025232-20240418
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:31 GMT
content-type: image/png
content-length: 2824
last-modified: Thu, 17 Aug 2023 21:46:57 GMT
etag: "8f436e5854d1d91:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2016
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9dcS0Gnis7JJdjq4TC%2BX3mSIwqaKqbFCAw%2FCZrUmI2p9%2Bcg6L2JboQEeNmNTiZy3Gs3odhQD8pB56mP6fTvxN00VaIMEHUzmoYBPB4BANaOrDfhsKr6N8B9xx3Z%2FAk9n5LOvcA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87629285def656ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/images/ratings.png | 188.114.96.1 | 200 OK | 5.2 kB |
URL GET HTTP/3www.rosequake.com/images/ratings.png IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typePNG image data, 200 x 120, 8-bit/color RGBA, non-interlaced Hash8731a815481b0d08eb3e11e752bb9ebe b92e3d652af1edaea48811bca66a8a8f612e0a43 cac52f2f88097469f9f0f3c95cc0f73d7fabe59ad2840e70cd72cebb9c6b77ad
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/ratings.png HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/css/Reviews.css?v=d
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:31 GMT
content-type: image/png
content-length: 5153
last-modified: Thu, 17 Aug 2023 21:51:47 GMT
etag: "ab902d555d1d91:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2016
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EAQxmIvEqZL6DwdptX05szKl9d1bqtCgN6Z%2BX7QkhEGtVm2m4h%2BjaBA8P9sYTBSV0bUp9Fxw45DhRFKKrEdy9t3smfrK9mHtbYlq6TP9AbRFkqkMsJxM%2FoytxBnENVy7O8zfOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87629285defb56ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/product.js?=2024032 | 188.114.96.1 | 200 OK | 20 kB |
URL GET HTTP/3www.rosequake.com/static/product.js?=2024032 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (522), with CRLF line terminators Hash8553e142f5b93de9aa7f050cd3031d35 035e8fccb9e1d40ee780f00b34b5ef532cfd2034 2f5804dde5051b256ce7ff1b2687f3e59e383cbfc4d4082d190666f9c47493d2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/product.js?=2024032 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Wed, 17 Apr 2024 19:16:53 GMT
etag: W/"624d7dcefb90da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2015
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=shO4dwPr0vdVDEcqRbEE1ujCB%2F%2FsAhXOLdAIo9jrrZyWWNb%2FQKe%2BXyXwtA0aCu4r0z3UDl%2FZbkigNdjLyyYK1A0792ZmSafX5X000w9pKr4bHUCV2o4MPpOUd2CTtiGraDza9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292788d3f56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 | 142.250.74.163 | 200 OK | 8.0 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 IP142.250.74.163:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 8000, version 1.0 Hash72993dddf88a63e8f226656f7de88e57 179f97ec0275f09603a8db94d4380eb584d81cd5 f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rosequake.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:40:30 GMT
expires: Fri, 11 Apr 2025 17:40:30 GMT
cache-control: public, max-age=31536000
age: 564241
last-modified: Fri, 22 Mar 2024 00:00:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiGyp8kv8JHgFVrJJLucHtA.woff2 | 142.250.74.163 | 200 OK | 8.7 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiGyp8kv8JHgFVrJJLucHtA.woff2 IP142.250.74.163:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 8668, version 1.0 Hasha242ba0df3a128a2cab929a8c45d5056 d70e2c70b21cbb66cd883ae56e2dedacefd81c7c 50d0c1742d80ac71f4cde20e8c04d41a24806af342831f479938b527fbff0972
GET /s/poppins/v21/pxiGyp8kv8JHgFVrJJLucHtA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rosequake.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:36:49 GMT
expires: Fri, 11 Apr 2025 17:36:49 GMT
cache-control: public, max-age=31536000
age: 564462
last-modified: Fri, 22 Mar 2024 00:00:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| global.akating.com/Images/country_list_bg.png?v=d | 104.21.11.35 | 200 OK | 73 kB |
URL GET HTTP/3global.akating.com/Images/country_list_bg.png?v=d IP104.21.11.35:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectakating.com FingerprintD4:E7:F9:72:45:4E:79:7D:33:B1:39:44:15:02:59:D9:B0:38:BE:48 ValidityTue, 20 Feb 2024 09:48:29 GMT - Mon, 20 May 2024 09:48:28 GMT
File typePNG image data, 20 x 5477, 8-bit/color RGBA, non-interlaced Hash6c82c39a53d564744f41787731157fe9 c1ed91eb19f49725887d7b8b5d72607500744b5a 0584c02871ac6487ab8a93f4d6a5c1d1b8100061d7485cae1de3e7dcab8ad347
GET /Images/country_list_bg.png?v=d HTTP/1.1
Host: global.akating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://global.akating.com/files/css/countryFlag_s.css?v=cac22025232-20240418
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:31 GMT
content-type: image/png
content-length: 72595
last-modified: Sun, 03 Jul 2022 14:09:02 GMT
etag: "0d36072e68ed81:0"
x-powered-by: ASP.NET
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KIrFmhwRxwbMT1CbAAlQP%2BpeAe7cOC%2F83vJXKY3K%2BhD66wsfDSmiC1GjtaYEXeFB5a345smKDqNKK8cDgHr6Zkh6wHZq%2FHNXnkRe1bPHSIBupnexyFjOrcwxAgMRwdavfwx%2F94s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87629284c92db505-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 | 142.250.74.163 | 200 OK | 7.7 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 IP142.250.74.163:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7748, version 1.0 Hasha09f2fccfee35b7247b08a1a266f0328 0da2d17e738f46d2a09e6fb7969da451719a9820 cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rosequake.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:54:11 GMT
expires: Fri, 11 Apr 2025 17:54:11 GMT
cache-control: public, max-age=31536000
age: 563420
last-modified: Fri, 22 Mar 2024 00:01:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/css/iconfont/iconfont.woff2?t=1657020896111 | 188.114.96.1 | 200 OK | 38 kB |
URL GET HTTP/3www.rosequake.com/css/iconfont/iconfont.woff2?t=1657020896111 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 37788, version 1.0 Hashfda53bb64e7c76c9fd7a3feece87baf9 85ea2d508fa5da02d79f393b5779d61e1f3e0d46 868fa7e9273b2874aaa642ace965973f6ec2fba27d5da30211d42f299e54ea74
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/iconfont/iconfont.woff2?t=1657020896111 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/static/CBDStyle.css?v=cac22025232-20240418
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:31 GMT
content-type: application/font-woff2
content-length: 37788
last-modified: Sun, 31 Jul 2022 07:35:49 GMT
etag: "80b86b27b0a4d81:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1Ad21asamgepoDwzsG%2FPetucwFSXy%2FcgN5h0Dwb6WSwXCZTIHRU4H4ZqARHy7kZ8%2B7uED2CtM%2Fo0hUUZh49qrQ8stRFndEIBVbFYuNCzA35nqUp%2B0ecDjZV%2B%2Fe86veSyXc2xHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876292866f9856ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/Images/x_spr.png | 188.114.96.1 | 200 OK | 30 kB |
URL GET HTTP/3www.rosequake.com/Images/x_spr.png IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typePNG image data, 360 x 232, 8-bit/color RGBA, non-interlaced Hashb0958b354c218fe3969a24c2a8008cbb 0eb3c7e0dc51fa9abc9cb4d125a7042ff548df76 c4d10abd78c703af024a8d7890bd472e7a185109bc4a62b0116a159eca0c8bf1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Images/x_spr.png HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/static/product.css?v=d33ss12331113
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:31 GMT
content-type: image/png
content-length: 30310
last-modified: Thu, 29 Nov 2018 05:24:16 GMT
etag: "18ef72c5a387d41:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2015
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bzzAVYFwLzSPHeJA4ZtG5fjtNNLzSncFOOqp06il2J9A2rkuoli1B8L%2FWlDEP%2FXn1EtPEg0lhMSvDk8kfNJNq7xgO0A93cazJWqYB7q8L3vwplyPkWvhC26afn9YGkzDc%2BV9dw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876292867fda56ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/assets/sass/index.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 6.9 kB |
URL GET HTTP/3www.rosequake.com/static/assets/sass/index.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with very long lines (4799), with CRLF line terminators Hash3443516bacfaa66ae391b88d88e33e6f 37d95a74b0cec5732515056a2c9dae72a838f413 cad23b2d2a92fec9b54dcecf79459459a4d7bc4539bcb8c00b334bb319249038
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/assets/sass/index.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Sat, 14 Oct 2023 18:20:10 GMT
etag: W/"49725411cbfed91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HQNZY09yg5%2F%2FMAu5a7PHlIjfqAb8tx%2FVDdOg9I41UcmfDRW8HA1JV9VvTymG5h3meE52NRYZ9%2FH5szFODy5d%2Fh48Dcen37o%2BHyFVLP%2BKIpc%2FgyPMYacFuW%2FkIKf3uH24yDqc6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292780c8f56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/poppins/v21/pxiDyp8kv8JHgFVrJJLmg1hVF9eO.woff2 | 142.250.74.163 | 200 OK | 8.5 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiDyp8kv8JHgFVrJJLmg1hVF9eO.woff2 IP142.250.74.163:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 8504, version 1.0 Hash88042d51a299f20ab0ddf917838fe403 a99a6d584385f86f84e893330f6ae158372b5d63 1ddb074f9963be8f6275c42dbd54d18625da8f91c85803121094ec81649f488b
GET /s/poppins/v21/pxiDyp8kv8JHgFVrJJLmg1hVF9eO.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rosequake.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 17:55:20 GMT
expires: Tue, 15 Apr 2025 17:55:20 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:34 GMT
content-type: font/woff2
age: 217751
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html | 188.114.96.1 | 200 OK | 43 kB |
URL User Request GET HTTP/3www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (712), with CRLF, LF line terminators Hash892657d97da7c29aee5ab76f9c0c3dd6 8c605a8c81611e0b4cb150471d115245e51a201b 3075d88e4af978275ee75ef679a60684a76f1f928a47125efbf766aad19918b0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wTVvXmjBPiNWqIqYOOJS4lc3DRbVgAC6YmHSg9HpQMs5OXeOkryMXVry4nm4Jmen%2B%2Fv4OpQss0kPjakELNJ%2BL3TsvMBFvav8R8MFf8u68VgpEm4E5Lv6e9dhYQNNS78EUa2edg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87629260be5956ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/assets/images/Pages/page-cart/cart-security-3.png | 188.114.96.1 | 200 OK | 1.7 kB |
URL GET HTTP/3www.rosequake.com/static/assets/images/Pages/page-cart/cart-security-3.png IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeRIFF (little-endian) data, Web/P image Hash3459001417f4649771e6d5e8383b1341 5d37404f7f4f8a5bf9d565a5cbb7b54ac240c85c 8e4691b981ca1877e7c4dbb8f066f88b1256f77349af34b3345cc58659bc7540
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/assets/images/Pages/page-cart/cart-security-3.png HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:31 GMT
content-type: image/png
content-length: 1740
last-modified: Mon, 15 Aug 2022 06:07:56 GMT
etag: "06aa5c6db0d81:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2016
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GaA0VI%2FKzY%2BQKrCYe61s9McWbqksifrM2v4rBUWeMxSoqCDtEGdBpaa9%2Fbdn9mQpNkqx%2Ff9nG5n2SY1hWXYcXVo%2F0GDBBFMXLiurhOeX%2FepVOcU2pRxIaOIxKcJIeT7DQVoY2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8762928748d256ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/assets/images/Pages/page-cart/cart-security-4.png | 188.114.96.1 | 200 OK | 916 B |
URL GET HTTP/3www.rosequake.com/static/assets/images/Pages/page-cart/cart-security-4.png IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeRIFF (little-endian) data, Web/P image Hashac62a233b1d382d49483d2f5dd3f8b71 eccca8151c823493aa6abe74df5094f59a71fc61 6a59f4e81342c54e516ebbc9f8707628150283bc1dfd602944d6243561adfa0a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/assets/images/Pages/page-cart/cart-security-4.png HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:31 GMT
content-type: image/png
content-length: 916
last-modified: Mon, 15 Aug 2022 06:07:56 GMT
etag: "06aa5c6db0d81:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2016
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1X9la6iW0oCMjlAbmDH5R7rFDx%2F%2F9S3SIIzbf8wVLRo16XiS2E2zxeg2vtSno3RCVtcONhV0ESYBOYczRlioc1vvx%2F00KdcSyweTiHRpBpmSo0UzaJ8yk2AcoYe32uRi7Lo%2BiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8762928758d856ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/assets/images/Pages/page-cart/cart-security-2.png | 188.114.96.1 | 200 OK | 1.5 kB |
URL GET HTTP/3www.rosequake.com/static/assets/images/Pages/page-cart/cart-security-2.png IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeRIFF (little-endian) data, Web/P image Hash59a483931bacdcba7380da31bdb937a6 e553f381eec6bf8eb48f255cbb0356a2d5604d50 a63fb47fa7fff075446e572988f068a72563d3b0530e7d6a5b28f627b4b98a2e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/assets/images/Pages/page-cart/cart-security-2.png HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:31 GMT
content-type: image/png
content-length: 1468
last-modified: Mon, 15 Aug 2022 06:07:56 GMT
etag: "06aa5c6db0d81:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2016
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UP7r8HfDIvIa4hBYVt0u4IqC0XvvNfkxXNnGZBsnZAW%2B2v5Yu4OpRRHpZGvHffWYg4AD210%2FiSh14fxA0wX%2FEr20kKrHH1VKkddGbomoA3cc4qVpDPSZjQT%2BmYWLk9CbltU61A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8762928758d556ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/js/video-8.3.0/video.min.js?v=8 | 188.114.96.1 | 200 OK | 2.2 MB |
URL GET HTTP/3www.rosequake.com/js/video-8.3.0/video.min.js?v=8 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65142) Size2.2 MB (2227151 bytes) Hashdfd31a0c13c2ee0e0617253850492858 0924aca005ae3707b411f12afa181384254b4fd5 5bbf29f1baa92596071f0f7d6d70608214994ae631ddb1cb9bb464f0dae76236
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/video-8.3.0/video.min.js?v=8 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Sat, 05 Aug 2023 16:13:57 GMT
etag: W/"44b893d6b7c7d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2015
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bksnlnyqITOi5UTPLf4i0mAPJrMZXVCeTOd8F0euiIIkrlUgfXwGfeuenXoVrsOaiY6SN37ei0kKvDBtqy8k9%2BNr2XziPBiBfTwaewaf619VYcMLTpkpIMykATVzEbzmNAiFSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292788d3956ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/ad266d9f76c677e8e59da4143e68436e.png | 104.19.234.103 | 200 OK | 163 kB |
URL GET HTTP/3img.staticdj.com/ad266d9f76c677e8e59da4143e68436e.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Size163 kB (163308 bytes) Hash7f5d2d7708f76c2d72bcede719a59257 b4405e20a7b046713fa75bc3fe7379a7c51e2961 9b5f65a12cc97ba58bb6f50ae2d2815ba1f716d046af25ac4748816613eae82b
GET /ad266d9f76c677e8e59da4143e68436e.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: image/webp
content-length: 163308
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=248435
content-disposition: inline; filename="ad266d9f76c677e8e59da4143e68436e.webp"
request-id: 9fcfd6ac-be61-4742-bf9e-89eb0989d684
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Wed, 17 Apr 2024 18:39:29 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x6kunzkamX71Nu%2FJ5e%2FPpQ%2B1W9O67oD0Kk2U3OjfGS2OWKRW3oZbWRD2gZwqsADH8Pi3j66nNiLgZqQSN3jAU9wQ3eUchQndnjhje8sCV7nYlLfAeD4xzRR69CJDu3Hpggc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=292.999983
access-control-allow-origin: *
server: cloudflare
cf-ray: 876292869c99568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/0d7bc31dbb3082bc196883b82bf9a7d8.gif | 104.19.234.103 | 200 OK | 96 kB |
URL GET HTTP/3img.staticdj.com/0d7bc31dbb3082bc196883b82bf9a7d8.gif IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hash5be1b64bee04f3a4734db6f6fecf9031 f70320fc607058600d23c1d38be27dc94f5f238b 5b6f8f1aaf5bce45972692c1ac4e8db7941eab01cf11a8e07ca829167f213266
GET /0d7bc31dbb3082bc196883b82bf9a7d8.gif HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: image/webp
content-length: 95572
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=gif, origSize=192089
content-disposition: inline; filename="0d7bc31dbb3082bc196883b82bf9a7d8.webp"
request-id: 6f82dec2-9b8b-4a62-b320-e9c0b4520f06
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Tue, 16 Apr 2024 09:30:07 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EgDGUmlE7p67neIicUiGEkuoWTPI0wwdPsUtK5AthOf%2FZ3dks6%2BpMRb0J3TpjCZpR%2BL6x79CUvA2h8wtP5PhUXXc15W9RoMoG%2FD114L4p9hKSgDC23GsZX3lrizMD2osAds%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=329.999924
access-control-allow-origin: *
server: cloudflare
cf-ray: 876292869c9d568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/96e8f72babfb5f47220eab02f69908bd.jpg | 104.19.234.103 | 200 OK | 37 kB |
URL GET HTTP/3img.staticdj.com/96e8f72babfb5f47220eab02f69908bd.jpg IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 500x500, components 3 Hasha34ffd4b11a8dbbf6c424b33a29fa5cd d49169a05217c53f6cff8053b74d039290e208be 68b96c1ec77cebd1bf036d66bace6797a2baf3a5783bb2281c7581c159125dd8
GET /96e8f72babfb5f47220eab02f69908bd.jpg HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: image/jpeg
content-length: 36592
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origSize=39830
request-id: 6a1553f7-7525-49d4-b235-ca4b385b6258
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Fri, 29 Mar 2024 13:17:08 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zGx%2Bro4lUljsfvdAIn4VdsEQywPbqElLBxwjUd6oxWRMY%2BcLwd3XoG2xpw5aSQTX3E3R9nWt31S5SVNqNloeburaQFeIA4liyuzwIu6YkjOA8Zcr8HBXrRF1p1tz7644TYg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=266.000032
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629286aca5568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/b15c735cea372d278d62b8472571517e.jpg | 104.19.234.103 | 200 OK | 33 kB |
URL GET HTTP/3img.staticdj.com/b15c735cea372d278d62b8472571517e.jpg IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 500x500, components 3 Hashc522429cddd1cc09da4cd87ac5c46bc2 a44c4efba7f23a984d5ffa039d8589d19ce4020f d6c4ab1f3fd65e10f5c8961393fce2ce470f36a8dfa7165f809b5ffc01572580
GET /b15c735cea372d278d62b8472571517e.jpg HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: image/jpeg
content-length: 33116
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origSize=34571
request-id: 07687efb-392c-466b-a1f6-fd685bd480fa
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Fri, 29 Mar 2024 13:17:08 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NErCvge5SiDkS6UtfQquAWqiLO6TTC3t8SuZa2tOD%2Fkht0xlN3wn5p6O4RxOixcSlkMXkd8BNpnIscXgreOhwksyTJj8VRohky3X8uZBIohAxDcYDMUYd3fOoWDlQyyFSK4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=263.000011
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629286acac568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/83f1ec8467f20fc72e13a281433f3261.png | 104.19.234.103 | 200 OK | 162 kB |
URL GET HTTP/3img.staticdj.com/83f1ec8467f20fc72e13a281433f3261.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Size162 kB (161756 bytes) Hashce799d8e510644c3e4bef3adb4e5fc0b e8465bc0a6ae4408997539f03092400db5b9fb92 fa7c6d6b658c69c82a31d23065634d5f3c7aa4a1c8b19069057982d3cf9f7139
GET /83f1ec8467f20fc72e13a281433f3261.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: image/webp
content-length: 161756
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=247135
content-disposition: inline; filename="83f1ec8467f20fc72e13a281433f3261.webp"
request-id: ddee7eef-9677-4760-949f-78917a9e61f6
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Wed, 17 Apr 2024 21:40:36 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wMLZPQzRuL8mUvcbs9wyMKDVQPaTR%2F8dSCpEMAHcl2rcEczDaBs07g4xUqGdgW0z21%2F5Lj3q0rW9mfTXtl2ChREwV4vK6xK600MUEuruPbRRBpwQv30vV0vH2NrRAEaO5eg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=440.000057
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629286bcb4568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/45a2c95a69cd27a85ef342bf2daa3c00.gif | 104.19.234.103 | 200 OK | 295 kB |
URL GET HTTP/3img.staticdj.com/45a2c95a69cd27a85ef342bf2daa3c00.gif IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Size295 kB (294940 bytes) Hash22ad593be4b8d35e1a56876fe5632209 32690a63f364cf1c8826484eb77c5ab4c822f2a3 d24e8eed0b0a6ba3e07a01912f79dc1753fb24e100eb8a625e179fa81d0b96a3
GET /45a2c95a69cd27a85ef342bf2daa3c00.gif HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: image/webp
content-length: 294940
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=gif, origSize=407667
content-disposition: inline; filename="45a2c95a69cd27a85ef342bf2daa3c00.webp"
request-id: 45a7909b-e243-4fa2-903a-c9f05f3439d9
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Wed, 17 Apr 2024 18:39:29 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lB9DVrrwNYpZK8jbGHa4xi2%2FlNRqQ6mLEITi6xhDEST7EQrBr9inFR6AbhygzqCoGTE%2FOLJHE%2BhEcdDasKcz0wFZ8RzCmAmUs%2F%2B6R6A6Hr%2FPhYr%2B%2Bd%2FasuTBcM1OwUrIwUM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=398.000002
access-control-allow-origin: *
server: cloudflare
cf-ray: 876292869c9c568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| customer-30zc4hfqg1m9lcz1.cloudflarestream.com/embed/sdk-iframe-integration.fla9.latest.js?video=6d0285be93847d7f69037a297d577e2d | 104.16.96.114 | 301 Moved Permanently | 0 B |
URL GET HTTP/2customer-30zc4hfqg1m9lcz1.cloudflarestream.com/embed/sdk-iframe-integration.fla9.latest.js?video=6d0285be93847d7f69037a297d577e2d IP104.16.96.114:443
Requested byhttps://iframe.videodelivery.net/6d0285be93847d7f69037a297d577e2d CertificateIssuerLet's Encrypt Subjectcloudflarestream.com Fingerprint4B:FC:27:51:84:79:E8:BA:88:43:DB:65:F0:1A:02:38:C3:2C:69:E7 ValidityWed, 03 Apr 2024 04:01:30 GMT - Tue, 02 Jul 2024 04:01:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/sdk-iframe-integration.fla9.latest.js?video=6d0285be93847d7f69037a297d577e2d HTTP/1.1
Host: customer-30zc4hfqg1m9lcz1.cloudflarestream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iframe.videodelivery.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 18 Apr 2024 06:24:32 GMT
content-length: 0
location: https://customer-30zc4hfqg1m9lcz1.cloudflarestream.com/embed/sdk-iframe-integration.fla9.latest.js
vary: Accept-Encoding
server: cloudflare
cf-ray: 8762928bdb1fb518-OSL
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/a4ad66e99a859656e5a3128c09213c5f.jpeg | 104.19.234.103 | 200 OK | 49 kB |
URL GET HTTP/3img.staticdj.com/a4ad66e99a859656e5a3128c09213c5f.jpeg IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 500x500, components 3 Hash0394619aa94eb06ab86f0aff522726c2 fb61a3bf98dd2f0cf740f85bce0ebd4fe7330a11 fbc4de91fa961cbea3180ed8bfa9dbe90b1324c28c041dd40383e8f5aec3e026
GET /a4ad66e99a859656e5a3128c09213c5f.jpeg HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: image/jpeg
content-length: 49016
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origSize=51977
request-id: 315c11b8-6489-4ba5-b313-6098f48aaa7d
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Tue, 16 Apr 2024 12:59:08 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nn%2FJSlBh72RPdxFZ5zaPyc4j0SMqVD0yOaUZixzxGfqLiG1xsTIbA6NmXOdlnmiTuJo26YaTV6Jwa0%2FkQMF%2BqrZfCwufhzylsl5wT5OH2fF9Jr5BM5dpaAJ94rEhNa4qcqg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=880.000114
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629286aca0568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/acbf0edcc73d91c82749df198ea3c00b.jpg | 104.19.234.103 | 200 OK | 50 kB |
URL GET HTTP/3img.staticdj.com/acbf0edcc73d91c82749df198ea3c00b.jpg IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 500x500, components 3 Hash0eb22df2c513bd5e789cf992a2156baf ee588f7e3e3030dfb31c6b465f5fa37d102a2230 68e1621a98bc466c1a04520a21fd2cde2d41094447903f5c26d654517cf18856
GET /acbf0edcc73d91c82749df198ea3c00b.jpg HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: image/jpeg
content-length: 49856
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origSize=53944
request-id: 4c9b7e14-3c02-453f-86a1-4d2a0747f9cb
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Tue, 16 Apr 2024 12:59:08 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C5EP4dNvcMn7qiDNE8szJ53Xl0Wj4lvh00Ep0c5BRYBApn6r%2Fv%2BHpxYIZOmM%2BjyCzJXlUrtMTnDB%2FUwwkzG%2F5FKCIIzwa8h%2BVxgfLcBtcnBcRSPIFs7gBaytERkBYZXQSWM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=898.000002
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629286acae568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/ad266d9f76c677e8e59da4143e68436e_300x.png | 104.19.234.103 | 200 OK | 75 kB |
URL GET HTTP/3img.staticdj.com/ad266d9f76c677e8e59da4143e68436e_300x.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hash7e5daddcffc30468d08f48c3b8631892 e5e272c79dfe7750720eea91f60ba89d0f1ee055 93cc4013ecab052ff29c9c31c0e58b96c1114c7bd7b608086120e275dc9438ea
GET /ad266d9f76c677e8e59da4143e68436e_300x.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: image/webp
content-length: 74892
cache-control: public, max-age=31557600, max-age=3600, public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=120587
content-disposition: inline; filename="ad266d9f76c677e8e59da4143e68436e_300x.webp"
expires: Wed, 17 Apr 2024 22:40:36 GMT
request-id: 989d2e39-b79b-45e1-a623-9a94173fc26a
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 989d2e39-b79b-45e1-a623-9a94173fc26a
x-xss-protection: 1; mode=block
last-modified: Wed, 17 Apr 2024 21:40:36 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J1dNmZdj20qWK7BP5JEAyQ8of29HGztoOVHsmulOQPsYJ6qFdfK3mOgrxldwCP35qakWdaaqjP02YfJsyJ4OteBfgOwIkNC8wXly05%2FXlw8hv%2FVqFqX1oqFRt0UPuWBvC7c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=918.999910
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629286bcba568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/50272156a1a0c797faa091824bb8291f.png | 104.19.234.103 | 200 OK | 73 kB |
URL GET HTTP/3img.staticdj.com/50272156a1a0c797faa091824bb8291f.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hashec7dd0bc1761e195c55655c481eb0645 1f8ec9b45d3aecfd95e745bd97f2acee489b444a a594f6995a6091a61a25ad7b02f7c0d89e811e144cb5b161f8b8c5a639a6e640
GET /50272156a1a0c797faa091824bb8291f.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: image/webp
content-length: 72782
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=149118
content-disposition: inline; filename="50272156a1a0c797faa091824bb8291f.webp"
request-id: 98ab957d-04cb-4799-ac49-b39f9c2dfe69
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Tue, 16 Apr 2024 12:59:08 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y%2BXF8ozVuVGmkLcyYvV7pLVnKDEYaCVSBHW8vznidRUNklZ7tDY%2FVCx8oFpZ5vBeFcV6cl3BEoo1n9dA0L0AesWOgIDS1s8V1C2ivO7xqJ%2FpZMBWi%2FGhXwPcqnZ6bcUv5rU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=994.999886
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629286aca4568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/ajax/index.aspx?action=UserInfo | 188.114.96.1 | 200 OK | 15 B |
URL GET HTTP/3www.rosequake.com/ajax/index.aspx?action=UserInfo IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
Hash00d746e4b7a743d7815f126764dbf5c0 46247b4f29333cdfdf067dc2c5d449fffab7f77c 786a593906565372853a05afa202cc6228dd70e479befba3096965a06682529a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ajax/index.aspx?action=UserInfo HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470; _ga_B1QS3P765Z=GS1.1.1713421472.1.0.1713421472.0.0.0; _ga=GA1.1.1581830765.1713421472
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: application/json; charset=utf-8
content-length: 15
cache-control: private
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X8qpLXWOx9%2Fot68mqFCQDUTWdYLl9xSC%2BfNSEfASGJeCRQB4tw%2BqwjM7xzoqR4bmILrzkRP3Fw6MV8%2FakKYSn8%2Fc6qN5h0Ty82zrRt9g8J8xBv%2B%2BGRdXRdmuILITBYD8BqjJTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8762928aed5b56ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| customer-30zc4hfqg1m9lcz1.cloudflarestream.com/6d0285be93847d7f69037a297d577e2d/manifest/video.mpd?parentOrigin=https%3A%2F%2Fwww.rosequake.com | 104.16.96.114 | 200 OK | 0 B |
URL GET HTTP/2customer-30zc4hfqg1m9lcz1.cloudflarestream.com/6d0285be93847d7f69037a297d577e2d/manifest/video.mpd?parentOrigin=https%3A%2F%2Fwww.rosequake.com IP104.16.96.114:443
Requested byhttps://iframe.videodelivery.net/6d0285be93847d7f69037a297d577e2d CertificateIssuerLet's Encrypt Subjectcloudflarestream.com Fingerprint4B:FC:27:51:84:79:E8:BA:88:43:DB:65:F0:1A:02:38:C3:2C:69:E7 ValidityWed, 03 Apr 2024 04:01:30 GMT - Tue, 02 Jul 2024 04:01:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /6d0285be93847d7f69037a297d577e2d/manifest/video.mpd?parentOrigin=https%3A%2F%2Fwww.rosequake.com HTTP/1.1
Host: customer-30zc4hfqg1m9lcz1.cloudflarestream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: cmcd-object,cmcd-request,cmcd-session
Referer: https://iframe.videodelivery.net/
Origin: https://iframe.videodelivery.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:33 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET,HEAD,OPTIONS
vary: Accept-Encoding
server: cloudflare
cf-ray: 8762928e5e48b518-OSL
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/bc18609143ce3076b9c87d68819bab39.gif | 104.19.234.103 | 200 OK | 243 kB |
URL GET HTTP/3img.staticdj.com/bc18609143ce3076b9c87d68819bab39.gif IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Size243 kB (242928 bytes) Hashff8c840e374d3230d40f63362303a078 19a56197b23ad5388e828020cbe048d93370013f c5b2509460408b8b553ba6a3c5dfc33b8dbcda51d3b7193594c97f9729e89ddb
GET /bc18609143ce3076b9c87d68819bab39.gif HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: image/webp
content-length: 242928
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=gif, origSize=703763
content-disposition: inline; filename="bc18609143ce3076b9c87d68819bab39.webp"
request-id: 67253621-54c5-4c29-841c-5a6e8b80431a
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Thu, 18 Apr 2024 04:38:22 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ruWoceREinlBWQFusbuaAKShVZPaikpDlCmhk0whzdeCrI5ls8Bb7WMq9235rzTNojutXU8sr%2FB%2FoPEhK5bSAuh0sSppMIgb%2B%2Bqq6XBivI84ovavEJZI0iz5oRIwyuQD0BA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=960.000038
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629286aca2568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/45fddd898b4a7079e4da96004a8c3dd1.png | 104.19.234.103 | 200 OK | 381 kB |
URL GET HTTP/3img.staticdj.com/45fddd898b4a7079e4da96004a8c3dd1.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Size381 kB (381138 bytes) Hashe44bebdee971207c82bb2181838d0628 2ae483e1adbe52582713552f4439a32f29d6ae29 9163487c4acf66b8308ba23a5892c52dd70aee20971bb99963ee67e9fd5306b7
GET /45fddd898b4a7079e4da96004a8c3dd1.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: image/webp
content-length: 381138
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=572674
content-disposition: inline; filename="45fddd898b4a7079e4da96004a8c3dd1.webp"
request-id: 323876eb-973b-4467-a896-38d417170b78
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Tue, 16 Apr 2024 12:59:08 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gAhHjdYg1O8Yc7nm57ImuvtDsHtQ8eZ3MgK29yzPWjmBuqLm0WCECPn67lWkZP7y%2BZtzWRoyOndbTmnvwaKAJPVOxt%2Bx7BmGfIH%2Bh1oEVkHnPd3HS2z50xbbPrXdSz79vUQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=898.999929
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629286bcb5568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| customer-30zc4hfqg1m9lcz1.cloudflarestream.com/6d0285be93847d7f69037a297d577e2d/lifecycle | 104.16.96.114 | 200 OK | 9.3 kB |
URL GET HTTP/2customer-30zc4hfqg1m9lcz1.cloudflarestream.com/6d0285be93847d7f69037a297d577e2d/lifecycle IP104.16.96.114:443
Requested byhttps://iframe.videodelivery.net/6d0285be93847d7f69037a297d577e2d CertificateIssuerLet's Encrypt Subjectcloudflarestream.com Fingerprint4B:FC:27:51:84:79:E8:BA:88:43:DB:65:F0:1A:02:38:C3:2C:69:E7 ValidityWed, 03 Apr 2024 04:01:30 GMT - Tue, 02 Jul 2024 04:01:29 GMT
Hash665f3d0e741958326e357491052ccd3d 9ccc1658fb91958cd99bb5e73547d40ad2b0f994 4d834d182b5561967a1b544298d9a9cb13066facffc3aecf133af441a256dd28
GET /6d0285be93847d7f69037a297d577e2d/lifecycle HTTP/1.1
Host: customer-30zc4hfqg1m9lcz1.cloudflarestream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://iframe.videodelivery.net/
Origin: https://iframe.videodelivery.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:33 GMT
content-type: application/json
access-control-allow-origin: *
vary: Accept-Encoding
server: cloudflare
cf-ray: 8762928e1df2b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/0d7bc31dbb3082bc196883b82bf9a7d8_600x.gif | 104.19.234.103 | 200 OK | 48 kB |
URL GET HTTP/3img.staticdj.com/0d7bc31dbb3082bc196883b82bf9a7d8_600x.gif IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hashee13c144c1fe9cf10cce9b6006c2f8a6 38dadd7035d9d34f1bcc21de8d1a4fd1bc85e374 a94152fb77c2fbbf8eef757d3331a4cd013e2af659c1d59bf2d8003502031f6c
GET /0d7bc31dbb3082bc196883b82bf9a7d8_600x.gif HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:33 GMT
content-type: image/webp
content-length: 47948
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=gif, origSize=185508
content-disposition: inline; filename="0d7bc31dbb3082bc196883b82bf9a7d8_600x.webp"
request-id: 12d259fd-50cc-49be-af43-6742d1574946
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Thu, 11 Apr 2024 23:39:39 GMT
cf-cache-status: HIT
age: 95201
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m5bUAKBGBQFSbgaYTfonyrt7AFg5m7E9MEZqSnl%2FfYHBJEuW4qGC7G%2BHoQ%2FoEod6%2Bwx1r2DpDUicHec1W0ojpcR8Q7CfSJhVGwIj9K%2B0k0lLokVd6J196WQE0xBtJgl4OkQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=18.000126
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629291ce15568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/39d20d0367842f03ee5c83eb47ddf7b8_600x.gif | 104.19.234.103 | 200 OK | 83 kB |
URL GET HTTP/3img.staticdj.com/39d20d0367842f03ee5c83eb47ddf7b8_600x.gif IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hash216db0a7f067222f0e08b988e31f7b8d 274f2fa877e7546e494e1abdcdbd135de96912de e91da6083817a67b3c03ced0793a9b57a19edc278710416c02642c49de9c1407
GET /39d20d0367842f03ee5c83eb47ddf7b8_600x.gif HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:33 GMT
content-type: image/webp
content-length: 83120
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=gif, origSize=170939
content-disposition: inline; filename="39d20d0367842f03ee5c83eb47ddf7b8_600x.webp"
request-id: 64c44d9d-98ab-42f3-845f-48be5cbe9167
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Thu, 07 Mar 2024 22:53:29 GMT
cf-cache-status: HIT
age: 1568170
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SHLRwkoLIVtrW8sNp%2Fvvd%2B%2F7cZ9FBJn5lqLKtXS%2BrkiJrAQq8B5hWUo7NMIq4QRHJnI0Qy7fNvd9sLN4QJ51Pc88bR2otI%2BoVA3q4Oex%2Bp3q1XSIvUq3eoXJLgPaAL1gTR8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=16.000032
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629291ce19568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/images/loading.gif | 188.114.96.1 | 200 OK | 781 B |
URL GET HTTP/3www.rosequake.com/images/loading.gif IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeGIF image data, version 89a, 16 x 16 Hash21ab0717cf57aea00e222e6570678b35 d76c0624c7598ffa603475a1ece2ba4e18355879 82d0c69a839a750eeb6bd5d94b7a94ab87b006924e97479ce8c55dc13b39ee11
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/loading.gif HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/static/CBDStyle.css?v=cac22025232-20240418
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470; _ga_B1QS3P765Z=GS1.1.1713421472.1.0.1713421472.0.0.0; _ga=GA1.1.1581830765.1713421472; browser_client_id=1713421472563444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:33 GMT
content-type: image/gif
content-length: 781
last-modified: Wed, 13 May 2015 02:03:29 GMT
etag: "c16ee41218dd01:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2016
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BPWZFEIvP0fuk5Lw6Ts0va3dz8Ta3JrDoW%2Fz6bkSc3rypTLgwcCHPWBR92ZwShfP75u6Mq3Q0LEN1UgMaMcSgubKa8sZNllOC14feL6PgRqSmrBNy8PjB0RZj6c7s3a16dZ%2F%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87629291edcf56ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/d748994537eff2088e82ca978e7fcdbe_600x.jpg | 104.19.234.103 | 200 OK | 26 kB |
URL GET HTTP/3img.staticdj.com/d748994537eff2088e82ca978e7fcdbe_600x.jpg IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hash571f00534c79e60d0746a0bf6307c363 6339d220e8cf72b0ba1f7d05a291161cd32f040b ce103cd44a9dc42592cecf74fbcbd1e206473f0d7fe8ebb049458ad2b43bf550
GET /d748994537eff2088e82ca978e7fcdbe_600x.jpg HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:33 GMT
content-type: image/webp
content-length: 26480
cache-control: public, max-age=31557600, max-age=3600, public
content-disposition: inline; filename="d748994537eff2088e82ca978e7fcdbe.webp"
expires: Wed, 06 Mar 2024 20:22:27 GMT
request-id: c37a83fa-446e-42f1-a594-e1e26e148efc
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: c37a83fa-446e-42f1-a594-e1e26e148efc
x-xss-protection: 1; mode=block
last-modified: Wed, 06 Mar 2024 19:22:27 GMT
cf-cache-status: HIT
age: 1568170
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9rQbqUTuUXVI1uScBWMsOmFRXQVqfEapldCYskH6k%2F9Wg8LVCnyxp7z8Hj37vJ9S2XxJ4umqEOjpg%2FekHZimra4faNaJgWyo7VYWDeXJA8A3BAwWFFf%2F5Y%2FUQ6Qqo99UaMc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=21.999836
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629291de1d568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/lib/slick-carouse/slick.min.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 631 B |
URL GET HTTP/3www.rosequake.com/static/lib/slick-carouse/slick.min.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with CRLF line terminators Hashcbd721a56cee571b7894b4432b1644ff 64b55d078a6ff3ac9d916ab31017b22ad4cae4cc 051c156fd95c71e48fb3d4c69a131617be06758a4302f4d63f259ab32ced32ea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/lib/slick-carouse/slick.min.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 06:06:14 GMT
etag: W/"0fde1f6db0d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G96iDRDvO4rTldlx4Y41vDF4SCTnjcQSyjVGL74Av2RmqqzIIwUBYDIc%2FoY7ukmeELgmhrlaEGbmZbQE%2BnXgJPCPOHUnWdM0qI%2FCK%2F%2BB9XsIBykfdYoNHrwmHpopPfS8adx%2BtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292780c9256ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/45a2c95a69cd27a85ef342bf2daa3c00_600x.gif | 104.19.234.103 | 200 OK | 295 kB |
URL GET HTTP/3img.staticdj.com/45a2c95a69cd27a85ef342bf2daa3c00_600x.gif IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Size295 kB (294940 bytes) Hash22ad593be4b8d35e1a56876fe5632209 32690a63f364cf1c8826484eb77c5ab4c822f2a3 d24e8eed0b0a6ba3e07a01912f79dc1753fb24e100eb8a625e179fa81d0b96a3
GET /45a2c95a69cd27a85ef342bf2daa3c00_600x.gif HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:33 GMT
content-type: image/webp
content-length: 294940
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=gif, origSize=412400
content-disposition: inline; filename="45a2c95a69cd27a85ef342bf2daa3c00_600x.webp"
request-id: 5e8d923d-018f-4788-919a-b8a65a5eefe2
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Thu, 11 Apr 2024 22:58:09 GMT
cf-cache-status: HIT
age: 95201
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T6XXJII5ke9TguANwqTMKA4S9e4NgdIdTerswAbW0Dot7o7QkbRPnCIl0%2BFvUv0IYh2gBb3lvMMt4nuwEJVkHl%2B0ctSFWnny1XZ5ZBZzJ5BfI%2FvLAF1t1CPLqdnppWNgL4w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=29.000044
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629291ce13568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/9224fef2d962f44e9a187e53fbeda837_100x.png | 104.19.234.103 | 200 OK | 11 kB |
URL GET HTTP/3img.staticdj.com/9224fef2d962f44e9a187e53fbeda837_100x.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hashbd964e17e9363b462dce3d26b8c40b12 a2b806fef3330f068fda7486209519133cf9868e 421b1c66647e0fa8595050df758a97ab43b3beded40ef06932fa326eb41197ba
GET /9224fef2d962f44e9a187e53fbeda837_100x.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:33 GMT
content-type: image/webp
content-length: 10870
cache-control: public, max-age=31557600, max-age=3600, public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=16359
content-disposition: inline; filename="9224fef2d962f44e9a187e53fbeda837_100x.webp"
expires: Sat, 23 Mar 2024 12:44:54 GMT
request-id: d3a27f32-60d4-4b59-ab33-4178e41bddb3
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: d3a27f32-60d4-4b59-ab33-4178e41bddb3
x-xss-protection: 1; mode=block
last-modified: Sat, 23 Mar 2024 11:44:54 GMT
cf-cache-status: HIT
age: 1568170
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tlS4XalydFQ83GTtfJafhIIO8kWKBdC1zNiOyUCu2H0x%2BqtWHEVWGHxI7wNI74aCNUGDWBkRt%2FP8dJT8ofvuNjr%2BIGMFYKBa7R4MXYZBRAb2nwHbuin%2BZKgulaWQC1nW06g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=23.000002
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629291de29568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| customer-30zc4hfqg1m9lcz1.cloudflarestream.com/embed/809.29cb9313.chunk.js | 104.16.96.114 | 200 OK | 2.6 kB |
URL GET HTTP/2customer-30zc4hfqg1m9lcz1.cloudflarestream.com/embed/809.29cb9313.chunk.js IP104.16.96.114:443
Requested byhttps://iframe.videodelivery.net/6d0285be93847d7f69037a297d577e2d CertificateIssuerLet's Encrypt Subjectcloudflarestream.com Fingerprint4B:FC:27:51:84:79:E8:BA:88:43:DB:65:F0:1A:02:38:C3:2C:69:E7 ValidityWed, 03 Apr 2024 04:01:30 GMT - Tue, 02 Jul 2024 04:01:29 GMT
File typeJavaScript source, ASCII text, with very long lines (1763), with no line terminators Hashaf477bd164b2eab9930ce515a5ae9d4d 93de86e9a23633eb76225d26dcdbcb66f3ed7957 5a69906010cbdc7b956d3689a356c3dd1716bbd4877d41ed14fa3e1d20c301c1
GET /embed/809.29cb9313.chunk.js HTTP/1.1
Host: customer-30zc4hfqg1m9lcz1.cloudflarestream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iframe.videodelivery.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: application/javascript
cf-ray: 8762928dbd82b518-OSL
cf-cache-status: HIT
age: 151
cache-control: max-age=180
etag: W/"af477bd164b2eab9930ce515a5ae9d4d"
expires: Thu, 18 Apr 2024 06:20:11 GMT
last-modified: Tue, 02 Apr 2024 20:40:18 GMT
access-control-expose-header: cf-ray
stream-dw-version: 2024.4.6
timing-add-origin: *
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/4b8c3c5e0eebd20864168c61818f0236_100x.png | 104.19.234.103 | 200 OK | 11 kB |
URL GET HTTP/3img.staticdj.com/4b8c3c5e0eebd20864168c61818f0236_100x.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hashb4f110581e76b9ce62cee2acb325a70a dcac17a1afa20e277cea923278ef412b95af3cb5 3a091a0f0d7a2003f1f059708982f385475d1462d5ac6c37631aec2c7357cebe
GET /4b8c3c5e0eebd20864168c61818f0236_100x.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:33 GMT
content-type: image/webp
content-length: 10914
cache-control: public, max-age=31557600, max-age=3600, public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=16392
content-disposition: inline; filename="4b8c3c5e0eebd20864168c61818f0236_100x.webp"
expires: Sat, 23 Mar 2024 12:44:54 GMT
request-id: e36552c4-ac52-45c7-9f9e-ec24756d683f
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: e36552c4-ac52-45c7-9f9e-ec24756d683f
x-xss-protection: 1; mode=block
last-modified: Sat, 23 Mar 2024 11:44:54 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TyHThHg2q7L6BJHmXm7eav2WVGj2cU3XB65nBFnnDbISn03NVKLHSBmEKrEAyIqIbDImXvQ8k1mLqeQGKWCwYpzb4vgyKMtFjt6DxQjjB1XspWzJqWCd9pm1pveVfa6aYdA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=222.000122
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629291de2b568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/481763ab18bb078cc54a53ef26bd4d70_100x.png | 104.19.234.103 | 200 OK | 12 kB |
URL GET HTTP/3img.staticdj.com/481763ab18bb078cc54a53ef26bd4d70_100x.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hash1c00c9cac7171212782b9a8c5fc4e0b3 6b566b76d4fe89d9ae1358755ae9e15aeb266319 de765ac2d0c1fc27f6f62d7d18071609d314dabbec3e88b4933e818c8ce652fd
GET /481763ab18bb078cc54a53ef26bd4d70_100x.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:33 GMT
content-type: image/webp
content-length: 11500
cache-control: public, max-age=31557600, max-age=3600, public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=16171
content-disposition: inline; filename="481763ab18bb078cc54a53ef26bd4d70_100x.webp"
expires: Thu, 04 Apr 2024 22:09:25 GMT
request-id: 2017cced-5ab8-4bb8-a1fd-3e57ad1721c3
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 2017cced-5ab8-4bb8-a1fd-3e57ad1721c3
x-xss-protection: 1; mode=block
last-modified: Thu, 04 Apr 2024 21:09:25 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5Sn76Xh0XlaS6w36YVCx4YbxpR57dv31vm2V%2F1LRdDge8iMQdslvBdeNsY9zCiXbbO33qmIzQJe%2Bix5%2FNo30Ip8fAyurKMbY83mc4yelDN7Aj9aGI9AXsdJa5nkHvSBV%2FbA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=221.000195
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629292af36568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.fantaskycdn.com/1f72e6c8ab403bbc79351d0eee547d5e_600x.gif | 104.18.20.211 | 200 OK | 419 kB |
URL GET HTTP/3img.fantaskycdn.com/1f72e6c8ab403bbc79351d0eee547d5e_600x.gif IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Size419 kB (418730 bytes) Hashb7408fbdf80caa70312e92bd43f2551b 8a2678847a09021dd825bdf43237c4f9fc4b7bae 3a6aef649299f4d8bb675518f8cb6cc00de47d726850e248b0dfd81b16dfaffb
GET /1f72e6c8ab403bbc79351d0eee547d5e_600x.gif HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:33 GMT
content-type: image/webp
content-length: 418730
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=gif, origSize=842345
content-disposition: inline; filename="1f72e6c8ab403bbc79351d0eee547d5e_600x.webp"
request-id: 77380ab8-d7fd-4ab7-b343-bfc7dba0ad77
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Wed, 10 Apr 2024 12:14:35 GMT
cf-cache-status: HIT
expires: Fri, 18 Apr 2025 12:24:33 GMT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629292abf65691-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.fantaskycdn.com/45a9f1685ea797416c2da6cbca90d13e_100x.jpeg | 104.18.20.211 | 200 OK | 1.8 kB |
URL GET HTTP/3img.fantaskycdn.com/45a9f1685ea797416c2da6cbca90d13e_100x.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hashdb9730cc955c80c1beab836855ce1686 1609a4a7b4fcf599bcf4c497f10b33cff4ee8b15 5542e5db92b604747381f11f30728e3f32654f13e5ae40e23e0c836b9b51042e
GET /45a9f1685ea797416c2da6cbca90d13e_100x.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:34 GMT
content-type: image/webp
content-length: 1764
cache-control: public, max-age=31557600
content-disposition: inline; filename="45a9f1685ea797416c2da6cbca90d13e.webp"
expires: Fri, 18 Apr 2025 12:24:34 GMT
request-id: 25b35502-9f71-415e-a137-69aa9b738bb3
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 25b35502-9f71-415e-a137-69aa9b738bb3
x-xss-protection: 1; mode=block
last-modified: Wed, 10 Apr 2024 12:14:34 GMT
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629292abf75691-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/db3eab821a56b176d09f66d1b328769d_600x.jpeg | 104.19.234.103 | 200 OK | 12 kB |
URL GET HTTP/3img.staticdj.com/db3eab821a56b176d09f66d1b328769d_600x.jpeg IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hash3d652626ac742eb1477b3a8e80f1d3c8 19855bbb124fcd2c2c7415d3f92f6e3263d2b5cb 3da56c68d4ccdbdcb81e53652ebf412782e86d81d5b840bc629d59272a91d5c1
GET /db3eab821a56b176d09f66d1b328769d_600x.jpeg HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:34 GMT
content-type: image/webp
content-length: 12364
cache-control: public, max-age=31557600, max-age=3600, public
content-disposition: inline; filename="db3eab821a56b176d09f66d1b328769d.webp"
expires: Wed, 10 Apr 2024 13:36:40 GMT
request-id: 488e15f1-e2e0-44ea-97d4-01e97f906952
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 488e15f1-e2e0-44ea-97d4-01e97f906952
x-xss-protection: 1; mode=block
last-modified: Wed, 10 Apr 2024 12:36:40 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qXLbmXYzwqVSTX01pwsu0bBvgPySk8cNWfEs48rYAc80rXAD4x3busOrZEXL9Owyi9apdzkwpYv7iWAsU%2FWLMZ0Ug3b36rGBTyJKAdr0A%2FiJijNhZkbv%2Brkd1wq52d57xMI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=723.999977
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629292af34568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/c9be7bb92edc178b2c69d27823b61939_100x.png | 104.19.234.103 | 200 OK | 12 kB |
URL GET HTTP/3img.staticdj.com/c9be7bb92edc178b2c69d27823b61939_100x.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hashc175fe16666ad40b24b298ea2e99c8e7 17eac672e1fb5057a1f17f1eda59d3cebf7ed52b 62fd25eeffd4c6b3222e786638aa00a9a9fdb7f9e16f48e15bc3d9fa9af5f8a0
GET /c9be7bb92edc178b2c69d27823b61939_100x.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:34 GMT
content-type: image/webp
content-length: 11462
cache-control: public, max-age=31557600, max-age=3600, public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=16167
content-disposition: inline; filename="c9be7bb92edc178b2c69d27823b61939_100x.webp"
expires: Tue, 26 Mar 2024 13:08:03 GMT
request-id: d9d9acd2-6499-4cee-8136-5d01ffb63d9f
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: d9d9acd2-6499-4cee-8136-5d01ffb63d9f
x-xss-protection: 1; mode=block
last-modified: Tue, 26 Mar 2024 12:08:03 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6N8D2om2S0yluXEAAJ3dnVGMDbQNJp9RcExNWX7kFhx7%2BGU4VGRXxfOnv%2B2lmXULDW1NH6bf3KlwpXCOLeWYrmq3wbl8rtks1SR5qPvuE4Ao7HndGl%2BlP3%2BN9IFuUkMNU%2B8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=738.000154
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629292af37568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/85a8ecf937a65a1eb7fa6c3ad30721cd_600x.gif | 104.19.234.103 | 200 OK | 67 kB |
URL GET HTTP/3img.staticdj.com/85a8ecf937a65a1eb7fa6c3ad30721cd_600x.gif IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hash17f2d34920cf81f192df7d9db8ded3b8 fc903fe0b88061d6c335ed0ce15bec8a2203798f dcce1c5de2007843408100b83349e0a6c19a0187ff11b29881153f825052af1f
GET /85a8ecf937a65a1eb7fa6c3ad30721cd_600x.gif HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:34 GMT
content-type: image/webp
content-length: 67126
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=gif, origSize=139989
content-disposition: inline; filename="85a8ecf937a65a1eb7fa6c3ad30721cd_600x.webp"
request-id: f87c2301-ee81-4a6f-9037-d8f505c4dcba
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Tue, 02 Apr 2024 23:14:21 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z3TgZEw9%2FrMi61r%2Fjm0rdy8JgWE4O%2BU%2F19zzG%2B0kjUbQ%2FV%2F63DzYOdmxI7104MfkZPm%2FqRLuLOVgJ1p9XQdG0eJg8Vpw5S6vkZs5AUlkaRA5RkoWmxgvINUxDA7OcYpImPM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=913.000107
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629292af33568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.fantaskycdn.com/16ee85d8e18fa90ebbf0a58db14fc054_600x.png | 104.18.20.211 | 200 OK | 335 kB |
URL GET HTTP/3img.fantaskycdn.com/16ee85d8e18fa90ebbf0a58db14fc054_600x.png IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Size335 kB (335434 bytes) Hashc3b1eb29dfa3c5d39a6c86a48a3202c2 5513fcb0337879c57f9f771d7dff426e09368470 3648e54e62cc5d74e80e6eb8ae72ff518592ca20d5e324a53554ebd749ad2aeb
GET /16ee85d8e18fa90ebbf0a58db14fc054_600x.png HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:34 GMT
content-type: image/webp
content-length: 335434
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=571428
content-disposition: inline; filename="16ee85d8e18fa90ebbf0a58db14fc054_600x.webp"
expires: Fri, 18 Apr 2025 12:24:34 GMT
request-id: ae31ee1b-c506-443e-8de0-8bd65798493a
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: ae31ee1b-c506-443e-8de0-8bd65798493a
x-xss-protection: 1; mode=block
last-modified: Thu, 11 Apr 2024 23:14:05 GMT
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629292abf55691-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/images/favicon_RoseQuake/favicon.ico | 188.114.96.1 | 200 OK | 6.7 kB |
URL GET HTTP/3www.rosequake.com/images/favicon_RoseQuake/favicon.ico IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeMS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hashf033c0b4ab01e492fb3fadb6ca951f06 33e214cc88ca96bb5ab7e5bab69ff93f0f67aa43 26b0ccd197318f6eafe8f4edb28a004830152274194774fe6821c6c3abdb38b3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images/favicon_RoseQuake/favicon.ico HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470; _ga_B1QS3P765Z=GS1.1.1713421472.1.0.1713421472.0.0.0; _ga=GA1.1.1581830765.1713421472; browser_client_id=1713421472563444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:33 GMT
content-type: image/x-icon
last-modified: Tue, 03 Oct 2023 09:59:06 GMT
etag: W/"091d83ee0f5d91:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5804
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vreD54g9Ot14aagNJdpZLyt2AXxb%2FMDcrokoM67u0OqdTDxmCmhyo42Fu6UkOwjU8a%2FBTkQy6%2BAehZoQcO4cs8q2foTLLzCp7ICJF1rM8ZBkp%2BKLrDMLfqM4AT5JOe4OOmGkMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876292907c3356ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| we.chatsoftly.com/agents/images/cbdshop/agent_offline.png | 172.67.194.34 | 200 OK | 4.5 kB |
URL GET HTTP/3we.chatsoftly.com/agents/images/cbdshop/agent_offline.png IP172.67.194.34:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerLet's Encrypt Subjectchatsoftly.com FingerprintB5:CE:E5:95:0F:6B:BB:E2:D4:E0:32:34:86:00:B8:EB:C8:3F:A6:E5 ValidityWed, 06 Mar 2024 04:41:15 GMT - Tue, 04 Jun 2024 04:41:14 GMT
File typePNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced Hashf31b27f2dd78d85a52e0588a7e7698ec a601d2b2098b159d3ebe1508ff87b76131a691d6 585a9c155c15c0ba3be761b5ea54fa8fa897e888ad1d415edacf1792d7ee2c54
GET /agents/images/cbdshop/agent_offline.png HTTP/1.1
Host: we.chatsoftly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:35 GMT
content-type: image/png
content-length: 4458
last-modified: Wed, 14 Apr 2021 15:07:35 GMT
etag: "54f5cbe63f31d71:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5803
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k725B9yucqpJqDsJzh2NO7o3YTLEymiVGB0dqrmQogk5tK7QYw6ZOSclMuhdZuDilnaUXW8tEnx9m332rqSt6Byh6hJDSTv9pvk1Q0scko10rQYuDTcVt%2B0IjkgRAwQL0TGYjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8762929ebb2fb4f1-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/d2645cb5839eaebbbb18c52aa91fbae8_100x.png | 104.19.234.103 | 200 OK | 7.1 kB |
URL GET HTTP/3img.staticdj.com/d2645cb5839eaebbbb18c52aa91fbae8_100x.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hasha7a3690c37157d87a68b289fb20fa1c1 ac860ed000dacc79d44439640e06100d691f4993 7ef749b73acce3b00d8c588575571fcfb0d5f044032e5aa6c58305b2c01ea856
GET /d2645cb5839eaebbbb18c52aa91fbae8_100x.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:37 GMT
content-type: image/webp
content-length: 7118
cache-control: public, max-age=31557600, max-age=3600, public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=11018
content-disposition: inline; filename="d2645cb5839eaebbbb18c52aa91fbae8_100x.webp"
expires: Thu, 11 Apr 2024 23:35:22 GMT
request-id: 8d777086-bd6b-4fa3-91bb-678ddb676038
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 8d777086-bd6b-4fa3-91bb-678ddb676038
x-xss-protection: 1; mode=block
last-modified: Thu, 11 Apr 2024 22:35:22 GMT
cf-cache-status: HIT
age: 337300
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BZvBkJJFCcoiFZykK9R0uJYEcFQDTGaVvOAqV8QMikDwpeOf2GWOf5zOjB1610z4zAwsadIsRjPi6J1zA9DVZdRK7DB9ngg7XtBI6u6N9L4vaqQ8V1%2FBHmCQxbnlxxUGQTk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=15.000105
access-control-allow-origin: *
server: cloudflare
cf-ray: 876292a8ec81568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/6ad3c78ca61d2801f3f687d683c346cf_600x.png | 104.19.234.103 | 200 OK | 117 kB |
URL GET HTTP/3img.staticdj.com/6ad3c78ca61d2801f3f687d683c346cf_600x.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typePNG image data, 540 x 539, 8-bit/color RGB, non-interlaced Size117 kB (117187 bytes) Hasha64252e4e3834cab2f9954d0d60609ad 4c57b0989925b6e8e0fc8e5edc944b1893b49a58 4e2418cc214db2064a7e66999e4fe425a4e8ae1303de395608aeea936baed9af
GET /6ad3c78ca61d2801f3f687d683c346cf_600x.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:37 GMT
content-type: image/png
content-length: 117187
cache-control: public, max-age=31557600, max-age=3600, public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=133561, status=webp_bigger
content-disposition: inline; filename="6ad3c78ca61d2801f3f687d683c346cf.png"
expires: Sat, 23 Mar 2024 07:39:20 GMT
request-id: 6f09d5b2-4fcb-4556-b09a-51c5e0e6da78
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 6f09d5b2-4fcb-4556-b09a-51c5e0e6da78
x-xss-protection: 1; mode=block
last-modified: Sat, 23 Mar 2024 06:39:20 GMT
cf-cache-status: HIT
age: 1690886
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FpId9a%2B9Cd66joZjXK6dXMdLLIwcPuL1HTiB1%2FLR9IsBn12R4QRk63rkDkE9cuyPMmMTtuAIC%2B%2BqNM3pH%2FOT9WsZ501s8H5PR9TU1m6kUBttPg%2B%2FCHrCYkOjffQwKLDE29E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=19.999981
access-control-allow-origin: *
server: cloudflare
cf-ray: 876292a8ec7c568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| customer-30zc4hfqg1m9lcz1.cloudflarestream.com/embed/525.43864667.chunk.js | 104.16.96.114 | 200 OK | 77 kB |
URL GET HTTP/2customer-30zc4hfqg1m9lcz1.cloudflarestream.com/embed/525.43864667.chunk.js IP104.16.96.114:443
Requested byhttps://iframe.videodelivery.net/6d0285be93847d7f69037a297d577e2d CertificateIssuerLet's Encrypt Subjectcloudflarestream.com Fingerprint4B:FC:27:51:84:79:E8:BA:88:43:DB:65:F0:1A:02:38:C3:2C:69:E7 ValidityWed, 03 Apr 2024 04:01:30 GMT - Tue, 02 Jul 2024 04:01:29 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashee6f421a37eb204c9ba88ec9a47dfe45 28c070d39bd8b26f9a837eeef3261d243d136ced e1abb4333ad3d32ddc54b1c122782a44841ef72f165b405441dd3a980071f184
GET /embed/525.43864667.chunk.js HTTP/1.1
Host: customer-30zc4hfqg1m9lcz1.cloudflarestream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iframe.videodelivery.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: application/javascript
cf-ray: 8762928dcd91b518-OSL
cf-cache-status: HIT
age: 7
cache-control: max-age=180
etag: W/"ee6f421a37eb204c9ba88ec9a47dfe45"
expires: Thu, 18 Apr 2024 06:24:46 GMT
last-modified: Fri, 05 Apr 2024 20:59:57 GMT
access-control-expose-header: cf-ray
stream-dw-version: 2024.4.6
timing-add-origin: *
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| img.staticdj.com/6ad3c78ca61d2801f3f687d683c346cf_100x.png | 104.19.234.103 | 200 OK | 10 kB |
URL GET HTTP/3img.staticdj.com/6ad3c78ca61d2801f3f687d683c346cf_100x.png IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hashcf00866c09445c80b9095719b8c80754 2cb6383186277fad40d89a69a39ace3ad9873d20 85bbeec37ae0772de1b804c736d6bc3ff32765a014eb9436d17d4f49d1f3ed49
GET /6ad3c78ca61d2801f3f687d683c346cf_100x.png HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:37 GMT
content-type: image/webp
content-length: 10400
cache-control: public, max-age=31557600, max-age=3600, public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=14998
content-disposition: inline; filename="6ad3c78ca61d2801f3f687d683c346cf_100x.webp"
expires: Fri, 22 Mar 2024 16:44:26 GMT
request-id: 097758e4-850f-44c5-8ed0-f688e9e96b7e
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 097758e4-850f-44c5-8ed0-f688e9e96b7e
x-xss-protection: 1; mode=block
last-modified: Fri, 22 Mar 2024 15:44:26 GMT
cf-cache-status: HIT
age: 1690885
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3RjD0ozH3VHHfZjNt3D46HhhmiwKEWFl6DJJ9p5U1YA3BLgQkyYzDvaR4ru7wB%2BSSwWmsTXVkkEZAGvKShbfEHAd2kzlAdnizjpBukV1u1WkV5%2B6jZpBXIBe1frgngvh8QM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=21.000147
access-control-allow-origin: *
server: cloudflare
cf-ray: 876292a8ec80568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.google.com/pagead/1p-conversion/11401501348/?random=586084628&cv=11&fst=1713421472564&bg=ffffff&guid=ON&async=1>m=45be44f0v9170312560za200&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rosequake.com%2FSamurai-3.0-10-Thrusting-Spinning-Te-item-288361.html&label=7kRBCNLc8P4YEKS11Lwq&hn=www.google.com&frm=0&tiba=Take%20you%20to%20next%20level%20of%20pleasure%20%7C%20Samurai%203.0%20-%2010%20Thrusting%20Spinning%20Telescopic%20And%20Rotating%20Masturbation%20Cup&value=1¤cy_code=USD>m_ee=1&npa=1&pscdl=noapi&auid=55688725.1713421470&ec_mode=a&fdr=SA&data=event%3Dconversion&em=tv.1&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&pscrd=IhMI1PSWspDLhQMVKBaiAx3P_gB9MgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Gmh0dHBzOi8vd3d3LnJvc2VxdWFrZS5jb20v | 142.250.74.100 | 302 Found | 42 B |
URL GET HTTP/3www.google.com/pagead/1p-conversion/11401501348/?random=586084628&cv=11&fst=1713421472564&bg=ffffff&guid=ON&async=1>m=45be44f0v9170312560za200&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rosequake.com%2FSamurai-3.0-10-Thrusting-Spinning-Te-item-288361.html&label=7kRBCNLc8P4YEKS11Lwq&hn=www.google.com&frm=0&tiba=Take%20you%20to%20next%20level%20of%20pleasure%20%7C%20Samurai%203.0%20-%2010%20Thrusting%20Spinning%20Telescopic%20And%20Rotating%20Masturbation%20Cup&value=1¤cy_code=USD>m_ee=1&npa=1&pscdl=noapi&auid=55688725.1713421470&ec_mode=a&fdr=SA&data=event%3Dconversion&em=tv.1&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&pscrd=IhMI1PSWspDLhQMVKBaiAx3P_gB9MgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Gmh0dHBzOi8vd3d3LnJvc2VxdWFrZS5jb20v IP142.250.74.100:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/1p-conversion/11401501348/?random=586084628&cv=11&fst=1713421472564&bg=ffffff&guid=ON&async=1>m=45be44f0v9170312560za200&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rosequake.com%2FSamurai-3.0-10-Thrusting-Spinning-Te-item-288361.html&label=7kRBCNLc8P4YEKS11Lwq&hn=www.google.com&frm=0&tiba=Take%20you%20to%20next%20level%20of%20pleasure%20%7C%20Samurai%203.0%20-%2010%20Thrusting%20Spinning%20Telescopic%20And%20Rotating%20Masturbation%20Cup&value=1¤cy_code=USD>m_ee=1&npa=1&pscdl=noapi&auid=55688725.1713421470&ec_mode=a&fdr=SA&data=event%3Dconversion&em=tv.1&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&pscrd=IhMI1PSWspDLhQMVKBaiAx3P_gB9MgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Gmh0dHBzOi8vd3d3LnJvc2VxdWFrZS5jb20v HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 18 Apr 2024 06:24:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/11401501348/?random=586084628&cv=11&fst=1713421472564&bg=ffffff&guid=ON&async=1>m=45be44f0v9170312560za200&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rosequake.com%2FSamurai-3.0-10-Thrusting-Spinning-Te-item-288361.html&label=7kRBCNLc8P4YEKS11Lwq&hn=www.google.com&frm=0&tiba=Take%20you%20to%20next%20level%20of%20pleasure%20%7C%20Samurai%203.0%20-%2010%20Thrusting%20Spinning%20Telescopic%20And%20Rotating%20Masturbation%20Cup&value=1¤cy_code=USD>m_ee=1&npa=1&pscdl=noapi&auid=55688725.1713421470&ec_mode=a&fdr=SA&data=event%3Dconversion&em=tv.1&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&pscrd=IhMI1PSWspDLhQMVKBaiAx3P_gB9MgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Gmh0dHBzOi8vd3d3LnJvc2VxdWFrZS5jb20v&ipr=y
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.rosequake.com/PageCMS/NewsLetter_Click.aspx?edmID=54&linkID=2523&to=https://RoseQuake.com//Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html&userID=0&em=cathyt@pro-air.net&taskItemID=39562242 | 188.114.96.1 | 302 Found | 323 kB |
URL User Request GET HTTP/2www.rosequake.com/PageCMS/NewsLetter_Click.aspx?edmID=54&linkID=2523&to=https://RoseQuake.com//Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html&userID=0&em=cathyt@pro-air.net&taskItemID=39562242 IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
Size323 kB (323260 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /PageCMS/NewsLetter_Click.aspx?edmID=54&linkID=2523&to=https://RoseQuake.com//Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html&userID=0&em=cathyt@pro-air.net&taskItemID=39562242 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 18 Apr 2024 06:24:25 GMT
content-type: text/html; charset=utf-8
location: https://RoseQuake.com//Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
cache-control: private
x-aspnet-version: 4.0.30319
set-cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; expires=Tue, 18-Apr-2034 06:24:25 GMT; path=/
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ySFGs63WB9E944Bg4m%2FdQ1Kk5o6hDbF7KcWeCt9QPieV6Sp5SuznyUPp9KVNKd7ffZ1DrstqaueTkxjAv9orzxCifKeMs2xTV1Wa3qmNQKsKHVQpr4U0HnCOCmhLsdTnXrzL7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292344f9a5696-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| global.akating.com/files/css/countryFlag_s.css?v=cac22025232-20240418 | 104.21.11.35 | 200 OK | 25 kB |
URL GET HTTP/2global.akating.com/files/css/countryFlag_s.css?v=cac22025232-20240418 IP104.21.11.35:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectakating.com FingerprintD4:E7:F9:72:45:4E:79:7D:33:B1:39:44:15:02:59:D9:B0:38:BE:48 ValidityTue, 20 Feb 2024 09:48:29 GMT - Mon, 20 May 2024 09:48:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /files/css/countryFlag_s.css?v=cac22025232-20240418 HTTP/1.1
Host: global.akating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Sun, 03 Jul 2022 14:40:24 GMT
etag: W/"03c23d4ea8ed81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5801
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rkJjJbkQlB2%2Bv58twx8EraIuP5OiRnrWgmNAFgLRTUygCGxL0qXLlgdg3XQpFZFlGcm71Q9jNtd45XWvnUMdrYLH6F7jKUALEoDid58qUdg2TuBeZBlbSqOVw0jdpF%2FWUNOMP78%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292797c82b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| global.akating.com/files/js/chosen_v1.8.7/chosen.jquery.js?v=cac22025232-20240418 | 104.21.11.35 | 200 OK | 48 kB |
URL GET HTTP/2global.akating.com/files/js/chosen_v1.8.7/chosen.jquery.js?v=cac22025232-20240418 IP104.21.11.35:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectakating.com FingerprintD4:E7:F9:72:45:4E:79:7D:33:B1:39:44:15:02:59:D9:B0:38:BE:48 ValidityTue, 20 Feb 2024 09:48:29 GMT - Mon, 20 May 2024 09:48:28 GMT
File typeJavaScript source, ASCII text, with very long lines (326), with CRLF, LF line terminators Hash89081048f3bf7c9d5985d79e4976f359 50bb8dde91c4f95c98716d7d702617dbea18bbc7 811ec63ebf47f8ccdafdc6c39280dff6c51b980b2a94547a8b78a3e6cc0b853f
GET /files/js/chosen_v1.8.7/chosen.jquery.js?v=cac22025232-20240418 HTTP/1.1
Host: global.akating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Sat, 20 Jul 2019 16:38:39 GMT
etag: W/"80115e95193fd51:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5801
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4w6OkmBPBXRiPcx9VHWztpc4vDrQeZ%2FslcRmHp8%2By7Stk545kkB1xNeFsbVTWXTRDYn0rwD2pQBaZy2KNbsulIYE8yDcaFL5srY5CSLk1eitIj%2F6jPAEkdllur7I6AhAd%2F5Y60A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292796c55b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/static/lib/bootstrap/popper.min.js?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 19 kB |
URL GET HTTP/3www.rosequake.com/static/lib/bootstrap/popper.min.js?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJavaScript source, ASCII text, with very long lines (18706), with CRLF line terminators Hash777f8a32fe7ad62a6c5f1e649bc3616e 41feeaacdff5f9714848b7bbe55739185462f2ab 7a409fd037337862ad8373afd1e77781984d6961c90c00d901ae04664768b01b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/lib/bootstrap/popper.min.js?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 06:06:44 GMT
etag: W/"0b2bf316db0d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C1a9BGF3xJgZxQDbpj4qY6gSn4eL8p9yUekVxjzOVIKsJ0fd74zRg2LuvHG4LjpOe%2BmPIkePI%2FW5WB0kjdFyyQKwHJL6xhk0%2FR3Tw%2BEniuXUuMch%2BG0RMlTnipmU1rX9WRHEWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292782cc356ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/js/Reviews.js?vid=3 | 188.114.96.1 | 200 OK | 30 kB |
URL GET HTTP/3www.rosequake.com/js/Reviews.js?vid=3 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/Reviews.js?vid=3 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Sat, 03 Feb 2024 06:03:06 GMT
etag: W/"bff2a9a76656da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2014
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IEhirZVFHptOHz%2FR4vj9OckE%2BFG%2FZNRBtmC3DKrjJPnBaj%2BzzrrssI%2F8iUsNhxYs5gLD3ASkZpjz6uBshyn8dPxCPL9W4Hdsqmhsr1NVNhXSUdh7cJxlicT5JAA7e1cOoKiNQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292791e2456ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| customer-30zc4hfqg1m9lcz1.cloudflarestream.com/embed/41.093bfa3e.chunk.js | 104.16.96.114 | 200 OK | 356 kB |
URL GET HTTP/2customer-30zc4hfqg1m9lcz1.cloudflarestream.com/embed/41.093bfa3e.chunk.js IP104.16.96.114:443
Requested byhttps://iframe.videodelivery.net/6d0285be93847d7f69037a297d577e2d CertificateIssuerLet's Encrypt Subjectcloudflarestream.com Fingerprint4B:FC:27:51:84:79:E8:BA:88:43:DB:65:F0:1A:02:38:C3:2C:69:E7 ValidityWed, 03 Apr 2024 04:01:30 GMT - Tue, 02 Jul 2024 04:01:29 GMT
Size356 kB (356453 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/41.093bfa3e.chunk.js HTTP/1.1
Host: customer-30zc4hfqg1m9lcz1.cloudflarestream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iframe.videodelivery.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: application/javascript
cf-ray: 8762928dbd7eb518-OSL
cf-cache-status: HIT
age: 52
cache-control: max-age=180
etag: W/"3399aee8bd2e59d9ed4562b1a2cfe83b"
expires: Thu, 18 Apr 2024 06:23:57 GMT
last-modified: Fri, 05 Apr 2024 20:59:56 GMT
access-control-expose-header: cf-ray
stream-dw-version: 2024.4.6
timing-add-origin: *
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/js/upload.js?v=20230818 | 188.114.96.1 | 200 OK | 4.5 kB |
URL GET HTTP/3www.rosequake.com/js/upload.js?v=20230818 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJavaScript source, ASCII text, with very long lines (4925), with no line terminators Hash827f4e3f290a837216cba0f8ad0b8354 ac6362ea0f5e54a5a33e8feaf9f95eda9b4827fd 21c8a5a764b705ced156c3614cae8f8fcf2f3995e9d556c0978f7e9024cd85af
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/upload.js?v=20230818 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Thu, 17 Aug 2023 21:54:24 GMT
etag: W/"aff9196355d1d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2015
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ir%2BhdV3akHmuvkKuTdWR5RPXcebErKKyo3lhTGLLVBgZS4hW%2B7ueOrlw6GOffS4mPxCT0MzMga5c5vx435veWD5XZilguw2I3z%2BSrYnCgeMVlzOq8C8C7c6NkpL6VYathu9FlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292788d4356ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/lib/bootstrap/bootstrap.bundle.min.js?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 78 kB |
URL GET HTTP/3www.rosequake.com/static/lib/bootstrap/bootstrap.bundle.min.js?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65226), with CRLF line terminators Hash831c0d53f60fd798a1954bab7fa67a88 e6c20115332ee2e46ac5f604850b56e551bfa547 0f97c4d4ed48b57ceb649f3fc47fbc99fab591298da09507861af8b7efbe99ea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/lib/bootstrap/bootstrap.bundle.min.js?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 06:23:40 GMT
etag: W/"0fe548f6fb0d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SW%2ForypNXwM%2FV%2BcBhCUcxUg4sjpLOKvEKM552iaC%2FKZmwUSMcFL%2FIMyy56xs8gBDijiFItzxMgNU5oegvc0zexwiehpzifuq%2F5QcBgRLbcQvGbt0o%2BkmlHMjBQGTeT0IMG%2FP%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292782cc156ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/lib/jquery.elevateZoom/jquery.elevateZoom.min.js?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 3.3 kB |
URL GET HTTP/3www.rosequake.com/static/lib/jquery.elevateZoom/jquery.elevateZoom.min.js?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJavaScript source, ASCII text, with very long lines (3411), with no line terminators Hash2ce5253ba95b8d4796b1b78f80526b4d f17616ebd30a8e0812c8cf67f06ecbc58be115e8 01ecda63cde5e482377774c75c95981dbf60ddc8cdca33bd9db76b0ff3ea123d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/lib/jquery.elevateZoom/jquery.elevateZoom.min.js?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 06:06:44 GMT
etag: W/"0b2bf316db0d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KX5cjE9s12hPqfFF546g%2BnFesUSkhXSlRsc6RmbQYy6LwfAB9r5YkdulhBG1fv7M561w7qnCXkfpPvDKPQVnXQ82FCeIeNt7bDNUJINYqJmuCHaUd9w8MT91W6XZLDRMrabr6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292782cc956ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| img.fantaskycdn.com/45aff57e29b14db8e6f500f7f6cec257_100x.webp | 104.18.20.211 | 200 OK | 3.2 kB |
URL GET HTTP/2img.fantaskycdn.com/45aff57e29b14db8e6f500f7f6cec257_100x.webp IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash31f5732fb65fc372b2ea8f8dc24aa1da 191ce67e4dff35741fa78a5222aeb23f3ddc94f9 42b6f6571e34efef32b0132bce35c58ae2802f18486d504567a64cc9e2c81926
GET /45aff57e29b14db8e6f500f7f6cec257_100x.webp HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/webp
content-length: 3158
cache-control: public, max-age=31557600
content-disposition: inline; filename="45aff57e29b14db8e6f500f7f6cec257.webp"
expires: Fri, 18 Apr 2025 12:24:29 GMT
request-id: e64568cd-e91e-4ee0-b94c-a10829b7c24b
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: e64568cd-e91e-4ee0-b94c-a10829b7c24b
x-xss-protection: 1; mode=block
last-modified: Wed, 17 Apr 2024 18:39:29 GMT
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd3d56cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| we.chatsoftly.com/agents/free.aspx?im_web_plugin_id=9&session_key=&callback=udesk_jsonp1 | 172.67.194.34 | 200 OK | 37 B |
URL GET HTTP/3we.chatsoftly.com/agents/free.aspx?im_web_plugin_id=9&session_key=&callback=udesk_jsonp1 IP172.67.194.34:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerLet's Encrypt Subjectchatsoftly.com FingerprintB5:CE:E5:95:0F:6B:BB:E2:D4:E0:32:34:86:00:B8:EB:C8:3F:A6:E5 ValidityWed, 06 Mar 2024 04:41:15 GMT - Tue, 04 Jun 2024 04:41:14 GMT
File typeASCII text, with no line terminators Hash7672beac85cebbe185cf4731eff557a6 18d088bf4ac76689a6c766cbb33f4a76d2863c93 b459a79f09145d4fdc335e4028a544d6a9c49ce7c4056775ee94bf29b697d60b
GET /agents/free.aspx?im_web_plugin_id=9&session_key=&callback=udesk_jsonp1 HTTP/1.1
Host: we.chatsoftly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:35 GMT
content-type: text/javascript; charset=utf-8
cache-control: private
vary: Accept-Encoding
set-cookie: ASP.NET_SessionId=4reexpqopn21dgrigxfyjqxn; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rqN9BgnsIeQUvUo8rVl6nq5zVy8saZnuPxQCgnMm8HNHuoLHbNdKlgypyfma63ICE0dx0HK2o5CfkfmPpRqhJb0%2FW0ZPaKrF%2FPo%2FrV8r3HwC%2Fi9ZihXG2QAzlIlLzwpAYhkMIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8762929ecb41b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/product.css?v=d33ss12331113 | 188.114.96.1 | 200 OK | 53 kB |
URL GET HTTP/3www.rosequake.com/static/product.css?v=d33ss12331113 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with very long lines (315), with CRLF line terminators Hashbc0ddec2332121160fde0d941e816ee9 1fb86230e8b0edddff562388f192d8e8af3f0761 63653a1ee4e0620ef3f368ed9263a9852a5c7318b463ee09e2c300d16e1d761b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/product.css?v=d33ss12331113 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Sat, 06 Apr 2024 15:07:16 GMT
etag: W/"3e5c261d3488da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2015
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f3n8DBeJnJc9C%2F34ubvYGTSQM2lUVOEe6bB9CjXf7FOl8v9Rw4lUMph5GjG49C27COSSyAKiauIg2SrI%2FdKinLgHv%2BfMGbSbEOffiLJxD0B3IVowT%2FD1YnAvXjGdrsMhBlZdlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292786d1756ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/lib/fancybox/fancybox.umd.js?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 105 kB |
URL GET HTTP/3www.rosequake.com/static/lib/fancybox/fancybox.umd.js?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJavaScript source, ASCII text, with very long lines (65501), with CRLF line terminators Size105 kB (105164 bytes) Hashb01da78c5d4905c9961b0f6edfa28c3f e51d3d15baa13e0cda9b2e6637925c74c8655a4c 691ffb9a7ea68f1b92aa89bfd4392bfe7de445a153c28ef4268aa192215d3ef7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/lib/fancybox/fancybox.umd.js?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 06:06:46 GMT
etag: W/"0dff0326db0d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fDhGnxs3ErnlGk3Egz7%2Br9rfESXYyY%2BVuit6N6ix2uuIKc050MAjwkgnxneOw4s%2Fe6FTmOFPFwgt72vVzMALMY1xXRgxh2lg2CJ%2Fko8%2BvK5jHVQyRzG9H%2FQT4E51MLZqnE9few%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292782cc656ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| global.akating.com/files/Country_list.js | 104.21.11.35 | 200 OK | 55 kB |
URL GET HTTP/2global.akating.com/files/Country_list.js IP104.21.11.35:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectakating.com FingerprintD4:E7:F9:72:45:4E:79:7D:33:B1:39:44:15:02:59:D9:B0:38:BE:48 ValidityTue, 20 Feb 2024 09:48:29 GMT - Mon, 20 May 2024 09:48:28 GMT
File typeASCII text, with very long lines (55293), with no line terminators Hash3dd00c1468c48f40ac11cf9715d34831 98691de8e84697877dfdbf2f9e87149621c64656 0512d7cec7a4d88356a2b50d5254c7884ad61cd7f343c8add98a4c8a4ca77eb2
GET /files/Country_list.js HTTP/1.1
Host: global.akating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Tue, 28 Nov 2023 20:39:55 GMT
etag: W/"e08f8ab3b22da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5801
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ID1DJUEyVRTviifqQ4QzzAlINGsNeNkm3OBtuRV%2Fkrh1wOKAijkRFt9wJaDwiFQQvYhOJDllQSNIwKhxEPMVgBJVZaF3aNk0nWbkvVB7hC6A1R0HlMsc8yCRLrmM2Sfi9yTL%2BLM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292792bbfb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/static/assets/sass/product/product-template-default.css?v=d | 188.114.96.1 | 200 OK | 1.7 kB |
URL GET HTTP/3www.rosequake.com/static/assets/sass/product/product-template-default.css?v=d IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with very long lines (1762), with no line terminators Hash68fc70ffddd55370d0944131fe448e2b fd425066aab280fed23cb7ca5dac84bcc20c658b b44184a68c047ad2ad21cbb22e9b55557a8c764cb96826e43632a739b0077170
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/assets/sass/product/product-template-default.css?v=d HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Wed, 27 Dec 2023 12:48:00 GMT
etag: W/"c2bfbfecc238da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2015
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1tvjXucIar05wx%2BgLWrRhmNmcFyu0se9RR08fQqXIPycp19XOViZYIt3crgZ9J57Tqn4%2Bn16Q53ZqK9y78Nls0Wu8IYQE1qq9%2BBs4DelO0WmZU0TsgNlfA8RkZ4SwJZYP%2BjSuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292786d1556ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/Ajax/Products/ReviewHelpful.aspx?R=0.8484641801246862&reviewIds=10799%2C10797%2C10773%2C10783%2C10761%2C10817%2C10766%2C10764%2C10823%2C10820 | 188.114.96.1 | 200 OK | 23 B |
URL GET HTTP/3www.rosequake.com/Ajax/Products/ReviewHelpful.aspx?R=0.8484641801246862&reviewIds=10799%2C10797%2C10773%2C10783%2C10761%2C10817%2C10766%2C10764%2C10823%2C10820 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash71d76eed595d776e6e5b222cff8ebbbc 79ef13cd80f6337215b7d4bc48d2f89045538859 54812979679f7992b4a2fe7399cd1bba42dacb89e4bafdea50f39256a6ca20ab
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Ajax/Products/ReviewHelpful.aspx?R=0.8484641801246862&reviewIds=10799%2C10797%2C10773%2C10783%2C10761%2C10817%2C10766%2C10764%2C10823%2C10820 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470; _ga_B1QS3P765Z=GS1.1.1713421472.1.0.1713421472.0.0.0; _ga=GA1.1.1581830765.1713421472
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dNb5mNus1teD1Sm%2BtijTB76CHUr6mUy06i9iEJSPszcDQogsc8mKyWO578BjopdvDGkFDHzgiRZ4Z2B%2B9ftfdwIMU%2B77ojcq%2Fwnqx67RvVHw9J1r96hHMCVtKZxR8XMMN3%2BEGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8762928aed5f56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/lib/bootstrap/bootstrap.min.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 164 kB |
URL GET HTTP/3www.rosequake.com/static/lib/bootstrap/bootstrap.min.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
Size164 kB (163880 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/lib/bootstrap/bootstrap.min.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 06:06:20 GMT
etag: W/"09671236db0d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BgqhbsJGnKY1IM8qqf8AvDFeRsPkBPopej5FIktVSU4xmaWQge6qI3IIbis5W9N%2Fe0LdF7ANMyUUUjndizn3ph9Men0cCuOhDrc1wcb35UVGZI61YIyff1ePEnvs0ayatbD1GQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87629277fc8056ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| img.staticdj.com/30b1b77259b87cd9fb57eccf27dcf8aa_600x.jpeg | 104.19.234.103 | 200 OK | 51 kB |
URL GET HTTP/3img.staticdj.com/30b1b77259b87cd9fb57eccf27dcf8aa_600x.jpeg IP104.19.234.103:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:A2:4D:C6:60:04:EF:AF:EF:49:ED:3C:08:D9:87:A6:AE:B5:AF:08 ValiditySat, 08 Jul 2023 00:00:00 GMT - Sun, 07 Jul 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hash73a851dbcc43a659e4ba3922bb13d8b0 b26d6640db5fa8e1705e243c9c263a5a76a48ee3 718b0ddc6a5a9c5ba75bbab099821b33b8809f8a629b3d4b7d7bc1b52d1b317f
GET /30b1b77259b87cd9fb57eccf27dcf8aa_600x.jpeg HTTP/1.1
Host: img.staticdj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:37 GMT
content-type: image/webp
content-length: 51346
cache-control: public, max-age=31557600, max-age=3600, public
content-disposition: inline; filename="30b1b77259b87cd9fb57eccf27dcf8aa.webp"
expires: Tue, 16 Apr 2024 04:08:16 GMT
request-id: e5b85bb7-4f77-4051-b5cb-96829d507bb1
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: e5b85bb7-4f77-4051-b5cb-96829d507bb1
x-xss-protection: 1; mode=block
last-modified: Tue, 16 Apr 2024 03:08:16 GMT
cf-cache-status: HIT
age: 133079
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hmnZTIhxKysrPrysEE6jFQlYEY%2Bay%2B18kTy%2B3nLL2DVHBNhkMscaITON58Nzi%2FlrUqqqjNFweaZ3Dnb9SEGWVFDTgo6WLKcvLfmq7toPSSyfmKOTHdHsQzkQiQvR6%2F6kyJk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=20.999908
access-control-allow-origin: *
server: cloudflare
cf-ray: 876292a8ec7e568f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| global.akating.com/static/js/pixel2023.js?v=cac22025232-20240418 | 104.21.11.35 | 200 OK | 15 kB |
URL GET HTTP/2global.akating.com/static/js/pixel2023.js?v=cac22025232-20240418 IP104.21.11.35:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectakating.com FingerprintD4:E7:F9:72:45:4E:79:7D:33:B1:39:44:15:02:59:D9:B0:38:BE:48 ValidityTue, 20 Feb 2024 09:48:29 GMT - Mon, 20 May 2024 09:48:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/js/pixel2023.js?v=cac22025232-20240418 HTTP/1.1
Host: global.akating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Sat, 10 Feb 2024 17:00:24 GMT
etag: W/"495bf2a3425cda1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5801
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R%2FOEkNNAjoR529ZiMP1WYAv8Vnvsxxky44JpTr%2Fxf%2FBp%2BhakYa%2FjKYVU6gtH8GcTKdtGY9BhFqfOTfU1RYxe2IN4jrJpHv7fIv25ZtmSP7eM%2FBOqNcNbgTM5spouqxuCjloUISY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292793be4b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.google.com/pagead/1p-conversion/11401501348/?random=1713421472564&cv=11&fst=1713421472564&bg=ffffff&guid=ON&async=1>m=45be44f0v9170312560za200&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rosequake.com%2FSamurai-3.0-10-Thrusting-Spinning-Te-item-288361.html&label=7kRBCNLc8P4YEKS11Lwq&hn=www.google.com&frm=0&tiba=Take%20you%20to%20next%20level%20of%20pleasure%20%7C%20Samurai%203.0%20-%2010%20Thrusting%20Spinning%20Telescopic%20And%20Rotating%20Masturbation%20Cup&value=1¤cy_code=USD>m_ee=1&npa=1&pscdl=noapi&auid=55688725.1713421470&ec_mode=a&fdr=SA&data=event%3Dconversion&em=tv.1&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 | 142.250.74.100 | 200 OK | 2.8 kB |
URL GET HTTP/2www.google.com/pagead/1p-conversion/11401501348/?random=1713421472564&cv=11&fst=1713421472564&bg=ffffff&guid=ON&async=1>m=45be44f0v9170312560za200&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rosequake.com%2FSamurai-3.0-10-Thrusting-Spinning-Te-item-288361.html&label=7kRBCNLc8P4YEKS11Lwq&hn=www.google.com&frm=0&tiba=Take%20you%20to%20next%20level%20of%20pleasure%20%7C%20Samurai%203.0%20-%2010%20Thrusting%20Spinning%20Telescopic%20And%20Rotating%20Masturbation%20Cup&value=1¤cy_code=USD>m_ee=1&npa=1&pscdl=noapi&auid=55688725.1713421470&ec_mode=a&fdr=SA&data=event%3Dconversion&em=tv.1&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 IP142.250.74.100:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeJavaScript source, ASCII text, with very long lines (2917), with no line terminators Hash6912b5102bad3b6b1b5163b585d136b3 5da7e17cc96bc2a9f2a092b457792b4b383b638c 1f64abaeb54c7377bf50d8aca111be8ec3711eaf45509837dff1d05849d4f049
GET /pagead/1p-conversion/11401501348/?random=1713421472564&cv=11&fst=1713421472564&bg=ffffff&guid=ON&async=1>m=45be44f0v9170312560za200&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rosequake.com%2FSamurai-3.0-10-Thrusting-Spinning-Te-item-288361.html&label=7kRBCNLc8P4YEKS11Lwq&hn=www.google.com&frm=0&tiba=Take%20you%20to%20next%20level%20of%20pleasure%20%7C%20Samurai%203.0%20-%2010%20Thrusting%20Spinning%20Telescopic%20And%20Rotating%20Masturbation%20Cup&value=1¤cy_code=USD>m_ee=1&npa=1&pscdl=noapi&auid=55688725.1713421470&ec_mode=a&fdr=SA&data=event%3Dconversion&em=tv.1&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 18 Apr 2024 06:24:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1662
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/js/shop-section.js?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 6.2 kB |
URL GET HTTP/3www.rosequake.com/js/shop-section.js?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJavaScript source, ASCII text, with very long lines (6664), with no line terminators Hash30646f583611251216ba6744265c3b53 3ebf48e6c5d758c2848df18970f2a914cb01f624 7ed4c532b51119ff2c8dc8ffdd31036a1d300070bf16c9abca3816ba5a56157c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/shop-section.js?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Sun, 17 Dec 2023 19:47:57 GMT
etag: W/"73b511ef2131da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8icOSOWF2uu5itRiSIA8LFSxU1svjq1Y4%2B7I7jc9c5maHRbNJZTeEehUtzzixgtR86pCYohqt01ayGBDWdVfybWe1kN1TZ%2F8JxQjNtE1WclqCqi5d5%2Fopr8lBwwknvXdhpzlrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292786d0f56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| we.chatsoftly.com/im_client/css/ui/emotion.css | 172.67.194.34 | 200 OK | 8.1 kB |
URL GET HTTP/3we.chatsoftly.com/im_client/css/ui/emotion.css IP172.67.194.34:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerLet's Encrypt Subjectchatsoftly.com FingerprintB5:CE:E5:95:0F:6B:BB:E2:D4:E0:32:34:86:00:B8:EB:C8:3F:A6:E5 ValidityWed, 06 Mar 2024 04:41:15 GMT - Tue, 04 Jun 2024 04:41:14 GMT
File typeASCII text, with very long lines (8088), with no line terminators Hash0601a7fa15320d262c32d050937ab498 3ae94833f07968a04db7bcd6cbc4b4ea337dbaac fb81e6ff71af364456416500277a0179fef4e3ca52d5d4aa0e3db0675ee61725
GET /im_client/css/ui/emotion.css HTTP/1.1
Host: we.chatsoftly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:35 GMT
content-type: text/css
cf-bgj: minify
etag: W/"804093a28c5ed61:0"
last-modified: Mon, 20 Jul 2020 11:55:17 GMT
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5803
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1dzFCDDfQpzuqtOMywTpxgXaD3BpKPcRfrjDHqOxwWsQT6pWkLpbZWJ4Q9wlcGSgOkPiy06BCAKY5hIpbT16AnGnTll3GIsztiRPkqJXHHaTb5o%2Fyi568bt1zSRxINy%2Bouo9uQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8762929ebb2ab4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/base.js?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 84 kB |
URL GET HTTP/3www.rosequake.com/static/base.js?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/base.js?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Sat, 06 Apr 2024 09:48:33 GMT
etag: W/"422bf096788da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ijqnogWNQQhB0YTlrw2Kqzinjlszy6QTrmmZKnV8Yo%2FGHHCvohl3PymT%2Fp7z3Z9jeAUXytn5czrF0xvuSh7j24IS1r6se4JlaxmJVTfyZrbgWX6G2k5lTR3I4i7ANiGFD4tbCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292784cec56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/assets/images/Pages/page-cart/cart-security-1.png | 188.114.96.1 | 200 OK | 1.7 kB |
URL GET HTTP/3www.rosequake.com/static/assets/images/Pages/page-cart/cart-security-1.png IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeRIFF (little-endian) data, Web/P image Hashc1b4b50a6ffb98c4ed9399a4ab480b32 781617ab1985947c78e97b19cf182b06d1d98ced 805397843bf5ab461ac3cc6029bee8963f03f0cbe2124b895b0e127bd97cf63a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/assets/images/Pages/page-cart/cart-security-1.png HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:31 GMT
content-type: image/png
content-length: 1746
last-modified: Mon, 15 Aug 2022 06:07:56 GMT
etag: "06aa5c6db0d81:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2016
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1oLjCWSh%2BZ135nra82%2BPgygvRObyK%2F0ppb%2BfRds4N07jVChLAjtknkarUy8BvRE1O01p%2BccI088xINwe8CIkD26lOW9z1S5cgl2%2BKongRNelE%2BmvspFl73OOeiwkVGLoktUzGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8762928748ca56ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| we.chatsoftly.com/spa1/im_web_plugins/out_config.aspx?id=9&company_code=RoseQuake&language=en-us&session_key=&callback=udesk_jsonp0 | 172.67.194.34 | 200 OK | 2.9 kB |
URL GET HTTP/3we.chatsoftly.com/spa1/im_web_plugins/out_config.aspx?id=9&company_code=RoseQuake&language=en-us&session_key=&callback=udesk_jsonp0 IP172.67.194.34:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerLet's Encrypt Subjectchatsoftly.com FingerprintB5:CE:E5:95:0F:6B:BB:E2:D4:E0:32:34:86:00:B8:EB:C8:3F:A6:E5 ValidityWed, 06 Mar 2024 04:41:15 GMT - Tue, 04 Jun 2024 04:41:14 GMT
File typeUnicode text, UTF-8 text, with very long lines (3214), with no line terminators Hash408f2c9d63f1e7af9d4a8200447db87b f957cac386de976c2ba64a21d743e532908692f1 0093ddcbd914ff7f056efd7f17f9e721c9cb261a8e539d61e642d6064b8e4cc1
GET /spa1/im_web_plugins/out_config.aspx?id=9&company_code=RoseQuake&language=en-us&session_key=&callback=udesk_jsonp0 HTTP/1.1
Host: we.chatsoftly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:35 GMT
content-type: text/javascript; charset=utf-8
cache-control: private
vary: Accept-Encoding
set-cookie: ASP.NET_SessionId=hhajp120mupon5a4ikr4euu4; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y5X3BAOJ7Ni3h1OCWRkyTjrKwb58eD1XhNQZ08AAf%2F49l95sPbjpFlHDcsvS3xSAJYdYjmqOc2P5458OYtShCumt%2F%2BmjZ7YqioMtKMzZDLnacny4C%2Fetw2odgyo6apYlOn92Tg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8762929c2808b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/lib/jquery/jquery.min.js?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 90 kB |
URL GET HTTP/3www.rosequake.com/static/lib/jquery/jquery.min.js?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJavaScript source, ASCII text, with very long lines (65446), with CRLF line terminators Hash3e4bb227fb55271bfe9c9d4a09147bd8 156837f75f6600ccb602b4efcbd393636c33f35e ee11e902416a1d896f538103110337b39a0e2e2606bc1faf5cd0652914891127
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/lib/jquery/jquery.min.js?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 06:06:42 GMT
etag: W/"0858e306db0d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=onTInn2bEjBvoburffVkHQvc68BBS9daA6Grov%2BpghqmyAJORUjTEZk8gtbuhWex9VnIPH3MEnOD3Kg%2FzBDhNyOlLJ9n23HYJIHd45MeEUiuQ55tK8nTygr%2F7EZ0dbiw9XzSuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292782cbd56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/assets/sass/style.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 91 kB |
URL GET HTTP/3www.rosequake.com/static/assets/sass/style.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with CRLF line terminators Hash9ecdc5fe4c25c939533d5613a560b7b3 c432fd1eff96051da782463f392531d7e25f8f80 1c84f82609078a0639992c996a8b7c55f2d5b75508494cfa58deee2dbef06a21
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/assets/sass/style.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Wed, 27 Dec 2023 10:52:08 GMT
etag: W/"021fbdb238da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vRu3tq8IZUSfFZQqMRPOhcHfQTmmdUFJmJEI5w08kArrW5Ww8%2FWxRd%2FTxJc9R21J2XyYxl6lZgGoxLRXhXQS7FQnt2kXx5zFGB9060K2dZISNGq5cN0VGtJkWX6gSBvDVbzpOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292780c8956ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/lib/slick-carouse/slick.min.js?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 44 kB |
URL GET HTTP/3www.rosequake.com/static/lib/slick-carouse/slick.min.js?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJavaScript source, ASCII text, with very long lines (32026), with CRLF line terminators Hash04f7e97a54f61407f230196b17a3b5c8 e3d1d3bdc40c2e3788e2b83b1cf70084e330eaa3 254d80a49d0c9fced2fd0c272e7b868ca726df8189dc9c5735c56a33e7853dfc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/lib/slick-carouse/slick.min.js?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 06:06:42 GMT
etag: W/"0858e306db0d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xa4rnNpCOUwaYxxBXYNBzSqrTjqf8c3Pef%2FmhHF3jgXpdAn4vGa3wKv0tdEJ450A2Cml7DD21DhS%2BawBCrvLE2dJ%2BpZVIGMlGfdVIgT90RkAIaBKEt1h3C9aEy9ZiDeJ1f%2FgIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292782cc456ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/Ajax/Ajax.aspx?Action=SiteUserEventLog&BrandID=0&EventID=1&Remarks=&OrderID=0&GoodsID=1266&SkuID=288361&PromotionID=0&HelpID=0&CateID=0 | 188.114.96.1 | 200 OK | 41 B |
URL GET HTTP/3www.rosequake.com/Ajax/Ajax.aspx?Action=SiteUserEventLog&BrandID=0&EventID=1&Remarks=&OrderID=0&GoodsID=1266&SkuID=288361&PromotionID=0&HelpID=0&CateID=0 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashb1d1f09f9dbbf5bce665a82bc53b792f d39827e288ae86a6ab969a48e40b96aaa0f50b1b e4f711ac6b3656f24ff00708da29410569da5a2ad392964c19633790c57fa552
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Ajax/Ajax.aspx?Action=SiteUserEventLog&BrandID=0&EventID=1&Remarks=&OrderID=0&GoodsID=1266&SkuID=288361&PromotionID=0&HelpID=0&CateID=0 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470; _ga_B1QS3P765Z=GS1.1.1713421472.1.0.1713421472.0.0.0; _ga=GA1.1.1581830765.1713421472; browser_client_id=1713421472563444
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:39 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f2gzr7nxvPoiF1cSUaPMyE7SmBDMacJ5XAJYK0egNDNaiLaeHWCEHtUNWDayZD8DzW64SJo8bmWUOY4n9q%2BdFZ%2BL55lGZ1fiEz%2Fr1xtoKIsP8e0oPmb9z%2B7nDR3zR7xPZ9xkZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292ae9bec56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/js/video-8.3.0/video-js.css?v=8 | 188.114.96.1 | 200 OK | 50 kB |
URL GET HTTP/3www.rosequake.com/js/video-8.3.0/video-js.css?v=8 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with very long lines (7288) Hash255b691180b2f3b35d140d106426980e 98942f2c36591a357bf22a9dd80746a6a1bd3766 09d085160f3e1fedc4e10afab1f810c1803c20a7b3a517eed9e3143202706d8e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/video-8.3.0/video-js.css?v=8 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Sat, 05 Aug 2023 16:13:34 GMT
etag: W/"dd9072c8b7c7d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2015
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nAGyAsWH6cALXqs1826r2x20t4Lly5VwbRIsgKhPygMYIpBkt1bo%2BanFOTS6enQLPSGfnyJ4gLJFz5vBECxbbd4FxbMAOxaYKKTGc0rUy4yAZtgLAxpDh9HqOci0M039P3FzuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292788d3d56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| img.fantaskycdn.com/91875d1a4d8d0b55cdba307df10a32e1.jpeg | 104.18.20.211 | 200 OK | 391 kB |
URL GET HTTP/2img.fantaskycdn.com/91875d1a4d8d0b55cdba307df10a32e1.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], progressive, precision 8, 2000x1500, components 3 Size391 kB (391117 bytes) Hash1a47adc5214b8283e5c64a773ec9c929 138743caacfacd366e5246dec3bdeb3b356a895e 44b4f883e23640cf0d5c31ca98f99be515706a2bd3a6629ca57580ac07c4b438
GET /91875d1a4d8d0b55cdba307df10a32e1.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/jpeg
content-length: 391117
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: origSize=402088
request-id: 01b47c73-daa2-413e-a305-0c650947d7bb
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Sat, 23 Mar 2024 10:25:32 GMT
cf-cache-status: HIT
expires: Fri, 18 Apr 2025 12:24:29 GMT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd4f56cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/da0b0e8eb3275ea55f722acfa04a57b7_100x.jpeg | 104.18.20.211 | 200 OK | 2.4 kB |
URL GET HTTP/2img.fantaskycdn.com/da0b0e8eb3275ea55f722acfa04a57b7_100x.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash301d8e3f2622fe02ed5fde3033db7628 bcc064a44adbf2b79e0317ca37df725ce18cab8a 045509f0c430036190a655a472dc46a07d818d44f14160c41feed8b453143e95
GET /da0b0e8eb3275ea55f722acfa04a57b7_100x.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:30 GMT
content-type: image/webp
content-length: 2428
cache-control: public, max-age=31557600
content-disposition: inline; filename="da0b0e8eb3275ea55f722acfa04a57b7.webp"
expires: Fri, 18 Apr 2025 12:24:30 GMT
request-id: 70ed25ab-73d7-44ec-8f6a-65bcdaeb4e17
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: 70ed25ab-73d7-44ec-8f6a-65bcdaeb4e17
x-xss-protection: 1; mode=block
last-modified: Tue, 16 Apr 2024 10:08:34 GMT
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd4356cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/static/SizeCharts.js | 188.114.96.1 | 200 OK | 9.7 kB |
URL GET HTTP/3www.rosequake.com/static/SizeCharts.js IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJavaScript source, ASCII text, with very long lines (10396), with no line terminators Hash6d9cb8a6ac1714a3b0434cd4ef29a1d7 9cdba5b6e754afed16caa79168a41e5748b1f110 5873057bf3e2c07c51a5836fa10b2edb6c2ae95b8851d0af28989f21202c7d84
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/SizeCharts.js HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Mon, 10 Apr 2023 09:01:40 GMT
etag: W/"71e05c108b6bd91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2014
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l7VGZiGX0ULCLJ9QyBUS%2FbiDC5xcR0jIYtY7xVe97iAgP0xRTJ5pkK3Yh2a7N6xilLgkHQpoCU6ngWn%2BdkO%2BY1I5sTT9xK1uo8pcAR0O2n%2F3cK6ueEmvF3ohlkpent%2FxxKdqbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292791e1756ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| customer-30zc4hfqg1m9lcz1.cloudflarestream.com/6d0285be93847d7f69037a297d577e2d/thumbnails/thumbnail.jpg?height=360 | 104.16.96.114 | 200 OK | 1.7 kB |
URL GET HTTP/2customer-30zc4hfqg1m9lcz1.cloudflarestream.com/6d0285be93847d7f69037a297d577e2d/thumbnails/thumbnail.jpg?height=360 IP104.16.96.114:443
Requested byhttps://iframe.videodelivery.net/6d0285be93847d7f69037a297d577e2d CertificateIssuerLet's Encrypt Subjectcloudflarestream.com Fingerprint4B:FC:27:51:84:79:E8:BA:88:43:DB:65:F0:1A:02:38:C3:2C:69:E7 ValidityWed, 03 Apr 2024 04:01:30 GMT - Tue, 02 Jul 2024 04:01:29 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc59.37.100", progressive, precision 8, 640x360, components 1 Hash80d004fc3035e8f86b62748c4a893833 d4186d0d85320a63da185b905bd8846f14b3fa0d 4ef3262e57937889c9c24740399a6ebc63e345a091e2e1feec242a5beaf720d2
GET /6d0285be93847d7f69037a297d577e2d/thumbnails/thumbnail.jpg?height=360 HTTP/1.1
Host: customer-30zc4hfqg1m9lcz1.cloudflarestream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iframe.videodelivery.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:33 GMT
content-type: image/jpeg
content-length: 1656
cf-ray: 8762928e0ddcb518-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=864000
last-modified: Wed, 17 Apr 2024 18:39:33 GMT
strict-transport-security: max-age=31536000
vary: origin, referer, Accept-Encoding
access-control-allow-headers: range
access-control-expose-header: cf-ray
core-cache-status: MISS
served-in-seconds: 1.928
stream-dw-version: 2024.4.6
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/apis/ImConnectInfo.aspx?guid= | 188.114.96.1 | 200 OK | 931 B |
URL GET HTTP/3www.rosequake.com/apis/ImConnectInfo.aspx?guid= IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with very long lines (1081), with no line terminators Hash6f54ab9c15d42d6a6e043482a3b5cd0b ba43e4f28e0fb62c955196d68deb670c25b3d084 a0d98fc31d5879b09df6b289499ddd760a7977bb080f038fbb25192718de750a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /apis/ImConnectInfo.aspx?guid= HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470; _ga_B1QS3P765Z=GS1.1.1713421472.1.0.1713421472.0.0.0; _ga=GA1.1.1581830765.1713421472; browser_client_id=1713421472563444
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:34 GMT
content-type: application/json; charset=utf-8
cache-control: private
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6xv9yNAv5d3e%2FF2LNq81z8Dz6DIwCJhgckdz1fytbOdCWjGIPdGCDoBJa2vj4o0nQexqBI5R0WPGprGbhfGsmJH8EIMhfqgVuSt4g8EMPtwuDqgay0HdA3yCl30VcADr1wcq5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87629295cac156ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| global.akating.com/files/js/chosen_v1.8.7/chosen.css?v=cac22025232-20240418 | 104.21.11.35 | 200 OK | 12 kB |
URL GET HTTP/2global.akating.com/files/js/chosen_v1.8.7/chosen.css?v=cac22025232-20240418 IP104.21.11.35:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectakating.com FingerprintD4:E7:F9:72:45:4E:79:7D:33:B1:39:44:15:02:59:D9:B0:38:BE:48 ValidityTue, 20 Feb 2024 09:48:29 GMT - Mon, 20 May 2024 09:48:28 GMT
Hashf9e4f602d90605d2dae0d32979c69029 d8c7700cbf92f6100c9aa5de69ac6d4390802ee7 89945fcb95372714ec719cfed9a0ad20f35bc6f0d1d471662dba38c6f46b0f75
GET /files/js/chosen_v1.8.7/chosen.css?v=cac22025232-20240418 HTTP/1.1
Host: global.akating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Sat, 25 Jun 2022 10:07:28 GMT
etag: W/"0f0f95f7b88d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GqkxrfLizqUlCrvFxHrSJGscPBUddFu6p2sSkjUyHymRQUVpywl1pAEOpr9bkVDHwSfpI0CIutPYXu9RRbAuHBY1G5%2BMsyo%2FgjkjsjvvKV9TCcnxyzCF2sOvvFNp6KtRPSEmBpo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292793bd9b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/js/video.min.js | 188.114.96.1 | 200 OK | 626 kB |
URL GET HTTP/3www.rosequake.com/js/video.min.js IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
Size626 kB (625751 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/video.min.js HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Thu, 26 Oct 2023 05:20:34 GMT
etag: W/"e255b25cc7da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CyXR0%2B4bnV1t2oolk357%2B5Zi7L0jj1zedMRuSpoUwn6ANVEjZiJwMm9jkV6ISy7Ojt2KM97tx%2BVLVjaveoY0XG1HqRAWncyUdBRy9%2FFrRyWS8y4SUZodI5J3HPB1KapDPfTOoA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292786d1256ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/ajax/Index.aspx?action=GetUserPixeData | 188.114.96.1 | 200 OK | 102 B |
URL GET HTTP/3www.rosequake.com/ajax/Index.aspx?action=GetUserPixeData IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash0ec986545a49215a812df05582e9097e 8455375e7da182b81e226eae850ffe41a0863fe0 7703b01519d2f6bd610cd962af94bbb0a582c5c76eb57ebe94cbd37483f12822
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ajax/Index.aspx?action=GetUserPixeData HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qibFrHqNrmvrbumm7uaCPw7SYxEP5jOz7kAW9OBWxAfI0%2BxzGmIh2dovAtdkS2pFNGDiprbdEBb9EjU%2BcKdltrhKW3iPD8QYtxrjAJorPygnl%2FCXIHl9MYgfyQtJBwd3hZONaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87629286c84856ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/assets/js/theme.js?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 90 kB |
URL GET HTTP/3www.rosequake.com/static/assets/js/theme.js?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/assets/js/theme.js?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Tue, 05 Mar 2024 22:04:51 GMT
etag: W/"4c3fbf25496fda1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dMuIjFP1p2EP5YTP7D%2FFH8UCajJU4nxhz6wSFeJBeMymNk7ceMk31Ublw%2BS87S6gqgyJGOgRWp0%2FZX8DFM10SuVWXO5km1DXuttA4omKVlh6DoOAohdBNJVBywhDje2eVEOz8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292791e1f56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/css/shop-section.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 20 kB |
URL GET HTTP/3www.rosequake.com/css/shop-section.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/shop-section.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Thu, 28 Dec 2023 19:18:46 GMT
etag: W/"d79fd0adc239da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yd%2FDgNqIOQT%2BoFbW8wQWVJbVVdl2XqW8c6aLbS4tNcxiIcVAFLqb%2Bgz%2FfdVXc0EcWquskVIpr02dlwnAm1A3ID%2FlNQnwVoS3vU8vG2h9UgOA7ZmLKE7AMoZ2%2FdgFuSEOrnDfqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292784cf056ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/ajax/user_view_history.aspx?r=0.9414812456702992 | 188.114.96.1 | 200 OK | 7.8 kB |
URL GET HTTP/3www.rosequake.com/ajax/user_view_history.aspx?r=0.9414812456702992 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (8314), with no line terminators Hashacfb1b8300a3d71b3cc8418964591262 8d4726a522ef2209a0a53f7138d4d1c216c2b1ab efba1c86616d18e316ef8cd1655e208a320b8b363124ae4f9030977aa830d88f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ajax/user_view_history.aspx?r=0.9414812456702992 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470; _ga_B1QS3P765Z=GS1.1.1713421472.1.0.1713421472.0.0.0; _ga=GA1.1.1581830765.1713421472
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:37 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3ASom1rVj8u8HVGu7n6VXxlkE3P4KBaaIvIG6oHAQTMPYyi14yUWC%2FKSKXjneKo%2Bq9SvJM8HHw%2Fx992u%2B20ZBXrOvvZ8k74EQl%2BwO%2FeYaEu6cInX1HsEjOb5OEsIJSEfBygSiw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8762928aed5d56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/CBDStyle.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 66 kB |
URL GET HTTP/3www.rosequake.com/static/CBDStyle.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with very long lines (1418), with CRLF line terminators Hash2e1858a92856a89908a456f977b96051 c9aa6018b21ba84a69e69159f75d73b41354d3ad f07cf5076ef90427551f5f5242ce673107a05737e875e9bd845628de102713d6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/CBDStyle.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Wed, 17 Apr 2024 11:40:57 GMT
etag: W/"67faad1cbc90da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v%2BDruX%2FS5VOP3bB9cPcs5PLp0RQCUmoQxKZHzbpFmfBTi0t6qdek9fzrod3Pk33WGTWFbIfNN9FC5fYFeDPrdLDwRq8KSoCSfThf6OVeb52OW35kZ%2FOlOjKHxO5pjsLKvJLzow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292782cbb56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| global.akating.com/files/css/CBDCurrency.css?v=cac22025232-20240418 | 104.21.11.35 | 200 OK | 12 kB |
URL GET HTTP/2global.akating.com/files/css/CBDCurrency.css?v=cac22025232-20240418 IP104.21.11.35:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectakating.com FingerprintD4:E7:F9:72:45:4E:79:7D:33:B1:39:44:15:02:59:D9:B0:38:BE:48 ValidityTue, 20 Feb 2024 09:48:29 GMT - Mon, 20 May 2024 09:48:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /files/css/CBDCurrency.css?v=cac22025232-20240418 HTTP/1.1
Host: global.akating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Sat, 23 Sep 2023 14:39:28 GMT
etag: W/"09068c12beed91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5801
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=25FCematZytozJh%2FHTNY5OfcSzNSq6HDjinjkeiXhD3fZM420PJ4F8vdJgU%2B5NOb3JifzqFVONLmgigmP8E%2BCIuaiBUEb2vgD0YQ3pVGmFZPnvgl7I%2BpBtatf0KBjolflfqvbeo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292798c89b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/ajax/ajax.aspx?Action=GetGoodPromotion&goodsID=1266 | 188.114.96.1 | 200 OK | 55 B |
URL GET HTTP/3www.rosequake.com/ajax/ajax.aspx?Action=GetGoodPromotion&goodsID=1266 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashbdc19d3f6111d1d5d20e15b862f857f3 6fdd372bfd277e887c9c539a7d0d1245a31a552d da2d9a83c3b946bc2ec8cec8940db5c14c9fb94589aec98415093707dba50868
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ajax/ajax.aspx?Action=GetGoodPromotion&goodsID=1266 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: application/json; charset=utf-8
cache-control: private
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xbA6oQk2yB%2B1kE6rNat6D31O9srLmCjHDconXuEreHgw5%2BMfqA4JkOlK0v2HHruegBmpd7nc7fa12TeWlTQzW58lsyla5hcmJjsHWykPE2QV9%2B4enVNAd%2BS%2B7BwHVY%2BODPmN1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87629286c84456ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/lib/bootstrap/bootstrap-grid.min.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 85 kB |
URL GET HTTP/3www.rosequake.com/static/lib/bootstrap/bootstrap-grid.min.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with CRLF line terminators Hash7dbc3c16a7a1e0d4941608290b1cb218 d9fcde029ae22c446ced020bd143bc4c47eb7d9c 871f218ccbc29aea08acee4ff6164888af936d0b6f604c1658e3b19094660e9a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/lib/bootstrap/bootstrap-grid.min.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 06:06:14 GMT
etag: W/"0fde1f6db0d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t1oNQ4aogJJ4ZJl7AhOQL7uSlRmb6VeOPGD5mbngsFnppZih0xioJh%2F0kasDGdXwZmybDS4jDpeyYHuItFDbjxH%2FyM8RHKpLCxcWbaAl3hczbSbwaFmmAYgJxjGJH%2FiiW42VPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292780c8756ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/js/jquery-ui-1.13.1.custom/jquery-ui.min.js?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 38 kB |
URL GET HTTP/3www.rosequake.com/js/jquery-ui-1.13.1.custom/jquery-ui.min.js?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJavaScript source, ASCII text, with very long lines (37264) Hashb74c18de0056ed87c5e712eb21074f98 fc1fa797cac8bb89a1416aa2662b2cd74d851d60 4502cf3c096b98c6ed963242ce158fce517d3afd00982d2a8daddce91f30375a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery-ui-1.13.1.custom/jquery-ui.min.js?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Tue, 05 Apr 2022 21:33:12 GMT
etag: W/"d4c2c3c03449d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CNIAGE6tl%2BDBlxdMGGElsUkSUsic%2Bh3IudPV8ZqtoLXm38aP%2BxO%2B4aExYhUn%2BJs%2FnC6Q6sqdTE9X%2FJXis6FHKeTql7QvW%2F%2BmMkYJhRnI%2FXl5JdeLpn%2Fg1osi%2FooLc4LcsfsToQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292791e2056ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap | 142.250.74.106 | 200 OK | 14 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap IP142.250.74.106:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashdce36a48bcf330832152e582d29373b8 cd44276b28cf6be734f61e45644ed6ea0ad08e6e 3f6e8efb65dff0486271d787d60be7d84387c203bebd36159794e6e2c28c31f3
GET /css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 06:24:31 GMT
date: Thu, 18 Apr 2024 06:24:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/Ajax/GetMinCart.aspx?type=&r=0.21559010477775553 | 188.114.96.1 | 200 OK | 56 B |
URL POST HTTP/3www.rosequake.com/Ajax/GetMinCart.aspx?type=&r=0.21559010477775553 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash67281efb80814ce084ebfc6a4a15fd9c b5a64ea8a096b95a697bcc3d18b2cfb408564452 d928ba697d2f378263311848ceed5c3ed7f97b8090f8a23af46914560dc7a955
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /Ajax/GetMinCart.aspx?type=&r=0.21559010477775553 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 11
Origin: https://www.rosequake.com
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470; _ga_B1QS3P765Z=GS1.1.1713421472.1.0.1713421472.0.0.0; _ga=GA1.1.1581830765.1713421472
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:33 GMT
content-type: application/json; charset=utf-8
cache-control: private
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=difnK0YK0d4dPzDTxp8GoMEIS%2BZtfee7SWsUFEslpNUQZK74kae4gqlrB747y4SxxyErksGTma5AYBVzxE1x5ImKB7g3qd9OVH8KwANkJfPKU%2BXN7MCrbi%2FKYiu5uO%2Fpi%2FI28g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8762928aed5c56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/css/country-flag.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 29 kB |
URL GET HTTP/3www.rosequake.com/css/country-flag.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/country-flag.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Fri, 04 Aug 2023 21:08:05 GMT
etag: W/"2662cc317c7d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pv59%2BMGLS2y0vuM8WuyrHXMCBvb3KrE%2BNMNQvQxxr6kCfg9RGbulzehsntcwx34VYkphoPskrpdxWAzupzohiwB0hK5RL%2FQv34nwj%2FAnxd55rtB%2FaIdtYWvqyumij63lug53VQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292784ce856ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| global.akating.com/files/js/CBDCurrency.js?v=cac22025232-20240418 | 104.21.11.35 | 200 OK | 44 kB |
URL GET HTTP/2global.akating.com/files/js/CBDCurrency.js?v=cac22025232-20240418 IP104.21.11.35:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectakating.com FingerprintD4:E7:F9:72:45:4E:79:7D:33:B1:39:44:15:02:59:D9:B0:38:BE:48 ValidityTue, 20 Feb 2024 09:48:29 GMT - Mon, 20 May 2024 09:48:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /files/js/CBDCurrency.js?v=cac22025232-20240418 HTTP/1.1
Host: global.akating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Wed, 20 Dec 2023 13:12:33 GMT
etag: W/"4ecd3314633da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YtmIm%2F%2FUWyUv5BGwlaToEuHmwxKu2MMv7IYM87C8pPb4a%2BjNtciWDKRuw4kdLl6Y69mhAKM%2FVIMokQGNW%2Bm0WaEnCIVWOEsj%2FDmwz5Mmy0hcMfnhhkfA4F6WpkLCItlDlNTAAAw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292799c9cb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/js/layer.mobile/layer.js?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 3.3 kB |
URL GET HTTP/3www.rosequake.com/js/layer.mobile/layer.js?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (3402), with no line terminators Hashe478b122e8abdf168128444b1ed90258 303da5ec2c81191f06cddce2217684781cc0738b 8954e9b18e9e49b9384409b17b5e3f5912c320d78eee9ecf850e04d964f35eb1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/layer.mobile/layer.js?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Fri, 19 Mar 2021 17:46:56 GMT
etag: W/"df433dbe71cd71:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g9UHQcsV4w5KMVllDnCtWJH2WQzW1%2BWeXlLz8q49XAa0knL5GyZPpxkHR0I3rZmO4BfwXmIiMz1Cdn0qVrOhf5mn0kQ8gklPXGe3ZFaVl3sn6ipq%2BKAM2YKEXe8tpf%2Fnc6L%2BUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292784ced56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/Ajax/Products/RelatedProducts.aspx?goodsID=1266&skuID=288361&RelatedCode= | 188.114.96.1 | 200 OK | 58 kB |
URL GET HTTP/3www.rosequake.com/Ajax/Products/RelatedProducts.aspx?goodsID=1266&skuID=288361&RelatedCode= IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeHTML document, ASCII text, with very long lines (465), with CRLF line terminators Hashf1d9f557549f0a5cbbef4e8c0c7d049c 3118b6962f928aa6cd2b24bb16c0251c2f8fbd71 45c7b7339416a2917dcc5bd1e277127961af9176065b08e3e8901c04117773ad
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Ajax/Products/RelatedProducts.aspx?goodsID=1266&skuID=288361&RelatedCode= HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470; _ga_B1QS3P765Z=GS1.1.1713421472.1.0.1713421472.0.0.0; _ga=GA1.1.1581830765.1713421472
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:33 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xDh9zR6By8zW2x%2BEMiGHBPol8M2LTaL%2Br%2BlXc2cGkwZ5qT5%2FbEmJJ8XwfoAGufyHdsqJU%2FggPYQL0qm3RO1QOb%2BM77UytZMete8ho0ccPHrvVBiWCeKjLcr15c73RMo8VQ2mQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8762928aed5e56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.google.no/pagead/1p-conversion/11401501348/?random=586084628&cv=11&fst=1713421472564&bg=ffffff&guid=ON&async=1>m=45be44f0v9170312560za200&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rosequake.com%2FSamurai-3.0-10-Thrusting-Spinning-Te-item-288361.html&label=7kRBCNLc8P4YEKS11Lwq&hn=www.google.com&frm=0&tiba=Take%20you%20to%20next%20level%20of%20pleasure%20%7C%20Samurai%203.0%20-%2010%20Thrusting%20Spinning%20Telescopic%20And%20Rotating%20Masturbation%20Cup&value=1¤cy_code=USD>m_ee=1&npa=1&pscdl=noapi&auid=55688725.1713421470&ec_mode=a&fdr=SA&data=event%3Dconversion&em=tv.1&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&pscrd=IhMI1PSWspDLhQMVKBaiAx3P_gB9MgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Gmh0dHBzOi8vd3d3LnJvc2VxdWFrZS5jb20v&ipr=y | 142.250.74.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/pagead/1p-conversion/11401501348/?random=586084628&cv=11&fst=1713421472564&bg=ffffff&guid=ON&async=1>m=45be44f0v9170312560za200&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rosequake.com%2FSamurai-3.0-10-Thrusting-Spinning-Te-item-288361.html&label=7kRBCNLc8P4YEKS11Lwq&hn=www.google.com&frm=0&tiba=Take%20you%20to%20next%20level%20of%20pleasure%20%7C%20Samurai%203.0%20-%2010%20Thrusting%20Spinning%20Telescopic%20And%20Rotating%20Masturbation%20Cup&value=1¤cy_code=USD>m_ee=1&npa=1&pscdl=noapi&auid=55688725.1713421470&ec_mode=a&fdr=SA&data=event%3Dconversion&em=tv.1&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&pscrd=IhMI1PSWspDLhQMVKBaiAx3P_gB9MgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Gmh0dHBzOi8vd3d3LnJvc2VxdWFrZS5jb20v&ipr=y IP142.250.74.163:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint0E:DD:25:54:7B:C3:7F:EC:27:35:B1:EC:15:C4:B7:D2:09:71:3B:68 ValidityMon, 04 Mar 2024 07:26:33 GMT - Mon, 27 May 2024 07:26:32 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/11401501348/?random=586084628&cv=11&fst=1713421472564&bg=ffffff&guid=ON&async=1>m=45be44f0v9170312560za200&gcd=13l3l3l2l1&dma_cps=sypham&dma=1&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.rosequake.com%2FSamurai-3.0-10-Thrusting-Spinning-Te-item-288361.html&label=7kRBCNLc8P4YEKS11Lwq&hn=www.google.com&frm=0&tiba=Take%20you%20to%20next%20level%20of%20pleasure%20%7C%20Samurai%203.0%20-%2010%20Thrusting%20Spinning%20Telescopic%20And%20Rotating%20Masturbation%20Cup&value=1¤cy_code=USD>m_ee=1&npa=1&pscdl=noapi&auid=55688725.1713421470&ec_mode=a&fdr=SA&data=event%3Dconversion&em=tv.1&gcp=2&sscte=1&ct_cookie_present=1&fmt=3&ct_cookie_present=false&sscte=1&crd=CLHBsQIIsMGxAgi5wbECCJjBsQI&pscrd=IhMI1PSWspDLhQMVKBaiAx3P_gB9MgIIAzICCAQyAggHMgIICDICCAkyAggKMgIIAjICCAs6Gmh0dHBzOi8vd3d3LnJvc2VxdWFrZS5jb20v&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rosequake.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 18 Apr 2024 06:24:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/js/jquery-ui-1.13.1.custom/jquery-ui.min.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 17 kB |
URL GET HTTP/3www.rosequake.com/js/jquery-ui-1.13.1.custom/jquery-ui.min.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with very long lines (15422) Hashb82ec717898908396b42e0c1a61913aa fc446948bfed0cb2907aed714f9a4babf4a246aa f6414e82ba7213ea861cdc0c5bff7b72a82a5e1fd484ee456dc6d4f8e4e0d795
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery-ui-1.13.1.custom/jquery-ui.min.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Tue, 05 Apr 2022 13:25:12 GMT
etag: W/"0ec294f048d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JNtfUZmq7%2BmaWcxwi9brzzHFdmDpAqvIXj8xZn%2BO9hr%2BJAJ65ZrkFMkED6L2sxBt37VRT0nzZqkfDTEw6P12v7DmE4ls7LOtGgua66BTk8%2Fflg3l5NHZlySFht66YKbs%2B2452g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292791e2256ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| img.fantaskycdn.com/ff6e45cd717d09b3f5f76e5b03c605e9.jpeg | 104.18.20.211 | 200 OK | 786 kB |
URL GET HTTP/2img.fantaskycdn.com/ff6e45cd717d09b3f5f76e5b03c605e9.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, progressive, precision 8, 3000x4000, components 3 Size786 kB (786432 bytes) Hash9edcce25c1ffdb23e301caebe8440707 a804bafe1d8755d36369afb80598b08737ca5df2 b7df2860219df3a217713c1c74f2e3488a4d4369e6a33cae02d0d68700bd0c99
GET /ff6e45cd717d09b3f5f76e5b03c605e9.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: image/jpeg
content-length: 2065230
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
request-id: d2b0520f-cb92-426d-8858-dbd751dd5f9b
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Wed, 06 Mar 2024 21:32:00 GMT
cf-cache-status: HIT
age: 343419
expires: Fri, 18 Apr 2025 12:24:29 GMT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd4456cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/Images/country_list.png?v=dw11211221 | 188.114.96.1 | 200 OK | 151 kB |
URL GET HTTP/3www.rosequake.com/Images/country_list.png?v=dw11211221 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typePNG image data, 48 x 9428, 8-bit/color RGBA, non-interlaced Size151 kB (151317 bytes) Hash161094bc7dd657d7e721cb097797d48b 46239a5b5d7a4c0c0139e75389356d9a72cc0928 6f97ccec9e464f5cf66d78ad6713a62bb949d02ec98ba7fa4cfcf4587dae7ae5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Images/country_list.png?v=dw11211221 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/css/country-flag.css?v=cac22025232-20240418
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:31 GMT
content-type: image/png
content-length: 151317
last-modified: Fri, 04 Aug 2023 21:08:11 GMT
etag: "fe4e7dc617c7d91:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KLSD1CNFAO4NV7dsU%2BS3BHyHUvDkDqX8krUi5AY02sBtt3tzETPBOx8Zu8lPomzmEDRTnImy8WfDZvH9%2ByJo5w56kTIT3JwtFpHCluSQEwNAMZ%2FeBGLUty5C9yzboh9ABKu6Ww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876292859ec556ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/image/loading-0.gif | 188.114.96.1 | 200 OK | 5.8 kB |
URL GET HTTP/3www.rosequake.com/static/image/loading-0.gif IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeGIF image data, version 89a, 60 x 24 Hasha72011ccdc2bcd23ba440f104c416193 ba81388bbac5bc223f94489b97a95a13f3c78e47 07236f6814a40623bab43f2043860c97678bc7deedbf06feff92f0d6e6673bf5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/image/loading-0.gif HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/static/CBDStyle.css?v=cac22025232-20240418
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:31 GMT
content-type: image/gif
content-length: 5793
last-modified: Tue, 05 Dec 2017 03:57:25 GMT
etag: "5ac952297d6dd31:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wFX7DRfXL8hTbk6n3CvrEW0NV5yNh8%2Fn3p%2BwKEgpYHBpHv2lTQ2r4apmj0ybaA1h8o2du9Ivcq1VeIBxgnplsaru3yMy7v045R90ZTWkDrXzU%2Bp1suSVuqxYJkQ4Wp7aFtnWww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87629286f87056ae-OSL
alt-svc: h3=":443"; ma=86400
|
|
| we.chatsoftly.com/im_client/js/udeskApi.js | 172.67.194.34 | 200 OK | 122 kB |
URL GET HTTP/3we.chatsoftly.com/im_client/js/udeskApi.js IP172.67.194.34:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerLet's Encrypt Subjectchatsoftly.com FingerprintB5:CE:E5:95:0F:6B:BB:E2:D4:E0:32:34:86:00:B8:EB:C8:3F:A6:E5 ValidityWed, 06 Mar 2024 04:41:15 GMT - Tue, 04 Jun 2024 04:41:14 GMT
Size122 kB (122466 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /im_client/js/udeskApi.js HTTP/1.1
Host: we.chatsoftly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:35 GMT
content-type: application/javascript
last-modified: Fri, 13 May 2022 16:02:26 GMT
etag: W/"095cfd6e266d81:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5804
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cNwQgQ0dRaIcJD3lQNPZ3g%2FRrIWGj6sExWPvoEu0hbZLF0jC5urz8tnaLCKMjxDwr006SuKyLP%2Fl8eune4jiS%2Fe7wVEb6JJydaKctEBQzQdCbGJfpmNZnBx%2FYTWYYtQTk2c0Og%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8762929bdfbcb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/lib/jquery.cookie/jquery.cookie.min.js?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 1.7 kB |
URL GET HTTP/3www.rosequake.com/static/lib/jquery.cookie/jquery.cookie.min.js?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJavaScript source, ASCII text, with very long lines (1787), with no line terminators Hashc57933c2ac908dee0f6ef18b2e872b72 68c436f1d7535121e501c528c014c6d75d68e2d6 d6b9dbdce63d206416502fd7b8e3b92e5a65158a45854fc6d0c0cb21909515a0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/lib/jquery.cookie/jquery.cookie.min.js?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 06:06:42 GMT
etag: W/"0858e306db0d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y79C6nvIW3DGTUVDlA7UuOl3kX3eSiNC%2F%2FfTewBsV%2B4uT0x8pJVIZwlpxCIGmLw10JC8AIOAtWjZ8LnoNxAN%2FdxsRzvBNreA20x2jaB88j51wgAvh7xgn7QvM%2BpIyVWBOCu%2BIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292782cbe56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/js/layer.mobile/need/layer.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 5.3 kB |
URL GET HTTP/3www.rosequake.com/js/layer.mobile/need/layer.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with very long lines (5260), with no line terminators Hash633915e62d14a714594b95b974ee0836 e11ebb64a70272c4f35b92fea064f27c4b87efad eecc7effcae5f246e6212c30c525cee9e11cadedc7d32aa6def213f1a90d98f6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/layer.mobile/need/layer.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Fri, 26 Aug 2016 09:35:36 GMT
etag: W/"024e0327dffd11:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Tzz3d3BJjqgC1mc0L8WKSd1%2F2GECCTgjTb2td7PLD6CLokeN7SCKt%2FduVDBQp7VOmMDep0s1UaxTg%2FTQPIFogb%2BAWD8czR5MfW4SxcaTwKlj%2FVc%2FM15tpj6vkQfi41n3dHZGnw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292784cee56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| iframe.videodelivery.net/6d0285be93847d7f69037a297d577e2d | 104.16.200.35 | 200 OK | 1.1 kB |
URL GET HTTP/2iframe.videodelivery.net/6d0285be93847d7f69037a297d577e2d IP104.16.200.35:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectvideodelivery.net Fingerprint36:EB:E9:ED:A0:E1:E9:EA:8F:16:27:96:C1:E2:CE:D7:D6:9C:92:2D ValidityFri, 29 Mar 2024 23:10:25 GMT - Thu, 27 Jun 2024 23:10:24 GMT
File typeHTML document, ASCII text, with very long lines (1195), with no line terminators Hash8cac8948b8499501d1d948d8db6d54fc 8fa8b65233d7052309f7806a1e777305e4aa23ff 7775a73addb2d05cf48ff201ede4d82b82792ec2d36f262b251aa0e8ffba5701
GET /6d0285be93847d7f69037a297d577e2d HTTP/1.1
Host: iframe.videodelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: text/html; charset=utf-8
vary: origin, referer, Accept-Encoding
access-control-expose-header: cf-ray
stream-dw-version: 2024.4.6
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 87629285db5c56a4-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/static/lib/masonry/isotope-masonry.pkgd.min.js?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 36 kB |
URL GET HTTP/3www.rosequake.com/static/lib/masonry/isotope-masonry.pkgd.min.js?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJavaScript source, ASCII text, with very long lines (32019), with CRLF line terminators Hash5fb7c19c9c51cfb99f5ff942629f0f21 14c7f59e73d2a99aa688c2443a9a9b24acbff43c a931e5af561b1f0efaf6cdb96aeac4c035c30756dd6edd1091da1a68747d35bc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/lib/masonry/isotope-masonry.pkgd.min.js?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 06:06:48 GMT
etag: W/"0c22346db0d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u6I6KfB4Eo15vxzZMno5NuAZEul4PjDBV7422iMQW%2BQOcFzOFs1s%2F0qlI0dU%2BnXeYc0wWaxKhu4wLDTTxANIockvGL3uD4o8iiB7%2FIqYuHpeRmrPdjN4FMaWLyHAFrmcub9vqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292791e1d56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/static/assets/sass/base/product/component-product.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 39 kB |
URL GET HTTP/3www.rosequake.com/static/assets/sass/base/product/component-product.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with very long lines (39193), with no line terminators Hash1044c3cef197bf3574a60b7f321c86f5 be9c4ea7b19a183eec748eae25808d6e1d4b7289 c236d51685d99df1c5646a27f259badae7c284190dcff88487a6e63ff89578b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/assets/sass/base/product/component-product.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 06:06:14 GMT
etag: W/"0fde1f6db0d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J067iKuY4icmR9doYCJbuAjUSraShr0UN9YUOBLLxPnTSeFQFcfn461G2%2F%2FzHJdfu3oMiwqAltgrSjH1U903IKyhDz188LL5LvsmhdKJKMILap%2FQEijSGs%2BiMNQmit1Dz%2BcjgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292781ca556ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| customer-30zc4hfqg1m9lcz1.cloudflarestream.com/embed/233.a7045bab.chunk.js | 104.16.96.114 | 200 OK | 37 kB |
URL GET HTTP/2customer-30zc4hfqg1m9lcz1.cloudflarestream.com/embed/233.a7045bab.chunk.js IP104.16.96.114:443
Requested byhttps://iframe.videodelivery.net/6d0285be93847d7f69037a297d577e2d CertificateIssuerLet's Encrypt Subjectcloudflarestream.com Fingerprint4B:FC:27:51:84:79:E8:BA:88:43:DB:65:F0:1A:02:38:C3:2C:69:E7 ValidityWed, 03 Apr 2024 04:01:30 GMT - Tue, 02 Jul 2024 04:01:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/233.a7045bab.chunk.js HTTP/1.1
Host: customer-30zc4hfqg1m9lcz1.cloudflarestream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://iframe.videodelivery.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: application/javascript
cf-ray: 8762928dcd93b518-OSL
cf-cache-status: HIT
age: 6
cache-control: max-age=180
etag: W/"807ece88d3879f095cdbebd274a4943f"
expires: Thu, 18 Apr 2024 06:23:48 GMT
last-modified: Fri, 05 Apr 2024 20:59:55 GMT
access-control-expose-header: cf-ray
stream-dw-version: 2024.4.6
timing-add-origin: *
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| customer-30zc4hfqg1m9lcz1.cloudflarestream.com/embed/sdk-iframe-integration.fla9.latest.js | 104.16.96.114 | 200 OK | 748 kB |
URL GET HTTP/2customer-30zc4hfqg1m9lcz1.cloudflarestream.com/embed/sdk-iframe-integration.fla9.latest.js IP104.16.96.114:443
Requested byhttps://iframe.videodelivery.net/6d0285be93847d7f69037a297d577e2d CertificateIssuerLet's Encrypt Subjectcloudflarestream.com Fingerprint4B:FC:27:51:84:79:E8:BA:88:43:DB:65:F0:1A:02:38:C3:2C:69:E7 ValidityWed, 03 Apr 2024 04:01:30 GMT - Tue, 02 Jul 2024 04:01:29 GMT
Size748 kB (747451 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/sdk-iframe-integration.fla9.latest.js HTTP/1.1
Host: customer-30zc4hfqg1m9lcz1.cloudflarestream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://iframe.videodelivery.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:32 GMT
content-type: application/javascript
cf-ray: 8762928bfb49b518-OSL
cf-cache-status: HIT
age: 151
cache-control: max-age=180
etag: W/"b4f5c7cb8dfee3994eab8b8ff1943267"
expires: Thu, 18 Apr 2024 06:20:51 GMT
last-modified: Tue, 02 Apr 2024 20:40:11 GMT
access-control-expose-header: cf-ray
stream-dw-version: 2024.4.6
timing-add-origin: *
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/static/extra.css?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 650 B |
URL GET HTTP/3www.rosequake.com/static/extra.css?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with very long lines (650), with no line terminators Hashc99be612fbce82182d83923efc718b6a 6ad887b258ec267c4bb6ce6e73b496cd825b37a6 437a0cfa54d982b2fe6090623a98b8084d4591565cf0104767e7ca42f35f3628
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/extra.css?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Sat, 29 Jul 2023 10:11:15 GMT
etag: W/"e2944125c2d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0gs2zpXAY8hsHrZwsTxcM7EU2ROtGsOJHuEfN4I%2BFujd83opsSI4RNgNOyp7yWdFRa5k92MGGYlclt0Rj%2B2gBE7f8f7cJgN06Ksom%2FGy1yWNfXdBJy2hfOm5t293Nif3MG7e3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292784cef56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/js/video-js.min.css | 188.114.96.1 | 200 OK | 46 kB |
URL GET HTTP/3www.rosequake.com/js/video-js.min.css IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with very long lines (45950), with no line terminators Hashfbc92259a04709e2f8a10960e574e5fc c03562e5c2c407426076f7f844f0c634631ea0f0 48876176ecb5cf6cdb8e7d91c8d63b89f6bc3fa8fb4b67a595c0a59940a433a6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/video-js.min.css HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: text/css
last-modified: Thu, 26 Oct 2023 05:20:16 GMT
etag: W/"50afb71acc7da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xY7lMgTbqSYRHaUebhmSwTiZa4dJI4kOzZaSpoLIkNfxYm%2BKOT6ScYbvy9br0yQbNbp4G%2Bui9HV04t67O71bknYSnrrZSxX9EBV06ZBH1AV6FH4wJUg4LlpJMB6vci7Y00Hb6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292786d1056ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| global.akating.com/files/ExchangeRate.js?v=cac22025232-20240418 | 104.21.11.35 | 200 OK | 11 kB |
URL GET HTTP/2global.akating.com/files/ExchangeRate.js?v=cac22025232-20240418 IP104.21.11.35:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectakating.com FingerprintD4:E7:F9:72:45:4E:79:7D:33:B1:39:44:15:02:59:D9:B0:38:BE:48 ValidityTue, 20 Feb 2024 09:48:29 GMT - Mon, 20 May 2024 09:48:28 GMT
File typeASCII text, with very long lines (10593), with no line terminators Hashfc715516fb030cd6858f16981ad2650c 9dc67c87ac8e4933d978c9b11a57b61d0755c6a2 c17ded04681c173e9e34c83d8666542405c276bf078da5ec06adf12ac815bbe7
GET /files/ExchangeRate.js?v=cac22025232-20240418 HTTP/1.1
Host: global.akating.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Tue, 28 Nov 2023 20:40:27 GMT
etag: W/"f460c31e3b22da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5801
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jg6td%2BVE%2FrJKvCIWk04L%2Fxs524nBNJ5x5lOa2VHwGb3vExBQcRgoR3%2BUuHJd2k0l2UcptlU%2BAKJbLz8X5xAqhdJKg2fwrSux4fbeqzW74pc7Nx%2BIf5bz%2BoE9Nw0RTkawXR%2FOS%2BU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292797c6bb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img.fantaskycdn.com/ff6e45cd717d09b3f5f76e5b03c605e9.jpeg | 104.18.20.211 | 200 OK | 2.1 MB |
URL GET HTTP/3img.fantaskycdn.com/ff6e45cd717d09b3f5f76e5b03c605e9.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
Size2.1 MB (2065230 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ff6e45cd717d09b3f5f76e5b03c605e9.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:31 GMT
content-type: image/jpeg
content-length: 2065230
cache-control: public, max-age=31557600
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
request-id: d2b0520f-cb92-426d-8858-dbd751dd5f9b
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-xss-protection: 1; mode=block
last-modified: Wed, 06 Mar 2024 21:32:00 GMT
cf-cache-status: HIT
age: 343421
expires: Fri, 18 Apr 2025 12:24:31 GMT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 876292855a945691-OSL
alt-svc: h3=":443"; ma=86400
|
|
| img.fantaskycdn.com/a7dfaa2182c3f5256d52c424ba751bf7_100x.jpeg | 104.18.20.211 | 200 OK | 1.8 kB |
URL GET HTTP/2img.fantaskycdn.com/a7dfaa2182c3f5256d52c424ba751bf7_100x.jpeg IP104.18.20.211:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectfantaskycdn.com Fingerprint28:2C:B4:60:08:32:85:B2:44:72:D4:B2:9F:55:62:DD:46:3C:5B:0F ValidityMon, 26 Feb 2024 11:44:05 GMT - Sun, 26 May 2024 11:44:04 GMT
File typeRIFF (little-endian) data, Web/P image Hash41988721a77993c74a4f3cbfbf13b96a 3829cfae026bd311f64e7e8c559d0c97746701dc c83cfa379e25e9004ea4642e67ff7d69fbab9526bc800fd7d85d7a33d5fa2566
GET /a7dfaa2182c3f5256d52c424ba751bf7_100x.jpeg HTTP/1.1
Host: img.fantaskycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:30 GMT
content-type: image/webp
content-length: 1778
cache-control: public, max-age=31557600
content-disposition: inline; filename="a7dfaa2182c3f5256d52c424ba751bf7.webp"
expires: Fri, 18 Apr 2025 12:24:30 GMT
request-id: e6fa4c79-2a7b-4a55-ab38-43041a417b45
strict-transport-security: max-age=315360000; includeSubdomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: ASP.NET
x-request-id: e6fa4c79-2a7b-4a55-ab38-43041a417b45
x-xss-protection: 1; mode=block
last-modified: Wed, 17 Apr 2024 19:14:50 GMT
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 87629279bd4e56cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 | 142.250.74.163 | 200 OK | 7.9 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 IP142.250.74.163:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0 Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rosequake.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 05:54:09 GMT
expires: Wed, 16 Apr 2025 05:54:09 GMT
cache-control: public, max-age=31536000
age: 174622
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| customer-30zc4hfqg1m9lcz1.cloudflarestream.com/6d0285be93847d7f69037a297d577e2d/metadata/playerEnhancementInfo.json | 104.16.96.114 | 200 OK | 232 B |
URL GET HTTP/2customer-30zc4hfqg1m9lcz1.cloudflarestream.com/6d0285be93847d7f69037a297d577e2d/metadata/playerEnhancementInfo.json IP104.16.96.114:443
Requested byhttps://iframe.videodelivery.net/6d0285be93847d7f69037a297d577e2d CertificateIssuerLet's Encrypt Subjectcloudflarestream.com Fingerprint4B:FC:27:51:84:79:E8:BA:88:43:DB:65:F0:1A:02:38:C3:2C:69:E7 ValidityWed, 03 Apr 2024 04:01:30 GMT - Tue, 02 Jul 2024 04:01:29 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash733295fa306169bd8f255788d25f5915 a61974ed7d9c27813741db2b3435300c286295b6 2e0c9e2773cd000854ec6d02b7dbe7b975e90d1d48eece25dab63f75e26f6613
GET /6d0285be93847d7f69037a297d577e2d/metadata/playerEnhancementInfo.json HTTP/1.1
Host: customer-30zc4hfqg1m9lcz1.cloudflarestream.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://iframe.videodelivery.net/
Origin: https://iframe.videodelivery.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:24:33 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=600
vary: origin, referer, Accept-Encoding
access-control-allow-headers: range
access-control-expose-header: cf-ray
stream-dw-version: 2024.4.6
server: cloudflare
cf-ray: 8762928e1de9b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.rosequake.com/static/lib/imagesloaded/imagesloaded.pkgd.min.js?v=cac22025232-20240418 | 188.114.96.1 | 200 OK | 5.5 kB |
URL GET HTTP/3www.rosequake.com/static/lib/imagesloaded/imagesloaded.pkgd.min.js?v=cac22025232-20240418 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeJavaScript source, ASCII text, with very long lines (5584), with no line terminators Hashfc637ca4d985f346ff994151a22fe36d 563c972a25d1b3333b8773356df193a70322ee3c f2609521a0ca9b5559d7574376bf1083e8259d20313b86f81548d888021fa382
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /static/lib/imagesloaded/imagesloaded.pkgd.min.js?v=cac22025232-20240418 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:29 GMT
content-type: application/javascript
last-modified: Thu, 19 Oct 2023 22:52:02 GMT
etag: W/"b710ffdfde2da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5802
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4iCr64qERGLXls8Kd5vXhe3IflIjdKkG9diKlGpfgUZcaT%2FwZIYqRIt33tI%2Fe5XUMBDz6vo4%2FpKxMHO3BpPQEGIlWv%2Flz%2FfuG1L7YrKlP5qgnvSWG455Xnnuls3fgSR7Yzu1Qw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292784cf156ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.rosequake.com/js/layer.mobile/need/layer.css?2.0 | 188.114.96.1 | 200 OK | 5.3 kB |
URL GET HTTP/3www.rosequake.com/js/layer.mobile/need/layer.css?2.0 IP188.114.96.1:443
Requested byhttps://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html CertificateIssuerGoogle Trust Services LLC Subjectrosequake.com Fingerprint9B:A1:8B:EE:FC:3F:46:BB:88:E2:9F:D6:E9:5B:D7:4D:69:0B:D0:2B ValidityThu, 28 Mar 2024 14:43:46 GMT - Wed, 26 Jun 2024 14:43:45 GMT
File typeASCII text, with very long lines (5260), with no line terminators Hash633915e62d14a714594b95b974ee0836 e11ebb64a70272c4f35b92fea064f27c4b87efad eecc7effcae5f246e6212c30c525cee9e11cadedc7d32aa6def213f1a90d98f6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/layer.mobile/need/layer.css?2.0 HTTP/1.1
Host: www.rosequake.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rosequake.com/Samurai-3.0-10-Thrusting-Spinning-Te-item-288361.html
Cookie: SiteUserGuid=692ab342-a6cd-4bae-a57a-934be5adcc9f; _gcl_au=1.1.55688725.1713421470
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:24:31 GMT
content-type: text/css
last-modified: Fri, 26 Aug 2016 09:35:36 GMT
etag: W/"024e0327dffd11:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5803
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YKtb6BMQcT5Vc%2F3mM2Op%2BmTEIZ9LtLvHts1VcG70L1mntDTH7bF9TQ%2FdI9B2h2q0yzrDUN3%2Bm40luvN6hCvSJi%2BiGKAybkOXMZ93L6NRII%2F5%2B4z2KVGZI52%2Bs2L%2B9GHk44lUUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876292842d2956ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|