go.goodlifestylenews.com/
143 B URL go.goodlifestylenews.com/
IP
File type HTML document, ASCII text
Hash f1fb042c62910c34be16ad91cbbd71fa
5bc7aceba9a8704ef4b1d427d7d08b140afcd866
9278d16ed2fdcd5dc651615b0b8adc6b55fb667a9d106a9891b861d4561d9a24
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: go.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 29 Mar 2024 22:54:01 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 14 Nov 2023 15:41:05 GMT
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Vary: Accept-Encoding,User-Agent
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uwnf6AlSh98SXgbY7yOvOUBAPJtj%2BIOIQTsedFhmp9aOcRCB8AlrH342s437Da0iTB1Th5GI9Qt%2Bu%2BMcbszkO3vOqnPcXFEEMgDictJVP%2BDuC%2BXBgJvgR8VJqlOLNKKjsgDirzcRk6gAHlg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 86c37077daf90b06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
verifiedwebpage.com/go?ehash=2987e62698a8e6fb67de9bd9e725c387&product=44559&ar=55&cid=2482&lid=1610&slhash=f20c52a1416322510e1a060b34a9c883&redirect_id=41144&bid=17
302 Found 31 kB URL User Request GET HTTP/2 verifiedwebpage.com/go?ehash=2987e62698a8e6fb67de9bd9e725c387&product=44559&ar=55&cid=2482&lid=1610&slhash=f20c52a1416322510e1a060b34a9c883&redirect_id=41144&bid=17
IP
Certificate IssuerGoogle Trust Services LLC
Subjectverifiedwebpage.com
FingerprintED:05:C0:86:C0:6D:97:3E:6F:30:D7:EC:8F:79:A4:65:BE:1D:29:BC
ValiditySun, 11 Feb 2024 21:56:00 GMT - Sat, 11 May 2024 21:55:59 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (393)
Hash a4ac2e470d8450fcfd7f9d497f621afc
fbeacde54ec10596b1bdb7ad7419287fb3adb346
9a8d3832260bc14bec8757fb76fc1c98e0972a350988d28d4c6051687327c810
GET /go?ehash=2987e62698a8e6fb67de9bd9e725c387&product=44559&ar=55&cid=2482&lid=1610&slhash=f20c52a1416322510e1a060b34a9c883&redirect_id=41144&bid=17 HTTP/1.1
Host: verifiedwebpage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 29 Mar 2024 22:53:59 GMT
content-type: text/html; charset=UTF-8
location: https://subscribe.goodlifestylenews.com?email=clif@br1980.com&redirect_id=41144&bid=17
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: User-Agent
cf-cache-status: DYNAMIC
set-cookie: PHPSESSID=b49e28287a47cc42f652fcb64ec2806c; path=/
pixel_session_hash_44559=3415414429599192089; expires=Sun, 28-Apr-2024 22:53:58 GMT; Max-Age=2592000; path=/; secure; HttpOnly; SameSite=None
bt_tracking_product_44559=c777e3c49eb9c0601de0f58d1b724f69bd9506b644cd3f61b5a3beeb5e1dcfb8; expires=Sun, 31-Mar-2024 22:53:58 GMT; Max-Age=172800
__cf_bm=Egu1f7VJGCqGK1vKstNOb.3n1c.Wu3WdsbEFCXh7VR0-1711752839-1.0.1.1-c8p2xGLcZ4GqXWh.e9juDfet49I.4WDyyrkLuT_niH83H3rRLO54uvVuW3RWCR8KjuBhw8Cx_genOszcI_fVTQ; path=/; expires=Fri, 29-Mar-24 23:23:59 GMT; domain=.verifiedwebpage.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 86c3706a0d5356c4-OSL
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@5.2.2/dist/js/bootstrap.min.js
200 OK 17 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.2.2/dist/js/bootstrap.min.js
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type JavaScript source, ASCII text, with very long lines (60201)
Hash c5236e5d6a5d0ff97ff8c8e5102c6c03
6fbfdbddbe85c578de559adcc8d07cccbc16d514
87538c4b7e488f5a49d12f98d6a04afc61d00f26a790f319569799acd434eb65
GET /npm/bootstrap@5.2.2/dist/js/bootstrap.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://subscribe.goodlifestylenews.com
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.2.2
x-jsd-version-type: version
etag: W/"ec40-b7/b3b6FxXjeVZrcyNB8zLwW1RQ"
content-encoding: br
accept-ranges: bytes
date: Fri, 29 Mar 2024 22:54:04 GMT
age: 2672947
x-served-by: cache-fra-etou8220032-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 17366
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@5.2.2/dist/css/bootstrap.min.css
200 OK 30 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.2.2/dist/css/bootstrap.min.css
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type Unicode text, UTF-8 text, with very long lines (65305)
Hash 025df1ec88740cad5ff14bb3380da6dd
7abed070e37ce060c0a561575f1d41a7f248fc74
2143941c03dacda8b4f1016ced6e0c6f34e5c04585a3bcffe33c3c626c448a4a
GET /npm/bootstrap@5.2.2/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://subscribe.goodlifestylenews.com
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.2.2
x-jsd-version-type: version
etag: W/"2f955-er7QcON84GDApWFXXx1Bp/JI/HQ"
content-encoding: br
accept-ranges: bytes
date: Fri, 29 Mar 2024 22:54:04 GMT
age: 18398416
x-served-by: cache-fra-eddf8230072-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 30336
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js
200 OK 33 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B
ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
File type JavaScript source, ASCII text, with very long lines (32086)
Hash 8101d596b2b8fa35fe3a634ea342d7c3
d6c1f41972de07b09bfa63d2e50f9ab41ec372bd
540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441
GET /ajax/libs/jquery/1.11.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33434
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:24:37 GMT
expires: Fri, 28 Mar 2025 17:24:37 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 106167
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-WJJ5P9F2X8
200 OK 102 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-WJJ5P9F2X8
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintDE:42:E4:CC:E5:66:70:09:F3:E6:6E:57:B7:5E:22:0A:A3:03:C2:7C
ValidityMon, 26 Feb 2024 08:03:40 GMT - Mon, 20 May 2024 08:03:39 GMT
File type JavaScript source, ASCII text, with very long lines (5955)
Size 102 kB (101858 bytes)
Hash 0c774074075efb3d401231bbbc9ca4c6
b72e250a3809c60ee03f7e83f15c61a8ca17d33d
e0e33b8028f5a7bd13d45b4cc882a3cb046797ef1698631b0108ae70d71e9d69
GET /gtag/js?id=G-WJJ5P9F2X8 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 29 Mar 2024 22:54:04 GMT
expires: Fri, 29 Mar 2024 22:54:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101858
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
verifiedsecure.org/uploads/0.442373001673954581K_Sa3Nyg.png
200 OK 36 kB URL GET HTTP/2 verifiedsecure.org/uploads/0.442373001673954581K_Sa3Nyg.png
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2F:25:93:6F:A7:DB:DD:73:E9:8A:15:34:D0:CD:1D:A9:ED:D3:06:A1
ValiditySat, 06 May 2023 00:00:00 GMT - Sun, 05 May 2024 23:59:59 GMT
File type PNG image data, 3369 x 257, 8-bit/color RGBA, non-interlaced
Hash 724c1e2ab214eefe0271ee598af8749a
b99bb085dd791488b061c423223318345c590f24
bba2a6dbda4e6833f68c21d84c0f9a09180ae9595b238c982da300cf448ab78c
GET /uploads/0.442373001673954581K_Sa3Nyg.png HTTP/1.1
Host: verifiedsecure.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 29 Mar 2024 22:54:04 GMT
content-type: image/png
content-length: 35781
last-modified: Tue, 17 Jan 2023 11:23:01 GMT
cache-control: max-age=2592000
expires: Sat, 20 Apr 2024 22:53:53 GMT
cf-cache-status: HIT
age: 691211
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GAPN9byH52VZDnsBSyNIvanKibW9wB0Sb0jEiteUqssg8%2FwmBLQtTkKvTAtZz4OMf4w8eT7VmFhbkwfcvrlqsku%2FRxQXRInf024v6pRhbUjSz9TPKJxoeDLIENAC1xTsJRRGHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c3708cf80956c0-OSL
X-Firefox-Spdy: h2
subscriberwelcome.com/uploads/0.1663680016738854302D2(1).jpg
200 OK 1.1 MB URL GET HTTP/2 subscriberwelcome.com/uploads/0.1663680016738854302D2(1).jpg
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerGoogle Trust Services LLC
Subjectsubscriberwelcome.com
FingerprintDA:EE:DE:64:E3:D6:C6:7B:68:0D:DF:8D:B3:56:E9:59:2C:55:00:E1
ValidityFri, 08 Mar 2024 02:01:15 GMT - Thu, 06 Jun 2024 02:01:14 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.0 (Windows), datetime=2023:01:10 16:36:41], baseline, precision 8, 1800x2700, components 3
Size 1.1 MB (1114284 bytes)
Hash b02e84cdcd5a3e55ded5e64dfd307124
bfaad4b8b4b1b1fafffeda314b8868c94e7280c8
d67985993c18e2a7b22a4193c0613a65096b3376d64539feb646739798d2cf5c
GET /uploads/0.1663680016738854302D2(1).jpg HTTP/1.1
Host: subscriberwelcome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 29 Mar 2024 22:54:04 GMT
content-type: image/jpeg
content-length: 1114284
last-modified: Mon, 16 Jan 2023 16:10:30 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2975
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d9T1nqJPrpusyzmJw17fTONenxhPRrADipyiuGA7nKkC2UgXHMLEYQK5%2FEqlUxv5TWR%2BbeEODSCnc9NFP%2BYL1ItNpwKJB%2B34jFiPPpaiZR4NAashBRD9Dz4K3Z6tJ4U9O8IiwT5%2F9PY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c3708cf96f0b3d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
subscriberwelcome.com/uploads/0.204734001673521892LifeAfterUkraine.jpeg
200 OK 400 kB URL GET HTTP/2 subscriberwelcome.com/uploads/0.204734001673521892LifeAfterUkraine.jpeg
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerGoogle Trust Services LLC
Subjectsubscriberwelcome.com
FingerprintDA:EE:DE:64:E3:D6:C6:7B:68:0D:DF:8D:B3:56:E9:59:2C:55:00:E1
ValidityFri, 08 Mar 2024 02:01:15 GMT - Thu, 06 Jun 2024 02:01:14 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2550x3300, components 3
Size 400 kB (400505 bytes)
Hash b9a9621a927a5b9a9c71fdbb53bf8991
9c4cc398edb33da6a79e62701867cbf7fed4056d
d0342e1b39e1c9b80bfb574b18e0a5d9f9cf00e00ca7cf3b2ce1ded70f3bb9ab
GET /uploads/0.204734001673521892LifeAfterUkraine.jpeg HTTP/1.1
Host: subscriberwelcome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 29 Mar 2024 22:54:04 GMT
content-type: image/jpeg
content-length: 400505
last-modified: Thu, 12 Jan 2023 11:11:32 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2975
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D1XiSAw7kEG0q3L2tnuLL6QxO43xMuU2jWaPKafqrD03AEZG3MO22ePwmG%2B6tNfIDBZ4CJcs1UhaOZT8YMsvj9ui3ieZ7HPYs0puVNw%2F9NtBPz%2FE14QagCHwyCUrQzFP6hO%2BTrTs8Yk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c3708d69930b3d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
subscriberwelcome.com/uploads/0.4350600016769076711fa4a4d9-a4f8-451c-8bdc-8c541c15cb77.jpg
200 OK 144 kB URL GET HTTP/2 subscriberwelcome.com/uploads/0.4350600016769076711fa4a4d9-a4f8-451c-8bdc-8c541c15cb77.jpg
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerGoogle Trust Services LLC
Subjectsubscriberwelcome.com
FingerprintDA:EE:DE:64:E3:D6:C6:7B:68:0D:DF:8D:B3:56:E9:59:2C:55:00:E1
ValidityFri, 08 Mar 2024 02:01:15 GMT - Thu, 06 Jun 2024 02:01:14 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 966x1449, components 3
Size 144 kB (144253 bytes)
Hash e7eb0da863b2d3ead5846cdc3263a233
138225ea3d8ff08f07b046b858bf46bf2bba2e96
ff19a64983ac2748d6b8361212f1fc41814e1acd0d157ee9c736bbd2a4a03180
GET /uploads/0.4350600016769076711fa4a4d9-a4f8-451c-8bdc-8c541c15cb77.jpg HTTP/1.1
Host: subscriberwelcome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 29 Mar 2024 22:54:04 GMT
content-type: image/jpeg
content-length: 144253
last-modified: Mon, 20 Feb 2023 15:41:11 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2975
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ocxYheeljusFzMFRaX6jMzZMs4pHFUAHVMGRbBOpZnhjy1DKqyhhoNkqK80w%2FR%2BhrzJeccci%2FJeCFPrDbkYxSIMwo7n%2FBe7hXXwzS98payeSu%2FErE84qIJWg9yQ3oej4DDepuL10BL0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c3708d69990b3d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
subscriberwelcome.com/uploads/0.1721950016738853872D1(1).jpg
200 OK 1.3 MB URL GET HTTP/2 subscriberwelcome.com/uploads/0.1721950016738853872D1(1).jpg
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerGoogle Trust Services LLC
Subjectsubscriberwelcome.com
FingerprintDA:EE:DE:64:E3:D6:C6:7B:68:0D:DF:8D:B3:56:E9:59:2C:55:00:E1
ValidityFri, 08 Mar 2024 02:01:15 GMT - Thu, 06 Jun 2024 02:01:14 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.0 (Windows), datetime=2023:01:07 00:05:06], baseline, precision 8, 1800x2700, components 3
Size 1.3 MB (1288007 bytes)
Hash 91e68c3d20f4e55b01fdbaa834b4e4e6
e54e4ea7f042d2124aa1be976a6fe9d708bb4f9f
3cab775e25b68c23b905d547373476f046b0101e7cfdbd6f016e302f5a429988
GET /uploads/0.1721950016738853872D1(1).jpg HTTP/1.1
Host: subscriberwelcome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 29 Mar 2024 22:54:04 GMT
content-type: image/jpeg
content-length: 1288007
last-modified: Mon, 16 Jan 2023 16:09:47 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2975
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zexAQFkbU%2BH9qA7c0ERVZIYZWiPek8%2FzkwwsiF5Ao5sKg0nffgqW1EdxPrUAw2gabaZI08VPot0urT9bSYhyhxxvOZQQK9ggRr2O6ogTmJigP3ivs7Bbt17xLsWS8TKhRER6sXi2bX8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c3708ce9690b3d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E
ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://subscribe.goodlifestylenews.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:37:50 GMT
expires: Fri, 28 Mar 2025 17:37:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 105374
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s3.us-east-1.amazonaws.com/autonewsuploads/Inflation.jpegdbf6169a10a4d2e85b1e27a2147f0c821689764275bdc5a173baf72b6dd3a8477ba63de904
200 OK 22 kB URL GET HTTP/1.1 s3.us-east-1.amazonaws.com/autonewsuploads/Inflation.jpegdbf6169a10a4d2e85b1e27a2147f0c821689764275bdc5a173baf72b6dd3a8477ba63de904
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerAmazon
Subjects3.amazonaws.com
Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C
ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, software=Adobe Photoshop CS6 Windows], progressive, precision 8, 600x279, components 3
Hash 1fc66e1ac778ebc88ebe86aede1b0ddc
02d9372e26f6c29b8248f7b6b73804a85b8f820b
86db20923d3e598d02e8bb1213f797e9c8770e3086f3bc701fdf66d9ad0a5c70
GET /autonewsuploads/Inflation.jpegdbf6169a10a4d2e85b1e27a2147f0c821689764275bdc5a173baf72b6dd3a8477ba63de904 HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: mMKmdGUHaEitX1cIJp9cZN8AeFftpECPGJiaY5yOeF/zq7molpHCVsRS+Owy3TvQ80Z3o1GBBlc=
x-amz-request-id: C493PRRZ6M1BBJP1
Date: Fri, 29 Mar 2024 22:54:05 GMT
Last-Modified: Wed, 19 Jul 2023 10:57:57 GMT
ETag: "1fc66e1ac778ebc88ebe86aede1b0ddc"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 21484
s3.us-east-1.amazonaws.com/autonewsuploads/silicon-valley-bank-svb-696x391.jpg40d86096b513af5fb6b62d4adc15f8551701260093ffc78a6207d8aade4d748dae6478fb31
200 OK 69 kB URL GET HTTP/1.1 s3.us-east-1.amazonaws.com/autonewsuploads/silicon-valley-bank-svb-696x391.jpg40d86096b513af5fb6b62d4adc15f8551701260093ffc78a6207d8aade4d748dae6478fb31
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerAmazon
Subjects3.amazonaws.com
Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C
ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 696x391, components 3
Hash fa1f99e9ffb1cb56f6202d5bbf335f79
77864286b7c71b8670bf94f03134df6a009aabec
0fb64f41262e961a43e15d99a5461253cfcd4b57c554000678ed73aafd4edc6d
GET /autonewsuploads/silicon-valley-bank-svb-696x391.jpg40d86096b513af5fb6b62d4adc15f8551701260093ffc78a6207d8aade4d748dae6478fb31 HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: DG5vWvV6PkCmCHA3SjCWTTaFSbdjYBCLOXzct9UvdQrsvd33Gi6i/eQTVxFPJpvziceMOZDDeVY=
x-amz-request-id: C4911DNEWAJK9ZT3
Date: Fri, 29 Mar 2024 22:54:05 GMT
Last-Modified: Wed, 29 Nov 2023 12:14:52 GMT
ETag: "fa1f99e9ffb1cb56f6202d5bbf335f79"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 68794
s3.us-east-1.amazonaws.com/autonewsuploads/0.232721001677585944SMRFEDshortadpic.jpg
200 OK 177 kB URL GET HTTP/1.1 s3.us-east-1.amazonaws.com/autonewsuploads/0.232721001677585944SMRFEDshortadpic.jpg
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerAmazon
Subjects3.amazonaws.com
Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C
ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=1, software=Shutterstock Create https://www.shutterstock.com/create/home], baseline, precision 8, 1280x720, components 3
Size 177 kB (176551 bytes)
Hash a0385570d30a4f17151362a00e60e2a7
499327fbe6afcd6bd509c49ff58ca02bc114e123
def1596cc2e85475aa04f6bc7f0e0f48e8ed48c86736c50485e9d1b0aa7d9578
GET /autonewsuploads/0.232721001677585944SMRFEDshortadpic.jpg HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: I//Id+XgfdKkarSRq/Tl9Y8KJMYiKUvUPGKmF9qC2m5JpLXjSXHF+OiuSlIvGbhjXx4AYQl4uLA=
x-amz-request-id: C497DVFSFZ4Y4WJH
Date: Fri, 29 Mar 2024 22:54:05 GMT
Last-Modified: Wed, 08 Mar 2023 14:22:42 GMT
ETag: "a0385570d30a4f17151362a00e60e2a7"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 176551
s3.us-east-1.amazonaws.com/autonewsuploads/MAdvance02241.jpga133603513a307b956057cb1bcb3fe9d17078278037e7ff1a914d4a92d1727574405386320
200 OK 34 kB URL GET HTTP/1.1 s3.us-east-1.amazonaws.com/autonewsuploads/MAdvance02241.jpga133603513a307b956057cb1bcb3fe9d17078278037e7ff1a914d4a92d1727574405386320
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerAmazon
Subjects3.amazonaws.com
Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C
ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 970x646, components 3
Hash 1ae8b3c36ec3a59564f5560677aa4cd1
5c35719a9300207834ad18a1adf596704ce5acfb
e51e5c8efe63c95ef4170b16bded7b491abc3e2102cf558a54ce50cff954fba1
GET /autonewsuploads/MAdvance02241.jpga133603513a307b956057cb1bcb3fe9d17078278037e7ff1a914d4a92d1727574405386320 HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: D6xTu+AMqyEkGOcXig8OWmu2yNjkK1dK4cLfWJ/SMdhDQtnBAfsqQ9v5kRD6a18Myb9sTiYDNkc=
x-amz-request-id: KNA59M4BPW3MY9MB
Date: Fri, 29 Mar 2024 22:54:06 GMT
Last-Modified: Tue, 13 Feb 2024 12:36:45 GMT
ETag: "1ae8b3c36ec3a59564f5560677aa4cd1"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 33727
s3.us-east-1.amazonaws.com/autonewsuploads/patriot-gold-supply-why-are-1-ounce-gold-coins-so-popular-3.jpeg91799b9b082394203d8c76a9ae9da2901711106679cdf222564c7aff0d709e3e542cbdf967
200 OK 307 kB URL GET HTTP/1.1 s3.us-east-1.amazonaws.com/autonewsuploads/patriot-gold-supply-why-are-1-ounce-gold-coins-so-popular-3.jpeg91799b9b082394203d8c76a9ae9da2901711106679cdf222564c7aff0d709e3e542cbdf967
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerAmazon
Subjects3.amazonaws.com
Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C
ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, description=This united states gold eagle was shot on a black background and was held with white gloves., orientation=upper-left, xresolution=228, yresolution=236, resolutionunit=2, software=Adobe Photoshop Lightroom 6.2.1 (Macintosh), datetime=2015:10:13 14:55:58], baseline, precision 8, 1183x783, components 3
Size 307 kB (306872 bytes)
Hash fface02be57d3f7d6f53cc88909e947d
8ce11adeee5f773f60a0e8b698feeadaae217a03
84b4196e3fe0d1a0da690bcfa356637621d453015a9fb3e37aab32bc27cee527
GET /autonewsuploads/patriot-gold-supply-why-are-1-ounce-gold-coins-so-popular-3.jpeg91799b9b082394203d8c76a9ae9da2901711106679cdf222564c7aff0d709e3e542cbdf967 HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: ktiMfpJ11xYyhbRw4fFVDbT8cZqnBEXZQtOFO0uHRe0EcJmBrXNKkCjF8byh7TvGOrR1jYKR3ig=
x-amz-request-id: C491F068QREBNMRX
Date: Fri, 29 Mar 2024 22:54:05 GMT
Last-Modified: Fri, 22 Mar 2024 11:24:42 GMT
ETag: "fface02be57d3f7d6f53cc88909e947d"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 306872
s3.us-east-1.amazonaws.com/autonewsuploads/TwoOnePercenters02244.jpg6590c675144356dbb3877d36b38d961c1708950794eb532285a1a0c5e08e42bc6c0112db5e
200 OK 502 kB URL GET HTTP/1.1 s3.us-east-1.amazonaws.com/autonewsuploads/TwoOnePercenters02244.jpg6590c675144356dbb3877d36b38d961c1708950794eb532285a1a0c5e08e42bc6c0112db5e
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerAmazon
Subjects3.amazonaws.com
Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C
ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=9, manufacturer=Canon, model=Canon EOS DIGITAL REBEL XT, xresolution=156, yresolution=164, resolutionunit=2, datetime=2011:02:11 22:48:17], baseline, precision 8, 1000x667, components 3
Size 502 kB (501936 bytes)
Hash 3fa18452814b989c9fc81b5fdd6c28b3
efdde7e42cfcb9fbad5d6ce42fba54e2cab8b25f
6d24908afd2b8cae1fd7533c9ea96c2aa3b54352003a906b059617c9d93c15a1
GET /autonewsuploads/TwoOnePercenters02244.jpg6590c675144356dbb3877d36b38d961c1708950794eb532285a1a0c5e08e42bc6c0112db5e HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: bEkvPBiAT/uyiSqO+ZlhguWN4VBytR/58EQgGVgjsjt+Rp6+2ao0RdjKjPUPtUCbSMPfVVTcDyo=
x-amz-request-id: C495DP5CS69P9YM0
Date: Fri, 29 Mar 2024 22:54:05 GMT
Last-Modified: Mon, 26 Feb 2024 12:33:16 GMT
ETag: "3fa18452814b989c9fc81b5fdd6c28b3"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 501936
s3.us-east-1.amazonaws.com/autonewsuploads/close-up-of-a-traders-hand-pointing-at-a-stock-graph-on-a-screen-trading-floor-93j33pvs.jpeg389422920d399dcb85e19b84e03d747417111072509b760ac091104ca162ead8e75e21b442
200 OK 409 kB URL GET HTTP/1.1 s3.us-east-1.amazonaws.com/autonewsuploads/close-up-of-a-traders-hand-pointing-at-a-stock-graph-on-a-screen-trading-floor-93j33pvs.jpeg389422920d399dcb85e19b84e03d747417111072509b760ac091104ca162ead8e75e21b442
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerAmazon
Subjects3.amazonaws.com
Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C
ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File type JPEG image data, progressive, precision 8, 2448x4368, components 3
Size 409 kB (408630 bytes)
Hash bf16b8b30a80b6209fa809c172447c15
7e9973b1236e127e25052c6d735fb4a737e136a1
7fafb0aabb08b265548c48f59b85f386171c13aad436ed19ba74bb8cae9d2bc2
GET /autonewsuploads/close-up-of-a-traders-hand-pointing-at-a-stock-graph-on-a-screen-trading-floor-93j33pvs.jpeg389422920d399dcb85e19b84e03d747417111072509b760ac091104ca162ead8e75e21b442 HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: zbvrzK7BJj+QEYgyDY8RVS3HOui88Nh4FIUnWQyBOwXeRAZnfZCNoWXYojopA+32LQTrh9Zo5SE=
x-amz-request-id: C4976MQTFPNF272P
Date: Fri, 29 Mar 2024 22:54:05 GMT
Last-Modified: Fri, 22 Mar 2024 11:34:12 GMT
ETag: "bf16b8b30a80b6209fa809c172447c15"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 408630
s3.us-east-1.amazonaws.com/autonewsuploads/crypto%20new.jpgf20f0a7de4e71f99c73e4f606b33f9b91708516606c65745799c10b6fc23cd4cb934722771
200 OK 80 kB URL GET HTTP/1.1 s3.us-east-1.amazonaws.com/autonewsuploads/crypto%20new.jpgf20f0a7de4e71f99c73e4f606b33f9b91708516606c65745799c10b6fc23cd4cb934722771
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerAmazon
Subjects3.amazonaws.com
Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C
ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=1], progressive, precision 8, 1920x1282, components 3
Hash 585945ced97c9f61858fd89056b6060c
7ba0e9fd7276a8cf7751bdc39e0af9b716e22490
a73b71ec3a20f1bdadca2fd4ab30558b2d6db3e094afcbb8d8971e243ea59b6f
GET /autonewsuploads/crypto%20new.jpgf20f0a7de4e71f99c73e4f606b33f9b91708516606c65745799c10b6fc23cd4cb934722771 HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: mHp7Z86hYXZp9VNsYg1S00UIySpksLhyv1q4x6ygaGnme9YYhIOiWzNFyMO3Bjn7jjg+sS78Z4k=
x-amz-request-id: KNA082MZ5KB12MS3
Date: Fri, 29 Mar 2024 22:54:06 GMT
Last-Modified: Wed, 21 Feb 2024 11:56:48 GMT
ETag: "585945ced97c9f61858fd89056b6060c"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 80133
s3.us-east-1.amazonaws.com/autonewsuploads/brain-question-mark-alzheimer-s-dementia.jpgd3b9145894056faa4166415e15d2be961694430315df6c7fe88b91f8023a79c5227f87ce7d
200 OK 57 kB URL GET HTTP/1.1 s3.us-east-1.amazonaws.com/autonewsuploads/brain-question-mark-alzheimer-s-dementia.jpgd3b9145894056faa4166415e15d2be961694430315df6c7fe88b91f8023a79c5227f87ce7d
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerAmazon
Subjects3.amazonaws.com
Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C
ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 910x411, components 3
Hash e74025bd2eecb8252ceac3a05afebc14
4755887ea49ca99ffa88969ba3cfe477964bb657
9f6e0e7c57d4d0e44e8f78f3e869bdae21018fada51f0aebd517b7d1ddb4ad8f
GET /autonewsuploads/brain-question-mark-alzheimer-s-dementia.jpgd3b9145894056faa4166415e15d2be961694430315df6c7fe88b91f8023a79c5227f87ce7d HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: EldqNBY+rqLqSG471xGKhMcWx1vpaTICuyDYsOHMLqd2AK5Dvp1oByLiRM6mHFq366Rc8prhbAQ=
x-amz-request-id: KNADRVWBJ2D2G3GP
Date: Fri, 29 Mar 2024 22:54:06 GMT
Last-Modified: Mon, 11 Sep 2023 11:05:16 GMT
ETag: "e74025bd2eecb8252ceac3a05afebc14"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 56708
s3.us-east-1.amazonaws.com/autonewsuploads/ezgif-3-aae05fa3f0.jpga43568a30bfe3d7a37c074b420fd62fe1704717097a3be9f7356da4db92e41f760695b1ee3
200 OK 250 kB URL GET HTTP/1.1 s3.us-east-1.amazonaws.com/autonewsuploads/ezgif-3-aae05fa3f0.jpga43568a30bfe3d7a37c074b420fd62fe1704717097a3be9f7356da4db92e41f760695b1ee3
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerAmazon
Subjects3.amazonaws.com
Fingerprint82:A2:80:27:89:C3:32:0E:1E:77:2D:6F:F3:3D:19:D3:97:36:BC:7C
ValidityThu, 08 Feb 2024 00:00:00 GMT - Sat, 11 Jan 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, comment: "Converted with https://ezgif.com/webp-to-jpg", baseline, precision 8, 960x640, components 3
Size 250 kB (250029 bytes)
Hash 0562028e635b4dbd6eba5ec2332c266e
f1efd6bf194485ac44d94b64cec8e74d1d970d70
1cad675278bcfdca304ed04d70089369a2e8e049b65a96d2c5805c38daf85cbf
GET /autonewsuploads/ezgif-3-aae05fa3f0.jpga43568a30bfe3d7a37c074b420fd62fe1704717097a3be9f7356da4db92e41f760695b1ee3 HTTP/1.1
Host: s3.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: dVOn5sgAyGXaWJpxKTOKflwFOX6QF7GG5g+MGZ9HmHxuBnXxWtTJil5f3jk1aq3qbRdPJa1FvpQ=
x-amz-request-id: C499QWHR8MGS9G8H
Date: Fri, 29 Mar 2024 22:54:05 GMT
Last-Modified: Mon, 08 Jan 2024 12:31:39 GMT
ETag: "0562028e635b4dbd6eba5ec2332c266e"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/octet-stream
Server: AmazonS3
Content-Length: 250029
subscribe.goodlifestylenews.com/jquery.mobilePhoneNumber.js
200 OK 26 kB URL GET HTTP/3 subscribe.goodlifestylenews.com/jquery.mobilePhoneNumber.js
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerGoogle Trust Services LLC
Subjectgoodlifestylenews.com
FingerprintCF:D4:62:67:0B:FC:CB:36:EF:53:02:EB:06:FE:15:35:2F:53:53:40
ValidityThu, 21 Mar 2024 14:09:53 GMT - Wed, 19 Jun 2024 14:09:52 GMT
File type JavaScript source, ASCII text
Hash 0dbbb5873b895ea3be425af219cf85de
7b9dba563376d7dbd1c5b9b7064ab87eadad5591
02cbbdeb2244fd2855c49ab964c15001bde126c21cc5890d176c537878d6152b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /jquery.mobilePhoneNumber.js HTTP/1.1
Host: subscribe.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Cookie: PHPSESSID=81418f4f3f7b7668c40d9a2fa099bbb9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 22:54:04 GMT
content-type: application/javascript
last-modified: Tue, 21 Feb 2023 09:39:45 GMT
cache-control: max-age=2592000
expires: Sun, 21 Apr 2024 22:54:35 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 604768
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=USiERwvxsS%2BE2RNSSXlXh1%2Fzl1qboH6H0JLYWQAqeguuy3wUtcS6XcjeIpRyNL%2BRTBaqtiOlGeDWoxiAwngmLgQS9IXywInYevwaaUwqqhaaa6nItC6hLuV3ejnH%2B9iDz7jom0BzxJFefL4LPngyi1Op"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c3708bba7656aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css?family=Roboto
200 OK 2.2 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B
ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
File type ASCII text, with very long lines (2218), with no line terminators
Hash 807b0cff287eb02fda9eb3a87e2746a5
34a0af77abd82f106052590a0e624b2803a6572d
35c288796da2ba3b90a7a7ef7e75a5e7eb55cad381d227beda8c5e400a04caff
GET /css?family=Roboto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 29 Mar 2024 22:54:04 GMT
date: Fri, 29 Mar 2024 22:54:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17
0 B URL User Request GET subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17
IP
Certificate IssuerGoogle Trust Services LLC
Subjectgoodlifestylenews.com
FingerprintCF:D4:62:67:0B:FC:CB:36:EF:53:02:EB:06:FE:15:35:2F:53:53:40
ValidityThu, 21 Mar 2024 14:09:53 GMT - Wed, 19 Jun 2024 14:09:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /?email=clif@br1980.com&redirect_id=41144&bid=17 HTTP/1.1
Host: subscribe.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
subscribe.goodlifestylenews.com/jquery.caret.js
200 OK 2.4 kB URL GET HTTP/3 subscribe.goodlifestylenews.com/jquery.caret.js
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerGoogle Trust Services LLC
Subjectgoodlifestylenews.com
FingerprintCF:D4:62:67:0B:FC:CB:36:EF:53:02:EB:06:FE:15:35:2F:53:53:40
ValidityThu, 21 Mar 2024 14:09:53 GMT - Wed, 19 Jun 2024 14:09:52 GMT
File type JavaScript source, ASCII text, with very long lines (2608), with no line terminators
Hash e3af742c5c11bc0da0caf3c7fcaca5de
8bb2dc61b393afafa0457215226b85d45b8a0c28
4d724445feaf2d4ed5482509c52e3752fc12bf4c043a434f317a38695b1d537d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /jquery.caret.js HTTP/1.1
Host: subscribe.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Cookie: PHPSESSID=81418f4f3f7b7668c40d9a2fa099bbb9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 22:54:04 GMT
content-type: application/javascript
last-modified: Tue, 21 Feb 2023 09:39:45 GMT
cache-control: max-age=2592000
expires: Sat, 20 Apr 2024 22:53:53 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 691211
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uMKaOHxDLj0k2qz%2Fu7wUzB3cav%2FddsfMGTw0KmTac8uFyPC36DLSihvO%2B4jhp99jxtB34xXTkfpBy7w5Fnlsq5aEwN5gsUj9Fta6orxGWa37ZhXk8PQCU5Djy%2FWeda0EbmXoVihVjXaoAmjwvGuNovWd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c3708bba7156aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
subscribe.goodlifestylenews.com/favicon.ico
404 Not Found 315 B URL GET HTTP/3 subscribe.goodlifestylenews.com/favicon.ico
IP
Requested by https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Certificate IssuerGoogle Trust Services LLC
Subjectgoodlifestylenews.com
FingerprintCF:D4:62:67:0B:FC:CB:36:EF:53:02:EB:06:FE:15:35:2F:53:53:40
ValidityThu, 21 Mar 2024 14:09:53 GMT - Wed, 19 Jun 2024 14:09:52 GMT
File type HTML document, ASCII text, with very long lines (326), with no line terminators
Hash 97ef40509b73c101d6815511c3adf98d
a4242322497ea630ea72e26ba297a95a2bbe5ccd
322c1f60d9d454c801f7cff3173ef16b61cf9963a64e09a4d9e21d36218b56be
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: subscribe.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Cookie: PHPSESSID=81418f4f3f7b7668c40d9a2fa099bbb9; _ga_WJJ5P9F2X8=GS1.1.1711752844.1.0.1711752844.0.0.0; _ga=GA1.1.1470917785.1711752845
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 22:54:06 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8mPBv%2Fhr2665YqytzBXuoAXT2W%2Fo%2FExtWkf0yIekTmncgIuMz8Djt6vIfdQnaMIp6zn5Ndjuv%2FVwI4kxS9rhGIkcQF7DDLwt1X7RFmx9C2A0gyyfzFqWT2CPWvr968K7RHEyW57sOKSRhBvji7cvOd%2B3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c37094897856aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
go.goodlifestylenews.com/dummyarticleclickers_41144/2987e62698a8e6fb67de9bd9e725c387/55/leadsource/2482/1610/f20c52a1416322510e1a060b34a9c883/mpmta/news/41144/17
302 Found 0 B URL User Request GET HTTP/2 go.goodlifestylenews.com/dummyarticleclickers_41144/2987e62698a8e6fb67de9bd9e725c387/55/leadsource/2482/1610/f20c52a1416322510e1a060b34a9c883/mpmta/news/41144/17
IP
Certificate IssuerGoogle Trust Services LLC
Subjectgoodlifestylenews.com
FingerprintCF:D4:62:67:0B:FC:CB:36:EF:53:02:EB:06:FE:15:35:2F:53:53:40
ValidityThu, 21 Mar 2024 14:09:53 GMT - Wed, 19 Jun 2024 14:09:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /dummyarticleclickers_41144/2987e62698a8e6fb67de9bd9e725c387/55/leadsource/2482/1610/f20c52a1416322510e1a060b34a9c883/mpmta/news/41144/17 HTTP/1.1
Host: go.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 29 Mar 2024 22:53:58 GMT
content-type: text/html; charset=UTF-8
location: https://verifiedwebpage.com/go?ehash=2987e62698a8e6fb67de9bd9e725c387&product=44559&ar=55&cid=2482&lid=1610&slhash=f20c52a1416322510e1a060b34a9c883&redirect_id=41144&bid=17
cache-control: max-age=600
expires: Fri, 29 Mar 2024 23:03:57 GMT
vary: User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YYLSaXI%2FmeH2QPquoO4XofBT9G7wwh2Qyo0ud7K1C91vVSOMI2p6mMOPnAP945qhbDLz7TR3ATam8YdCwmtaXUHcz7xaFNyHqL77lfjPVYhsV6tjIzA3mNJiDOJax%2Furb2rBwsPIz6PK%2BkY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c370653a1756aa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17
302 Found 31 kB URL User Request GET HTTP/1.1 subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /?email=clif@br1980.com&redirect_id=41144&bid=17 HTTP/1.1
Host: subscribe.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Fri, 29 Mar 2024 22:54:02 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST
Access-Control-Allow-Headers: X-Requested-With
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=81418f4f3f7b7668c40d9a2fa099bbb9; path=/
location: http://subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
Vary: Accept-Encoding,User-Agent
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kjwKd5AeVWVzN%2BeqR%2Bh9F4J6Xw8sB7mq8LhVH0RWVQgr4SQrn%2F800FtW2zne192huznjJdDJiyDm1iWTtTcnFmAxeSvqcCA1B31MOY6Qorx8%2BeEDkUTEaBS%2BvVBlL0jvrpVQCfkmc%2BfN9F0qg15CAyMi"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 86c3707b1c711c06-OSL
alt-svc: h2=":443"; ma=60
subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
200 OK 31 kB URL User Request GET HTTP/3 subscribe.goodlifestylenews.com/?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788
IP
Certificate IssuerGoogle Trust Services LLC
Subjectgoodlifestylenews.com
FingerprintCF:D4:62:67:0B:FC:CB:36:EF:53:02:EB:06:FE:15:35:2F:53:53:40
ValidityThu, 21 Mar 2024 14:09:53 GMT - Wed, 19 Jun 2024 14:09:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /?email=clif@br1980.com&redirect_id=41144&bid=17&ses_id=efe9686da6463779edaebfc8432fb788 HTTP/1.1
Host: subscribe.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: PHPSESSID=81418f4f3f7b7668c40d9a2fa099bbb9
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 22:54:04 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZDeN%2Fp59Re263g%2FCXP3uhnUPQaWfhlp1udIOxvHM8z%2BO0oB8jAfMki0TbwoHS6bZTeEZCtwkkSCJjFQXu3aOD8hAb2bI7%2Bwsl09AFukOaBH9znP1jvhqwNT5GdT9HqFQcZPkXK%2BOZ1Hsr9lJyohxHZyW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86c370837c1556aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
172.67.172.49
104.18.21.187