| vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 | 154.38.187.104 | 200 OK | 8.6 kB |
URL User Request GET HTTP/1.1vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 IP154.38.187.104:443
CertificateIssuerLet's Encrypt Subjectvertf.com Fingerprint39:92:67:92:EB:A8:C3:FF:4A:DB:E3:4A:40:12:A4:2F:E2:5E:84:85 ValidityMon, 08 Apr 2024 22:59:14 GMT - Sun, 07 Jul 2024 22:59:13 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (711) Hash51f5ee5a1b9c4c313241e4a4c5805f2c d7e61dd9418a271f5f110c3d1bc21ff93685bfe2 a40f20da59dad49494e8d7adaeb4bed8bd484e8e8e2031dfaeb4cc27fe59d2dc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 HTTP/1.1
Host: vertf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 26 Apr 2024 18:20:16 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: uclick=usir4kg5; expires=Sat, 27-Apr-2024 18:20:16 GMT; Max-Age=86400; path=/; secure; SameSite=none
uclickhash=usir4kg5-usir4kg5-h9-0-pm-qdbl-e2-e082f0; expires=Sat, 27-Apr-2024 18:20:16 GMT; Max-Age=86400; path=/; secure; SameSite=none
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
|
|
| vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc1a2.txt | 154.38.187.104 | 200 OK | 395 B |
URL GET HTTP/1.1vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc1a2.txt IP154.38.187.104:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerLet's Encrypt Subjectvertf.com Fingerprint39:92:67:92:EB:A8:C3:FF:4A:DB:E3:4A:40:12:A4:2F:E2:5E:84:85 ValidityMon, 08 Apr 2024 22:59:14 GMT - Sun, 07 Jul 2024 22:59:13 GMT
Hash8c77e5eb80014c28b11193ee63a98f26 be35db5c2893eba8b5a1cd91e4f062ae29e58faf 7658c06e4c2090ece3af299ba9fa43ef1073a793ae45e8c25dd11ce5716fffcc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc1a2.txt HTTP/1.1
Host: vertf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47
Cookie: uclick=usir4kg5; uclickhash=usir4kg5-usir4kg5-h9-0-pm-qdbl-e2-e082f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 26 Apr 2024 18:20:16 GMT
Content-Type: text/plain
Content-Length: 395
Last-Modified: Mon, 18 Dec 2023 16:54:44 GMT
Connection: keep-alive
ETag: "65807954-18b"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
|
|
| vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc1ce.txt | 154.38.187.104 | 200 OK | 2.3 kB |
URL GET HTTP/1.1vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc1ce.txt IP154.38.187.104:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerLet's Encrypt Subjectvertf.com Fingerprint39:92:67:92:EB:A8:C3:FF:4A:DB:E3:4A:40:12:A4:2F:E2:5E:84:85 ValidityMon, 08 Apr 2024 22:59:14 GMT - Sun, 07 Jul 2024 22:59:13 GMT
Hashc106f94e86ef0dc45137a4d89cd8e85e c54559535559bd429bdce653cbe42e724f4b25ef 63e7de4e319ea0046afcd7c758f701abb67a0f113eb97b0a1ee02a1335a1dd18
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc1ce.txt HTTP/1.1
Host: vertf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47
Cookie: uclick=usir4kg5; uclickhash=usir4kg5-usir4kg5-h9-0-pm-qdbl-e2-e082f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 26 Apr 2024 18:20:16 GMT
Content-Type: text/plain
Content-Length: 2322
Last-Modified: Mon, 18 Dec 2023 16:54:49 GMT
Connection: keep-alive
ETag: "65807959-912"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
|
|
| www.googletagmanager.com/gtm.js?id=GTM-WGJSH9M | 142.250.74.168 | 200 OK | 96 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-WGJSH9M IP142.250.74.168:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (9518) Hash7e3ff4c3787ff9259e729856a3d20e14 50943b488688fc0a4ab7cd3d7e2814ec370f1f02 973b57912e37b6be6155c9e25b12b8ad787eb5f998758605d28e3d891d46d2e6
GET /gtm.js?id=GTM-WGJSH9M HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 18:20:16 GMT
expires: Fri, 26 Apr 2024 18:20:16 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 Apr 2024 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 96479
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc0ca.js | 154.38.187.104 | 200 OK | 35 kB |
URL GET HTTP/1.1vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc0ca.js IP154.38.187.104:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerLet's Encrypt Subjectvertf.com Fingerprint39:92:67:92:EB:A8:C3:FF:4A:DB:E3:4A:40:12:A4:2F:E2:5E:84:85 ValidityMon, 08 Apr 2024 22:59:14 GMT - Sun, 07 Jul 2024 22:59:13 GMT
File typeJavaScript source, ASCII text, with very long lines (35133), with no line terminators Hashf43b941d2ba906dda84c7673a9fbb652 b872286a1ceca6888afc07ec3d7b678552e5e8c7 4cd8b6431e8d41c1f528b0d5564fc12ad72ddc62dc0026a2f78d48ff65ecc585
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc0ca.js HTTP/1.1
Host: vertf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47
Cookie: uclick=usir4kg5; uclickhash=usir4kg5-usir4kg5-h9-0-pm-qdbl-e2-e082f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 26 Apr 2024 18:20:16 GMT
Content-Type: application/javascript
Content-Length: 35133
Last-Modified: Mon, 18 Dec 2023 16:54:46 GMT
Connection: keep-alive
ETag: "65807956-893d"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
|
|
| vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc04c.js | 154.38.187.104 | 200 OK | 4.5 kB |
URL GET HTTP/1.1vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc04c.js IP154.38.187.104:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerLet's Encrypt Subjectvertf.com Fingerprint39:92:67:92:EB:A8:C3:FF:4A:DB:E3:4A:40:12:A4:2F:E2:5E:84:85 ValidityMon, 08 Apr 2024 22:59:14 GMT - Sun, 07 Jul 2024 22:59:13 GMT
File typeJavaScript source, ASCII text, with very long lines (4487), with no line terminators Hashd8a0a7729f10d1e178d1b5294c83acc2 c4c0a589380bcfa2d8c99cf73c134553df8f478a de2f97427eb4ff9641bb2de002cd51b2647b488f1475791340851825799b5d7c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc04c.js HTTP/1.1
Host: vertf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47
Cookie: uclick=usir4kg5; uclickhash=usir4kg5-usir4kg5-h9-0-pm-qdbl-e2-e082f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 26 Apr 2024 18:20:16 GMT
Content-Type: application/javascript
Content-Length: 4487
Last-Modified: Mon, 18 Dec 2023 16:54:49 GMT
Connection: keep-alive
ETag: "65807959-1187"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
|
|
| vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc26b.css | 154.38.187.104 | 200 OK | 6.2 kB |
URL GET HTTP/1.1vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc26b.css IP154.38.187.104:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerLet's Encrypt Subjectvertf.com Fingerprint39:92:67:92:EB:A8:C3:FF:4A:DB:E3:4A:40:12:A4:2F:E2:5E:84:85 ValidityMon, 08 Apr 2024 22:59:14 GMT - Sun, 07 Jul 2024 22:59:13 GMT
Hash5ba84126003571ea3236be78004763a2 f7ebefd8932648c6836a2a39d056a0bb4f8fe547 02f43997f9636af74fc2387245054f2e934ae4b62c5389833fb5b6cf2eeba6f5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc26b.css HTTP/1.1
Host: vertf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47
Cookie: uclick=usir4kg5; uclickhash=usir4kg5-usir4kg5-h9-0-pm-qdbl-e2-e082f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 26 Apr 2024 18:20:16 GMT
Content-Type: text/css
Content-Length: 6155
Last-Modified: Mon, 18 Dec 2023 16:54:41 GMT
Connection: keep-alive
ETag: "65807951-180b"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
|
|
| vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc2df.css | 154.38.187.104 | 200 OK | 7.8 kB |
URL GET HTTP/1.1vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc2df.css IP154.38.187.104:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerLet's Encrypt Subjectvertf.com Fingerprint39:92:67:92:EB:A8:C3:FF:4A:DB:E3:4A:40:12:A4:2F:E2:5E:84:85 ValidityMon, 08 Apr 2024 22:59:14 GMT - Sun, 07 Jul 2024 22:59:13 GMT
Hash9857f23e220ae821032ac418210d0f04 dc461952e9abec254978ec3324e293b91d17994d c9db2cc35e47bf8dd3945662608d104ca8d0a7a5d53129bdd48aa58f3e0e0d0f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc2df.css HTTP/1.1
Host: vertf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47
Cookie: uclick=usir4kg5; uclickhash=usir4kg5-usir4kg5-h9-0-pm-qdbl-e2-e082f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 26 Apr 2024 18:20:17 GMT
Content-Type: text/css
Content-Length: 7837
Last-Modified: Mon, 18 Dec 2023 16:54:50 GMT
Connection: keep-alive
ETag: "6580795a-1e9d"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
|
|
| vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc239.css | 154.38.187.104 | 200 OK | 16 kB |
URL GET HTTP/1.1vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc239.css IP154.38.187.104:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerLet's Encrypt Subjectvertf.com Fingerprint39:92:67:92:EB:A8:C3:FF:4A:DB:E3:4A:40:12:A4:2F:E2:5E:84:85 ValidityMon, 08 Apr 2024 22:59:14 GMT - Sun, 07 Jul 2024 22:59:13 GMT
Hasha25633b2502e9f496760b7ca3ef01dfb f3a790d056c91675a3528267a541d7cbc3ed386b 6a58012bc7b27c234fa18dbb4ace7f21d16f7d9acb692b197dee1cd72ccab080
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc239.css HTTP/1.1
Host: vertf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47
Cookie: uclick=usir4kg5; uclickhash=usir4kg5-usir4kg5-h9-0-pm-qdbl-e2-e082f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 26 Apr 2024 18:20:16 GMT
Content-Type: text/css
Content-Length: 15478
Last-Modified: Mon, 18 Dec 2023 16:54:47 GMT
Connection: keep-alive
ETag: "65807957-3c76"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
|
|
| vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc11d.js | 154.38.187.104 | 200 OK | 11 kB |
URL GET HTTP/1.1vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc11d.js IP154.38.187.104:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerLet's Encrypt Subjectvertf.com Fingerprint39:92:67:92:EB:A8:C3:FF:4A:DB:E3:4A:40:12:A4:2F:E2:5E:84:85 ValidityMon, 08 Apr 2024 22:59:14 GMT - Sun, 07 Jul 2024 22:59:13 GMT
File typeJavaScript source, ASCII text, with very long lines (10594) Hashde5c77936db65ca13cb3e455f45cacff b93aa214d7f28226ddffdaa499a6091f9ca8f215 93530428224d16b1319b00f5caa1fbcf98ab2c4e7bf2b189b66d4c6036261373
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc11d.js HTTP/1.1
Host: vertf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47
Cookie: uclick=usir4kg5; uclickhash=usir4kg5-usir4kg5-h9-0-pm-qdbl-e2-e082f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 26 Apr 2024 18:20:17 GMT
Content-Type: application/javascript
Content-Length: 11024
Last-Modified: Mon, 18 Dec 2023 16:54:44 GMT
Connection: keep-alive
ETag: "65807954-2b10"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
|
|
| vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc16d.js | 154.38.187.104 | 200 OK | 10 kB |
URL GET HTTP/1.1vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc16d.js IP154.38.187.104:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerLet's Encrypt Subjectvertf.com Fingerprint39:92:67:92:EB:A8:C3:FF:4A:DB:E3:4A:40:12:A4:2F:E2:5E:84:85 ValidityMon, 08 Apr 2024 22:59:14 GMT - Sun, 07 Jul 2024 22:59:13 GMT
File typeJavaScript source, ASCII text, with very long lines (10497), with no line terminators Hashe4aabb38b4b01f9033b107420e051812 819705a1210539e37684ac1bc7b843b1d0455fb8 01ae404db311cba65ba73a8c9f89f25430392d13cf8cf418e37b35257b7d4445
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc16d.js HTTP/1.1
Host: vertf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47
Cookie: uclick=usir4kg5; uclickhash=usir4kg5-usir4kg5-h9-0-pm-qdbl-e2-e082f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 26 Apr 2024 18:20:17 GMT
Content-Type: application/javascript
Content-Length: 10497
Last-Modified: Mon, 18 Dec 2023 16:54:48 GMT
Connection: keep-alive
ETag: "65807958-2901"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
|
|
| vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc08c.js | 154.38.187.104 | 200 OK | 20 kB |
URL GET HTTP/1.1vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc08c.js IP154.38.187.104:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerLet's Encrypt Subjectvertf.com Fingerprint39:92:67:92:EB:A8:C3:FF:4A:DB:E3:4A:40:12:A4:2F:E2:5E:84:85 ValidityMon, 08 Apr 2024 22:59:14 GMT - Sun, 07 Jul 2024 22:59:13 GMT
File typeJavaScript source, ASCII text, with very long lines (19665), with no line terminators Hash19f1ccb4c93a8b5ca57aaf46a8b8bd05 200a4b15edf4e75697761380b55c469f4f6a0ce1 61017aa071ee865b4b3956ad832ae8fbd056ebfafdb9918a7ff3c443f08f9462
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc08c.js HTTP/1.1
Host: vertf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47
Cookie: uclick=usir4kg5; uclickhash=usir4kg5-usir4kg5-h9-0-pm-qdbl-e2-e082f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 26 Apr 2024 18:20:17 GMT
Content-Type: application/javascript
Content-Length: 19665
Last-Modified: Mon, 18 Dec 2023 16:54:45 GMT
Connection: keep-alive
ETag: "65807955-4cd1"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
|
|
| vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bbf72.png | 154.38.187.104 | 200 OK | 19 kB |
URL GET HTTP/1.1vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bbf72.png IP154.38.187.104:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerLet's Encrypt Subjectvertf.com Fingerprint39:92:67:92:EB:A8:C3:FF:4A:DB:E3:4A:40:12:A4:2F:E2:5E:84:85 ValidityMon, 08 Apr 2024 22:59:14 GMT - Sun, 07 Jul 2024 22:59:13 GMT
File typePNG image data, 284 x 81, 8-bit/color RGBA, non-interlaced Hash693d87acac5a98b012141cccc8fe0955 3eadd7aa762b19ca8c2b025c8f03c821ec30b0b9 1c77b3032e806905de3311ad0962fb27623470ca40c829ea1ef4fb3b28d9e9f3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bbf72.png HTTP/1.1
Host: vertf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47
Cookie: uclick=usir4kg5; uclickhash=usir4kg5-usir4kg5-h9-0-pm-qdbl-e2-e082f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 26 Apr 2024 18:20:17 GMT
Content-Type: image/png
Content-Length: 19384
Last-Modified: Mon, 18 Dec 2023 16:54:45 GMT
Connection: keep-alive
ETag: "65807955-4bb8"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
|
|
| vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba34ac6a.jpg | 154.38.187.104 | 200 OK | 13 kB |
URL GET HTTP/1.1vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba34ac6a.jpg IP154.38.187.104:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerLet's Encrypt Subjectvertf.com Fingerprint39:92:67:92:EB:A8:C3:FF:4A:DB:E3:4A:40:12:A4:2F:E2:5E:84:85 ValidityMon, 08 Apr 2024 22:59:14 GMT - Sun, 07 Jul 2024 22:59:13 GMT
File typePNG image data, 1000 x 503, 8-bit/color RGB, non-interlaced Hashcc3875d1ebc3a6e7d7433e92891b293c 051a59f13e2271d7e067f911eef4f9f19ced39e1 3b8f3fb29ec95eeb546d4ad0b10f7731ccabbe57f89af984adb97adcbe8bfea1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba34ac6a.jpg HTTP/1.1
Host: vertf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47
Cookie: uclick=usir4kg5; uclickhash=usir4kg5-usir4kg5-h9-0-pm-qdbl-e2-e082f0; _gcl_au=1.1.1918403534.1714155617
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 26 Apr 2024 18:20:17 GMT
Content-Type: image/jpeg
Content-Length: 13431
Last-Modified: Mon, 18 Dec 2023 16:54:40 GMT
Connection: keep-alive
ETag: "65807950-3477"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
|
|
| vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba34abec.jpg | 154.38.187.104 | 200 OK | 304 kB |
URL GET HTTP/1.1vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba34abec.jpg IP154.38.187.104:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerLet's Encrypt Subjectvertf.com Fingerprint39:92:67:92:EB:A8:C3:FF:4A:DB:E3:4A:40:12:A4:2F:E2:5E:84:85 ValidityMon, 08 Apr 2024 22:59:14 GMT - Sun, 07 Jul 2024 22:59:13 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1412x787, components 3 Size304 kB (303510 bytes) Hash18059feffbe69ab064be84070e5c41a4 52f0f46e4231db30dacc8a88ee5e72028c5a490c 3a021ce0558c187f82527817161deec598368aedfd3a840fc121228d3a118a69
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba34abec.jpg HTTP/1.1
Host: vertf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47
Cookie: uclick=usir4kg5; uclickhash=usir4kg5-usir4kg5-h9-0-pm-qdbl-e2-e082f0; _gcl_au=1.1.1918403534.1714155617
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 26 Apr 2024 18:20:17 GMT
Content-Type: image/jpeg
Content-Length: 303510
Last-Modified: Mon, 18 Dec 2023 16:54:51 GMT
Connection: keep-alive
ETag: "6580795b-4a196"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
|
|
| ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=974a8748c4 | 104.21.26.223 | 200 OK | 14 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=974a8748c4 IP104.21.26.223:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (2774) Hashf2e0b2680d9b0bcb6e0039c4424e5a59 1ea995cea90b79f3ad16c318572313a671718645 7f8b63bff49fba3c5bae30f4eb39f2fd6d088fbe9d7292bdf37b0ef4a1ec68d6
GET /releases/v5.15.4/css/free-v4-font-face.min.css?token=974a8748c4 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vertf.com/
Origin: https://vertf.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:20:17 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"f2e0b2680d9b0bcb6e0039c4424e5a59"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FgR0NJyuVi2Nhx6ar_O_rw-BxGTAbKokKFLd0zJkSaqxNpH_qIciSQ==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hCKycmbk0LNZSzirScVR6YtAaYJF4VsJaFa7z3lKdJ7L%2FEpzv%2BzXUFLBMn6%2Bl2s4b%2FKt39UPGDy%2BK1hg%2Bwdxd%2FBF7XNE8Lywc2HQnjO0uGSmQfl%2FM0ZP%2BCzQ20b%2FvY9hXiq7bUF7Dg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a895ffda4d1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc205.png | 154.38.187.104 | 200 OK | 15 kB |
URL GET HTTP/1.1vertf.com/landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc205.png IP154.38.187.104:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerLet's Encrypt Subjectvertf.com Fingerprint39:92:67:92:EB:A8:C3:FF:4A:DB:E3:4A:40:12:A4:2F:E2:5E:84:85 ValidityMon, 08 Apr 2024 22:59:14 GMT - Sun, 07 Jul 2024 22:59:13 GMT
File typePNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced Hasha2655d2744a67a95f26d2ec408be2e51 6b4880186119870f2a12aa5d41a13b1ccb2211eb 9a776e89b1c468bd096d6c4c640cd7008fdf51bbfa5666797bf5609af952e31e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /landers/datingLPeMail63324ba27d33a/63324ba27d39c/63324ba2bc205.png HTTP/1.1
Host: vertf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47
Cookie: uclick=usir4kg5; uclickhash=usir4kg5-usir4kg5-h9-0-pm-qdbl-e2-e082f0; _gcl_au=1.1.1918403534.1714155617
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 26 Apr 2024 18:20:17 GMT
Content-Type: image/png
Content-Length: 15208
Last-Modified: Mon, 18 Dec 2023 16:54:43 GMT
Connection: keep-alive
ETag: "65807953-3b68"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
|
|
| bat.bing.com/action/0?ti=355008974&tm=gtm002&Ver=2&mid=2d6213a8-037b-40ec-bc4d-9df3847b4947&sid=a257c36003f911efa4303f84344791dd&vid=a257d83003f911efba91f56cbaae438c&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Friends-with-benefits&p=https%3A%2F%2Fvertf.com%2Findex.php%3Fcampid%3D548573%26cat%3DGay%26click_id%3DY-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi%26cost%3D8.612%26cr_id%3D3551036%26format%3Ddirect%26geo%3DUS%26ip%3D146.12.157.32%26key2%3Dal0mq2w0qd%26price_model%3D%7Bprice_model%7D%26referrer%3Dhttps%3A%2F%2Fxhamster.com%2F%26site_id%3D12%26spotid%3D47&r=<=1961&evt=pageLoad&sv=1&rn=850233 | 13.107.21.237 | 204 No Content | 0 B |
URL GET HTTP/2bat.bing.com/action/0?ti=355008974&tm=gtm002&Ver=2&mid=2d6213a8-037b-40ec-bc4d-9df3847b4947&sid=a257c36003f911efa4303f84344791dd&vid=a257d83003f911efba91f56cbaae438c&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Friends-with-benefits&p=https%3A%2F%2Fvertf.com%2Findex.php%3Fcampid%3D548573%26cat%3DGay%26click_id%3DY-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi%26cost%3D8.612%26cr_id%3D3551036%26format%3Ddirect%26geo%3DUS%26ip%3D146.12.157.32%26key2%3Dal0mq2w0qd%26price_model%3D%7Bprice_model%7D%26referrer%3Dhttps%3A%2F%2Fxhamster.com%2F%26site_id%3D12%26spotid%3D47&r=<=1961&evt=pageLoad&sv=1&rn=850233 IP13.107.21.237:443 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerMicrosoft Corporation Subjectwww.bing.com Fingerprint2B:CE:FC:A9:73:41:A3:66:C2:43:6D:7A:76:00:0C:F2:74:08:13:99 ValidityThu, 25 Apr 2024 02:03:31 GMT - Thu, 27 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=355008974&tm=gtm002&Ver=2&mid=2d6213a8-037b-40ec-bc4d-9df3847b4947&sid=a257c36003f911efa4303f84344791dd&vid=a257d83003f911efba91f56cbaae438c&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Friends-with-benefits&p=https%3A%2F%2Fvertf.com%2Findex.php%3Fcampid%3D548573%26cat%3DGay%26click_id%3DY-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi%26cost%3D8.612%26cr_id%3D3551036%26format%3Ddirect%26geo%3DUS%26ip%3D146.12.157.32%26key2%3Dal0mq2w0qd%26price_model%3D%7Bprice_model%7D%26referrer%3Dhttps%3A%2F%2Fxhamster.com%2F%26site_id%3D12%26spotid%3D47&r=<=1961&evt=pageLoad&sv=1&rn=850233 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=12581BA059176A4B005B0FCD58E26B9C; domain=.bing.com; expires=Wed, 21-May-2025 18:20:17 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FD3B6084E4BF4F56BBF5DC328AE2F8CB Ref B: OSL30EDGE0516 Ref C: 2024-04-26T18:20:17Z
date: Fri, 26 Apr 2024 18:20:17 GMT
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=974a8748c4 | 104.21.26.223 | 200 OK | 16 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=974a8748c4 IP104.21.26.223:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (60130) Hasha12ec7ebe75a4d59a5dd6b79e2ba2e16 28f5dcc595ee6d4163481ef64170180502c8629b fc5128dfdcdfa0c3a9967a6d2f19399d7bf1aaae6ad7571b96b03915a1f30dda
GET /releases/v5.15.4/css/free.min.css?token=974a8748c4 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vertf.com/
Origin: https://vertf.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:20:17 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QeMRM7oYS0nFYaC6MwA7txL2Z8MFDLVrAGIMWFE3MeFDqccfD29UEA==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZpbmRz2lM4b5%2BmvSnQ2Ky%2FFVWnzBKvIi8kHuG%2BZf%2BAepuiF5BFiYFcIGc3T5GHxMhm9KG2ruSFGw1n4%2B8kxXU60TZX9Q6EF0wzZrwyqe9iOtzwxgTag6gg%2FjUxhDo3NybJVvZhu5Tw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a895ffea561c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bat.bing.com/p/action/355008974.js | 13.107.21.237 | 200 OK | 3.7 kB |
URL GET HTTP/2bat.bing.com/p/action/355008974.js IP13.107.21.237:443 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerMicrosoft Corporation Subjectwww.bing.com Fingerprint2B:CE:FC:A9:73:41:A3:66:C2:43:6D:7A:76:00:0C:F2:74:08:13:99 ValidityThu, 25 Apr 2024 02:03:31 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (3889), with no line terminators Hash652572fa9f9778710da498dffd53316a f049c9cfa5c15bc0ab5799962d74ee27878970a6 12a1490a0b9655a4aed82826af2ff8e917669cdebc9ee5c81da7a46522df4ad8
GET /p/action/355008974.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private,max-age=60
content-type: application/javascript; charset=utf-8
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 3B07D1F1ACBC4D51AA5AA26C9ABF6018 Ref B: OSL30EDGE0516 Ref C: 2024-04-26T18:20:17Z
date: Fri, 26 Apr 2024 18:20:17 GMT
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=974a8748c4 | 104.21.26.223 | 200 OK | 27 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=974a8748c4 IP104.21.26.223:443
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (26500) Hash76f34b71fc9fb641507ff6a822cc07f5 73ed2f8f21cd40fb496e61306acbb5849d4dbff4 6dea47458a4cd7cd7312cc780a53c62e0c8b3ccc8d0b13c1ac0ea6e3dfcecea8
GET /releases/v5.15.4/css/free-v4-shims.min.css?token=974a8748c4 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vertf.com/
Origin: https://vertf.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:20:17 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"76f34b71fc9fb641507ff6a822cc07f5"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZyN5gHT-ZEldJB3vtyyASYUzyzgR2yxpEEukwi3xv4wvJ5oBKiwckg==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DjKfesjY7awMUo4LP2AN%2BnByHtWaqa99RpldWrqsfRNdHRzL3T87ZVkGqh2BJZRfGn1h%2FwX9jemMbL8DNaRtNsVHc4nssD9C34aljWtCN%2FaBwDxujH3K71HTu3HyKV%2BjiR3OnUipoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a895ffea571c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bat.bing.com/bat.js | 13.107.21.237 | 200 OK | 46 kB |
IP13.107.21.237:443 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://vertf.com/index.php?campid=548573&cat=Gay&click_id=Y-dIImc9xBtGmuDHCW4RQiE2UY7rDN783tJz5Jd1HHFh2y9nxoTZtF3zxGqeAE4ng0IgJRhjA14-_lJ2djGpuj64PDK1ItWMQQsWcB_Blg_gUIDRUi&cost=8.612&cr_id=3551036&format=direct&geo=US&ip=146.12.157.32&key2=al0mq2w0qd&price_model={price_model}&referrer=https://xhamster.com/&site_id=12&spotid=47 CertificateIssuerMicrosoft Corporation Subjectwww.bing.com Fingerprint2B:CE:FC:A9:73:41:A3:66:C2:43:6D:7A:76:00:0C:F2:74:08:13:99 ValidityThu, 25 Apr 2024 02:03:31 GMT - Thu, 27 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vertf.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 13261
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 29 Feb 2024 19:58:06 GMT
accept-ranges: bytes
etag: "01b4e9c496bda1:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BB7380AF792F45FBB08B407941A509F9 Ref B: OSL30EDGE0516 Ref C: 2024-04-26T18:20:17Z
date: Fri, 26 Apr 2024 18:20:16 GMT
X-Firefox-Spdy: h2
|
|