firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 17:15:02 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 52ol8GgxkoC1UGiPW_VrwXIQ6ItRSS3XNDvQWeDpmuG1ygTnOrosEw==
Age: 1904
boa.draw24bit.com/
82.180.138.205301 Moved Permanently 707 B IP 82.180.138.205:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sun, 25 Sep 2022 17:46:46 GMT
server: LiteSpeed
location: https://boa.draw24bit.com/
platform: hostinger
content-security-policy: upgrade-insecure-requests
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17559
Expires: Sun, 25 Sep 2022 22:39:25 GMT
Date: Sun, 25 Sep 2022 17:46:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b3e81b5bd7bd8e12288a8159e44ceb3f
977945964ffcbf49ac78f840db9da822c50c82f0
4721814da286852318f7ebf9857bd4bf01f0beea2c9eb7ddb9f290e3fa472232
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4721814DA286852318F7EBF9857BD4BF01F0BEEA2C9EB7DDB9F290E3FA472232"
Last-Modified: Fri, 23 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13535
Expires: Sun, 25 Sep 2022 21:32:21 GMT
Date: Sun, 25 Sep 2022 17:46:46 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: EzPlX2OB5B0o8LG3F4DUwSK1d3bBtgnBgWiblRsvad+9AKu3CAyNuX5siA/WXHxkWQQ+nfxW2EU=
x-amz-request-id: 6WTXQH73PR0ADJDW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 25 Sep 2022 17:45:52 GMT
age: 54
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 17:46:46 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 25 Sep 2022 17:04:17 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 25 Sep 2022 17:17:03 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mZe8fpxAzaDuxv60oJznPSr8oFEfp1Gh2EKpTENAJx3Vn9NqAoCqJA==
Age: 2550
boa.draw24bit.com/
82.180.138.205200 OK 14 kB IP 82.180.138.205:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 76a4fc06cf45b7363e898381ee3e4eb6
70991df26515da1959651f9a5b508d0b2d8d4123
21af5d87a178aef905fdf17dab97731140f5e0eadd1cc17c4f4bf0cd40e153df
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.30
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; expires=Sun, 25-Sep-2022 19:46:47 GMT; Max-Age=7200; path=/; samesite=lax; secure
laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D; expires=Sun, 25-Sep-2022 19:46:47 GMT; Max-Age=7200; path=/; httponly; samesite=lax; secure
content-length: 14047
content-encoding: br
vary: Accept-Encoding
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5346
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:46:47 GMT
Last-Modified: Sun, 25 Sep 2022 16:17:41 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 58b52380a6b5c598d1ad88e8da148137
a56206a0277aea6e8e2f7629793aba713d8edd0c
561a57c27dfa1f8651a89292428576b626e8700b9cd6b8173a0ce121aa8f9f4a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:46:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=------
142.250.74.72200 OK 36 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=------
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 71c4e7ac28e0c895fa0e919fb930bc4e
a2e36ad70907f3d0e90994e045eeefef3949ea88
4c69bd56eef28fc83561bb907337173c0daa87aca56d2f06766cf3e1b865f647
GET /gtag/js?id=------ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 25 Sep 2022 17:46:47 GMT
expires: Sun, 25 Sep 2022 17:46:47 GMT
cache-control: private, max-age=900
last-modified: Sun, 25 Sep 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 36104
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 58b52380a6b5c598d1ad88e8da148137
a56206a0277aea6e8e2f7629793aba713d8edd0c
561a57c27dfa1f8651a89292428576b626e8700b9cd6b8173a0ce121aa8f9f4a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:46:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
boa.draw24bit.com/assets/templates/basic/css/lib/bootstrap.min.css
82.180.138.205200 OK 20 kB URL HTTP/2 boa.draw24bit.com/assets/templates/basic/css/lib/bootstrap.min.css
IP 82.180.138.205:0
File type Unicode text, UTF-8 text, with very long lines (65300)
Hash 1069861e6e88fd3c1c661dca9d59c568
c10a7890ed89f9c3999f6e9aff6d242564fab272
cc49d0c602e057ac52d424b707928f6c849d7791e1bb88616dfd7c1d1ba6a372
GET /assets/templates/basic/css/lib/bootstrap.min.css HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: text/css
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "25617-632f8265-2a54c2457200d6ca;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19454
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/templates/basic/css/all.min.css
82.180.138.205200 OK 12 kB URL HTTP/2 boa.draw24bit.com/assets/templates/basic/css/all.min.css
IP 82.180.138.205:0
File type ASCII text, with very long lines (58392)
Hash 710635fb8bb944d7fa6791bad140a353
11da072635b881f82fae389179ed4eafc6114dbb
104f03d0a4555aa2804085e20b6452faea8715c7bd6b7b44ec88575ba22c3677
GET /assets/templates/basic/css/all.min.css HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: text/css
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "e4d2-632f8265-46d518167c363cdb;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12116
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/templates/basic/css/line-awesome.min.css
82.180.138.205200 OK 15 kB URL HTTP/2 boa.draw24bit.com/assets/templates/basic/css/line-awesome.min.css
IP 82.180.138.205:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8200505cb2dd012de50ae188317e7106
9b53d680b0ab77aced9051aad6ad5e0ec2318f85
5937184849e778db95645742382e93888ec55b605ab1813da49e36fcec23ad20
GET /assets/templates/basic/css/line-awesome.min.css HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: text/css
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "15ea8-632f8265-34f6ce8f61fd80a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15111
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/templates/basic/css/lib/slick.css
82.180.138.205200 OK 485 B URL HTTP/2 boa.draw24bit.com/assets/templates/basic/css/lib/slick.css
IP 82.180.138.205:0
Hash 632c29e8e327e2f0304763b3181c5cbd
bfe67aefe1deb978553b277dd4e6b5798a702ab0
d2e7397156f89d1c8908b9c059f8c15b9640abfa325c1fd649785b52ec4e7ef5
GET /assets/templates/basic/css/lib/slick.css HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: text/css
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "6f0-632f8265-29d8ac558690c2be;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 485
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/templates/basic/css/lightcase.css
82.180.138.205200 OK 2.7 kB URL HTTP/2 boa.draw24bit.com/assets/templates/basic/css/lightcase.css
IP 82.180.138.205:0
File type ASCII text, with very long lines (428)
Hash 6945672bda75170cf8bef113273bcce2
dfa53b5fa2602bd801ce1e8fe3e95307b95c6143
3630db169e7eb4de53370c05dd290e608321010ceec74cb34103dac490a2dca1
GET /assets/templates/basic/css/lightcase.css HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: text/css
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "4271-632f8265-55080f8d11f0d0d2;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2654
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/templates/basic/css/custom.css
82.180.138.205200 OK 1.1 kB URL HTTP/2 boa.draw24bit.com/assets/templates/basic/css/custom.css
IP 82.180.138.205:0
File type ASCII text, with CRLF line terminators
Hash aa9c542d12e0ef3d3f69aa99ef951545
eea53896413e748d65a59ad75d87d138834d8f01
75b1b9c205f928549b07d26a62b1b1ca797706e54da5ae7a98b00698e1ca9c11
GET /assets/templates/basic/css/custom.css HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: text/css
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "116d-632f8265-f9c19f488de7bb01;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1103
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/templates/basic/css/main.css
82.180.138.205200 OK 13 kB URL HTTP/2 boa.draw24bit.com/assets/templates/basic/css/main.css
IP 82.180.138.205:0
File type assembler source, ASCII text, with CRLF line terminators
Hash f91737faefef3969487424af93cf4f7d
82df2875e725da70ee19537a98b4260582eeecf0
3b1d85d9f3ce7e07327bf472068fdd45370fac0346c41a3ac2bfe141d7a6c926
GET /assets/templates/basic/css/main.css HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: text/css
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "1a753-632f8265-f99d3bf58d870e8d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12997
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.41.252.32101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.252.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: RmAcU1DZZ99eEvGHu/vofA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uH9Q25hCwD/NYLX5PuNlh+R896Q=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:46:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Exo:wght@400;600;700&family=Roboto:wght@400;500&display=swap
142.250.74.10200 OK 1.2 kB URL HTTP/2 fonts.googleapis.com/css2?family=Exo:wght@400;600;700&family=Roboto:wght@400;500&display=swap
IP 142.250.74.10:0
Hash 81219c1b9625a99989715b75b3a61eca
1accef2c3c45ccdba47ff0188b34776e5724e573
30f78e290a84140ff175327f3367929aa8b5159e4020d152c600520f8fccf3d8
GET /css2?family=Exo:wght@400;600;700&family=Roboto:wght@400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 25 Sep 2022 17:46:47 GMT
date: Sun, 25 Sep 2022 17:46:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/templates/basic/css/color.php?color=00a6f7&secondColor=14233c
82.180.138.205200 OK 1.4 kB URL HTTP/2 boa.draw24bit.com/assets/templates/basic/css/color.php?color=00a6f7&secondColor=14233c
IP 82.180.138.205:0
File type ASCII text, with very long lines (485), with CRLF line terminators
Hash eec466faf2524b101b8c3e93938b2476
494d1afe369072327ad44ee9783b033481c2c1ff
a32b4f0b6ad007211866c605dec7a34f20e1cd563ee90830f589468d9a15bbd1
GET /assets/templates/basic/css/color.php?color=00a6f7&secondColor=14233c HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.30
content-type: text/css;charset=UTF-8
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-length: 1353
content-encoding: br
vary: Accept-Encoding
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/images/logoIcon/logo.png
82.180.138.205200 OK 18 kB URL HTTP/2 boa.draw24bit.com/assets/images/logoIcon/logo.png
IP 82.180.138.205:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ebd76dc64687615849bf45b909b0491
d23f72bd20cc2e66ca625c809ec11bc4c47dcffb
10db302ba8da5e44d7b556a69dd99a1a10d77e53d4eff904b05618c1a83f44d0
GET /assets/images/logoIcon/logo.png HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: image/png
last-modified: Sun, 25 Sep 2022 11:00:33 GMT
etag: "451e-633034d1-72d16f6310276962;;;"
accept-ranges: bytes
content-length: 17694
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/templates/basic/js/lib/wow.min.js
82.180.138.205200 OK 2.6 kB URL HTTP/2 boa.draw24bit.com/assets/templates/basic/js/lib/wow.min.js
IP 82.180.138.205:0
File type ASCII text, with very long lines (8385)
Hash dd7ed693284183053a6bb67a035fe623
b7aaf5435ce1f2805e82578f4fe3f6394f17ffa2
deaeb1f748368f233066436c4405e454ae20062775c0e1157a6bad31247b830b
Analyzer Verdict Alert fortinet Malware
GET /assets/templates/basic/js/lib/wow.min.js HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: application/x-javascript
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "20df-632f8265-5e220bff5f4e2ca;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2555
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/templates/basic/js/app.js
82.180.138.205200 OK 1.4 kB URL HTTP/2 boa.draw24bit.com/assets/templates/basic/js/app.js
IP 82.180.138.205:0
File type ASCII text, with CRLF line terminators
Hash ed1ebf8f75c34125b1548cd5bada06d5
8206bdee311d2a3469de3c372e86b55a0ae3a8c3
c62cf74976f4f8a247023125c8e5207acf2a2b73a0bf9a307e4e5f8cd7cf3af6
Analyzer Verdict Alert fortinet Malware
GET /assets/templates/basic/js/app.js HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: application/x-javascript
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "1393-632f8265-35bc6ed96f7adf3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1353
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/templates/basic/images/elements/white-wave-1.png
82.180.138.205200 OK 59 kB URL HTTP/2 boa.draw24bit.com/assets/templates/basic/images/elements/white-wave-1.png
IP 82.180.138.205:0
File type PNG image data, 6004 x 1204, 8-bit/color RGBA, non-interlaced\012- data
Hash 4213c49e0f4f7bcd45fd28aee8c741c3
2517c2565746c672462c1a1447f0a051b7879421
152525ccecdefe278523c6a5202fbcfd2dbf8e84eb27731c7c01bf37d8a4a2fe
GET /assets/templates/basic/images/elements/white-wave-1.png HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: image/png
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "e7f0-632f8265-fc17f2d4d310c687;;;"
accept-ranges: bytes
content-length: 59376
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/templates/basic/js/lib/jquery-3.5.1.min.js
82.180.138.205200 OK 30 kB URL HTTP/2 boa.draw24bit.com/assets/templates/basic/js/lib/jquery-3.5.1.min.js
IP 82.180.138.205:0
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 7ac2561b3850f008f8e95eb46e909ca9
8602ba25e134efced4a9cf7b59676b79fca63721
c15b69be899aab051fde97e1907c3d5847e3c86eeaa5e660902175c31ae5a8c6
Analyzer Verdict Alert fortinet Malware
GET /assets/templates/basic/js/lib/jquery-3.5.1.min.js HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: application/x-javascript
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "15d86-632f8265-2cc40e69656fe18d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30027
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/templates/basic/js/lightcase.js
82.180.138.205200 OK 10 kB URL HTTP/2 boa.draw24bit.com/assets/templates/basic/js/lightcase.js
IP 82.180.138.205:0
File type HTML document, ASCII text, with CRLF line terminators
Hash de006e87e7400f99e97085bc5bb5e41e
05b9d498a4b8e280f868ec7d6dc18828a15fdf5b
39dc77a9e1825f4db6de882fe5e53115387cad1a1b5d7fd6ee987d6fb8a2cf76
Analyzer Verdict Alert fortinet Malware
GET /assets/templates/basic/js/lightcase.js HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: application/x-javascript
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "d2cd-632f8265-73d60a43869c09a6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10192
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:46:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:46:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/exo/v20/4UaOrEtFpBISc36j.woff2
142.250.74.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/exo/v20/4UaOrEtFpBISc36j.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 20364, version 1.0\012- data
Hash 0de6b557071176e7a82239a7ee11306b
b85c796676d5d08baa1bcc0957a80b5e3a3ddf47
3e9d07ebb7ea3f8e5c5568fa3b4e81d5b93aacfd93cc05192a30c0438039d349
GET /s/exo/v20/4UaOrEtFpBISc36j.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://boa.draw24bit.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20364
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 03:17:45 GMT
expires: Tue, 19 Sep 2023 03:17:45 GMT
cache-control: public, max-age=31536000
age: 570542
last-modified: Mon, 11 Jul 2022 19:24:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://boa.draw24bit.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 339159
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/templates/basic/js/lib/slick.min.js
82.180.138.205200 OK 10 kB URL HTTP/2 boa.draw24bit.com/assets/templates/basic/js/lib/slick.min.js
IP 82.180.138.205:0
File type ASCII text, with very long lines (42862)
Hash 8c20a78da9d14248b45ff7cd27435cc8
c05dd41c7496f09a2ff04a37ea90ebe4f8ce7d90
e36250d9b100634269612fa8df10e15cb6714622049e0c5ffca2f83dacc1d5be
Analyzer Verdict Alert fortinet Malware
GET /assets/templates/basic/js/lib/slick.min.js HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: application/x-javascript
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "a76f-632f8265-1b767c8cfbb08594;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9950
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/global/css/iziToast.min.css
82.180.138.205200 OK 9.9 kB URL HTTP/2 boa.draw24bit.com/assets/global/css/iziToast.min.css
IP 82.180.138.205:0
File type ASCII text, with very long lines (41419)
Hash 67598ba9dd776f157ff684c8c7d0801a
2acefe6e74b78ef3042bd228d6959c311d73eae6
a4b6c698075d285491c40b03276738e2f2ba89363a6159a2c71226dfd6865757
GET /assets/global/css/iziToast.min.css HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: text/css
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "a21c-632f8265-82c8a97cc40f270e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9909
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/global/js/iziToast.min.js
82.180.138.205200 OK 4.8 kB URL HTTP/2 boa.draw24bit.com/assets/global/js/iziToast.min.js
IP 82.180.138.205:0
File type Unicode text, UTF-8 text, with very long lines (18398)
Hash 4c18b18c6c36ab823cda9cb63e680cad
4a7aa14ff4d70e10d06dbd1d80d3930367424057
6361afaffb451d8b625bd2e6b03bb841fa42ad902205d1dd8cbb18cbd0f6617f
Analyzer Verdict Alert fortinet Malware
GET /assets/global/js/iziToast.min.js HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: application/x-javascript
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "4831-632f8265-6ac7882a8e96482c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4767
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/images/frontend/partner_section/61000a7d441c71627392637.png
82.180.138.205200 OK 8.5 kB URL HTTP/2 boa.draw24bit.com/assets/images/frontend/partner_section/61000a7d441c71627392637.png
IP 82.180.138.205:0
File type PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash c877e8b5534009a7aac53fcb7217e66e
6ad35a577de49962abd058278b12587dd3b2d0d0
4f7d94e0dd5f6737eb084b795f4127cee3277b05c0654ff4ac67207d68ee8c0c
GET /assets/images/frontend/partner_section/61000a7d441c71627392637.png HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: image/png
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "210a-632f8265-b278199afbe4215c;;;"
accept-ranges: bytes
content-length: 8458
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/images/frontend/partner_section/61000905dec851627392261.png
82.180.138.205200 OK 11 kB URL HTTP/2 boa.draw24bit.com/assets/images/frontend/partner_section/61000905dec851627392261.png
IP 82.180.138.205:0
File type PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 29144dbcd11e7118d6dd93655972d439
d781796492b077fc7a5afad14f369a0200a20b20
6db34574280a11f0fdb7ca3b0ea719f3a35dff8818dc731870b7c69acae8d419
GET /assets/images/frontend/partner_section/61000905dec851627392261.png HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: image/png
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "2a17-632f8265-d7f92c0ebf9e454a;;;"
accept-ranges: bytes
content-length: 10775
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/images/frontend/partner_section/610008c8078b71627392200.png
82.180.138.205200 OK 10 kB URL HTTP/2 boa.draw24bit.com/assets/images/frontend/partner_section/610008c8078b71627392200.png
IP 82.180.138.205:0
File type PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 69f643384060be63fbfe50a58d678194
142c57e2ca30c4ede10c6de25c850e94380bb7e1
a2644abc6be0a478e74cc75219bf2fee36b1778f3da7d62d2b34e34005b2eb32
GET /assets/images/frontend/partner_section/610008c8078b71627392200.png HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: image/png
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "28a8-632f8265-57817f8df0d76c2b;;;"
accept-ranges: bytes
content-length: 10408
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/images/frontend/partner_section/610007f09805f1627391984.png
82.180.138.205200 OK 14 kB URL HTTP/2 boa.draw24bit.com/assets/images/frontend/partner_section/610007f09805f1627391984.png
IP 82.180.138.205:0
File type PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 2c16441295525a98adc44b749b309170
2770cd0199175a8b06cb4e0a36e701c5274c46ab
4aa64b08e747a2334f63f72d95b0ad5c8d1cc9e2bf3c3502f7b9e001621c14f0
GET /assets/images/frontend/partner_section/610007f09805f1627391984.png HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: image/png
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "38c0-632f8265-606f923ab0f17a66;;;"
accept-ranges: bytes
content-length: 14528
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/templates/basic/js/lib/bootstrap.bundle.min.js
82.180.138.205200 OK 21 kB URL HTTP/2 boa.draw24bit.com/assets/templates/basic/js/lib/bootstrap.bundle.min.js
IP 82.180.138.205:0
File type ASCII text, with very long lines (65293)
Hash 5ff62cdd7012796161553b9a56bb60a6
e133fb2e60cce4838a28200baa060bf33176293e
7dfdcc92619410da08de76b490bb82572bac31769b7b9c49d490f92f4289e846
Analyzer Verdict Alert fortinet Malware
GET /assets/templates/basic/js/lib/bootstrap.bundle.min.js HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: application/x-javascript
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "13bb5-632f8265-fc8b0c2461ef0240;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20978
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:46:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
boa.draw24bit.com/assets/images/frontend/about/60c75675a19651623676533.jpg
82.180.138.205200 OK 69 kB URL HTTP/2 boa.draw24bit.com/assets/images/frontend/about/60c75675a19651623676533.jpg
IP 82.180.138.205:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 650x485, components 3\012- data
Hash 16022d87e87bf4b4cd7fbbba9e92a6a3
447aebe710e1cfa0e6041bb9def2edb27242d643
51392f2fe402f539f56dceb1ad1cc44d41bff45df00b281b869e8c4950703548
GET /assets/images/frontend/about/60c75675a19651623676533.jpg HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: image/jpeg
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "10caf-632f8265-e2160c802fd3a3a8;;;"
accept-ranges: bytes
content-length: 68783
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/templates/basic/images/elements/white-wave-2.png
82.180.138.205200 OK 58 kB URL HTTP/2 boa.draw24bit.com/assets/templates/basic/images/elements/white-wave-2.png
IP 82.180.138.205:0
File type PNG image data, 6004 x 1204, 8-bit/color RGBA, non-interlaced\012- data
Hash 77bafa6973a2db4e9444b838fbd0d87c
63869b30fe2b30988b709d4a5c5066ce1657c6dc
d8ad124882205653f68573919b090d44e05347407e0ec391549d125662039ad9
GET /assets/templates/basic/images/elements/white-wave-2.png HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: image/png
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "e090-632f8265-4e4e4f10bd33c8ed;;;"
accept-ranges: bytes
content-length: 57488
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/templates/basic/images/elements/wave.png
82.180.138.205200 OK 41 kB URL HTTP/2 boa.draw24bit.com/assets/templates/basic/images/elements/wave.png
IP 82.180.138.205:0
File type PNG image data, 6000 x 1202, 8-bit/color RGBA, non-interlaced\012- data
Hash 23a9d364c356b578b613c37c44163a0b
e4d8fba0ad8f000a75bd1ea56ca0bb378d85b526
24571d7c611503aecc0926cdf2eb4aeac738b7aeefbe97553cac0ee6733a6e88
GET /assets/templates/basic/images/elements/wave.png HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: image/png
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "9e7b-632f8265-f0270ecde10c3fc3;;;"
accept-ranges: bytes
content-length: 40571
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/images/frontend/partner_section/610009d71ce7c1627392471.png
82.180.138.205200 OK 18 kB URL HTTP/2 boa.draw24bit.com/assets/images/frontend/partner_section/610009d71ce7c1627392471.png
IP 82.180.138.205:0
File type PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 48474ca587ee60b0062fdd6aa5fcf985
e8bd5dda72f30442c9ba24d0239508298c4780ae
44198e2d044c09a6bfcb047f11357733414427f99b345470e3fdf3533013b2b2
GET /assets/images/frontend/partner_section/610009d71ce7c1627392471.png HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: image/png
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "44ea-632f8265-2acc0736c52f09e2;;;"
accept-ranges: bytes
content-length: 17642
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/images/frontend/partner_section/6100088e88e2d1627392142.png
82.180.138.205200 OK 18 kB URL HTTP/2 boa.draw24bit.com/assets/images/frontend/partner_section/6100088e88e2d1627392142.png
IP 82.180.138.205:0
File type PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash a3b2bb8ce3985dea5cf169c2c4ed8d2e
0b546d003c2e1aa1b428d9e307f1053d1280b7d8
3838ee068c2be9fbe063809e683af351ce50583cc495935386db6656dfdc2404
GET /assets/images/frontend/partner_section/6100088e88e2d1627392142.png HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: image/png
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "464e-632f8265-ba58c705bc68540;;;"
accept-ranges: bytes
content-length: 17998
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9890
Expires: Sun, 25 Sep 2022 20:31:38 GMT
Date: Sun, 25 Sep 2022 17:46:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9890
Expires: Sun, 25 Sep 2022 20:31:38 GMT
Date: Sun, 25 Sep 2022 17:46:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9890
Expires: Sun, 25 Sep 2022 20:31:38 GMT
Date: Sun, 25 Sep 2022 17:46:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9890
Expires: Sun, 25 Sep 2022 20:31:38 GMT
Date: Sun, 25 Sep 2022 17:46:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9890
Expires: Sun, 25 Sep 2022 20:31:38 GMT
Date: Sun, 25 Sep 2022 17:46:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0737a7ae-3ae7-4fe5-b739-e988b295c795.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0737a7ae-3ae7-4fe5-b739-e988b295c795.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a89e7161745036637a66e8ab5b7efdf9
79c83cc27996b2339bd63764dbb2ae9744db6d70
13b990c3c6a9bee6def25d007e14628c52e427b6f4c718895b1817d5e8e59760
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0737a7ae-3ae7-4fe5-b739-e988b295c795.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8715
x-amzn-requestid: d5e237f4-4c0e-4e3b-b3ae-ea1eb5b7cafc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y5JmTEAwIAMF_Mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632d22f4-48a975a866edc1755858600f;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 03:07:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Sm6N8Un8XKHtGGZwxLd1aYygBns1l8siRvcc2w_9V2imJopvt8Ockw==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 07:09:15 GMT
age: 38253
etag: "79c83cc27996b2339bd63764dbb2ae9744db6d70"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5CzA52-o7GYViSJ4lna7ptv9dycJCUL-NLWOk-iCW-ZxDU_FQH_OoQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:51:18 GMT
age: 71730
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d59e1bbd58ff8c5fe5faecb58149601
ad7f5ed3a5f6923a0b1bb093bbc0f31a44fd0bcd
c16a2adaeaabbe45801ab5d12ceaeab587b525b4959933f53a9c8dcdb12aec68
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7757
x-amzn-requestid: 3092c81c-f703-403a-b718-e18f035f9464
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJQFUWIAMF7Pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-565f665c7e34294079703141;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hc0cpj1kMbAQqcM0ooSgEdS8nPP0m4FJD1bHdY7jN2OENNsJF_gluA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 08:16:33 GMT
age: 34215
etag: "ad7f5ed3a5f6923a0b1bb093bbc0f31a44fd0bcd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F742ed98b-b8fa-4199-984b-51f661ac6e89.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F742ed98b-b8fa-4199-984b-51f661ac6e89.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f93f322ecd0244e7ee4169b200b50df
8db9c71402f2c8ceee047c56ca1a5e41c74f5cf3
2bb739a60a4581e554fb308be7df8b3d7f47e95051e5ef5e0d1d9ed0a0443b68
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F742ed98b-b8fa-4199-984b-51f661ac6e89.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4829
x-amzn-requestid: c283df3f-4198-47dd-9b24-634c425bccd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2aA_HgFoAMF_tQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632c0a06-3881d661368a03ae48227b37;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 07:08:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3zDl5u8ndYwMQ2-4aH1sRDit8p-G3OK9bvGNj1hOab9dWo5389KPGg==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 08:15:05 GMT
age: 34303
etag: "8db9c71402f2c8ceee047c56ca1a5e41c74f5cf3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dfdacc8edea3c24dad020d7e9c11b3f4
2b6e37596e88b62f288dc8e8c937fd904fae28d5
338a44f3bcc01bdd197f037dd8f8bf58a18dea00127465488efe76fb72a6fdff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8914
x-amzn-requestid: 8cfdc32e-f04a-4fd6-a1f1-632934a682fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EUHqJoAMF7MQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7881-14a6d8ef126409964607e0aa;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kdF6En2vbJhRH1bkYMOuNm5XOIsT1qs3FE281N1SKn1FbyW-oNZsEw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:06 GMT
etag: "2b6e37596e88b62f288dc8e8c937fd904fae28d5"
content-type: image/jpeg
age: 72582
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:19 GMT
age: 72569
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa43fecfd-7ebd-4a19-85fe-29bd0f3c5033.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa43fecfd-7ebd-4a19-85fe-29bd0f3c5033.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ca8f8393365641de380e9443b37a8581
2fde9899cf74129d7df8868008b323a527dc1170
dbcc05dcbbbf4b89bf0f10999c0f5679e822cce6f9e3437f2cafb913606bd8c3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa43fecfd-7ebd-4a19-85fe-29bd0f3c5033.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9042
x-amzn-requestid: 8c2e6356-2b43-4162-94b9-efd45249047c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y--PmHRtIAMFwaQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7730-034b1944694141f04debec31;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:31:28 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k1hcUfebiQMb8IRsmeAOkyI02F1vUvh7J9GxgU4qO8Ebp3TQUC2fQQ==
via: 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 22:24:40 GMT
age: 69735
etag: "2fde9899cf74129d7df8868008b323a527dc1170"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
boa.draw24bit.com/assets/images/frontend/partner_section/6100084858a641627392072.png
82.180.138.205200 OK 0 B URL HTTP/2 boa.draw24bit.com/assets/images/frontend/partner_section/6100084858a641627392072.png
IP 82.180.138.205:0
GET /assets/images/frontend/partner_section/6100084858a641627392072.png HTTP/1.1
Host: boa.draw24bit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://boa.draw24bit.com/
Cookie: XSRF-TOKEN=eyJpdiI6IjVJUDgvZlFWNVdJSkw2T1lNN1p5aHc9PSIsInZhbHVlIjoidTlaYUl6SStFdXhqd2d4WldRZEg5TGs5RXdnYTZFR2RIRE53UXF1NkRoNEl3TnVyckdlWGYxTm5hNU93c2U4eGUwbXlmSFhOS3NlME5FdnRkMmhsZEp1YXdXdzRCdFpwRFlpSEtCT3BaRk55bGRNZDNtemNYZjBHcHpUYjFwakMiLCJtYWMiOiI0NDE4NWFkOWQ4MWE1YTZkZGE2NTlmYWM2YmI3NGFlNGE2ZTQ0NzU2NzJhYWMxN2IwMWJjMTYyYTcxMDhhYmM2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImQvRStSNll4akF0bklBSjBFM05NbHc9PSIsInZhbHVlIjoiZm9nL0JURE52Znlka2ptQlJEOWhVZ1hPUHUvSWlWWllCSnNqUlZiOFUxWTdsVzZJQy9PQXFvank2VnB0SjRBTnRxUTNCcGVVVjdWTEtkU0VNYXpzTis5RHBGVmdhOVd6Z21wdGRZVnh0MDhrMGh5eWFNYVZTTmZaMGpwaFZPd04iLCJtYWMiOiI0MzFlM2Q4NDRjY2JiODdjYWI5NDRiNmQyN2Y3YzIyZWYzOTY1MzZkYWE0MWE1MTU2NDQ3ZDQ0ZDIyYTM0Y2Y5IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 02 Oct 2022 17:46:47 GMT
content-type: image/png
last-modified: Sat, 24 Sep 2022 22:19:17 GMT
etag: "381a-632f8265-a94fa92ec4c41990;;;"
accept-ranges: bytes
content-length: 14362
date: Sun, 25 Sep 2022 17:46:47 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2