r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43ad67f241ee3692a9c9c1da080dae58
6a024f7d71eeee257edc91ba9273416f634aaae5
636635b57f9e6d2ad9b1b949298ee7d3b5b7e251a63516ff68bfb1eceded5688
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "636635B57F9E6D2AD9B1B949298EE7D3B5B7E251A63516FF68BFB1ECEDED5688"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7794
Expires: Sat, 10 Dec 2022 22:42:53 GMT
Date: Sat, 10 Dec 2022 20:32:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 430f1651125c14bfa4924aa1f1a392e9
304141c5fe7ac8b370a67912b2592f9622de9600
315d77a9956f34b1615e38f5f1971dd05146980f8a36b35a8108d47ebba7e8e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "315D77A9956F34B1615E38F5F1971DD05146980F8A36B35A8108D47EBBA7E8E5"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15499
Expires: Sun, 11 Dec 2022 00:51:18 GMT
Date: Sat, 10 Dec 2022 20:32:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 10 Dec 2022 19:33:26 GMT
content-type: application/json
age: 3573
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15229
Expires: Sun, 11 Dec 2022 00:46:48 GMT
Date: Sat, 10 Dec 2022 20:32:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: F/Z0rVtuORwP291o6Va+nDI14O4NnQBcICJLGWufzeUCCHKsmfL3xy/jY/nQT0r1BEOMtumdy58=
x-amz-request-id: WQSD8A8EGR4YD3PJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 10 Dec 2022 19:48:55 GMT
age: 2644
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 20:32:59 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
flipflopmanufacturers.com/bucket/152.html
107.173.156.254301 Moved Permanently 335 B URL HTTP/1.1 flipflopmanufacturers.com/bucket/152.html
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 34560b604e43c20cc4b40479d22fb6bd
92c27bcf7ec635d9951418c00578adfd39ef5aa6
19a79678514f2e4b5c7dc5053a69c23bd580e32b965f87f18c296fd263f34ede
Analyzer Verdict Alert fortinet Malware
GET /bucket/152.html HTTP/1.1
Host: flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 10 Dec 2022 20:32:59 GMT
Server: Apache
Location: http://www.flipflopmanufacturers.com/bucket/152.html
Content-Length: 335
Connection: close
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 10 Dec 2022 19:33:14 GMT
age: 3586
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 44d4574b46375a2d215ae74bc5eae610
5257ed3edeb56231a9bee921671bb2e0c566000e
923454b28e4fa10085df809768a75c2d9f58f104afa016c06ccca7a26479073b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4834
Cache-Control: max-age=136464
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 20:33:00 GMT
Etag: "63944c2a-1d7"
Expires: Mon, 12 Dec 2022 10:27:24 GMT
Last-Modified: Sat, 10 Dec 2022 09:06:50 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.39.96.8101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.96.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Ntl1Gg/SQ97Ip2BAppwYvw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XDWGAU2AVB4w25mOVZ58ZTBzIgI=
www.flipflopmanufacturers.com/templets/default/css/global.css?v=2
107.173.156.254200 OK 5.8 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/css/global.css?v=2
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (316), with CRLF, CR line terminators
Hash 7673d64d687d53b0997acf2ef378a0ff
1670c3f667960cc35dbb095fd58a7ec2b4c2f938
70a8cdabad4606622c62df7f6774e237b6a6d4345e8269fc2dc6a02ee49b1bf7
Analyzer Verdict Alert fortinet Malware
GET /templets/default/css/global.css?v=2 HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:00 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:16:48 GMT
ETag: "6833-52e543c56b800-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5833
Content-Type: text/css
www.flipflopmanufacturers.com/templets/default/css/content.css?v=2
107.173.156.254200 OK 4.5 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/css/content.css?v=2
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF, CR line terminators
Hash 45b990258977dd82d0c7d1821f263896
eef23dcab2d97ade5e8eeff2a4db15df2d4b01d1
73b0841d5ba0bc2c4430383089015f39b68fc7c331190a551aacafa3f5eb356a
GET /templets/default/css/content.css?v=2 HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:00 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:16:24 GMT
ETag: "4cca-52e543ae88200-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4495
Content-Type: text/css
www.flipflopmanufacturers.com/templets/default/css/fonts_standard.css?v=2
107.173.156.254200 OK 695 B URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/css/fonts_standard.css?v=2
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF, CR line terminators
Hash ebd746867c2adda109738f6197325ecf
84f7ac06303b39dfe7f7bf46d87e918c929ff39d
44bccfc26afbbe7dbf175daa9f26fba165b6af7e3b8a2014d8a26fa4bb381937
Analyzer Verdict Alert fortinet Malware
GET /templets/default/css/fonts_standard.css?v=2 HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:00 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:16:22 GMT
ETag: "ae9-52e543ac9fd80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 695
Content-Type: text/css
www.flipflopmanufacturers.com/templets/default/css/navigation.css?v=2
107.173.156.254200 OK 3.2 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/css/navigation.css?v=2
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF, CR line terminators
Hash c6314309e386e259cc948e4bca2029c2
3b1b35d7255a560faacfa36a185b9d659f3619ef
ad45497a6daa60239a93b04bfd75235f21f301972e3adea30e56833799e4a1fe
GET /templets/default/css/navigation.css?v=2 HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:00 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:16:20 GMT
ETag: "43a8-52e543aab7900-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3177
Content-Type: text/css
www.flipflopmanufacturers.com/templets/default/css/backpage.css?v=2
107.173.156.254200 OK 3.4 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/css/backpage.css?v=2
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF, CR line terminators
Hash c12dc06dcbece6e2edb281911e46fb4a
d002dcb32bb413e80b888d46e9d484ad5fd4e3f9
923b48a8cb3439d9eca1308f51d96f189ea17b9e8b09211cfadd7a87cd97d59e
Analyzer Verdict Alert fortinet Malware
GET /templets/default/css/backpage.css?v=2 HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:00 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:16:24 GMT
ETag: "3f85-52e543ae88200-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3448
Content-Type: text/css
www.flipflopmanufacturers.com/bucket/152.html
107.173.156.254200 OK 131 kB URL HTTP/1.1 www.flipflopmanufacturers.com/bucket/152.html
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (55134), with CRLF, CR line terminators
Size 131 kB (130804 bytes)
Hash f4045b8277978802be28a970db21b75d
3140c9d1c8f30677d082c69b59684ef468d23adc
2e6f4a1ae542d3443ee854c831ba1aef1730b674dd37bb2efc19ab0ff2ea3c83
Analyzer Verdict Alert fortinet Malware
GET /bucket/152.html HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:00 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Wed, 20 Jul 2022 16:00:33 GMT
ETag: "3a578-5e43eb36e35b1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/html
www.flipflopmanufacturers.com/templets/default/js/modernizr.custom.08580.js
107.173.156.254200 OK 3.5 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/js/modernizr.custom.08580.js
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type HTML document, ASCII text, with very long lines (7560), with CRLF, CR line terminators
Hash 08b07d90a27fd402e8e2586b658ab250
bb15b08fc46eb0ea3d49f81c844f395c01afaaf7
66fb8fdb5c01fe9ba1d38b6e0af9d3fd007107dae87c6e34bc3d90be3263715d
Analyzer Verdict Alert fortinet Malware
GET /templets/default/js/modernizr.custom.08580.js HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:00 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:21:14 GMT
ETag: "1e5f-52e544c318e80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3497
Content-Type: application/javascript
www.flipflopmanufacturers.com/templets/default/js/jquery.hoverIntent.min.js
107.173.156.254200 OK 633 B URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/js/jquery.hoverIntent.min.js
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (1140), with CRLF, CR line terminators
Hash 28e55739ed90d77372568dfac0e7ddc4
d47de31685be8e44f3a0b036c92b8f3b5d75b291
7758fce6d28fe18a0c0782451295dc10535687b5177e2be6c473229cec9c695c
Analyzer Verdict Alert fortinet Malware
GET /templets/default/js/jquery.hoverIntent.min.js HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:01 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:21:16 GMT
ETag: "5c8-52e544c501300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 633
Content-Type: application/javascript
www.flipflopmanufacturers.com/templets/default/js/jquery.ba-hashchange.min.js
107.173.156.254200 OK 857 B URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/js/jquery.ba-hashchange.min.js
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type HTML document, ASCII text, with very long lines (1283), with CRLF, CR line terminators
Hash e0d3174fbc51cc60184fe01bd570fd71
92053b955170cc9ff0c4e7571cfaf95aaeb4bf97
19ca4e5fec4c8441b1e016800b3ab48d6fdcdafc32aec8ed45997efe9a90ed14
Analyzer Verdict Alert fortinet Malware
GET /templets/default/js/jquery.ba-hashchange.min.js HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:01 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:21:20 GMT
ETag: "606-52e544c8d1c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 857
Content-Type: application/javascript
www.flipflopmanufacturers.com/templets/default/js/jquery.equalheights.js
107.173.156.254200 OK 530 B URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/js/jquery.equalheights.js
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF, CR line terminators
Hash 425ae95725e9742b0ab550bb24c5f4af
f5eb98df7b8873116a59a4d2f711bcdd3fa6565f
ff7b06ee9b2c91131bc421348b87a21f09b8f5b03102688c58b6b9559a50d201
Analyzer Verdict Alert fortinet Malware
GET /templets/default/js/jquery.equalheights.js HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:01 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:21:18 GMT
ETag: "447-52e544c6e9780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 530
Content-Type: application/javascript
www.flipflopmanufacturers.com/templets/default/js/jquery-1.7.min.js
107.173.156.254200 OK 33 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/js/jquery-1.7.min.js
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32769), with CRLF, CR line terminators
Hash 5b06e2477db2ddd5426dd7d98bc44d58
559cf470b5bf439c5ade0ba08ed341ae3dc6f2b6
fa052e31247cc826d67bff0417af7fc73c6db41c43d0468ff3ea1e4c0ef1d00d
Analyzer Verdict Alert fortinet Malware
GET /templets/default/js/jquery-1.7.min.js HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:00 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:21:22 GMT
ETag: "16f4c-52e544caba080-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33280
Content-Type: application/javascript
www.flipflopmanufacturers.com/templets/default/js/jquery.tools.min-1.2.6.js
107.173.156.254200 OK 16 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/js/jquery.tools.min-1.2.6.js
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (8222), with CRLF, CR line terminators
Hash 321456303ded81b64380f917c066787e
76661585bf22dcd1b38420d67e8979782a670263
b8dd7893bb9c460e0ef10888f61d239a0ba8c0de788111d239745a9ca253c0cf
Analyzer Verdict Alert fortinet Malware
GET /templets/default/js/jquery.tools.min-1.2.6.js HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:00 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:21:16 GMT
ETag: "ba50-52e544c501300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16130
Content-Type: application/javascript
www.flipflopmanufacturers.com/templets/default/js/jquery.cycle.all.js
107.173.156.254200 OK 14 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/js/jquery.cycle.all.js
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF, CR line terminators
Hash a23b5c21fd3e0a0716dc62a526af3242
5760e5feb8d491b7141e6de3de33874cad522dbf
8aa4c830aa83bbef557f9465b1eb04650f2e43256186fdca402907258c839e63
Analyzer Verdict Alert fortinet Malware
GET /templets/default/js/jquery.cycle.all.js HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:01 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:21:20 GMT
ETag: "d45e-52e544c8d1c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13857
Content-Type: application/javascript
www.flipflopmanufacturers.com/templets/default/js/flowplayer-3.1.4.min.js
107.173.156.254200 OK 6.3 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/js/flowplayer-3.1.4.min.js
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (15111), with CRLF, CR line terminators
Hash 747e60b26d636f972bf411899479f9d7
94ddaff79d9a2cdf3102d828d68bcf91e221cfdc
6d8edff0c88d29cf3a798124dd318c71fdbc7729ffb1b61799c962a6fd087d99
Analyzer Verdict Alert fortinet Malware
GET /templets/default/js/flowplayer-3.1.4.min.js HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:01 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:21:24 GMT
ETag: "3e86-52e544cca2500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6286
Content-Type: application/javascript
www.flipflopmanufacturers.com/templets/default/js/javascript.js?v=2
107.173.156.254200 OK 6.1 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/js/javascript.js?v=2
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF, CR line terminators
Hash 9547633bb496035e1430fcb6dec86c70
3601ab5ab26e3aaa63da1bcbead49b8a82bebaeb
cd855271bb13e86687e586f6dc4e3a8f305934a910979ea9703ccd5e0e563d3d
Analyzer Verdict Alert fortinet Malware
GET /templets/default/js/javascript.js?v=2 HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:01 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:21:24 GMT
ETag: "496f-52e544cca2500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6051
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9673
Expires: Sat, 10 Dec 2022 23:14:14 GMT
Date: Sat, 10 Dec 2022 20:33:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9673
Expires: Sat, 10 Dec 2022 23:14:14 GMT
Date: Sat, 10 Dec 2022 20:33:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9673
Expires: Sat, 10 Dec 2022 23:14:14 GMT
Date: Sat, 10 Dec 2022 20:33:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9673
Expires: Sat, 10 Dec 2022 23:14:14 GMT
Date: Sat, 10 Dec 2022 20:33:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9673
Expires: Sat, 10 Dec 2022 23:14:14 GMT
Date: Sat, 10 Dec 2022 20:33:01 GMT
Connection: keep-alive
www.flipflopmanufacturers.com/templets/default/images/logo1.jpg
107.173.156.254200 OK 5.9 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/logo1.jpg
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 200x60, components 3\012- data
Hash 0b64618d64f00576ce63116fa7a489ab
7dd48f0cbeb48938d9aa58c98780d938fcf0e4ce
1ef97915e2988e04fe6bd596e1eb9742739f8fbcb06bd9bba4c98633e12e55ca
GET /templets/default/images/logo1.jpg HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:01 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:17:22 GMT
ETag: "1739-52e543e5d8480"
Accept-Ranges: bytes
Content-Length: 5945
Content-Type: image/jpeg
www.flipflopmanufacturers.com/images/defaultpic.gif
107.173.156.254200 OK 1.6 kB URL HTTP/1.1 www.flipflopmanufacturers.com/images/defaultpic.gif
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type GIF image data, version 89a, 125 x 114\012- data
Hash a967c4c33a946b8813b2ce5ec2bd59fa
85e19180c3cfe9e126f1c89b8b9d486c0ffe25d2
1aa8a246282639e96a2c4c7bf13fd8ce3ad13cf29fdd9ea8e95a0f1bfe60a472
GET /images/defaultpic.gif HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:01 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Sun, 29 Aug 2021 20:57:50 GMT
ETag: "66c-5cab8f82c4f80"
Accept-Ranges: bytes
Content-Length: 1644
Content-Type: image/gif
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8caef8f-937f-4132-9440-daa516389582.png
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8caef8f-937f-4132-9440-daa516389582.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a0cb823bf2991a7047962ee388f00dc0
4a0377cd21b6ab69f7e45392a547c9846e607464
86e8e629ffd2efe7c4c86a7e140412dae81a35376cb7f03ee511c6e1d023c788
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8caef8f-937f-4132-9440-daa516389582.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9948
x-amzn-requestid: 0b1400a6-7791-468f-a1d5-b46836e7b164
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMEGNZoAMF7ZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4d-124f9a6f03db01a67784657f;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qPlUjc4Gzc8cFyyQH_3vZoF_k5J61aXPOXozWTO_8txfn11m8Bo5IQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:00:16 GMT
age: 81165
etag: "4a0377cd21b6ab69f7e45392a547c9846e607464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.flipflopmanufacturers.com/templets/default/images/template/logo_ce.png
107.173.156.254200 OK 3.2 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/logo_ce.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 120 x 85, 8-bit/color RGBA, non-interlaced\012- data
Hash ad40a2b790ab0c9fb41fb3b416c4bc94
d0b7b70d88d6094f0a6b50c746b2be02483fe4b8
2b7f43107489b3eaf4d0a0c035dd0d2b68a7e3180ab9d4a47a8e648893c24f03
GET /templets/default/images/template/logo_ce.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:01 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:19:26 GMT
ETag: "c55-52e5445c19b80"
Accept-Ranges: bytes
Content-Length: 3157
Content-Type: image/png
www.flipflopmanufacturers.com/templets/default/css/print.css?v=2
107.173.156.254200 OK 519 B URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/css/print.css?v=2
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with CRLF, CR line terminators
Hash ec47cdd305217e328e833ae776b807cc
61c1fe5eb2ce18b4d29bab1cab319d7753f66802
7ce0f3c9de48292affbea2ff20a06ca0e9dacda5ff4eafccb2cb66d5051c0816
Analyzer Verdict Alert fortinet Malware
GET /templets/default/css/print.css?v=2 HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:01 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:16:18 GMT
ETag: "423-52e543a8cf480-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 519
Content-Type: text/css
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1618f8bc-582d-4a89-9fdb-2bf8a448f429.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1618f8bc-582d-4a89-9fdb-2bf8a448f429.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e8e86712ca485e90f958dc16ec8dbff
78de6033ca9bca46953483801f19591c2ff47bbe
2984d8b533e095654d5e1c5fa826dc93cbd16ac8bdb5d974fd2d283a86f44874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1618f8bc-582d-4a89-9fdb-2bf8a448f429.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9084
x-amzn-requestid: 80dfc074-73f4-4b47-95fb-57169d32cf6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eNbHhYoAMF2Kw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa55-6f54d0bf6d9246cd48d44352;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: O3gPppRKbJb__o2lo3RsvabqgptV-zvDLbm1AweL11hrZxfOev6kvA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:00:34 GMT
age: 81147
etag: "78de6033ca9bca46953483801f19591c2ff47bbe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0df452512aae4c4c1f4a2cd263b16dfd
68bac75574641febc463bd0819392dae2da15811
e0a9301c5be849e116f1d98b819c2eb91f73e74d836f3e099f2cd266e8f0bb36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12743
x-amzn-requestid: 6ed8a5f4-45cd-45bd-9820-df450f612c34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eK4E_-IAMFf3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa45-31d928fc430577b463a68bd0;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nD0bWCjTU6LNSsNYCNqT4rt7okG1dmPPWiw4FXSi_uNWpcZnxhZgKw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:03:37 GMT
age: 80964
etag: "68bac75574641febc463bd0819392dae2da15811"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3a6c54-dd12-46c8-8acb-7c425ab40af5.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3a6c54-dd12-46c8-8acb-7c425ab40af5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 052b61a3bd1c839e1f5ce37834cad817
1fbbf8fb328a1406904d6346004e2c89c6ba2419
96dcb266eaec98f6305071598df3b49ca93234e0e8b1c8c9801a1a99d7f5c817
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3a6c54-dd12-46c8-8acb-7c425ab40af5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7811
x-amzn-requestid: dc97f86e-a29c-4139-887a-e775a0327280
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eK4EH_oAMFYqw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa45-3a38086160ac180b3f8cf5d8;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TM_0Q_GmJDuXth6JpRvm_JAZXwT-xFZEjzuMeIzfzBu1J5jQ_Tng9A==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:53:25 GMT
age: 81576
etag: "1fbbf8fb328a1406904d6346004e2c89c6ba2419"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9051770b3587c195bea670f8820e8cfe
abf58087f0e345202da088238daea85d177b431b
f687a10c0ae63699a551977e9a4ec5bc7ba606b1925178d7ed4ec6728889bb2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8841
x-amzn-requestid: 09b64f8e-60c0-4cf6-a0dc-15e597bd9d85
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMWH7MIAMFyow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4e-3471ee5f5a78b55c424e2c6d;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: F_FNF6MAvQjqQ9kTGvu8lERPdurC-ZyLWtxQ5Ezs1OBUUmejNwiQ4w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:00:13 GMT
age: 81168
etag: "abf58087f0e345202da088238daea85d177b431b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45e0c1638ad919bde19731f7987ab064
1e492807c665e6e6b24ec6ce19035fdfc6f23b92
f0d3738ec8406958470c8fd152a02a123d7654c30f974c1df5c4977a380c2d62
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10205
x-amzn-requestid: c5704c7a-60c4-402b-8018-5885a8dae971
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F9BIAMF3ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-3e9573d900714e3250f43e17;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mLTL7L808-OguYGrl3FUvwmFmPQjBPRj7PVfgEheFHWg4g4skoBvOg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 00:46:20 GMT
age: 71201
etag: "1e492807c665e6e6b24ec6ce19035fdfc6f23b92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hm.baidu.com/h.js?9c8d4defb9ff73e485153c4751a331af
103.235.46.191301 Moved Permanently 93 B URL HTTP/1.1 hm.baidu.com/h.js?9c8d4defb9ff73e485153c4751a331af
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type HTML document, ASCII text
Hash f5d7ad726fa23300014ef21de851c2c6
de3e82f86dd19c40d55d5293270683649a5453df
4f1d93f1c46b1afe1c97a1f268de04f09b758ed62a478a581e3d5a68e87020db
GET /h.js?9c8d4defb9ff73e485153c4751a331af HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/
HTTP/1.1 301 Moved Permanently
Location: https://hm.baidu.com/h.js?9c8d4defb9ff73e485153c4751a331af
Date: Sat, 10 Dec 2022 20:33:01 GMT
Content-Length: 93
Content-Type: text/html; charset=utf-8
www.flipflopmanufacturers.com/templets/default/images/template/bg_tab_content_shadow_top.png
107.173.156.254200 OK 1.2 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/bg_tab_content_shadow_top.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 720 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash f1c65b74833db1698c4c08bc8364be51
05c566f3be45167e1218a2efb81c16f270113292
72d11272e3d518985f493e87ffb47512b5db371f97cd26ea5bb1c5031baeeb5f
GET /templets/default/images/template/bg_tab_content_shadow_top.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/global.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:19:40 GMT
ETag: "4b6-52e5446973b00"
Accept-Ranges: bytes
Content-Length: 1206
Content-Type: image/png
www.flipflopmanufacturers.com/templets/default/images/template/bg_module_shadow.png
107.173.156.254200 OK 9.5 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/bg_module_shadow.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 720 x 2048, 8-bit/color RGBA, non-interlaced\012- data
Hash e7b83f9aef6b34c981929a5f0c094ba2
b1ff0cde65e1fdf8ff9125e7967afedd700cd9ac
260fa216afacd6b0bae4f69bd500c811d3bc3e882a44a4b21574c90026ba0c1b
GET /templets/default/images/template/bg_module_shadow.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/global.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:19:46 GMT
ETag: "24f0-52e5446f2c880"
Accept-Ranges: bytes
Content-Length: 9456
Content-Type: image/png
www.flipflopmanufacturers.com/templets/default/images/template/bg_tab_rainbow_bottom.png
107.173.156.254200 OK 1.5 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/bg_tab_rainbow_bottom.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 948 x 51, 8-bit/color RGB, non-interlaced\012- data
Hash 5ee8fdcf948a328927b88175a6aa685e
b6200d1e57f9799ccb92aff0bc9908a32053f46d
22f38548ec069a3f720a2d01f2ae6b07d7325b41c69439a920c6326917f20dd4
GET /templets/default/images/template/bg_tab_rainbow_bottom.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/global.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:19:36 GMT
ETag: "5ff-52e54465a3200"
Accept-Ranges: bytes
Content-Length: 1535
Content-Type: image/png
www.flipflopmanufacturers.com/templets/default/images/template/bg_tab_rainbow.png
107.173.156.254200 OK 963 B URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/bg_tab_rainbow.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 948 x 11, 8-bit colormap, non-interlaced\012- data
Hash 2d4d0aa5df64f6c9f7fd4cb45c28f616
cd80ed0d527cdae6f05411f31d7ae2269ce196b2
15fbc1453a073abeb056c18c7951c7ff60eac24ec6f91b8c3d88fa15fb4ad761
GET /templets/default/images/template/bg_tab_rainbow.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/global.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:19:38 GMT
ETag: "3c3-52e544678b680"
Accept-Ranges: bytes
Content-Length: 963
Content-Type: image/png
www.flipflopmanufacturers.com/templets/default/images/template/header/products.jpg
107.173.156.254200 OK 69 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/header/products.jpg
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 950x150, components 3\012- data
Hash 14eceaa7a3105a8c5fcd39617ee5ae8b
1eb9a95e742cf91de3222475c4b51ba8e2ad5252
2f33892225d9d12434be9c8a03a72169f5356752b9f403dfd36a06c3128665b1
GET /templets/default/images/template/header/products.jpg HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/global.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:01 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:20:26 GMT
ETag: "10d0d-52e5449552280"
Accept-Ranges: bytes
Content-Length: 68877
Content-Type: image/jpeg
www.flipflopmanufacturers.com/templets/default/images/template/backgrounds/bg_body_products.png
107.173.156.254200 OK 126 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/backgrounds/bg_body_products.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 1680 x 1200, 8-bit colormap, non-interlaced\012- data
Size 126 kB (125874 bytes)
Hash 276846f62151c280c0fd53ea6fd78ccd
c25c2b7a31291978761060a95e6449df1eb19e74
26fd4388c7ad3c2bee7f82dcbcdf9987023172d6cb32e3b1fb5ae065dbc82546
GET /templets/default/images/template/backgrounds/bg_body_products.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/global.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:01 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:20:02 GMT
ETag: "1ebb2-52e5447e6ec80"
Accept-Ranges: bytes
Content-Length: 125874
Content-Type: image/png
www.flipflopmanufacturers.com/templets/default/images/template/bg_sidebar_shadow_top.png
107.173.156.254200 OK 1.1 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/bg_sidebar_shadow_top.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 245 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash c8831e266a6f581de27c3d1621865b84
26dca6c70e2a036db8f60324292dea4c2c6b0d5e
a6a3a6c640e4c14101bba38d9ffd4272fa1bb0fae38ce067621cc5b18e4b7fa3
GET /templets/default/images/template/bg_sidebar_shadow_top.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/backpage.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:19:40 GMT
ETag: "455-52e5446973b00"
Accept-Ranges: bytes
Content-Length: 1109
Content-Type: image/png
www.flipflopmanufacturers.com/templets/default/images/template/bg_tab_content_shadow_bottom.png
107.173.156.254200 OK 1.9 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/bg_tab_content_shadow_bottom.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 720 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash e3c359b9499754bed70ebdb42c884d5f
32c67a7cd2ae852cffdabaca8bbd770d92697389
056a78fd1f1cb25605341b13f519443346c8b441676eb1b1ebe1acd2141ac798
GET /templets/default/images/template/bg_tab_content_shadow_bottom.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/global.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:19:38 GMT
ETag: "73b-52e544678b680"
Accept-Ranges: bytes
Content-Length: 1851
Content-Type: image/png
www.flipflopmanufacturers.com/templets/default/images/template/bg_content_body.png
107.173.156.254200 OK 1.0 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/bg_content_body.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 64 x 98, 8-bit/color RGB, non-interlaced\012- data
Hash db8a7b5cc5caba70c5beca55aa0b0b63
84f1b8575a67169e59cb25a6ae4a855af969ca5d
a08b83cdb13602da79a3bd79a643b0379902445e54b9509294198f6e6d19863f
GET /templets/default/images/template/bg_content_body.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/backpage.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:19:50 GMT
ETag: "412-52e54472fd180"
Accept-Ranges: bytes
Content-Length: 1042
Content-Type: image/png
www.flipflopmanufacturers.com/templets/default/images/template/bg_tab_rainbow_arrow.png
107.173.156.254200 OK 1.1 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/bg_tab_rainbow_arrow.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 2000 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 2ec434c279007e0e1438351496887c2f
b75f62604a50926f48703685d5599be2df7abd11
3cff76090eaf2ed702160b2ca2061a2aeaf22e939b9306c6c6685d6f90d013f8
GET /templets/default/images/template/bg_tab_rainbow_arrow.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/global.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:19:38 GMT
ETag: "471-52e544678b680"
Accept-Ranges: bytes
Content-Length: 1137
Content-Type: image/png
www.flipflopmanufacturers.com/templets/default/images/template/bg_sidebar_header.png
107.173.156.254200 OK 1.3 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/bg_sidebar_header.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 950 x 90, 8-bit colormap, non-interlaced\012- data
Hash 85fa0c09ae6b5757a355407895a44698
93339a7ed7e2d2b4226cd45a3f0f13e255602c14
dbced79e8408e7d3dde3e35852ca634247b33650b8b0f1a65cc5b97d1e9265e6
GET /templets/default/images/template/bg_sidebar_header.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/backpage.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:19:42 GMT
ETag: "4e5-52e5446b5bf80"
Accept-Ranges: bytes
Content-Length: 1253
Content-Type: image/png
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash a8addddc7ae4548c9ab414970e0c7e2d
f1b73bfec41ba06bb7629adf470d00e65dec08c9
0e925e2f10eca90adba3a5fda752fb194f5cd332dc54565c79ca52ef32492912
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 14 Dec 2022 16:41:25 GMT
ETag: "f1b73bfec41ba06bb7629adf470d00e65dec08c9"
Last-Modified: Sat, 10 Dec 2022 16:41:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2250
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7778c0d6fd61b517-OSL
www.flipflopmanufacturers.com/templets/default/images/template/navigation/arrow.gif
107.173.156.254200 OK 69 B URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/navigation/arrow.gif
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type GIF image data, version 89a, 3 x 9\012- data
Hash 4b39df6c4b0d3660a1edb54576a3a2c6
ab698f5564a0fdd13450aecb4b51090be5fed525
ebf56221e27a939cfa7089154195e788bf85f6407cc9941d67a0b94a266bb8da
GET /templets/default/images/template/navigation/arrow.gif HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/backpage.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:21:00 GMT
ETag: "45-52e544b5bef00"
Accept-Ranges: bytes
Content-Length: 69
Content-Type: image/gif
www.flipflopmanufacturers.com/templets/default/images/template/icons.png
107.173.156.254200 OK 4.9 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/icons.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 80 x 176, 8-bit/color RGBA, non-interlaced\012- data
Hash f7622a22fb810e838d404b1cf6d79867
30ed1a2cfc7a8a2709a866977b4c46d0dc73ebe9
ca89ab24aea710f2bdb18a8e67d3cd2eb7e2f583df7059bb287b77df74b71bc1
GET /templets/default/images/template/icons.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/global.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:19:28 GMT
ETag: "133d-52e5445e02000"
Accept-Ranges: bytes
Content-Length: 4925
Content-Type: image/png
www.flipflopmanufacturers.com/templets/default/images/template/bg_sidebar_shadow_bottom.png
107.173.156.254200 OK 1.5 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/bg_sidebar_shadow_bottom.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 245 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash 8676096ef852cc76b93223163c987ef5
715023ebfcec098aedddad73000d789bb6235d60
7af7f6ab45540190d87ef8fbf23039df0516b71f2abb13ab1a64ddcc04c63c14
GET /templets/default/images/template/bg_sidebar_shadow_bottom.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/backpage.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:19:40 GMT
ETag: "5db-52e5446973b00"
Accept-Ranges: bytes
Content-Length: 1499
Content-Type: image/png
www.flipflopmanufacturers.com/templets/default/images/template/navigation/bg_navigation.png
107.173.156.254200 OK 1.5 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/navigation/bg_navigation.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 970 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash d165fe15f4aafe42b0e88a7be8bc4f03
324a69f26e980d19cef118dc8b37c9a32db4edac
5e28aea041ce44f3b256dd7d25fadc378d781e5c698d0418c50ea5da92468237
GET /templets/default/images/template/navigation/bg_navigation.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/global.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:20:50 GMT
ETag: "5cb-52e544ac35880"
Accept-Ranges: bytes
Content-Length: 1483
Content-Type: image/png
www.flipflopmanufacturers.com/templets/default/images/template/navigation/nav_mask_current.png
107.173.156.254200 OK 1.4 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/navigation/nav_mask_current.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 600 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash 6be60b7de5a130f54820383c535f6ae0
8806e2d8cdb2802236f8d65fb0b32e46159c6ec1
2a4d67f5e9b81fce3bc75f42da186021b940b71837e4f0ab2bdff0830bdbf8c1
GET /templets/default/images/template/navigation/nav_mask_current.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/navigation.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:20:42 GMT
ETag: "560-52e544a494680"
Accept-Ranges: bytes
Content-Length: 1376
Content-Type: image/png
www.flipflopmanufacturers.com/templets/default/images/template/navigation/divider_vert_dot.gif
107.173.156.254200 OK 1.3 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/navigation/divider_vert_dot.gif
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type GIF image data, version 89a, 1 x 32\012- data
Hash eceba154fc8843935f655663d2f0a222
d042d0f91e992759da849edf90ab2e1d4e248b2d
a202511173c29929cd76796c30b97d738030d32ec80a1035085cb5e0038052c1
GET /templets/default/images/template/navigation/divider_vert_dot.gif HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/navigation.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:20:48 GMT
ETag: "516-52e544aa4d400"
Accept-Ranges: bytes
Content-Length: 1302
Content-Type: image/gif
www.flipflopmanufacturers.com/templets/default/images/template/rule_footer.png
107.173.156.254200 OK 954 B URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/rule_footer.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 950 x 3, 8-bit colormap, non-interlaced\012- data
Hash 84eb8d1daa1c87b850002405588ba186
cd330de0f91589fc4a07ca7e15a9f7e3fc062fc1
58ffe45d5663e3ec2c050dc18708878027e6736cfc64520ce5041d6b2401c329
GET /templets/default/images/template/rule_footer.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/global.css?v=2
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:02 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:19:24 GMT
ETag: "3ba-52e5445a31700"
Accept-Ranges: bytes
Content-Length: 954
Content-Type: image/png
hm.baidu.com/h.js?9c8d4defb9ff73e485153c4751a331af
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/h.js?9c8d4defb9ff73e485153c4751a331af
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (657)
Hash 661ff1dbcf74cb6d3a64c4e34fff72b3
4e86e800422a78165f6ec47bd9b8c4175a726ce5
94ee41438fdc0b8f755c487ecbcae354d12ae9e94141a82f0d554638773a165b
GET /h.js?9c8d4defb9ff73e485153c4751a331af HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.flipflopmanufacturers.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11295
Content-Type: application/javascript
Date: Sat, 10 Dec 2022 20:33:02 GMT
Etag: e8d9a94da13c58dfc2965f4518362e01
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=81839B6FD554A307; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
www.flipflopmanufacturers.com/templets/default/images/template/rule_header.png
107.173.156.254200 OK 954 B URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/rule_header.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 950 x 3, 8-bit colormap, non-interlaced\012- data
Hash 5c135cefac80d55cf458a1c55f49676c
71eba06498e54527b8d647745dc3924a53e8b290
11eb192caa183dff87ae541039d4fd5edc7167b4d5ea689bb441acde4c9daa8e
GET /templets/default/images/template/rule_header.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/global.css?v=2
Cookie: Hm_lvt_9c8d4defb9ff73e485153c4751a331af=1670704382; Hm_lpvt_9c8d4defb9ff73e485153c4751a331af=1670704382
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:03 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:19:22 GMT
ETag: "3ba-52e5445849280"
Accept-Ranges: bytes
Content-Length: 954
Content-Type: image/png
www.flipflopmanufacturers.com/templets/default/images/template/bg_tabular_thead.png
107.173.156.254200 OK 1.2 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/template/bg_tabular_thead.png
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 950 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 7a7e8431a2c9994116dc038461a62fb8
851212c6b79824cb9fc1b898599850a4a1838ba9
5d473671db21bc57a16f9720186bda5b61a22cbab85f56d8a1db082f0ed36368
GET /templets/default/images/template/bg_tabular_thead.png HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/templets/default/css/global.css?v=2
Cookie: Hm_lvt_9c8d4defb9ff73e485153c4751a331af=1670704382; Hm_lpvt_9c8d4defb9ff73e485153c4751a331af=1670704382
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:03 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:19:36 GMT
ETag: "4c1-52e54465a3200"
Accept-Ranges: bytes
Content-Length: 1217
Content-Type: image/png
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1707150930&si=9c8d4defb9ff73e485153c4751a331af&v=1.3.0&lv=1&sn=20627&r=0&ww=1280&u=http%3A%2F%2Fwww.flipflopmanufacturers.com%2Fbucket%2F152.html&tt=50%20l%20plastic%20bucket%20What%20are%20the%20properties%20and%20uses
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1707150930&si=9c8d4defb9ff73e485153c4751a331af&v=1.3.0&lv=1&sn=20627&r=0&ww=1280&u=http%3A%2F%2Fwww.flipflopmanufacturers.com%2Fbucket%2F152.html&tt=50%20l%20plastic%20bucket%20What%20are%20the%20properties%20and%20uses
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1707150930&si=9c8d4defb9ff73e485153c4751a331af&v=1.3.0&lv=1&sn=20627&r=0&ww=1280&u=http%3A%2F%2Fwww.flipflopmanufacturers.com%2Fbucket%2F152.html&tt=50%20l%20plastic%20bucket%20What%20are%20the%20properties%20and%20uses HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 10 Dec 2022 20:33:03 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=FA10D6C54B8CD2C4; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
www.flipflopmanufacturers.com/templets/default/images/favicon.ico
107.173.156.254200 OK 2.5 kB URL HTTP/1.1 www.flipflopmanufacturers.com/templets/default/images/favicon.ico
IP 107.173.156.254:0
ASN #36352 AS-COLOCROSSING
File type MS Windows icon resource - 1 icon, 48x48\012- data
Hash b60d3f3623de64ee4036ccd54f404193
6a2b7c714178341854fca977b4ab78588d67b180
cee6cf0d0fa891b71e22a8a8776c550d311a98e0275aeb3a8f716ff84265f909
GET /templets/default/images/favicon.ico HTTP/1.1
Host: www.flipflopmanufacturers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/bucket/152.html
Cookie: Hm_lvt_9c8d4defb9ff73e485153c4751a331af=1670704382; Hm_lpvt_9c8d4defb9ff73e485153c4751a331af=1670704382
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 20:33:04 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Fri, 18 Mar 2016 15:17:16 GMT
ETag: "1cbe-52e543e01f700-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2502
Content-Type: image/x-icon
hmcdn.baidu.com/static/hmt/icon/21.gif
106.227.30.48200 OK 1.1 kB URL HTTP/2 hmcdn.baidu.com/static/hmt/icon/21.gif
IP 106.227.30.48:0
File type GIF image data, version 89a, 20 x 20\012- data
Hash 4846349eb75026468ab56a45bd302050
75f0f267ad8fd4ff2ea0736a694d3e9306078bb4
cbbb7979af02aa2557c1bb600d06d9030b76cf4f0fdbf893304de035b0d0cc0c
GET /static/hmt/icon/21.gif HTTP/1.1
Host: hmcdn.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.flipflopmanufacturers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sat, 10 Dec 2022 20:33:06 GMT
content-type: image/gif
content-length: 1119
last-modified: Fri, 18 Oct 2019 10:59:43 GMT
etag: "5da99b1f-45f"
age: 293703
accept-ranges: bytes
tracecode: 21702658222931746058113012
timing-allow-origin: *
ohc-global-saved-time: Wed, 07 Dec 2022 04:36:10 GMT
ohc-cache-hit: nc5ct66 [2], tjctcache58 [2]
ohc-response-time: 1 0 0 0 0 0
X-Firefox-Spdy: h2