r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2479
Expires: Wed, 21 Sep 2022 19:59:46 GMT
Date: Wed, 21 Sep 2022 19:18:27 GMT
Connection: keep-alive
hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
109.203.102.7301 Moved Permanently 0 B URL HTTP/1.1 hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
IP 109.203.102.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf HTTP/1.1
Host: hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 21 Sep 2022 19:18:27 GMT
Server: Apache
X-Redirect-By: iThemes Security
Set-Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; expires=Thu, 22-Sep-2022 19:18:27 GMT; Max-Age=86400; path=/
GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; expires=Thu, 22-Sep-2022 19:18:27 GMT; Max-Age=86400; path=/
rSOxDvzclwd-BLY=2apGK0D4; expires=Thu, 22-Sep-2022 19:18:27 GMT; Max-Age=86400; path=/
Location: https://hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cache-Control: max-age=172800
Expires: Fri, 23 Sep 2022 19:18:27 GMT
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 804f8bbb7f556d51a5f52d5ebd5b6eef
922cd7e06df278615a04abb81d811d14596c8180
ef4804d381a34ab67873a7755621081c49c646310e085a9b2356ae07098f6021
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Backoff, Retry-After, Content-Type
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 19:05:00 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hnHaXtooLELhnmvERmJD3JjgtBt_zmEiVtRx9G2EbLbYpchP1XNfPQ==
Age: 807
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 21 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5Rzxc6zA7hve_ZcesxwSgXWxiD_lXJZGhqRBrhqXmLJbdMHmgD4-JA==
age: 52994
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 19:18:27 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 21 Sep 2022 19:03:22 GMT
Cache-Control: max-age=3600
Expires: Wed, 21 Sep 2022 19:44:47 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TT-VGE_zJnkJmCDI8_fSa4EwmVXxxNupgGlAzYb8jg8oftC2KWvy4w==
Age: 906
hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
109.203.102.7301 Moved Permanently 0 B URL HTTP/1.1 hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
IP 109.203.102.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf HTTP/1.1
Host: hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Date: Wed, 21 Sep 2022 19:18:27 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Set-Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; expires=Thu, 22-Sep-2022 19:18:28 GMT; Max-Age=86400; path=/; secure
GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; expires=Thu, 22-Sep-2022 19:18:28 GMT; Max-Age=86400; path=/; secure
rSOxDvzclwd-BLY=2apGK0D4; expires=Thu, 22-Sep-2022 19:18:28 GMT; Max-Age=86400; path=/; secure
Location: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ff6d50919e56aed75c47feb45ee2f2ec
98f558a4b2d4f3c271abc93d0b74ece4ad7a59ef
b1b6f0e78b5a1e2092cba6d71d0d5a918066c0486176cef0a19f51e2d5a9962e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5517
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 19:18:28 GMT
Last-Modified: Wed, 21 Sep 2022 17:46:31 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.81.125.88101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.81.125.88:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Pa+dU+HgfeLHSalDU0c2Vg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QvzuJHtX1AQojBmpSSPcxJHM5wo=
www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
109.203.102.7404 Not Found 10 kB URL HTTP/1.1 www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
IP 109.203.102.7:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash ceb72dbc4c9354ff8429f501a28be894
f18e582538a64ac50f1c3d90d387cf1a9d533143
1088023d20659fc4f83e0a562c001929a79991a0887e0d68010521e5e35434b6
Analyzer Verdict Alert fortinet Phishing
GET /images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Wed, 21 Sep 2022 19:18:28 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.hubeali.com/wp-json/>; rel="https://api.w.org/"
Set-Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; expires=Thu, 22-Sep-2022 19:18:28 GMT; Max-Age=86400; path=/; secure
GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; expires=Thu, 22-Sep-2022 19:18:28 GMT; Max-Age=86400; path=/; secure
rSOxDvzclwd-BLY=2apGK0D4; expires=Thu, 22-Sep-2022 19:18:28 GMT; Max-Age=86400; path=/; secure
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10060
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.hubeali.com/wp-content/themes/themelia/css/ionicons.min.css?ver=1.5.0
109.203.102.7200 OK 9.7 kB URL HTTP/1.1 www.hubeali.com/wp-content/themes/themelia/css/ionicons.min.css?ver=1.5.0
IP 109.203.102.7:0
File type ASCII text, with very long lines (65292), with CRLF line terminators
Hash ec9db4fd91628fabf21a414119bae10d
4ad27d47f19862be023bffe62afd4b6f50d716c9
4115827bbf9fa26bc83f0474bd9d65c5d528c9db93813a7ea55709de079da23d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themelia/css/ionicons.min.css?ver=1.5.0 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Mon, 02 Nov 2020 12:44:35 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 9713
Keep-Alive: timeout=5, max=99
Content-Type: text/css
www.hubeali.com/wp-content/themes/themelia/css/unsemantic.min.css?ver=1.5.0
109.203.102.7200 OK 2.5 kB URL HTTP/1.1 www.hubeali.com/wp-content/themes/themelia/css/unsemantic.min.css?ver=1.5.0
IP 109.203.102.7:0
File type ASCII text, with very long lines (17989), with no line terminators
Hash 25423f0d952eecb71d23cf59670e0919
45484c8ee022f72ec6dcaf116cc89fa34b6b5f0c
a568679245397bfe995ea6feda0f4939cdd65bfe06e4328b61e6966a73974047
GET /wp-content/themes/themelia/css/unsemantic.min.css?ver=1.5.0 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Mon, 02 Nov 2020 12:44:35 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 2509
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.hubeali.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
109.203.102.7200 OK 12 kB URL HTTP/1.1 www.hubeali.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 109.203.102.7:0
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Fri, 29 Jul 2022 13:37:28 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 11681
Keep-Alive: timeout=5, max=100
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 35343b6981ed4c9eb2cd90bc8c2146cd
4e49432e50195a2bc528fb1745a2899306c79db8
cf55f53534e3e8b62513618cda90832a7b9bcd0d15b1a8f6bb51db6eb60daefd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 19:18:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.hubeali.com/wp-content/plugins/a-z-listing/css/a-z-listing-default.css?ver=4.3.1
109.203.102.7200 OK 1.1 kB URL HTTP/1.1 www.hubeali.com/wp-content/plugins/a-z-listing/css/a-z-listing-default.css?ver=4.3.1
IP 109.203.102.7:0
Hash 91372cadd5311326e3f3d2ce7acee082
163f9905c4a12d7fd5d4e79b89ef5d8899e0330e
65135c12260cb0d584bdbef28a846e02d5b46de0b990c60a47301456ff45f100
GET /wp-content/plugins/a-z-listing/css/a-z-listing-default.css?ver=4.3.1 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 10:33:40 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 1104
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.hubeali.com/wp-content/plugins/wordpress-popular-posts/assets/css/wpp.css?ver=6.0.3
109.203.102.7200 OK 570 B URL HTTP/1.1 www.hubeali.com/wp-content/plugins/wordpress-popular-posts/assets/css/wpp.css?ver=6.0.3
IP 109.203.102.7:0
File type ASCII text, with CRLF line terminators
Hash 98850c9586be35bb6543abd8becdc5ee
5ef32afcf3f6b50f4813a74bebac2f76fd02d3b0
d2252f686e36e0aa1b08f4430b450b32f5c5271858c22073d5178085c90bf6ce
GET /wp-content/plugins/wordpress-popular-posts/assets/css/wpp.css?ver=6.0.3 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 10:35:19 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 570
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.hubeali.com/wp-includes/css/dashicons.min.css?ver=6.0.2
109.203.102.7200 OK 36 kB URL HTTP/1.1 www.hubeali.com/wp-includes/css/dashicons.min.css?ver=6.0.2
IP 109.203.102.7:0
File type ASCII text, with very long lines (58981)
Hash 00492d322e5572c7abc3e8701b6c52c1
0802ac2c8280ce7c98af881b1d49ec682acbf314
8bc01632cbc3ab834e04141d444ff82b05a4691444d70a9860477710e330b824
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=6.0.2 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 10:06:52 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 35730
Keep-Alive: timeout=5, max=98
Content-Type: text/css
www.hubeali.com/wp-content/themes/themelia/style.min.css?ver=1.5.0
109.203.102.7200 OK 16 kB URL HTTP/1.1 www.hubeali.com/wp-content/themes/themelia/style.min.css?ver=1.5.0
IP 109.203.102.7:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3f533d70f5d595700011095977ca6d8a
d265f53228ecbb18e4fa3c6bd21bda829a9c7230
c17cad3a00492ce273d99c35c8839f2bde9b8336990ae06759fa4d8137f35825
GET /wp-content/themes/themelia/style.min.css?ver=1.5.0 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Fri, 01 Jan 2021 10:19:39 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 16471
Keep-Alive: timeout=5, max=100
Content-Type: text/css
www.googletagmanager.com/gtag/js?id=UA-1094769-2
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-1094769-2
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash b41835bc09653485171b7e8c87ee2bc3
61e9cd9ac9dd4e319b6e3cbed2e7adc1a26645e1
9085b256bb33fc82d4ba326045efe860d412ffb516462bb7007dfb27dc10bcc3
GET /gtag/js?id=UA-1094769-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Sep 2022 19:18:29 GMT
expires: Wed, 21 Sep 2022 19:18:29 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42190
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.hubeali.com/wp-content/plugins/sassy-social-share/public/css/sassy-social-share-public.css?ver=3.3.42
109.203.102.7200 OK 2.3 kB URL HTTP/1.1 www.hubeali.com/wp-content/plugins/sassy-social-share/public/css/sassy-social-share-public.css?ver=3.3.42
IP 109.203.102.7:0
File type ASCII text, with very long lines (9700), with no line terminators
Hash 2fb8008b5c677c277c7a7a6b3db3ec3a
212d79c6ce1f87e9fa5cd436a5cb7b3f1b7f2aba
80a4a4e504cdfac6d14bd1077e74bda744ee96c916e639d1434dc537e16d0b12
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sassy-social-share/public/css/sassy-social-share-public.css?ver=3.3.42 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Mon, 01 Aug 2022 08:34:34 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 2334
Keep-Alive: timeout=5, max=99
Content-Type: text/css
www.hubeali.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
109.203.102.7200 OK 4.2 kB URL HTTP/1.1 www.hubeali.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 109.203.102.7:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Wed, 09 Dec 2020 10:39:27 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 4169
Keep-Alive: timeout=5, max=99
Content-Type: application/javascript
www.hubeali.com/wp-content/plugins/wordpress-popular-posts/assets/js/wpp.min.js?ver=6.0.3
109.203.102.7200 OK 1.4 kB URL HTTP/1.1 www.hubeali.com/wp-content/plugins/wordpress-popular-posts/assets/js/wpp.min.js?ver=6.0.3
IP 109.203.102.7:0
File type HTML document, ASCII text, with very long lines (570), with CRLF line terminators
Hash 9d9b9066cbfe846690b90d9378506868
84368ef480c5271d458795d443d7c5d0dd97882d
31b2ca78eb4c96f797add15f6406f4aa9f7f212e0bac960dd41c4d8706eb1475
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wordpress-popular-posts/assets/js/wpp.min.js?ver=6.0.3 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 10:35:19 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 1377
Keep-Alive: timeout=5, max=99
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 35343b6981ed4c9eb2cd90bc8c2146cd
4e49432e50195a2bc528fb1745a2899306c79db8
cf55f53534e3e8b62513618cda90832a7b9bcd0d15b1a8f6bb51db6eb60daefd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 19:18:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.hubeali.com/wp-content/themes/themelia/js/jquery.fitvids.min.js?ver=1.1.0
109.203.102.7200 OK 815 B URL HTTP/1.1 www.hubeali.com/wp-content/themes/themelia/js/jquery.fitvids.min.js?ver=1.1.0
IP 109.203.102.7:0
File type HTML document, ASCII text, with very long lines (1899), with no line terminators
Hash 66e623d2ea970da722e4ac0e8c88ffa7
c58c2af097dd98ad0aa7f1c0a4ae9947fe0583b6
9575d77da4f2d2b4ac454db8744d506baf6f72aab972b5a3055df1ae990bc2c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themelia/js/jquery.fitvids.min.js?ver=1.1.0 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Mon, 02 Nov 2020 12:44:30 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 815
Keep-Alive: timeout=5, max=99
Content-Type: application/javascript
www.hubeali.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
109.203.102.7200 OK 31 kB URL HTTP/1.1 www.hubeali.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 109.203.102.7:0
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Fri, 29 Jul 2022 13:37:15 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 30908
Keep-Alive: timeout=5, max=99
Content-Type: application/javascript
www.hubeali.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
109.203.102.7200 OK 1.8 kB URL HTTP/1.1 www.hubeali.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 109.203.102.7:0
File type ASCII text, with very long lines (5477)
Hash 951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Mon, 02 Nov 2020 12:49:39 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 1834
Keep-Alive: timeout=5, max=97
Content-Type: application/javascript
www.hubeali.com/wp-content/themes/themelia/js/jquery.smartmenus.min.js?ver=1.1.0
109.203.102.7200 OK 7.1 kB URL HTTP/1.1 www.hubeali.com/wp-content/themes/themelia/js/jquery.smartmenus.min.js?ver=1.1.0
IP 109.203.102.7:0
File type ASCII text, with very long lines (24459), with CRLF line terminators
Hash 57c6dd1b3dc1df01be231483de94857d
e01988cff1c534eb1b8d7c12e41a64bb69f076f4
522d65e45692791034989208aa940d029a90188ba572e38ff9542ca593bfa826
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themelia/js/jquery.smartmenus.min.js?ver=1.1.0 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Mon, 02 Nov 2020 12:44:30 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 7056
Keep-Alive: timeout=5, max=98
Content-Type: application/javascript
www.hubeali.com/wp-content/themes/themelia/js/jquery.smartmenus.keyboard.min.js?ver=0.4.0
109.203.102.7200 OK 1.3 kB URL HTTP/1.1 www.hubeali.com/wp-content/themes/themelia/js/jquery.smartmenus.keyboard.min.js?ver=0.4.0
IP 109.203.102.7:0
File type ASCII text, with very long lines (4413), with CRLF line terminators
Hash 9c21c5c6a692a4630e0ac83cd881d860
6b3c84ec402b1fb6e56a534f082259057cb93cd9
bc9b1880c2cee055c6e64c383b62bbb12b9023ad0651883195c5ec5b1f2984fb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themelia/js/jquery.smartmenus.keyboard.min.js?ver=0.4.0 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Mon, 02 Nov 2020 12:44:30 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 1345
Keep-Alive: timeout=5, max=98
Content-Type: application/javascript
www.hubeali.com/wp-content/themes/themelia/js/headroom.min.js?ver=0.11.0
109.203.102.7200 OK 2.0 kB URL HTTP/1.1 www.hubeali.com/wp-content/themes/themelia/js/headroom.min.js?ver=0.11.0
IP 109.203.102.7:0
File type ASCII text, with very long lines (6135)
Hash 876a2af5138330468873e286237eba5d
8b85135425b7797a8707b2b573c583372be6d9d2
e5e9cddc8c4391072e9967f88610ddda95989a54c12138a3c8233131880746ac
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themelia/js/headroom.min.js?ver=0.11.0 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Mon, 02 Nov 2020 12:44:30 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 2002
Keep-Alive: timeout=5, max=98
Content-Type: application/javascript
www.hubeali.com/wp-content/uploads/cropped-logo_hubeali.png
109.203.102.7200 OK 4.4 kB URL HTTP/1.1 www.hubeali.com/wp-content/uploads/cropped-logo_hubeali.png
IP 109.203.102.7:0
File type PNG image data, 241 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 86754722e951d6f5109adec1dc20d711
4f30b9d5776de1fbc33f12888568bd2f7b449671
54288f990466be0b5dd3655ca719fe0579d4cd1ac0eca2e1460219954e6ce3c3
GET /wp-content/uploads/cropped-logo_hubeali.png HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Thu, 28 Jan 2021 12:45:44 GMT
Accept-Ranges: bytes
Content-Length: 4373
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: User-Agent
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=98
Content-Type: image/png
www.hubeali.com/wp-content/themes/themelia/js/themelia.min.js?ver=1.2.0
109.203.102.7200 OK 1.2 kB URL HTTP/1.1 www.hubeali.com/wp-content/themes/themelia/js/themelia.min.js?ver=1.2.0
IP 109.203.102.7:0
File type ASCII text, with very long lines (3258), with no line terminators
Hash 44ab7a90032ee983f02391c94aa3babb
6319f4113681e33e846e62376ac6c55d8cddde84
e303990bfb84dbce2646bc493c13f3183328f785bf22aa6e96aef9524d786333
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themelia/js/themelia.min.js?ver=1.2.0 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Mon, 02 Nov 2020 12:44:30 GMT
Accept-Ranges: bytes
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Connection: keep-alive, Keep-Alive
Content-Length: 1180
Keep-Alive: timeout=5, max=98
Content-Type: application/javascript
www.hubeali.com/wp-content/uploads/hubeali-app-download.png
109.203.102.7200 OK 126 kB URL HTTP/1.1 www.hubeali.com/wp-content/uploads/hubeali-app-download.png
IP 109.203.102.7:0
File type PNG image data, 1942 x 329, 8-bit/color RGBA, non-interlaced\012- data
Size 126 kB (126388 bytes)
Hash 6b29e7afbec230e548d12ba844ecec48
0ae10f7048ca5780e729ed90e3bac4c6c98966b3
1a51b9fcaf29252634ea0fdfa33dcd2b03c73e06d859602116f140a164d0b0f9
GET /wp-content/uploads/hubeali-app-download.png HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Tue, 21 Sep 2021 05:06:22 GMT
Accept-Ranges: bytes
Content-Length: 126388
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: User-Agent
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=96
Content-Type: image/png
www.hubeali.com/wp-content/themes/themelia/images/footer-bg.jpg
109.203.102.7200 OK 44 kB URL HTTP/1.1 www.hubeali.com/wp-content/themes/themelia/images/footer-bg.jpg
IP 109.203.102.7:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1400x274, components 3\012- data
Hash ffabed6a05b90362adc89cb709c0f004
b96571aae6385f11da76b55b163433c5eb5ad35a
352132ab368cf8e1174e08019a950aa2d870e94f3176c0ffc7a3eef15a646e94
GET /wp-content/themes/themelia/images/footer-bg.jpg HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/wp-content/themes/themelia/style.min.css?ver=1.5.0
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Wed, 30 Dec 2020 18:50:34 GMT
Accept-Ranges: bytes
Content-Length: 44373
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: User-Agent
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=97
Content-Type: image/jpeg
www.hubeali.com/wp-content/uploads/KFOlCnqEu92Fr1MmWUlvAA-4.woff
109.203.102.7200 OK 66 kB URL HTTP/1.1 www.hubeali.com/wp-content/uploads/KFOlCnqEu92Fr1MmWUlvAA-4.woff
IP 109.203.102.7:0
File type Web Open Font Format, TrueType, length 65556, version 1.1\012- data
Hash aa462125b8faf7600001e1fe9b47e216
9be15ef7af056b9cfc908c3e825a4b755e9569db
b588388326a9d3d30442904afd354fbb2f1feeb88ffca342e1c2f0391a692910
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/KFOlCnqEu92Fr1MmWUlvAA-4.woff HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Thu, 12 May 2022 17:06:32 GMT
Accept-Ranges: bytes
Content-Length: 65556
Cache-Control: max-age=0
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=97
Content-Type: x-font/woff
www.hubeali.com/wp-content/uploads/KFOmCnqEu92Fr1Me5g-5.woff
109.203.102.7200 OK 66 kB URL HTTP/1.1 www.hubeali.com/wp-content/uploads/KFOmCnqEu92Fr1Me5g-5.woff
IP 109.203.102.7:0
File type Web Open Font Format, TrueType, length 65456, version 1.1\012- data
Hash 62b936e168110e58e89e70ec82e22755
323e6800b4b0ee85b338e9a19ce5b28d4cabed36
e41533d5c6eab361631aa3cf8bf7b8a2e6babfcc42a1aa950b2b0cd80c109b8f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/KFOmCnqEu92Fr1Me5g-5.woff HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Thu, 12 May 2022 17:06:31 GMT
Accept-Ranges: bytes
Content-Length: 65456
Cache-Control: max-age=0
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=97
Content-Type: x-font/woff
www.hubeali.com/wp-content/themes/themelia/fonts/ionicons.woff2?v=3.0.0-alpha.3
109.203.102.7200 OK 61 kB URL HTTP/1.1 www.hubeali.com/wp-content/themes/themelia/fonts/ionicons.woff2?v=3.0.0-alpha.3
IP 109.203.102.7:0
File type Web Open Font Format (Version 2), TrueType, length 61020, version 1.0\012- data
Hash 311d81961c5880647fec7eaca1221b2a
780a4983b914f7df1b27d7a3f150b3dce27addaa
4acc6ffbeeac5217951647f5579d8c99526c6757ff84a70a4ff1f32fbf17348b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themelia/fonts/ionicons.woff2?v=3.0.0-alpha.3 HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.hubeali.com/wp-content/themes/themelia/css/ionicons.min.css?ver=1.5.0
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Mon, 02 Nov 2020 12:44:30 GMT
Accept-Ranges: bytes
Content-Length: 61020
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=97
Content-Type: application/font-woff2
www.hubeali.com/wp-content/uploads/facebook-follow-us-300x83.png
109.203.102.7200 OK 9.4 kB URL HTTP/1.1 www.hubeali.com/wp-content/uploads/facebook-follow-us-300x83.png
IP 109.203.102.7:0
File type PNG image data, 300 x 83, 8-bit/color RGBA, non-interlaced\012- data
Hash 9fff6694130bb5b0f9d1f39c4deb400e
58b70b6ccacbd22a19539f82d3deea72322bdd57
234c06f060030827eeb5f12736e504d8458220955f986e203967ab64e82aa15e
GET /wp-content/uploads/facebook-follow-us-300x83.png HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Mon, 02 Nov 2020 15:03:16 GMT
Accept-Ranges: bytes
Content-Length: 9355
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: User-Agent
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=95
Content-Type: image/png
www.hubeali.com/wp-content/uploads/KFOlCnqEu92Fr1MmEU9vAA-5.woff
109.203.102.7200 OK 66 kB URL HTTP/1.1 www.hubeali.com/wp-content/uploads/KFOlCnqEu92Fr1MmEU9vAA-5.woff
IP 109.203.102.7:0
File type Web Open Font Format, TrueType, length 65756, version 1.1\012- data
Hash 68d75d959b2a0e9958b11d781338c8f7
3e84834a4337dde364d80e50b59a9a304b408998
8f838c807ff9fffa19ef81e9ba11530361339b32d8243c273baf687bd8118126
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/KFOlCnqEu92Fr1MmEU9vAA-5.woff HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Thu, 12 May 2022 17:06:32 GMT
Accept-Ranges: bytes
Content-Length: 65756
Cache-Control: max-age=0
Expires: max-age=A10368000, public
Vary: Accept-Encoding,User-Agent
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=97
Content-Type: x-font/woff
www.hubeali.com/wp-content/uploads/cropped-download-192x192.png
109.203.102.7200 OK 10 kB URL HTTP/1.1 www.hubeali.com/wp-content/uploads/cropped-download-192x192.png
IP 109.203.102.7:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash aebd641fff58f6652455d2129d8978d5
cf92697cd85e8391ba6023fdfeb824ca6b0670eb
a8f82490b5b8def354c52633aded3afe7503ce982609ede5e9207fb18c2afac0
GET /wp-content/uploads/cropped-download-192x192.png HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Mon, 02 Nov 2020 14:05:39 GMT
Accept-Ranges: bytes
Content-Length: 9965
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: User-Agent
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=94
Content-Type: image/png
www.hubeali.com/wp-content/uploads/cropped-download-32x32.png
109.203.102.7200 OK 1.0 kB URL HTTP/1.1 www.hubeali.com/wp-content/uploads/cropped-download-32x32.png
IP 109.203.102.7:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash fc7c5b4cb327d124604fee30474e17a7
e5358c21c5ca3c6a2a6f68b3c8684429931004c4
32df6581a0dc481c01b7ed3c67618664f15b7058aaad7de906e9f8dfc20b7353
GET /wp-content/uploads/cropped-download-32x32.png HTTP/1.1
Host: www.hubeali.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/images/newimg/Pictures-Portraits-Statues-Music-Singing-and-Games.pdf
Cookie: zOcKChwkvVspe=gcGdSyR%40wtrI_; GqbvYoyAh=xOr%40Q8o%5D%5BSNTpPB; rSOxDvzclwd-BLY=2apGK0D4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 19:18:29 GMT
Server: Apache
Last-Modified: Mon, 02 Nov 2020 14:05:40 GMT
Accept-Ranges: bytes
Content-Length: 1043
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
Vary: User-Agent
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=96
Content-Type: image/png
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubeali.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Wed, 21 Sep 2022 18:41:12 GMT
expires: Wed, 21 Sep 2022 20:41:12 GMT
cache-control: public, max-age=7200
age: 2237
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 77f9b5e468180a8976a641e40dceedbf
9873db160721dc9f41d3ff2d711db700d6f5d4d7
cae6929c00ed37fc097432c9ac1d6800244479d3877b17662c67bafeeff23aba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 19:18:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-1094769-2&cid=1118173364.1663787909&jid=1298027068&gjid=732949017&_gid=1602492045.1663787909&_u=YEBAAUAAAAAAAC~&z=23593757
142.251.1.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-1094769-2&cid=1118173364.1663787909&jid=1298027068&gjid=732949017&_gid=1602492045.1663787909&_u=YEBAAUAAAAAAAC~&z=23593757
IP 142.251.1.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-1094769-2&cid=1118173364.1663787909&jid=1298027068&gjid=732949017&_gid=1602492045.1663787909&_u=YEBAAUAAAAAAAC~&z=23593757 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.hubeali.com
Connection: keep-alive
Referer: https://www.hubeali.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.hubeali.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 21 Sep 2022 19:18:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 77f9b5e468180a8976a641e40dceedbf
9873db160721dc9f41d3ff2d711db700d6f5d4d7
cae6929c00ed37fc097432c9ac1d6800244479d3877b17662c67bafeeff23aba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 19:18:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6136
Expires: Wed, 21 Sep 2022 21:00:45 GMT
Date: Wed, 21 Sep 2022 19:18:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6136
Expires: Wed, 21 Sep 2022 21:00:45 GMT
Date: Wed, 21 Sep 2022 19:18:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6136
Expires: Wed, 21 Sep 2022 21:00:45 GMT
Date: Wed, 21 Sep 2022 19:18:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ed7323b395e757f7766ea0045efdaca
8b91bc3069a3217bc719c27959d578b353b5d9dc
8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7sCevVX1nGXxZxnrXSURjUcap1a7vCZwrMMIXfzcBPR1srMxJHLGUg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:09:43 GMT
age: 76126
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14e6ddceb639a5f4875aecb796f95c79
b1cd04a66852694284eeef16a1cde38896e33c03
4c0657a00d7fb4caefa64c28340cad94a306cc393cffe692fcc69c65a80f2391
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10244
x-amzn-requestid: 71f08b9e-e977-48de-ad60-5192a43db517
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYwBkGqjIAMFz0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202d3d-0af3334d085ca4a764e31bb5;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7FaZfI_iYUANPdxGBld5NfneWwKJeX2nYA_gmvF9NjML5YOVhZIIoA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 12:08:27 GMT
age: 25802
etag: "b1cd04a66852694284eeef16a1cde38896e33c03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a504981ee10d8341b64f19001464ae8a
56f228d7358ba9deef000f53214dc7c1dc358109
0ea3b6ed12f3adf9d56e7d9b61f284d28107d99f28ee4e66b4c078a9a1a0cbee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8861
x-amzn-requestid: 873e88ab-7afc-4b14-b428-d90ec2079741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO2wuE0AoAMF7Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3804-0d25ab397a16c78907914e23;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:08:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UStTyIXPucbY9WmDl3W5bTyeT-2SJ5CTUjv8TLeexqZtKd1p2sJrNA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 03:25:34 GMT
age: 57175
etag: "56f228d7358ba9deef000f53214dc7c1dc358109"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a692964324dbb9c460a1b855808d02e6
1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54
3fa9e780d62fffb635064aeed542c8e04923ff943c6080476836fab6c24e2426
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9201
x-amzn-requestid: 6dbfae76-f9ab-4f31-9b62-bcf5d9ce4515
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YxzxlEYcoAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a333d-7d147481402cc46a751b72ed;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:40:13 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hI3FlJJRAUfr0EAcSvvuJajmyQDwBpTxuQIhYfA0Mtp9JyQgKnoDvA==
via: 1.1 7dcaa43cd0535d889b549e6a30a57aa0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:43:18 GMT
age: 77711
etag: "1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8bae3a7a80ff40df1d701dfc925ddeff
91df60162a8322469cada0dd8eb93619f28aec1a
fab10c7ad4658bc191621d9f2042236a7b6e34448ce5215dde5b8d6a64b52952
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6897
x-amzn-requestid: 280a2e44-c21a-4d78-991b-3328e816d045
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YwWSpE0SoAMFaxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63299daa-55cb53491be78c4d5bed0462;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 11:02:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eNkM22Xu--qgJdsrH-UrTG5-Ie4nAsyLjiMaJ5ZKIz0bbw7cYrvFjw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 02:18:26 GMT
age: 61203
etag: "91df60162a8322469cada0dd8eb93619f28aec1a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dab1f2cd68979d2004ba4449d759a341
54ed14436a75ba2aeb8459bad2ce70229aff4203
e782fb5ede547e1b167719068c6821c62414dcb0991bf9ac38285cb3ce8894e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10038
x-amzn-requestid: 4cf38a70-a706-4e6a-b854-9404727c599d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1mHDCIAMF5-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-5aba5b0640221b302a19781b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: hDCOWNm2vFa9h7BffUJwcwZ6i27jM2qBuSTasH9q_wsQ9oNWhVpQCg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:47:24 GMT
etag: "54ed14436a75ba2aeb8459bad2ce70229aff4203"
content-type: image/jpeg
age: 77465
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb447f31d-2a9a-4657-a829-f79bc662f662.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb447f31d-2a9a-4657-a829-f79bc662f662.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 285c04fe0904d41ab1c0259942fa26ec
3a5ad499b134a33e79d5fe00c7f5c7c098b3ee34
b91184725a4171202201b5478271a3ab361c54a8893b4dee70d941821a2e70a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb447f31d-2a9a-4657-a829-f79bc662f662.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10293
x-amzn-requestid: 0c8a78d5-44be-47f4-927a-f39b0d0dc86f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yvoh3GT2oAMFvig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63295472-73b322996216171a342783b7;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 05:49:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: a7rPEaM9bqheTlQP1Hr5xwHgW8HenLAvoH95TTtGFu0169tsGnheFQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:29:09 GMT
age: 74967
etag: "3a5ad499b134a33e79d5fe00c7f5c7c098b3ee34"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2