albookers.com/
178.32.109.176301 Moved Permanently 0 B IP 178.32.109.176:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 09 Dec 2022 23:33:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Redirect-By: iThemes Security
Location: https://albookers.com/
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5006
Expires: Sat, 10 Dec 2022 00:57:02 GMT
Date: Fri, 09 Dec 2022 23:33:36 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15171
Expires: Sat, 10 Dec 2022 03:46:28 GMT
Date: Fri, 09 Dec 2022 23:33:37 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11834
Expires: Sat, 10 Dec 2022 02:50:51 GMT
Date: Fri, 09 Dec 2022 23:33:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 23:33:15 GMT
content-type: application/json
age: 22
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: gxnegLzUnEKl6CRzWG+UNKOeY9+UudC2eUlNvDBjFammsD0/XkEtWRBak3b+kzLKbihYvZXRUjU=
x-amz-request-id: 1NZPBB4C6KGY684R
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 22:50:26 GMT
age: 2591
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 23:33:37 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e2feb508a7cececad41be7ce741da15c
35aad0209f0bad10f0f3d74681358f63f5bf1256
33ce9bd7ae3638d369386c63e3678d7a4d1050faf71234bf0d6da0d9a7db6219
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "33CE9BD7AE3638D369386C63E3678D7A4D1050FAF71234BF0D6DA0D9A7DB6219"
Last-Modified: Wed, 07 Dec 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 10 Dec 2022 05:33:37 GMT
Date: Fri, 09 Dec 2022 23:33:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 23:07:55 GMT
age: 1542
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1875
Cache-Control: max-age=122673
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:33:37 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 09:38:10 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.242.3.166101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.242.3.166:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: f10n7ig95pPXi/AOif48eA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: o6CLAbMRMy5tCjngBxlRmojiLkQ=
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4587
Expires: Sat, 10 Dec 2022 00:50:06 GMT
Date: Fri, 09 Dec 2022 23:33:39 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4587
Expires: Sat, 10 Dec 2022 00:50:06 GMT
Date: Fri, 09 Dec 2022 23:33:39 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4587
Expires: Sat, 10 Dec 2022 00:50:06 GMT
Date: Fri, 09 Dec 2022 23:33:39 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4587
Expires: Sat, 10 Dec 2022 00:50:06 GMT
Date: Fri, 09 Dec 2022 23:33:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b7c7b21-97cc-48a2-a70c-c5a6cc643732.webp
34.120.237.76200 OK 17 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b7c7b21-97cc-48a2-a70c-c5a6cc643732.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 54daaab012d7327bc46324026fff6cf5
20f3487c7d7ecbc3309751e768f4e720ea8572a2
c65a762ef8520b85e73dcff7d93d4ca6b5093360c45f408245630607f559e42f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b7c7b21-97cc-48a2-a70c-c5a6cc643732.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 17370
x-amzn-requestid: 9d40f44c-a43d-4776-9bcf-2234cc941088
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eNkEWiIAMFbyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa56-1752d4c9022602137b933701;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1qS7IgODcaKMsgVBSg_oWjw8aBwsPmiwJJigZh0fXi8UmDYZgoctBg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:52:33 GMT
age: 6066
etag: "20f3487c7d7ecbc3309751e768f4e720ea8572a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8caef8f-937f-4132-9440-daa516389582.png
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8caef8f-937f-4132-9440-daa516389582.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a0cb823bf2991a7047962ee388f00dc0
4a0377cd21b6ab69f7e45392a547c9846e607464
86e8e629ffd2efe7c4c86a7e140412dae81a35376cb7f03ee511c6e1d023c788
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8caef8f-937f-4132-9440-daa516389582.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9948
x-amzn-requestid: 0b1400a6-7791-468f-a1d5-b46836e7b164
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMEGNZoAMF7ZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4d-124f9a6f03db01a67784657f;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qPlUjc4Gzc8cFyyQH_3vZoF_k5J61aXPOXozWTO_8txfn11m8Bo5IQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:00:16 GMT
age: 5603
etag: "4a0377cd21b6ab69f7e45392a547c9846e607464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9f369c6-4ce5-4eaa-9070-5c8609b145d1.png
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9f369c6-4ce5-4eaa-9070-5c8609b145d1.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f812f19fa34380de62bc57a879fa24f
102e8572c0ec9be444a976a6ac79e7d389651c46
07a0114317594dff40692d964fdeca4cf22e4324546866042c8712577346d107
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9f369c6-4ce5-4eaa-9070-5c8609b145d1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3924
x-amzn-requestid: b211e655-f36c-44c1-b316-5bdeea6b0921
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMHG4ZoAMFSHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4d-75cd56ea0479970e3be4275e;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DB4kdpnob3tyFg5JwkA3zxfZzZUpHhOir1ltQklWOR2YjAZRfg43MQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:45:27 GMT
age: 6492
etag: "102e8572c0ec9be444a976a6ac79e7d389651c46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0df452512aae4c4c1f4a2cd263b16dfd
68bac75574641febc463bd0819392dae2da15811
e0a9301c5be849e116f1d98b819c2eb91f73e74d836f3e099f2cd266e8f0bb36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12743
x-amzn-requestid: 6ed8a5f4-45cd-45bd-9820-df450f612c34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eK4E_-IAMFf3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa45-31d928fc430577b463a68bd0;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nD0bWCjTU6LNSsNYCNqT4rt7okG1dmPPWiw4FXSi_uNWpcZnxhZgKw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:03:37 GMT
age: 5402
etag: "68bac75574641febc463bd0819392dae2da15811"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 400d1465-ecbf-4d95-8aa8-4dce5dca0716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctluwGo4oAMFhTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee991-6dba29ae7065d5347a1a420d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Lazl-stakC-31gMuQ2WzH9uFkIb0g7HaaM3xkwSFdFJMWKTaKqrBEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:07:07 GMT
age: 69992
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bca8626-2138-4da2-9696-d98a876419a8.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bca8626-2138-4da2-9696-d98a876419a8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e8d1390049f58277d508d3ccc6afb942
f059d013532bc93a57c2aad6ac183da2e58175aa
51c74c6aace8a85c5a872f92316c3652b3c8adc68e10a3219d569f68145ad5bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bca8626-2138-4da2-9696-d98a876419a8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7917
x-amzn-requestid: b112af71-c2ff-42e6-89c2-9ddaece537d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eVdHRIIAMFZyw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa89-676f788c65c57b3b518d6852;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:37:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DJ9VWzpcmMsv7uBft6y2lwHYE-BsVFdrnYOM8UmIXMohQ8slJnD3Mw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:55:31 GMT
etag: "f059d013532bc93a57c2aad6ac183da2e58175aa"
content-type: image/jpeg
age: 5888
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
albookers.com/
178.32.109.176200 OK 32 kB IP 178.32.109.176:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (15987), with CRLF, LF line terminators
Hash aa90bb0d1288cb45257953f946ee641e
a41c6e323e7c0b6dbaa8c431bba79bf1469be2f8
c2a078b9698960f7719d2fc7c2022f0136d10c330c135e7d7e8ffd1ba3c3803b
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Link: <https://albookers.com/wp-json/>; rel="https://api.w.org/", <https://albookers.com/wp-json/wp/v2/pages/8182>; rel="alternate"; type="application/json", <https://albookers.com/>; rel=shortlink
Set-Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3; path=/
X-Mod-Pagespeed: 1.13.35.2-0
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, no-cache
Content-Encoding: gzip
albookers.com/wp-includes/css/dist/block-library/style.min.css
178.32.109.176200 OK 16 kB URL HTTP/1.1 albookers.com/wp-includes/css/dist/block-library/style.min.css
IP 178.32.109.176:0
File type ASCII text, with very long lines (47826)
Hash 96c22528091b782abd39cef4c9749e52
fa8eef2e605ccb20adce4ea4faffb4442b7133e7
d2b99764aef94d6ac8450097e100a213ea3b7470cad3a940fcc631c1f21b94b1
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 15 Nov 2022 22:39:37 GMT
Content-Encoding: gzip
albookers.com/wp-includes/css/classic-themes.min.css
178.32.109.176200 OK 217 B URL HTTP/1.1 albookers.com/wp-includes/css/classic-themes.min.css
IP 178.32.109.176:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /wp-includes/css/classic-themes.min.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Content-Length: 217
Connection: keep-alive
Last-Modified: Wed, 02 Nov 2022 10:39:56 GMT
Cache-Control: s-maxage=10
Accept-Ranges: bytes
cdn.jsdelivr.net/jquery.mcustomscrollbar/3.1.3/jquery.mCustomScrollbar.min.css
151.101.65.229200 OK 4.0 kB URL HTTP/2 cdn.jsdelivr.net/jquery.mcustomscrollbar/3.1.3/jquery.mCustomScrollbar.min.css
IP 151.101.65.229:0
File type ASCII text, with very long lines (42839), with no line terminators
Hash 5f4544dea24190238933ba3dc1aed3a6
0229548b6d4e02d95ca3645025c6334d1bf631da
2b225283887898b48e0e1c391a8656a5a64e37266581a57339a40e00bf4d911e
GET /jquery.mcustomscrollbar/3.1.3/jquery.mCustomScrollbar.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
etag: W/"a757-+sm1IQYv61JQwE1iEoqMPdsxJjI"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 23:33:41 GMT
age: 2759205
x-served-by: cache-fra-eddf8230113-FRA, cache-bma1635-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3978
X-Firefox-Spdy: h2
cdn.jsdelivr.net/jquery.mcustomscrollbar/3.1.3/jquery.mCustomScrollbar.concat.min.js
151.101.65.229200 OK 13 kB URL HTTP/2 cdn.jsdelivr.net/jquery.mcustomscrollbar/3.1.3/jquery.mCustomScrollbar.concat.min.js
IP 151.101.65.229:0
File type ASCII text, with very long lines (32011)
Hash 084f23e958da82f12d2f0a939518678f
c6ab2f6a2ebb64aa74f00bbde2caa81b0f0cdbd4
bbe5f51e5bcf0b41e4aa4ea1fa0f55c879c668723ed406a47be2cd4493ddf33b
GET /jquery.mcustomscrollbar/3.1.3/jquery.mCustomScrollbar.concat.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"aeab-FHftkWvuy3JtIK8PysjO14ndRik"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 09 Dec 2022 23:33:41 GMT
age: 3276410
x-served-by: cache-fra-eddf8230136-FRA, cache-bma1635-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 12701
X-Firefox-Spdy: h2
albookers.com/wp-content/themes/traveler/v2/js/ion.rangeSlider/css/ion.rangeSlider.css
178.32.109.176200 OK 944 B URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/ion.rangeSlider/css/ion.rangeSlider.css
IP 178.32.109.176:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 927c3ba56dd60cc4a7be16d433b66675
85b6f17c6047057b76a5f343749135b7ded2d41b
28eb8dd5580e89c6bdf5867c637431e5d3821acaedc4c32bfa61092b59ab354c
GET /wp-content/themes/traveler/v2/js/ion.rangeSlider/css/ion.rangeSlider.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
albookers.com/wp-content/plugins/contact-form-7/includes/css/styles.css
178.32.109.176200 OK 1.1 kB URL HTTP/1.1 albookers.com/wp-content/plugins/contact-form-7/includes/css/styles.css
IP 178.32.109.176:0
Hash 1669cc2bc1ff7a87815789630fba92f5
dfd9314fbd884bb7552fcfdcc6fd4d82e533dd22
f63a8121b6767f28cef6dadd5083c08f8abfbff972de1ba6b89f12d8702d9b15
GET /wp-content/plugins/contact-form-7/includes/css/styles.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 10:55:18 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/css/helpers.css
178.32.109.176200 OK 4.9 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/css/helpers.css
IP 178.32.109.176:0
File type ASCII text, with very long lines (618), with CRLF line terminators
Hash ca266103bc6643cd1d29f82a24d438d0
0dd3b30a2d6cbc845a26f58746c1789026300550
c6f63b6b086d3ca2bc3946b4c19428d2dfb13efc457a3012c6dd48d7d781dcd9
GET /wp-content/themes/traveler/v2/css/helpers.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/css/font-awesome.min.css
178.32.109.176200 OK 8.0 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/css/font-awesome.min.css
IP 178.32.109.176:0
File type ASCII text, with very long lines (30837), with CRLF line terminators
Hash eaad6409dc92a75212f78c94f8cd235e
80cf8a363b2f0956dc8485f1c5365c44311a6d6d
9420ca89d597890836440ecfa4e9f9fe3a5e92a0c0cb8f15aac2302794d916ed
GET /wp-content/themes/traveler/v2/css/font-awesome.min.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/fotorama/fotorama.css
178.32.109.176200 OK 3.4 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/fotorama/fotorama.css
IP 178.32.109.176:0
File type ASCII text, with very long lines (15085), with CRLF line terminators
Hash 0f6a3281f5ab7ef44702b6e465fcf2d7
90ef5cd5c64c283e1c330e35f7915fd887d7c5ea
78280a5cf1c9a1f15316bd94d9f626671bcdcb0e9fc7ae3e0b171740dc9db706
GET /wp-content/themes/traveler/v2/js/fotorama/fotorama.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/ion.rangeSlider/css/ion.rangeSlider.skinHTML5.css
178.32.109.176200 OK 936 B URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/ion.rangeSlider/css/ion.rangeSlider.skinHTML5.css
IP 178.32.109.176:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash ee465066358fae1b0f4533384331f0c2
9736924c4baf3486413547287e9a128725ee3c54
7f47c810a192bba375934141a24b11bb01fb3ad6128e273706de4a6dc3394d67
GET /wp-content/themes/traveler/v2/js/ion.rangeSlider/css/ion.rangeSlider.skinHTML5.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/daterangepicker/daterangepicker.css
178.32.109.176200 OK 2.4 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/daterangepicker/daterangepicker.css
IP 178.32.109.176:0
File type ASCII text, with CRLF line terminators
Hash aa6138d2c404fd979a07c96e9ea243c6
430f18f724f0e446e756b27f6aaa30a4f7846bd4
3e6d994e16520f231c08c5079f36fda338d0f3d74b23cb8f87ea77048932f438
GET /wp-content/themes/traveler/v2/js/daterangepicker/daterangepicker.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/css/bootstrap.min.css
178.32.109.176200 OK 25 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/css/bootstrap.min.css
IP 178.32.109.176:0
File type ASCII text, with very long lines (65367), with CRLF line terminators
Hash 76131fe97f1269f45ae954bc8b1caac8
5fd405bd0acb15aa23b9efa5a8550ddc949590ea
15128ad84f3971c5f8a6e6a44fc8688859618479719342264aeaaf68c24cea19
GET /wp-content/themes/traveler/v2/css/bootstrap.min.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/css/sweetalert2.css
178.32.109.176200 OK 6.4 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/css/sweetalert2.css
IP 178.32.109.176:0
File type ASCII text, with very long lines (375), with CRLF line terminators
Hash 81320a507f5d6e54e9cadbf8a56491e5
adad934886f6610a3a2d73d0c79997e23efb7e0c
c1b8001d0c73e31fcba83be33c0bc222c8b1912d23d7aece92e0bbd3d118efda
GET /wp-content/themes/traveler/v2/css/sweetalert2.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/css/flickity.css
178.32.109.176200 OK 878 B URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/css/flickity.css
IP 178.32.109.176:0
File type ASCII text, with CRLF line terminators
Hash 5266cad09ec61ff243319184f02810bd
9b9412f869025ecd96201b361320d2e7c3083bfe
c46e7cfeb8b8c59d81d26b407d3c80fc1a2a105c8ea4d8b131fa4c2c8f049f41
GET /wp-content/themes/traveler/v2/css/flickity.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:52 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/magnific-popup/magnific-popup.css
178.32.109.176200 OK 2.3 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/magnific-popup/magnific-popup.css
IP 178.32.109.176:0
File type ASCII text, with CRLF line terminators
Hash 0d10eb0da39daf32c7656c36a9fdc6b0
a09ac6d203f1fa7e538ff5b1ae4b021e41ee59d4
a886b683b0ba10501edecf14c6a829753d873c6274264c0818a0a641a7be712c
GET /wp-content/themes/traveler/v2/js/magnific-popup/magnific-popup.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/css/select2.min.css
178.32.109.176200 OK 2.9 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/css/select2.min.css
IP 178.32.109.176:0
File type ASCII text, with CRLF line terminators
Hash 3dcf9b68dff1d08a49fa01fb656e9851
b47014c26dfaa8f61c74d4ed019ad5952787b424
364efcf0745b6f3613322d269810f9b61bd573552d45306434bd5e3cc530f1ae
GET /wp-content/themes/traveler/v2/css/select2.min.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/css/style.css
178.32.109.176200 OK 29 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/css/style.css
IP 178.32.109.176:0
File type ASCII text, with very long lines (559), with CRLF line terminators
Hash 5e911b4c3a631a96b47be104b440210c
608d9c0fc89acc58b79acaa6877f1e355227a105
6b1e8b555bdefb8cbd3ad27a2031509d4e5e8e87231475547767ae3fcb34198d
GET /wp-content/themes/traveler/v2/css/style.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:52 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/owlcarousel/assets/owl.carousel.min.css
178.32.109.176200 OK 1.1 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/owlcarousel/assets/owl.carousel.min.css
IP 178.32.109.176:0
File type ASCII text, with very long lines (3184), with CRLF line terminators
Hash 209ea724f51815afcfae0a22663fab33
6c9a035aeb54f567f55d3423023332626bbecfd7
73bfbe22518f1ca9b79dd704270a0817b1d1ea714eddc57f0dcf6ce287fb2601
GET /wp-content/themes/traveler/v2/js/owlcarousel/assets/owl.carousel.min.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/css/affilate.css
178.32.109.176200 OK 7.9 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/css/affilate.css
IP 178.32.109.176:0
File type ASCII text, with very long lines (675), with CRLF line terminators
Hash 3467afe3d8c5024daafc9ee11054ae2d
ca3c98a3cce9066e3c82c7f3ccf260887a61e958
6f4fd35cbf48b6d3610932c6604cf9105907457587d5836b704e9fa0fbe09cc2
GET /wp-content/themes/traveler/v2/css/affilate.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/css/search_result.css
178.32.109.176200 OK 35 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/css/search_result.css
IP 178.32.109.176:0
File type ASCII text, with CRLF line terminators
Hash aad9734b04c4219f76d5941653f2a894
3b590759d20efb159fddf9a1422a280a0cca5311
d53c834d792ebcb39cc3240c871044e337ed8ff93753f332d4cef32da9366ff2
GET /wp-content/themes/traveler/v2/css/search_result.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:52 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/css/partner_page.css
178.32.109.176200 OK 4.6 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/css/partner_page.css
IP 178.32.109.176:0
File type ASCII text, with CRLF line terminators
Hash 30ba3db3653bb5dafe070b8a3ebbdb7a
a8bae29a99cefac7c06faad587ca22f953df1aae
8ce8d9d390175e203eb8b638727662e20d674efd37b4bd8f6b7192ffbbc2e6bb
GET /wp-content/themes/traveler/v2/css/partner_page.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:52 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/css/checkout.css
178.32.109.176200 OK 5.9 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/css/checkout.css
IP 178.32.109.176:0
File type ASCII text, with CRLF line terminators
Hash ab160d2d5fb9b20af20eba5d5ada0226
a6990e6987bff11b4b1bcaafae1e52bb38187563
12a3c066c85cfab8e401492f7fd6e636029f84eab1d4a4e4339a36d23f6eee19
GET /wp-content/themes/traveler/v2/css/checkout.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:52 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/css/fsafari.css
178.32.109.176200 OK 868 B URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/css/fsafari.css
IP 178.32.109.176:0
File type ASCII text, with CRLF line terminators
Hash 3a61762a2a8423b4892d0692a27e80c2
5b171a72f6bebaa9b12ac4483cc48d2f67fe3d40
888f634207260e0a7cb159a5c06bec9bae5fd56dd3d6588031141eb59503c222
GET /wp-content/themes/traveler/v2/css/fsafari.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Content-Length: 868
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Accept-Ranges: bytes
albookers.com/wp-content/themes/traveler/v2/css/affilate-h.css
178.32.109.176200 OK 2.2 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/css/affilate-h.css
IP 178.32.109.176:0
File type ASCII text, with CRLF line terminators
Hash 4dade5c8fbd674caff0a49580f241958
ff3a456d0984957f8a74f83f7dba1e5adb1d5ede
1fe93a73eb26f3badeb0ec0efd1301ef64794f514bf68b00af8d20c1b30b06e8
GET /wp-content/themes/traveler/v2/css/affilate-h.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/css/responsive.css
178.32.109.176200 OK 8.5 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/css/responsive.css
IP 178.32.109.176:0
File type ASCII text, with very long lines (382), with CRLF line terminators
Hash 6dc1f53c7606efa5ee6dd7c74c0901bd
6c7e31e1fc2ca7013dd42ffd5e7f888c9194df4e
0545860cde95782c449f8ceb2840dab676b4ffddc20c2499ab7b2340b840760d
GET /wp-content/themes/traveler/v2/css/responsive.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/css/sin-tour.css
178.32.109.176200 OK 42 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/css/sin-tour.css
IP 178.32.109.176:0
Hash ab9a52e4a52a7d8ef7cf245cea6caf12
ae1fa56eee70db4a7f1c8c21cd9249c437826da4
7dc52cab625adf1d585ee520241b857b63092b225c8a2c830e8ddf44a6021573
GET /wp-content/themes/traveler/v2/css/sin-tour.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/css/enquire.css
178.32.109.176200 OK 2.0 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/css/enquire.css
IP 178.32.109.176:0
File type ASCII text, with CRLF line terminators
Hash b1b834e3a1cac6953967b3209f494f1a
0e7369408f6d3b5bddb1233829c62813a167a8a9
97841aeb4db6fc9e28c33ab9deace240d5dce487f96408d572be8d82d9fb0786
GET /wp-content/themes/traveler/v2/css/enquire.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css
178.32.109.176200 OK 4.3 kB URL HTTP/1.1 albookers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css
IP 178.32.109.176:0
File type ASCII text, with very long lines (19233)
Hash 51c14be8cbfb7334383494746c733869
971da5aaf47ab655947d88c9249d6598c9bc5f20
77907724b67b6593434ba72dfdd5c8c448612d8b77b2becf4bfe84e22720e29d
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 14 Nov 2022 13:17:25 GMT
Content-Encoding: gzip
albookers.com/wp-content/uploads/elementor/css/global.css
178.32.109.176200 OK 1.1 kB URL HTTP/1.1 albookers.com/wp-content/uploads/elementor/css/global.css
IP 178.32.109.176:0
File type ASCII text, with very long lines (6697)
Hash d77917dc97e36f756dc34b6130855909
7a9331c937f7a0bb7d93af5781c8faa9a57f3d7d
cb393f1d8d857f31104bc15e3203dc0d7e1caa604980fd201fbe84d669eb996a
GET /wp-content/uploads/elementor/css/global.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 15 Nov 2022 09:06:52 GMT
Content-Encoding: gzip
albookers.com/wp-content/uploads/elementor/css/post-10295.css
178.32.109.176200 OK 367 B URL HTTP/1.1 albookers.com/wp-content/uploads/elementor/css/post-10295.css
IP 178.32.109.176:0
File type ASCII text, with very long lines (1103), with no line terminators
Hash b2f023db7c4c6c76e0f858e17c22fc43
42744fbd1805487e01bb0ade4c728fa59332c3c0
acd2e275987212877358a9c6d5dbcaac746bd5bed75f2780b1992ffb1a65d6ee
GET /wp-content/uploads/elementor/css/post-10295.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 15 Nov 2022 09:06:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css
178.32.109.176200 OK 17 kB URL HTTP/1.1 albookers.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css
IP 178.32.109.176:0
File type ASCII text, with very long lines (65497)
Hash 7df04acd41309052d418ef8ec3e596a1
2ce7d25b34c8a0a9d23fec3e26db1a968f2c5a46
c374bc6b01c3bd05a9f315f79de1da851c3ff5b738fceecb142d96c590bccfe9
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 14 Nov 2022 13:17:24 GMT
Content-Encoding: gzip
albookers.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css
178.32.109.176200 OK 59 kB URL HTTP/1.1 albookers.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css
IP 178.32.109.176:0
File type ASCII text, with very long lines (65358)
Hash 292049fa0f7533b6095f4d603563f92f
f535bdd1f5c3f4d07362530696a9208cc5de0b17
6d347777af8dbca161023e2888f8304d055b3876a81b30fd5baf7815ee460cf7
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 15 Oct 2021 04:28:11 GMT
Content-Encoding: gzip
albookers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
178.32.109.176200 OK 4.6 kB URL HTTP/1.1 albookers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 178.32.109.176:0
File type ASCII text, with very long lines (11126)
Hash 413654fdfa9b24fbd3d747482e3971c9
c23c501d5f668cd83443a4847197717536d55ab8
48470f972b6a6afef4cdb0177dae59d5c891353d995e76c47c9cb142fe45766e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 18 Nov 2020 13:36:06 GMT
Content-Encoding: gzip
albookers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
178.32.109.176200 OK 3.2 kB URL HTTP/1.1 albookers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 178.32.109.176:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash 50eaf36f7940e643f5bbf1f877738a34
fb256a8aa37c693b470cb914a6956bfb38461cec
0092804c99d6e1bab6dce06e497295ad70eac0041c4094c80578f294cfbc4fd5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 10:55:18 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1
178.32.109.176200 OK 8.6 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1
IP 178.32.109.176:0
File type ASCII text, with very long lines (21014), with CRLF line terminators
Hash 0695f2f9f94f6ee594f8d70cfdf831d5
4aa0ac1c302a1e4395f36b7e4973cbecc148e6e1
6d58e490df5f26dfc41a32c88414a9ee3a96d0cb78fcdd42bb34562623178ecf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1 HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/bootstrap.min.js
178.32.109.176200 OK 12 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/bootstrap.min.js
IP 178.32.109.176:0
File type ASCII text, with very long lines (32033), with CRLF line terminators
Hash 2b6818935cd109cfffeef9c1be632358
1794f2fbc5b5a99dccdc95a5f4b8ba5d90c805e6
ece4c79978657a26246a87ccf53f02c93c19a2418eb0429bec6364d5a8027164
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/bootstrap.min.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
178.32.109.176200 OK 4.4 kB URL HTTP/1.1 albookers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 178.32.109.176:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 17ddaa3459f67e7200a39c497d4d293c
6267da9c83e724ba1afa3e6b7ec6196f52b674fe
24f9c0a42e16b47c8e289525d0134ecabc30392db09bbb720c6a3b85d3dee201
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 10:55:18 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/jquery.matchHeight.js
178.32.109.176200 OK 3.7 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/jquery.matchHeight.js
IP 178.32.109.176:0
File type ASCII text, with CRLF line terminators
Hash 5a70f6ce5a8e26a4fd271f4a6c005471
ef10bc1d731fec20398f81c42caaba1a28c6c705
f6bfeaa360c1c2547ccbf096776377b29a8457b67f802c76b1b4ea1891c29c6f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/jquery.matchHeight.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/ion.rangeSlider/js/ion-rangeSlider/ion.rangeSlider.js
178.32.109.176200 OK 14 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/ion.rangeSlider/js/ion-rangeSlider/ion.rangeSlider.js
IP 178.32.109.176:0
File type ASCII text, with very long lines (615), with CRLF line terminators
Hash dc565dfac4b2f9e1fabf32ebf7cb87f7
2787130d46293eaf96b7c9cf9d9518bca6e65cd6
f0eda8e934149fa2bd0838b8332182d74be310836ee4715ed771bcce75d7b056
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/ion.rangeSlider/js/ion-rangeSlider/ion.rangeSlider.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/fotorama/fotorama.js
178.32.109.176200 OK 22 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/fotorama/fotorama.js
IP 178.32.109.176:0
File type ASCII text, with very long lines (572), with CRLF line terminators
Hash ace95166438477da83c770561a5a1c70
52c69058c862bb8a82c514b25a8ce7c7e5aa7cc7
f7511abe9c6b34e7d091e641f5ca337568d6f481a8f54ef001ceade921905fce
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/fotorama/fotorama.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
178.32.109.176200 OK 36 kB URL HTTP/1.1 albookers.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 178.32.109.176:0
File type ASCII text, with very long lines (65447)
Hash 3799a6be94d7facfc78f066e18773e22
5d97b0e2565712331b1d73be1581159bf282cd4f
e208eb0b972a9d1bdd741669ae120b4555f33ea138d69d012f99de9aaec1c9be
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 02 Nov 2022 10:39:55 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/moment.min.js
178.32.109.176200 OK 19 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/moment.min.js
IP 178.32.109.176:0
File type ASCII text, with very long lines (51679), with no line terminators
Hash cbc61cc7d60d6561516c94f8dbe583df
2a8a5baa16545c243b7df99fbae3083b7433a2f1
bb79ea88a30f83f22d8451eaa32d380847c6d02414ac734bb14d193a26bbf0ad
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/moment.min.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/daterangepicker/daterangepicker.js
178.32.109.176200 OK 21 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/daterangepicker/daterangepicker.js
IP 178.32.109.176:0
File type ASCII text, with very long lines (1086), with CRLF line terminators
Hash 743314aa9eb07c7c7d1d198e0a7a71dc
21536b5954eca0a9e21b7c2e4307bbb32c296a1b
3bbc8111704e03c03568fc01d39c1e1b5b8ad3e4aa24edeefd07b7ada0fdcd15
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/daterangepicker/daterangepicker.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/jquery.nicescroll.min.js
178.32.109.176200 OK 20 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/jquery.nicescroll.min.js
IP 178.32.109.176:0
File type ASCII text, with very long lines (59928), with CRLF line terminators
Hash 1ccfa1bc75d233a6b4aba666e8ab0f8d
365940e6799cf0c601dc11c56ddd24edad631ce7
0b55885f7574b014f7a0a0c5be8010cb32fa2c6fad240c56275401877796d61a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/jquery.nicescroll.min.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/sweetalert2.min.js
178.32.109.176200 OK 13 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/sweetalert2.min.js
IP 178.32.109.176:0
File type Unicode text, UTF-8 text, with very long lines (36813), with no line terminators
Hash dd9078a2817c84e453936e6b6b72e36c
e6f68ae5af8cbd307c2ffb3e6f814e3c4432be61
e404983ffea04452b964240062dde35e0027915014419b016f3231cf5e37a40a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/sweetalert2.min.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/markerclusterer.js
178.32.109.176200 OK 9.1 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/markerclusterer.js
IP 178.32.109.176:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 19455fdfa8496e05ea11a84c9cb18adc
e4cb52ccf25903de047f236dae6aeb8a0c3ed334
dfe0384e21e62a1b2b0529e9764768cdf672c161a8001b2840ed0b605016f887
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/markerclusterer.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/infobox.js
178.32.109.176200 OK 7.5 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/infobox.js
IP 178.32.109.176:0
File type ASCII text, with CRLF line terminators
Hash dc184e1747c926121b58cb84b3320620
becd389806f1d2d49bbe281503ef1ea866f30881
ccaa48ad0d1435305f6b29ca4400fd29971ef2d4cddfc218bc3dc3d44a34fdda
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/infobox.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/send-message-owner.js
178.32.109.176200 OK 234 B URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/send-message-owner.js
IP 178.32.109.176:0
File type ASCII text, with CRLF line terminators
Hash 85da44e902bab9b87a86ca651481fd51
133cad8d8ae79d32519eb9f4c7eb2498aa8e29d3
b64ee622e70755c15ab63b20d3472d5423005f563ae8f5b29f08e1886363d958
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/send-message-owner.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Content-Length: 234
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Accept-Ranges: bytes
albookers.com/wp-content/themes/traveler/v2/js/flickity.pkgd.min.js
178.32.109.176200 OK 38 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/flickity.pkgd.min.js
IP 178.32.109.176:0
File type ASCII text, with CRLF line terminators
Hash c6cf6f9904b8e2097c9b2237d6dbb273
35d8f413dbc77015d575d5efb77bbd5a823cea1b
a83d09126ff894edcb46dd5719f452ea0f43e981acf0a08ff6c5b29129fe83c8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/flickity.pkgd.min.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/owlcarousel/owl.carousel.min.js
178.32.109.176200 OK 14 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/owlcarousel/owl.carousel.min.js
IP 178.32.109.176:0
File type ASCII text, with very long lines (31997), with CRLF line terminators
Hash 72eed4da3cd691ba6d12cba257172619
db583f379617c7930d24c5328561224be17479cc
c54bf0c9c926bd4d2d91a46ca3fdf206b1992b59c52c33bdf3765e816f915b71
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/owlcarousel/owl.carousel.min.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/jquery.mb.YTPlayer.min.js
178.32.109.176200 OK 17 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/jquery.mb.YTPlayer.min.js
IP 178.32.109.176:0
File type HTML document, ASCII text, with very long lines (56994), with CRLF line terminators
Hash d6e3cdbfc97e016e74c16fa55494716d
8e07bb138044b2e2ad9e8ad75b6b9e0763606c49
53a703b9f847ed8c382bebe34aab2585c78dad7c129e61e11a65e1da7643b496
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/jquery.mb.YTPlayer.min.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
albookers.com/wp-content/themes/traveler/v2/js/car-tranfer.js
178.32.109.176200 OK 1.9 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/car-tranfer.js
IP 178.32.109.176:0
File type ASCII text, with CRLF line terminators
Hash b2636881c28401d9590537bbcf0370dd
996c2abda88640772870d79fd02da0688668a869
859f30c99aa7f71fd24ac16f0c3018491a551b7e967c672cf54b2d02e2c3ed10
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/car-tranfer.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
albookers.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.7.0
178.32.109.176200 OK 6.4 kB URL HTTP/1.1 albookers.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.7.0
IP 178.32.109.176:0
File type ASCII text, with very long lines (19905)
Hash 5e93bedd59df7ce592b8ad4820c0730f
b2e9e4c09edbb5788af1e8815c4e80e3acba11d7
a73ad8d382b36ab728304e8bd52bd9c2d2db9420b4fe8db76ea447e9319646e5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.7.0 HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 15 Oct 2021 04:28:11 GMT
Content-Encoding: gzip
albookers.com/wp-content/themes/traveler/v2/js/sin-tour.js
178.32.109.176200 OK 5.6 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/sin-tour.js
IP 178.32.109.176:0
File type ASCII text, with CRLF line terminators
Hash f4400a7543c5a05b60ca87eb5198afea
e2538145358f40492a756706fd4b326a58b5c643
cbda704ba940d656391eaa88f5f7c7187b855a309c5a4e5aba125d02532c7c1a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/sin-tour.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:33:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
albookers.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
178.32.109.176200 OK 5.8 kB URL HTTP/1.1 albookers.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 178.32.109.176:0
File type ASCII text, with very long lines (15660)
Hash 9821563af79d0fbd798c5a96f11cb775
d7ad769f21b6cdbd3602ba2512449e5febe7a2ee
3a372dc0de21ae3d1a2e8d08c2d38599823eb332d06f35ec1eefd1afbbbe9f12
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 13 Oct 2022 12:29:31 GMT
Cache-Control: s-maxage=10
Content-Encoding: gzip
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash 5ea3669412278a6658c0b0d6afda0aac
93b2797e582cc0e0bbf3bb090a4803f95f6ca54c
36ce0b3d274374a107effb9e3a1766e99cfb7bf45d87fd1356f9882fb65267fe
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "EC3F8873B472AF85954E146803A6867640721E38"
Expires: Sat, 10 Dec 2022 10:00:00 GMT
Last-Modified: Fri, 09 Dec 2022 22:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1623
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77718c189d22b506-OSL
albookers.com/wp-includes/images/media/default.png
178.32.109.176200 OK 168 B URL HTTP/1.1 albookers.com/wp-includes/images/media/default.png
IP 178.32.109.176:0
File type PNG image data, 48 x 64, 2-bit colormap, non-interlaced\012- data
Hash 2db6a9e6cd49d2429668ce40e0dee762
ababc326fa538068a5dec0cbcd295b5f5b0eb1a0
6dfe1e05661b087111ce1b280d4f082cbfd2b786a0941224da5af2ce1b29fb75
GET /wp-includes/images/media/default.png HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: image/png
Content-Length: 168
Connection: keep-alive
Last-Modified: Wed, 26 Mar 2014 01:40:16 GMT
Accept-Ranges: bytes
albookers.com/wp-content/uploads/2022/10/agence-de-voyage-et-hotels-algerie-albookers-450x417.jpg
178.32.109.176200 OK 21 kB URL HTTP/1.1 albookers.com/wp-content/uploads/2022/10/agence-de-voyage-et-hotels-algerie-albookers-450x417.jpg
IP 178.32.109.176:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 450x417, components 3\012- data
Hash 1c35e802bc5a5e098e424103ccb4e0bb
57cb091f236cdcdf669c2061240ab06f26b6f39e
90762465a0467e57caba1f9253d60c97395d92b14ef3dd6d7b50af6fed8c2d33
GET /wp-content/uploads/2022/10/agence-de-voyage-et-hotels-algerie-albookers-450x417.jpg HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: image/jpeg
Content-Length: 20681
Connection: keep-alive
Last-Modified: Tue, 18 Oct 2022 13:51:26 GMT
Accept-Ranges: bytes
albookers.com/wp-content/uploads/2018/12/LogoMakr-5nUmlj.png
178.32.109.176200 OK 6.6 kB URL HTTP/1.1 albookers.com/wp-content/uploads/2018/12/LogoMakr-5nUmlj.png
IP 178.32.109.176:0
File type PNG image data, 200 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash 391625fd1fac795286084e2c37d31d5e
3d22fe4844e14c486d2a94ccbec9fe6d6c1e939a
f5698d6ecf779e06fbf41eacf87f55ac86cc84b3f42b37f7de2dfd209166c8aa
GET /wp-content/uploads/2018/12/LogoMakr-5nUmlj.png HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: image/png
Content-Length: 6589
Connection: keep-alive
Last-Modified: Mon, 17 Oct 2022 09:13:54 GMT
Accept-Ranges: bytes
maps.googleapis.com/maps/api/js?libraries=places&key=AIzaSyBnVp5RS9R-AxevMlK6X4G79qcCepLAFJE
142.250.74.74200 OK 56 kB URL HTTP/2 maps.googleapis.com/maps/api/js?libraries=places&key=AIzaSyBnVp5RS9R-AxevMlK6X4G79qcCepLAFJE
IP 142.250.74.74:0
File type ASCII text, with very long lines (2459)
Hash e618707038379f77ec2b830718c358b4
7d072a383913fac5c59f3249232aef0295e275a1
34fbe2c76f4f9bfc18d1c1001fa02988d2d8713eab73a329b1c947e4f2912408
GET /maps/api/js?libraries=places&key=AIzaSyBnVp5RS9R-AxevMlK6X4G79qcCepLAFJE HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Fri, 09 Dec 2022 23:33:41 GMT
expires: Sat, 10 Dec 2022 00:03:41 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 56004
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=23
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
via.placeholder.com/300x200
188.114.97.1200 OK 1.1 kB URL HTTP/2 via.placeholder.com/300x200
IP 188.114.97.1:0
File type PNG image data, 300 x 200, 4-bit colormap, non-interlaced\012- data
Hash 11293163fd4ede540a7c307e9caafed6
1bd4fde19124ff0477679bef1f4790368f987cdd
630b55175e60b0b89d59794b5d33bffdfd6089052222fc1d6a016b9ed1eb395b
GET /300x200 HTTP/1.1
Host: via.placeholder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 23:33:42 GMT
content-type: image/png
content-length: 1094
last-modified: Wed, 30 Dec 2020 01:00:08 GMT
etag: "5febd118-446"
expires: Fri, 16 Dec 2022 23:33:29 GMT
cache-control: max-age=604800
x-cache: L1
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eSLnyMDycl7BMhqsreX%2Bbqn70XE%2BsV5p8XxMil8TQcYOiObwCVajLSbnnbrZRXl3lpjn63rPNgkQgP6RLzPe0DVhxAigVEKzqf9hQrCh%2FePwXb%2FS6m%2B8Rqw6j%2Fwl%2FvEx7EwiQo7q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77718c190b78b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
albookers.com/wp-content/themes/traveler/v2/fonts/fontawesome-webfont.woff2?v=4.7.0
178.32.109.176200 OK 77 kB URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 178.32.109.176:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://albookers.com/wp-content/themes/traveler/v2/css/font-awesome.min.css
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:42 GMT
Content-Type: font/woff2
Content-Length: 77160
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:52 GMT
Cache-Control: s-maxage=10
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e4f546e102d986faf1029509d599b730
cc045a705fd6758b7b575fde5dfb79facc9c3546
ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:33:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
albookers.com/wp-content/uploads/2022/10/agence-de-voyage-et-hotels-algerie-albookers-0000002-_1_.webp?id=10174
178.32.109.176200 OK 142 kB URL HTTP/1.1 albookers.com/wp-content/uploads/2022/10/agence-de-voyage-et-hotels-algerie-albookers-0000002-_1_.webp?id=10174
IP 178.32.109.176:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 142 kB (142190 bytes)
Hash a0720450bb0c9a8bb8fc117fa939f9f3
1074ff6ff191e3e03f97eefd99fe59080b0d9932
5fc9be2d272f57de5778d320efb3f9c5b27d0aae1aa546bdc52ae469d405e1b7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/10/agence-de-voyage-et-hotels-algerie-albookers-0000002-_1_.webp?id=10174 HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:42 GMT
Content-Type: image/webp
Content-Length: 142190
Connection: keep-alive
Last-Modified: Mon, 17 Oct 2022 14:46:25 GMT
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e4f546e102d986faf1029509d599b730
cc045a705fd6758b7b575fde5dfb79facc9c3546
ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:33:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
albookers.com/wp-content/themes/traveler/v2/js/custom.js
178.32.109.176200 OK 472 B URL HTTP/1.1 albookers.com/wp-content/themes/traveler/v2/js/custom.js
IP 178.32.109.176:0
Hash e4f546e102d986faf1029509d599b730
cc045a705fd6758b7b575fde5dfb79facc9c3546
ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/custom.js HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 20:26:51 GMT
Content-Encoding: gzip
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
142.250.74.35200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://albookers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 13:33:11 GMT
expires: Sat, 09 Dec 2023 13:33:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
age: 36031
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
142.250.74.35200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://albookers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 13:33:11 GMT
expires: Sat, 09 Dec 2023 13:33:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
age: 36031
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
142.250.74.35200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://albookers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:28:50 GMT
expires: Thu, 07 Dec 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 187492
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e4f546e102d986faf1029509d599b730
cc045a705fd6758b7b575fde5dfb79facc9c3546
ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:33:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 101b88a5a141e4659cc3150b7ca565b6
898ea48b6bb3c316e651cb4bc6451be06c050ab9
5ae54f788fa6724f16af03528f24db2ecbbefd8e5fc9af7fb2a79551911ca09f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1073
Cache-Control: max-age=147418
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:33:42 GMT
Etag: "63935e7f-1d7"
Expires: Sun, 11 Dec 2022 16:30:40 GMT
Last-Modified: Fri, 09 Dec 2022 16:12:47 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
fonts.googleapis.com/css?family=Poppins%3A400%2C500%2C600&ver=6.1.1
142.250.74.74200 OK 939 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins%3A400%2C500%2C600&ver=6.1.1
IP 142.250.74.74:0
Hash f826ce26928480b29cc3564878b0f737
45533e813fa5bbc802c554d8558687a84b951a0d
3abe88e81113e763f4c0109280d9cf971ac13bd5e9a97134161ab49cd9bdbbd6
GET /css?family=Poppins%3A400%2C500%2C600&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 23:33:41 GMT
date: Fri, 09 Dec 2022 23:33:41 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash c708fed74bad82cdb77c305a08a22e4f
00b8621005d7f5d3a49a07a8d2abccff1e9afab3
5c478bcd8102a18140f56004a0933d5191e1e9faa7435e1e3a8985ff9a7c8c90
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 3fb10cc5b2133a13357d020def5870f0
etag: "5bb6d55c61770dc451cafc52c8d38b20"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 09 Dec 2022 23:48:20 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: xwj+10utgs23fDBaCKIuTw==
x-fb-debug: YPsfyzmlc3SYeGwqfE3YGN+RR7U1/J/yDzjVSSc3+NocJ2rsHubykcVyzJMnUYx+2HTaFjHYzSB3QTe7G4vZQw==
content-length: 1684
x-fb-trip-id: 1904183273
date: Fri, 09 Dec 2022 23:33:42 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
172.217.21.170200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 172.217.21.170:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://albookers.com
Connection: keep-alive
Referer: https://albookers.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 09 Dec 2022 23:33:42 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://albookers.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Fri, 09 Dec 2022 23:33:42 GMT
expires: Fri, 09 Dec 2022 23:33:42 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 101b88a5a141e4659cc3150b7ca565b6
898ea48b6bb3c316e651cb4bc6451be06c050ab9
5ae54f788fa6724f16af03528f24db2ecbbefd8e5fc9af7fb2a79551911ca09f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1073
Cache-Control: max-age=147418
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:33:42 GMT
Etag: "63935e7f-1d7"
Expires: Sun, 11 Dec 2022 16:30:40 GMT
Last-Modified: Fri, 09 Dec 2022 16:12:47 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5496e18a30e039b44989d9a0e932d4bc
c5bfb1b9ce711e38d69e78486017f07cc47fe04a
26a3ad286e479cdabfcbb5a9d3fada211c73650628a35c80944b0e7e8aad27e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 23:33:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/sdk.js?hash=a53d391ab4fe9e5bcfcd81dfd6b053ca
31.13.72.12200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=a53d391ab4fe9e5bcfcd81dfd6b053ca
IP 31.13.72.12:0
File type ASCII text, with very long lines (13192)
Hash 7a3549503cc6c49c5f54a876c7bdc768
c441fbeb052aadfa105386f3bd630b45ef285975
750b4d393f31ad92b58d9028af6b7aa0f8e05fef5d8f47bd666ed7acf5e2d9fc
GET /en_US/sdk.js?hash=a53d391ab4fe9e5bcfcd81dfd6b053ca HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://albookers.com
Connection: keep-alive
Referer: https://albookers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: b0ec4c096491511f5e0f27ea3026a385
etag: "cb24549b4009d40a002e4d60cedab509"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 09 Dec 2023 21:08:11 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: ejVJUDzGxJxfVKh2x73HaA==
x-fb-debug: s/CSWJTlRwTowv0Ud+rqC6/jgHe8CjjXoDQouF/pG/RNDCNPR8Lcn84+uj/mogjWynAab+J8oP31+Exu4G4j5A==
content-length: 86998
x-fb-trip-id: 1904183273
date: Fri, 09 Dec 2022 23:33:42 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
albookers.com/favicon.ico
178.32.109.176302 Found 0 B URL HTTP/1.1 albookers.com/favicon.ico
IP 178.32.109.176:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 09 Dec 2022 23:33:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Link: <https://albookers.com/wp-json/>; rel="https://api.w.org/"
X-Redirect-By: WordPress
Set-Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3; path=/
Location: https://albookers.com/wp-includes/images/w-logo-blue-white-bg.png
Cache-Control: no-store, no-cache, must-revalidate, s-maxage=10
albookers.com/wp-includes/images/w-logo-blue-white-bg.png
178.32.109.176200 OK 4.1 kB URL HTTP/1.1 albookers.com/wp-includes/images/w-logo-blue-white-bg.png
IP 178.32.109.176:0
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://albookers.com/
Connection: keep-alive
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:44 GMT
Content-Type: image/png
Content-Length: 4119
Connection: keep-alive
Last-Modified: Thu, 21 May 2020 13:40:12 GMT
Cache-Control: s-maxage=10
Accept-Ranges: bytes
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.74:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 23:33:41 GMT
date: Fri, 09 Dec 2022 23:33:41 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
albookers.com/wp-content/uploads/2018/12/visa-mastercard.png
178.32.109.176200 OK 0 B URL HTTP/1.1 albookers.com/wp-content/uploads/2018/12/visa-mastercard.png
IP 178.32.109.176:0
GET /wp-content/uploads/2018/12/visa-mastercard.png HTTP/1.1
Host: albookers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Cookie: PHPSESSID=0b7e854fb4e03f0bd3f488dfe18fd2d3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 23:33:41 GMT
Content-Type: image/png
Content-Length: 84663
Connection: keep-alive
Last-Modified: Mon, 17 Oct 2022 10:14:05 GMT
Accept-Ranges: bytes
maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.1.0/css/line-awesome.min.css
185.76.9.26200 OK 0 B URL HTTP/2 maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.1.0/css/line-awesome.min.css
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
GET /vue-static/landings/line-awesome/line-awesome/1.1.0/css/line-awesome.min.css HTTP/1.1
Host: maxst.icons8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 23:33:41 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"15e81-wb0UGHttyzbvrSHlFxH4lBgB3g8"
last-modified: 2022-05-16T12:30:49.041Z
server-timing: -;dur=0;desc="Generate"
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
x-accel-expires: @1968664156
server: CDN77-Turbo
x-77-nzt: AblMCRRrl6H/eVoIAQ
x-77-nzt-ray: af585630c1dd7b9fd5c593634f023716
x-cache: HIT
x-age: 17324665
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:regular
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins:regular
IP 142.250.74.74:0
GET /css?family=Poppins:regular HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://albookers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 23:33:41 GMT
date: Fri, 09 Dec 2022 23:33:41 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2