dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php
174.138.182.12301 Moved Permanently 0 B URL HTTP/1.1 dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php
IP 174.138.182.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /512093469256/478912497532479245/Linkedinservice/login.php HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
x-pingback: http://dhamrainews24.com/xmlrpc.php
x-redirect-by: WordPress
location: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
content-length: 0
date: Tue, 07 Feb 2023 13:55:02 GMT
server: LiteSpeed
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6016
Expires: Tue, 07 Feb 2023 15:35:18 GMT
Date: Tue, 07 Feb 2023 13:55:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17180
Expires: Tue, 07 Feb 2023 18:41:22 GMT
Date: Tue, 07 Feb 2023 13:55:02 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 07 Feb 2023 13:36:31 GMT
content-type: application/json
age: 1111
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13736
Expires: Tue, 07 Feb 2023 17:43:59 GMT
Date: Tue, 07 Feb 2023 13:55:03 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: zIKbqoZuwg7pzzl3EP/2Ckd4VJcfQf4dZjL2KDlvBiZkIDOanq69kzJVVLJJNAHHN+6lujPzn+FmlhYDXVRp0Q==
x-amz-request-id: YM6V0ETVSXW1NHTQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 07 Feb 2023 13:45:35 GMT
age: 568
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 13:55:03 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
174.138.182.12200 OK 14 kB URL HTTP/1.1 dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
IP 174.138.182.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, CR, LF line terminators
Hash 621f1abcb4b844a9ed302c10b60df480
7cbbaff56f8e58c7cfddb0ed052b4286cf059080
2b405a36d6e24f85a28249d3e8680495c491838800ed111488c6461e1bfe6f18
Analyzer Verdict Alert fortinet Phishing
GET /512093469256/478912497532479245/Linkedinservice/login.php/ HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
x-pingback: http://dhamrainews24.com/xmlrpc.php
link: <https://dhamrainews24.com/index.php?rest_route=/>; rel="https://api.w.org/", <https://dhamrainews24.com/index.php?rest_route=/wp/v2/pages/19>; rel="alternate"; type="application/json", <https://dhamrainews24.com/>; rel=shortlink
content-length: 13684
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 07 Feb 2023 13:14:52 GMT
age: 2411
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/show_ads.js
142.250.74.162200 OK 37 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (4137)
Hash 5c5d4ae0ea0da6577eb0ae5756e8607d
58f7faab039e1e4066a1f2fce137d171c58300ea
e22486027bec9d8dd3cc145fea4926eee3502342c14dc049e771efde19f8e776
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Tue, 07 Feb 2023 13:55:03 GMT
Expires: Tue, 07 Feb 2023 13:55:03 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 3650374263776223634
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36652
X-XSS-Protection: 0
dhamrainews24.com/wp-content/themes/nanomag/inc/addon/aqua-page-builder-master/assets/stylesheets/aqpb-view.css?ver=1675778103
174.138.182.12200 OK 2.9 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/inc/addon/aqua-page-builder-master/assets/stylesheets/aqpb-view.css?ver=1675778103
IP 174.138.182.12:0
Hash 5b61467fea519d3014266bf2d66a81bd
a71eb37f2edfc8c580867cf4725037f5daea9568
58c2a92537a73d2b6d2e827c436abfab3a6e872f67d7fdbdd9de7905630b66ef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nanomag/inc/addon/aqua-page-builder-master/assets/stylesheets/aqpb-view.css?ver=1675778103 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: text/css
last-modified: Thu, 18 Jun 2015 04:01:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2867
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-includes/css/classic-themes.min.css?ver=1
174.138.182.12200 OK 217 B URL HTTP/1.1 dhamrainews24.com/wp-includes/css/classic-themes.min.css?ver=1
IP 174.138.182.12:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 06:41:52 GMT
accept-ranges: bytes
content-length: 217
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/css/font-awesome.min.css?ver=1.4
174.138.182.12200 OK 5.5 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/css/font-awesome.min.css?ver=1.4
IP 174.138.182.12:0
File type ASCII text, with very long lines (21807)
Hash 1cce1f4c84eef6000f4035081d68769b
184dba13894f132e3dfce6ca255ed2066e1176d0
4d80a5985204897f32a5d7313ecb9ae96a84d98b38971d95a48231fe6497c23c
GET /wp-content/themes/nanomag/css/font-awesome.min.css?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: text/css
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5530
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/css/owl.theme.css?ver=1.4
174.138.182.12200 OK 632 B URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/css/owl.theme.css?ver=1.4
IP 174.138.182.12:0
File type ASCII text, with CRLF line terminators
Hash 5dc69e95fec4fce5ec03f29856945516
0c7e63d6da4786cc85d27507e462ac25b43698a1
136662f3392ebfc69984f4a286c61db5e9ca4f711e9e771c462fdb9942b31dd7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nanomag/css/owl.theme.css?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: text/css
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 632
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3102
Expires: Tue, 07 Feb 2023 14:46:45 GMT
Date: Tue, 07 Feb 2023 13:55:03 GMT
Connection: keep-alive
dhamrainews24.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
174.138.182.12200 OK 16 kB URL HTTP/1.1 dhamrainews24.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 174.138.182.12:0
File type ASCII text, with very long lines (47826)
Hash 8fcbe39bcb9e5564e2d065bd20a2a8b3
b309ac5c8c34638895e50f00920dcd629db87570
c61f30083f26d37ebc5d1fcdfb8a57c0a8a7c94f2bd84eb3c2ceebf3abd54cca
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 06:41:54 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 15754
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/css/mediaelementplayer.css?ver=1.4
174.138.182.12200 OK 3.9 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/css/mediaelementplayer.css?ver=1.4
IP 174.138.182.12:0
File type ASCII text, with CRLF line terminators
Hash 0fe7cb6db8c778acafb7a1f528a98608
3d35186ce9c335322f7bf03c7226c72e341ab569
d9c8e02ac8c4ce7c150ed99f816619b1d2a09ca02b457333a93662858abd0e12
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nanomag/css/mediaelementplayer.css?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: text/css
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3851
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/css/responsive.css?ver=1.4
174.138.182.12200 OK 5.7 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/css/responsive.css?ver=1.4
IP 174.138.182.12:0
File type ASCII text, with CRLF line terminators
Hash 8ed413d54e757df5878fb4be1e429e8c
b400073c536ae982fd2547e1bae3a329c88bad03
f68b99e7daf987f601ed8e1839fb8d5efae8a5df8e46a5a66c79c79345dd62c1
GET /wp-content/themes/nanomag/css/responsive.css?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: text/css
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5673
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/css/gumby.css?ver=1.4
174.138.182.12200 OK 28 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/css/gumby.css?ver=1.4
IP 174.138.182.12:0
File type Unicode text, UTF-8 text, with very long lines (17416), with CRLF line terminators
Hash 361d0a63cc8433caedc0e68207e8c4b1
d2080a3379cde6e1e0a3041ad4745f65dae91d1f
33f8e3d716a314943b9302d562a7bc6826ef0dc1278604671a05c491d94a017c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nanomag/css/gumby.css?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: text/css
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 27718
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/style.css?ver=1.4
174.138.182.12200 OK 35 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/style.css?ver=1.4
IP 174.138.182.12:0
File type Unicode text, UTF-8 text, with very long lines (627), with CRLF line terminators
Hash 3467ce3c76b67714cf9c6ef8779f650a
d867674bc6fa264bad4f950b171e2aeede785fba
2672b0104b65976385f253c2aae828d83d4db64b7813a31e3de655eb261e10f3
GET /wp-content/themes/nanomag/style.css?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: text/css
last-modified: Thu, 25 Jun 2015 12:24:20 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 35349
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/custom_style.php?ver=1.4
174.138.182.12200 OK 2.8 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/custom_style.php?ver=1.4
IP 174.138.182.12:0
File type ASCII text, with very long lines (4162), with CRLF line terminators
Hash 165b6ecc4278b3555b6a51b58a15142e
9598bb7787fae0150a539a5edf2de7715541d146
2b33a5aef2798f15a871afe20d1443f0622d9d6bb0ba8b540ed48455de034a84
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nanomag/custom_style.php?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/css; charset: UTF-8;charset=UTF-8
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
174.138.182.12200 OK 4.5 kB URL HTTP/1.1 dhamrainews24.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 174.138.182.12:0
File type ASCII text, with very long lines (11126)
Hash b58921fb05a6cd3dcd6a9e5dc711d101
c147159c1a060cf4d4efb5f9e1fd5622f602c372
a2060d15016d5ea84f62e0404eb7a6e8d22177f5d26a8c2b9130146715986d5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: application/javascript
last-modified: Wed, 09 Dec 2020 10:22:03 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4461
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
fonts.googleapis.com/css?family=none:300,400,600,700,800
142.250.74.106400 Bad Request 780 B URL HTTP/1.1 fonts.googleapis.com/css?family=none:300,400,600,700,800
IP 142.250.74.106:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (621)
Hash 848487f086691656f3573fbe76516480
0ec9cc40e3b57f4f034f8ff81fb7521c8dc59788
8f79cf24c654c57491288abefdce956a3050412b49374cdd6f6d349a1d7ec7a5
GET /css?family=none:300,400,600,700,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/
HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Tue, 07 Feb 2023 13:55:03 GMT
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Oswald:400,600,700,800,300
142.250.74.106200 OK 570 B URL HTTP/1.1 fonts.googleapis.com/css?family=Oswald:400,600,700,800,300
IP 142.250.74.106:0
Hash 057986c2bfd90d5dc3494ae22ee44dc8
4b36d158efd4e9a22cc3cd872c1d02479c82777c
ea3f786c57e30fb74f13b7a2ac6166be93fd1b91cbb494ebf37106df4e936be4
GET /css?family=Oswald:400,600,700,800,300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 07 Feb 2023 13:55:03 GMT
Date: Tue, 07 Feb 2023 13:55:03 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=none:400,600,700,800,300
142.250.74.106400 Bad Request 780 B URL HTTP/1.1 fonts.googleapis.com/css?family=none:400,600,700,800,300
IP 142.250.74.106:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (621)
Hash 848487f086691656f3573fbe76516480
0ec9cc40e3b57f4f034f8ff81fb7521c8dc59788
8f79cf24c654c57491288abefdce956a3050412b49374cdd6f6d349a1d7ec7a5
GET /css?family=none:400,600,700,800,300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/
HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Tue, 07 Feb 2023 13:55:03 GMT
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
dhamrainews24.com/wp-content/themes/nanomag/js/post-like.js?ver=1.0
174.138.182.12200 OK 441 B URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/js/post-like.js?ver=1.0
IP 174.138.182.12:0
File type ASCII text, with CRLF line terminators
Hash 7311043bfd841fdad9314d295c9ae37f
ada54416b5accf463de7d3d0c8d290ea18d2e076
8f19828f814f5b0df9f3294a15fc2299fb88a69dbd21477251c0f77af25aa2eb
GET /wp-content/themes/nanomag/js/post-like.js?ver=1.0 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: application/javascript
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 441
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/inc/addon/aqua-page-builder-master/assets/javascripts/aqpb-view.js?ver=1675778103
174.138.182.12200 OK 505 B URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/inc/addon/aqua-page-builder-master/assets/javascripts/aqpb-view.js?ver=1675778103
IP 174.138.182.12:0
Hash d8337d672a27f881370b43af3cc554cc
8bd6931c21f4231b6d645360475c89a339c84d91
1449469b25134bd4c054988b85abcf02b2f16a22168462c0c49292447bf5d1ff
GET /wp-content/themes/nanomag/inc/addon/aqua-page-builder-master/assets/javascripts/aqpb-view.js?ver=1675778103 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: application/javascript
last-modified: Thu, 18 Jun 2015 04:01:09 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 505
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/uploads/2022/10/received_639921440838440_copy_500x300-171x108.jpeg
174.138.182.12200 OK 7.6 kB URL HTTP/2 dhamrainews24.com/wp-content/uploads/2022/10/received_639921440838440_copy_500x300-171x108.jpeg
IP 174.138.182.12:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 171x108, components 3\012- data
Hash 7460559910421a588e50ee8a43778e54
7cda8b140f6fa790df645755d038933133a892d2
cfff5c41b8c9d2995b7cc2b0622733f34dda590b5f37bc78c56d9adbd5dabebd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/10/received_639921440838440_copy_500x300-171x108.jpeg HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dhamrainews24.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: image/jpeg
last-modified: Wed, 12 Oct 2022 12:41:41 GMT
accept-ranges: bytes
content-length: 7572
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
dhamrainews24.com/wp-content/uploads/2020/05/logo-photoshop-dn24.png
174.138.182.12200 OK 16 kB URL HTTP/2 dhamrainews24.com/wp-content/uploads/2020/05/logo-photoshop-dn24.png
IP 174.138.182.12:0
File type PNG image data, 197 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 69704a0627e1938d381cc67a7dcd8332
bba011674fe7a2480cd1a86381d40804385a441d
e7c69e597476f223af52a7dc5c2c3e6a07753241399059b3a51aa69d0a54e236
GET /wp-content/uploads/2020/05/logo-photoshop-dn24.png HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dhamrainews24.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: image/png
last-modified: Wed, 22 Sep 2021 06:22:12 GMT
accept-ranges: bytes
content-length: 15987
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
dhamrainews24.com/wp-includes/js/comment-reply.min.js?ver=6.1.1
174.138.182.12200 OK 1.4 kB URL HTTP/1.1 dhamrainews24.com/wp-includes/js/comment-reply.min.js?ver=6.1.1
IP 174.138.182.12:0
File type ASCII text, with very long lines (2946)
Hash 2ae8e3fe15ff417cce0471bf17466ae0
93f1b1807b5cdc47cd841078360d93b4b8758f9e
25716b1ebc72d720fd1b515dc1f203c505fcd2993343b9cf4ed922ee0ec1b09a
GET /wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 06:41:47 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1391
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
push.services.mozilla.com/
52.43.197.133101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.197.133:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: O88n99CDAQy8nz7fuXrD+g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: C7KzjpOw4RD5tAA7SfEAv/hhq3c=
dhamrainews24.com/wp-content/themes/nanomag/js/marquee.js?ver=1.4
174.138.182.12200 OK 877 B URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/js/marquee.js?ver=1.4
IP 174.138.182.12:0
File type ASCII text, with very long lines (762), with CRLF line terminators
Hash b69e82af464a522b44c028919e53d73e
1f3e12a9fdc032bb405c79d472d1bcae9c192191
7cdb8ce7c41a84913296f7b604c606956f5c72fff492c0b82e9cbd261122e20c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nanomag/js/marquee.js?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: application/javascript
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 877
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
174.138.182.12200 OK 35 kB URL HTTP/1.1 dhamrainews24.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 174.138.182.12:0
File type ASCII text, with very long lines (65447)
Hash 90306bc85d896abd8d83613f1fd48736
b27aa18d1006f02b05e9b7167b4f993be483f131
75640bc7f516c65f9905c4e6d804cab87371b64e2117a4c92f61eba9dba7c842
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 06:41:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 34867
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/js/superfish.js?ver=1.4
174.138.182.12200 OK 2.5 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/js/superfish.js?ver=1.4
IP 174.138.182.12:0
File type ASCII text, with CRLF line terminators
Hash d98f928fe5bc0a721b6508e098aca780
e61807ac8747affea18a5d42665d236eae1a1e3f
ed58c122c593277d0cc0cf22465d9cac9ec040934191714ae3552c0b36414b58
GET /wp-content/themes/nanomag/js/superfish.js?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: application/javascript
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2523
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/js/jquery.pageslide.min.js?ver=1.4
174.138.182.12200 OK 1.0 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/js/jquery.pageslide.min.js?ver=1.4
IP 174.138.182.12:0
File type ASCII text, with very long lines (1795)
Hash 16d69da2753f4321a58da6df0612231d
f3f18169c2f41a9d0d07638d3455418cae6b1e3d
e9402250255afd5bc710b99442abd733c54ea8290d6f61c5b6b07e6d615f1216
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nanomag/js/jquery.pageslide.min.js?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: application/javascript
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1027
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/js/owl.carousel.js?ver=1.4
174.138.182.12200 OK 10 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/js/owl.carousel.js?ver=1.4
IP 174.138.182.12:0
Hash d6bd4cacb1a4c9a07bc30d633a726b62
104b3bb536d55d8c0a0a2339a953d393ba8eed66
e0bd5019d3ee3943997fe2b97d78d74bc19dc8eb4e80e05abbf891e3f3e724f7
GET /wp-content/themes/nanomag/js/owl.carousel.js?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: application/javascript
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 10178
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/js/mediaelement-and-player.min.js?ver=1.4
174.138.182.12200 OK 22 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/js/mediaelement-and-player.min.js?ver=1.4
IP 174.138.182.12:0
File type HTML document, ASCII text, with very long lines (622)
Hash 8d58192ad906bf8f4f98cf9b85b68227
e7b4a0180f5b13caa0f7fec5121446b9c6651eba
08e702cf7ab18a152b0025cd73216acd98f5aa895b141ea5d687da9396dd98ce
GET /wp-content/themes/nanomag/js/mediaelement-and-player.min.js?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:03 GMT
content-type: application/javascript
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 22416
date: Tue, 07 Feb 2023 13:55:03 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/js/fluidvids.js?ver=1.4
174.138.182.12200 OK 923 B URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/js/fluidvids.js?ver=1.4
IP 174.138.182.12:0
File type HTML document, ASCII text
Hash c60d512d605b7b872f9eb087a696cfd2
21d66d84012ca7af1cfc0d8c76e3a525e5aee4cf
d1ffde869cc518e6c6f5db14f32048c4067473b192aa288dfc7031f7f4955d61
GET /wp-content/themes/nanomag/js/fluidvids.js?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:04 GMT
content-type: application/javascript
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 923
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/js/jquery.sticky.js?ver=1.4
174.138.182.12200 OK 1.6 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/js/jquery.sticky.js?ver=1.4
IP 174.138.182.12:0
Hash 262017f708b6d05a238966eefadf4170
fd8146f5a0ad4c53b55182ce4de1c1db4375d4d1
16efee3bbb61205d36eb8d5c97b3814fb244a04135f01baac1e939af642bdc9b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nanomag/js/jquery.sticky.js?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:04 GMT
content-type: application/javascript
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1558
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/js/waypoints.min.js?ver=1.4
174.138.182.12200 OK 2.8 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/js/waypoints.min.js?ver=1.4
IP 174.138.182.12:0
File type ASCII text, with very long lines (7587)
Hash 9267bd8fca5aa3fdabdfde306addb837
f00e89b7daf29e29157d33b21a1d18c85294ba56
5505c1a80d2b50b26ae9d0050bfff7424f13ee5191a49fe25b8c8b4e16036a51
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nanomag/js/waypoints.min.js?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:04 GMT
content-type: application/javascript
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2761
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/js/jquery.slimscroll.min.js?ver=1.4
174.138.182.12200 OK 2.0 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/js/jquery.slimscroll.min.js?ver=1.4
IP 174.138.182.12:0
File type ASCII text, with very long lines (558)
Hash f5599987e7e665aa15cc441229a3be03
cdfb92429dbc28a92ee8110552e6515ab32c80af
7c3723b3406fb20686da155505935ed0600caa99a2a071a66718339a4ec89128
GET /wp-content/themes/nanomag/js/jquery.slimscroll.min.js?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:04 GMT
content-type: application/javascript
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1953
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/js/jquery.infinitescroll.min.js?ver=1.4
174.138.182.12200 OK 7.1 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/js/jquery.infinitescroll.min.js?ver=1.4
IP 174.138.182.12:0
File type ASCII text, with very long lines (14842), with no line terminators
Hash df723b703c1209a4161f39cf389e57b3
616cef554b62c8e04ccfa8f24905ceb304680b7a
52005d2775e78cb333ffa2d2be8b56069bbe0a020ff67556bf45c45b1c299b42
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nanomag/js/jquery.infinitescroll.min.js?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:04 GMT
content-type: application/javascript
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7079
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/js/jquery.knob.js?ver=1.4
174.138.182.12200 OK 7.1 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/js/jquery.knob.js?ver=1.4
IP 174.138.182.12:0
Hash 141aad1f57916750140e8ce28b918d59
7df0ef8fe98870356a777c26d2287a3b904f457c
9494445e895c2e3f033fcdf6c0f73b98cffa0a50084cc1851ad63e02d7eb728c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nanomag/js/jquery.knob.js?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:04 GMT
content-type: application/javascript
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7050
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/js/custom.js?ver=1.4
174.138.182.12200 OK 2.4 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/js/custom.js?ver=1.4
IP 174.138.182.12:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 086d6a58806b1558dd946102c0dd7131
d37617c7f8cdc99a465a6a58d93760a8e0900c87
f4a9d0eb32dc715c52f0216719937ad906b641947c560dfb871b7b58abd77df2
GET /wp-content/themes/nanomag/js/custom.js?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:04 GMT
content-type: application/javascript
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2356
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/js/jquery.bxslider.min.js?ver=1.4
174.138.182.12200 OK 5.8 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/js/jquery.bxslider.min.js?ver=1.4
IP 174.138.182.12:0
File type ASCII text, with very long lines (19040)
Hash c73d6ca79db3a97e5e1f699d18e6f100
c16914852bc77af2e4e4ec4f0783347b000f6801
ffd7d0e703f2fe869ad9dfddfbe298d786382d81c364792266f93446405d7493
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nanomag/js/jquery.bxslider.min.js?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:04 GMT
content-type: application/javascript
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5848
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
dhamrainews24.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
174.138.182.12200 OK 5.7 kB URL HTTP/1.1 dhamrainews24.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 174.138.182.12:0
File type ASCII text, with very long lines (15660)
Hash fc4f45913ef699f322a778ca95a0a7ee
9627510494f10f5cec255cb56926684d56f7cb78
cf358090a21171182854417b6fef077bc31a2123fa2953c1c06ec970b3253b9c
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:04 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 06:41:47 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5712
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/css/owl.carousel.css?ver=1.4
174.138.182.12200 OK 1.3 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/css/owl.carousel.css?ver=1.4
IP 174.138.182.12:0
Hash d2a904d76b43a95eb6c5bb8d155ae54f
08edf9d5bcde5c87f8ee474dd28f5a57094804d3
d8ba8049f5009021160e99fcac2cb7495edec713ca0d52c3ff32f1d4cb096767
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/nanomag/css/owl.carousel.css?ver=1.4 HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:04 GMT
content-type: text/css
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1282
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/img/feature_img/small-feature.jpg
174.138.182.12200 OK 18 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/img/feature_img/small-feature.jpg
IP 174.138.182.12:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=12, height=90, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=728], baseline, precision 8, 100x75, components 3\012- data
Hash 54dae600ffd8653b6de395a328822df6
5004c68f9384fb47296113c10feaf89ab3c64703
738da902b69c273275751d76ca1e44992055d1aee2c67b35ecf4877851018597
GET /wp-content/themes/nanomag/img/feature_img/small-feature.jpg HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:04 GMT
content-type: image/jpeg
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-length: 18043
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
216.58.207.227200 OK 25 kB URL HTTP/1.1 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data
Hash fe424f96cb627d8b835cb001af17f56e
c5b4368fed99812a99036fba86d01367b5549505
35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1
GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://dhamrainews24.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 25372
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 13:25:38 GMT
Expires: Fri, 02 Feb 2024 13:25:38 GMT
Cache-Control: public, max-age=31536000
Age: 433766
Last-Modified: Mon, 18 Jul 2022 19:24:05 GMT
Content-Type: font/woff2
dhamrainews24.com/wp-content/themes/nanomag/img/border.png
174.138.182.12200 OK 2.8 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/img/border.png
IP 174.138.182.12:0
File type PNG image data, 2 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash 980efff40eba095876992c5eb5160641
ffec31322774daf4c2748fc5d4710c96a1484973
17bfbd426decd95762394222df8fa2dd160894f15cb61d8d7ed553d9bc303233
GET /wp-content/themes/nanomag/img/border.png HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/wp-content/themes/nanomag/style.css?ver=1.4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:04 GMT
content-type: image/png
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-length: 2804
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/img/feature_img/medium-feature.jpg
174.138.182.12200 OK 18 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/img/feature_img/medium-feature.jpg
IP 174.138.182.12:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=90, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=728], baseline, precision 8, 440x280, components 3\012- data
Hash 9bcbc20945bee62c8c8defcd0ae6c698
55faca48ce56e417837a9e2e95913ef25ebdc6de
abd26261ac51ad53610abe7cf73cfb66f1ba7e6804d7f78b0474d67514a979dc
GET /wp-content/themes/nanomag/img/feature_img/medium-feature.jpg HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:04 GMT
content-type: image/jpeg
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-length: 18541
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/themes/nanomag/img/border_title.png
174.138.182.12200 OK 3.6 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/img/border_title.png
IP 174.138.182.12:0
File type PNG image data, 13 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash ca85015076b5a9e6f69f14edb94c82d4
f0cebd888f221f3cd6fe171c6727c2f194e30288
05077da478af0879b4749870fb5f20b6c4292f0c3a4b49a4c407a80b77846403
GET /wp-content/themes/nanomag/img/border_title.png HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/wp-content/themes/nanomag/custom_style.php?ver=1.4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:04 GMT
content-type: image/png
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-length: 3604
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/uploads/2016/03/Sotota-Hardware_4.jpg
174.138.182.12301 Moved Permanently 0 B URL HTTP/1.1 dhamrainews24.com/wp-content/uploads/2016/03/Sotota-Hardware_4.jpg
IP 174.138.182.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2016/03/Sotota-Hardware_4.jpg HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
x-pingback: http://dhamrainews24.com/xmlrpc.php
x-redirect-by: WordPress
location: http://dhamrainews24.com/wp-content/uploads/2016/03/Sotota-Hardware_4.jpg/
content-length: 0
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/uploads/2016/03/Madok.jpg
174.138.182.12301 Moved Permanently 0 B URL HTTP/1.1 dhamrainews24.com/wp-content/uploads/2016/03/Madok.jpg
IP 174.138.182.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2016/03/Madok.jpg HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
x-pingback: http://dhamrainews24.com/xmlrpc.php
x-redirect-by: WordPress
location: http://dhamrainews24.com/wp-content/uploads/2016/03/Madok.jpg/
content-length: 0
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/uploads/2016/08/satota.jpg
174.138.182.12301 Moved Permanently 0 B URL HTTP/1.1 dhamrainews24.com/wp-content/uploads/2016/08/satota.jpg
IP 174.138.182.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2016/08/satota.jpg HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
x-pingback: http://dhamrainews24.com/xmlrpc.php
x-redirect-by: WordPress
location: http://dhamrainews24.com/wp-content/uploads/2016/08/satota.jpg/
content-length: 0
date: Tue, 07 Feb 2023 13:55:04 GMT
server: LiteSpeed
www.google-analytics.com/analytics.js
216.58.207.206200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 216.58.207.206:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20085
Date: Tue, 07 Feb 2023 13:43:35 GMT
Expires: Tue, 07 Feb 2023 15:43:35 GMT
Cache-Control: public, max-age=7200
Age: 690
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.162200 OK 53 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (3649)
Hash 7594e9503b4a0beb87b2a9d17b826a87
3915ed8e7fb50500733a9d4e224abbedcfe1a9cb
5e2dd38a1d5061092bf1cf8e33091a9354bd9e9bab7ba8a47d403a6e7ec6fa7d
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Tue, 07 Feb 2023 13:55:05 GMT
Expires: Tue, 07 Feb 2023 13:55:05 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 14533638430738283066
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 52702
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 262283a921f231669fd41486228a6e9a
4b96dcb2cd03f53280d2ecf5ccb249b0b32e6e97
13b8cc87c28e0113401d88f89971eb966afde870a3e4be2602ff34942e81862d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dhamrainews24.com/wp-content/themes/nanomag/img/favicon.png
174.138.182.12200 OK 3.0 kB URL HTTP/1.1 dhamrainews24.com/wp-content/themes/nanomag/img/favicon.png
IP 174.138.182.12:0
File type PNG image data, 30 x 30, 8-bit/color RGB, non-interlaced\012- data
Hash 4495bb28fc535b39fbbc9eed20ab8853
9ea56190f8bd4552edb1c3175565c0f2325ee2a9
1563124b9a920d6e1d2335af3949c118658335e01d2a495981f6e472a866a3f3
GET /wp-content/themes/nanomag/img/favicon.png HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 14 Feb 2023 13:55:05 GMT
content-type: image/png
last-modified: Thu, 18 Jun 2015 04:01:08 GMT
accept-ranges: bytes
content-length: 3002
date: Tue, 07 Feb 2023 13:55:05 GMT
server: LiteSpeed
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9716
Expires: Tue, 07 Feb 2023 16:37:01 GMT
Date: Tue, 07 Feb 2023 13:55:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9716
Expires: Tue, 07 Feb 2023 16:37:01 GMT
Date: Tue, 07 Feb 2023 13:55:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9716
Expires: Tue, 07 Feb 2023 16:37:01 GMT
Date: Tue, 07 Feb 2023 13:55:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9716
Expires: Tue, 07 Feb 2023 16:37:01 GMT
Date: Tue, 07 Feb 2023 13:55:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9716
Expires: Tue, 07 Feb 2023 16:37:01 GMT
Date: Tue, 07 Feb 2023 13:55:05 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eedb4de12585c70ddb5b8f94fe6a59e2
83c9437e71a0a03b3e8ff652155a85eafa76cdda
d4493a30f62e9ad224b3595ba3af8a322e2d4a3d9238a1847973f962bdcc0c82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4227
x-amzn-requestid: b45f2ab7-0102-4542-9514-54fb93a0e27f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f77sTH4jIAMFnsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1731b-4a24bcb1102e58543cd81343;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: V_4NzIAVBOZMjf_YIM3bowFdlP1y4peI5JI-jO105s3NVjmyYnC0Tg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:48:48 GMT
age: 57977
etag: "83c9437e71a0a03b3e8ff652155a85eafa76cdda"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 75b0935816ca54d5d20a9fffa5531e0d
bd8374980c16b7d5a28e55b8bef2215713b1ebb2
4ab6f49d22d029681754b617001f93467d63035acdaf12905c2314cab77991af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13390
x-amzn-requestid: 0664e077-13a4-4a97-afc2-3969cee56958
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f2pu6Fb7oAMF_0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63df565f-057ee8fa26aa83d21f875d73;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 07:10:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cAwOWu-_JYTMa0l-1A07FxgOGtG7P59D7XlovXByRA9dQxfsS2An7w==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 18:44:40 GMT
age: 69025
etag: "bd8374980c16b7d5a28e55b8bef2215713b1ebb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20230202/r20190131/zrt_lookup.html
142.250.74.162200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230202/r20190131/zrt_lookup.html
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20230202/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dhamrainews24.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Tue, 07 Feb 2023 03:35:48 GMT
expires: Tue, 21 Feb 2023 03:35:48 GMT
cache-control: public, max-age=1209600
age: 37157
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c86a61b-07c3-45f6-b564-e556eb788d04.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c86a61b-07c3-45f6-b564-e556eb788d04.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59419fb1cf4689bed183d0e9a6aed782
47d4a4bb26fafff0c6aebfe3dc7ddfa4970f8e9a
e6009407bd61bee1ae16ec30ea5914be77c56ee65dfb30595b10a1cedc6798c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c86a61b-07c3-45f6-b564-e556eb788d04.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12682
x-amzn-requestid: d858d90a-b1ca-401c-8e00-8ccd9c0a7504
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f78mUEsfIAMFreg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1748e-2783de3e3de9c520246bf06e;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:43:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: eq8Kle9uYWJ3vmaJD50r-oaTb_O2ObQgLNlTcYn9XQoHCyAO3isqyQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:44:49 GMT
age: 58216
etag: "47d4a4bb26fafff0c6aebfe3dc7ddfa4970f8e9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32cb7a16-13bc-4d42-8e17-7be2a40cfc82.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32cb7a16-13bc-4d42-8e17-7be2a40cfc82.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c3cd20c6639e2b0d996fbbd7df2d4f47
2e54c22fb83981e2690161cd521e4fc3998e9c16
9b2b1f3e062fca74341d09540e44d2a02ec451b8349440ed5917073e8fab988d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32cb7a16-13bc-4d42-8e17-7be2a40cfc82.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6316
x-amzn-requestid: 1988058c-5aee-4964-9046-83a5f14a927d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fwhjnFdxoAMFgpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dce2e3-5ec35d0d6bef4d4944c629c0;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 10:33:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Z9b1A_GpinQXvbA-g2PoKhVSNVd5gMrId0WUTmKSCkg-YAan1dtp-w==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 22:21:35 GMT
age: 56010
etag: "2e54c22fb83981e2690161cd521e4fc3998e9c16"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 38c58626-f4ad-4e2b-ad71-a628519d2ea2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmEdHFwCoAMFhxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8b453-7da6d0c1093468d320caaa1e;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 06:25:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AFal52_Srd2lOpZS7RF7Nit-8jPqmbmXDTT57d8Ax-1AjBce6LxlFQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 04:57:38 GMT
age: 32247
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 70d7e4cd91d9f630c160410d22c1cede
82f5d0fbb11bcde09c107b6c1cbc6e014bb08b85
b8679be6c92167c51793ca4a8774caf0a50949737a99652243208fcfda917faf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa6c416b3a87ded887c9dcf7c51e5dd0
45f4ef9e68591c00669043abe96959bead8f17ae
9e10394b387916e40c44d4e02fbc1ea72214d870df189ce16d24015de00682bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11205
x-amzn-requestid: abdf9c40-a2b7-49ae-bea1-ff5abfcea781
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fvszZFOZoAMFkNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc8e7b-6e508da05ff6f33e691de130;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 04:33:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hLrbI5Acy2RBlg7VqGE2b83zuqgt-bx0kD0nlH8uYaJ8tii2FqMLfw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 15:25:12 GMT
age: 80993
etag: "45f4ef9e68591c00669043abe96959bead8f17ae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=1331512460&t=pageview&_s=1&dl=http%3A%2F%2Fdhamrainews24.com%2F512093469256%2F478912497532479245%2FLinkedinservice%2Flogin.php%2F&ul=en-us&de=UTF-8&dt=Dhamrai%20News%2024%20%7C%20All%20Dhamrai%20News%20Here&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1707494656&gjid=1567579125&cid=1025668154.1675778155&tid=UA-67003787-1&_gid=729973137.1675778155&_r=1&_slc=1&z=2044517952
216.58.207.206200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1331512460&t=pageview&_s=1&dl=http%3A%2F%2Fdhamrainews24.com%2F512093469256%2F478912497532479245%2FLinkedinservice%2Flogin.php%2F&ul=en-us&de=UTF-8&dt=Dhamrai%20News%2024%20%7C%20All%20Dhamrai%20News%20Here&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1707494656&gjid=1567579125&cid=1025668154.1675778155&tid=UA-67003787-1&_gid=729973137.1675778155&_r=1&_slc=1&z=2044517952
IP 216.58.207.206:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j99&a=1331512460&t=pageview&_s=1&dl=http%3A%2F%2Fdhamrainews24.com%2F512093469256%2F478912497532479245%2FLinkedinservice%2Flogin.php%2F&ul=en-us&de=UTF-8&dt=Dhamrai%20News%2024%20%7C%20All%20Dhamrai%20News%20Here&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1707494656&gjid=1567579125&cid=1025668154.1675778155&tid=UA-67003787-1&_gid=729973137.1675778155&_r=1&_slc=1&z=2044517952 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://dhamrainews24.com
Connection: keep-alive
Referer: http://dhamrainews24.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://dhamrainews24.com
date: Tue, 07 Feb 2023 13:55:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202301250101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-0418113510351038&plah=dhamrainews24.com&bust=31071887
142.250.74.162200 OK 121 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202301250101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-0418113510351038&plah=dhamrainews24.com&bust=31071887
IP 142.250.74.162:0
File type ASCII text, with very long lines (4056)
Size 121 kB (121322 bytes)
Hash e57242f53cacaf96272e7d386ff2b01e
d242f59eff0983276c7298975f59e48fecc3c93c
2452fd2488341e1b9cbe7ba169e5c218ca67559e0da53bd925abbefad21c5ab7
GET /pagead/managed/js/adsense/m202301250101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-0418113510351038&plah=dhamrainews24.com&bust=31071887 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dhamrainews24.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 07 Feb 2023 13:55:05 GMT
expires: Tue, 07 Feb 2023 13:55:05 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 15812204273737290282
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 121322
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 262283a921f231669fd41486228a6e9a
4b96dcb2cd03f53280d2ecf5ccb249b0b32e6e97
13b8cc87c28e0113401d88f89971eb966afde870a3e4be2602ff34942e81862d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 70d7e4cd91d9f630c160410d22c1cede
82f5d0fbb11bcde09c107b6c1cbc6e014bb08b85
b8679be6c92167c51793ca4a8774caf0a50949737a99652243208fcfda917faf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dhamrainews24.com/wp-content/uploads/2016/03/Madok.jpg/
174.138.182.12200 OK 14 kB URL HTTP/1.1 dhamrainews24.com/wp-content/uploads/2016/03/Madok.jpg/
IP 174.138.182.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, CR, LF line terminators
Hash d73a745b0b8cd67b6d6648977de8b407
e0dbb8e46e36d9db4b8c7f5d75d7c39ce2b31b43
5f6e35771604cdcfe265f988effe93ad2198ec990202831b2a11da425e70368c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2016/03/Madok.jpg/ HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
Connection: keep-alive
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
x-pingback: http://dhamrainews24.com/xmlrpc.php
link: <https://dhamrainews24.com/index.php?rest_route=/>; rel="https://api.w.org/", <https://dhamrainews24.com/index.php?rest_route=/wp/v2/pages/19>; rel="alternate"; type="application/json", <https://dhamrainews24.com/>; rel=shortlink
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 07 Feb 2023 13:55:05 GMT
server: LiteSpeed
dhamrainews24.com/wp-content/uploads/2016/08/satota.jpg/
174.138.182.12200 OK 14 kB URL HTTP/1.1 dhamrainews24.com/wp-content/uploads/2016/08/satota.jpg/
IP 174.138.182.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, CR, LF line terminators
Hash d73a745b0b8cd67b6d6648977de8b407
e0dbb8e46e36d9db4b8c7f5d75d7c39ce2b31b43
5f6e35771604cdcfe265f988effe93ad2198ec990202831b2a11da425e70368c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2016/08/satota.jpg/ HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
Connection: keep-alive
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
x-pingback: http://dhamrainews24.com/xmlrpc.php
link: <https://dhamrainews24.com/index.php?rest_route=/>; rel="https://api.w.org/", <https://dhamrainews24.com/index.php?rest_route=/wp/v2/pages/19>; rel="alternate"; type="application/json", <https://dhamrainews24.com/>; rel=shortlink
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 07 Feb 2023 13:55:05 GMT
server: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2e90fb4abc4adea51d5da8fca3895c90
9ea128cefd8a4e91bc93a306cdafdcf5c0b99a40
6de37bd6d8e446c4e3b2d739ad311f23c403bb59c6adbfade793b274da3b5f28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 45214010f2ef8a835d723fcd5b485977
346507b6da40928a8c600ef9c52fd6a7e0875344
4b4e5c2038d6fe241aedc738e0bd22052078bf365b6dade88cae752d0f06fa54
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=dhamrainews24.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=dhamrainews24.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=dhamrainews24.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dhamrainews24.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 07 Feb 2023 13:55:05 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=dhamrainews24.com
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=dhamrainews24.com
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=dhamrainews24.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dhamrainews24.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 07 Feb 2023 13:55:05 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2e90fb4abc4adea51d5da8fca3895c90
9ea128cefd8a4e91bc93a306cdafdcf5c0b99a40
6de37bd6d8e446c4e3b2d739ad311f23c403bb59c6adbfade793b274da3b5f28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 17 kB IP 142.250.74.131:0
Hash da368477131e2e6d62ba2eb4c442ee7f
19964b82f8b70cb8fead6ad2f53a4cfa1ce66617
4f19ba64dbf8c6039f8f04399125732332f38c20c1d0aa275e3597ae7f4c23f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dhamrainews24.com/wp-content/uploads/2016/03/Sotota-Hardware_4.jpg/
174.138.182.12200 OK 14 kB URL HTTP/1.1 dhamrainews24.com/wp-content/uploads/2016/03/Sotota-Hardware_4.jpg/
IP 174.138.182.12:0
Hash 6ea6390ac99844ee7b4ccbada79531f4
7f5483e9b298880c8710fc6046b70f0f3ebe81e5
7ab987e8d2399ee5b462d5f46c9c615829e179808ee4b74bed3839883b406e44
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2016/03/Sotota-Hardware_4.jpg/ HTTP/1.1
Host: dhamrainews24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://dhamrainews24.com/512093469256/478912497532479245/Linkedinservice/login.php/
Connection: keep-alive
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
x-pingback: http://dhamrainews24.com/xmlrpc.php
link: <https://dhamrainews24.com/index.php?rest_route=/>; rel="https://api.w.org/", <https://dhamrainews24.com/index.php?rest_route=/wp/v2/pages/19>; rel="alternate"; type="application/json", <https://dhamrainews24.com/>; rel=shortlink
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 07 Feb 2023 13:55:05 GMT
server: LiteSpeed
partner.googleadservices.com/gampad/cookie.js?domain=dhamrainews24.com&callback=_gfp_s_&client=ca-pub-0418113510351038
142.250.74.34200 OK 255 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=dhamrainews24.com&callback=_gfp_s_&client=ca-pub-0418113510351038
IP 142.250.74.34:0
File type ASCII text, with very long lines (401), with no line terminators
Hash 2fc752809b078598da27570f74f1c008
b727261a8a116f06935587690504326437f6d0cd
17c5f022c6104b8a76a49c2dd8a5ff1d6337cddf694c77391b75522f12b3e034
GET /gampad/cookie.js?domain=dhamrainews24.com&callback=_gfp_s_&client=ca-pub-0418113510351038 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dhamrainews24.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 07 Feb 2023 13:55:05 GMT
server: cafe
cache-control: private
content-length: 255
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eacdb128cb4c4270c389816f33b2bb15
97bdbd4416cf816e822421ea576175b7aeb2f7cf
436d88e47be153d724949abb1aeea7ec7f3880f703fc5c67c516f9fd7b51bb71
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2f48592c9ce931276d6e5e6e7e342cc3
55bfae3bef5fb97c8262eb622a54a0f603d41ec9
36472b536e89d8c01926bcdb2e23240f69f0bd7cde3b39a53a75b0a804291fd6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.97200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.97:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dhamrainews24.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Tue, 07 Feb 2023 13:55:05 GMT
expires: Tue, 07 Feb 2023 13:55:05 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.97200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dhamrainews24.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 08:42:42 GMT
expires: Fri, 02 Feb 2024 08:42:42 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 450743
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c0c18b789b296a2b3cc9adb04c94e6f7
a0fa241f813c414178f5dffd30d5c2b82d16669b
95ec61ae9d1384fdbcee256ec441d6db4e3243ed3f8e1801b3607ce3c2e1e3f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:55:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 515 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 412855bb9d4020797a5fbd8e08b9e333
1554912e4077f5450727b43c4a5c93c42dda7c53
ac48a890d47364ac33fbf02bc17278bb4dd9ba524db79d1e1a7d00f0a03630dd
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dhamrainews24.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Tue, 07 Feb 2023 13:55:05 GMT
date: Tue, 07 Feb 2023 13:55:05 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-NW4GkhjsHzVEY8Xf8-72gA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 515
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2