dhakametro24.net/
91.205.106.237200 OK 28 kB IP 91.205.106.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1820), with CRLF, LF line terminators
Hash 1ef02c443155a77628bc2e69ea47d113
97f4370f9ab45cf10a5b876b9feea2f98938e7fb
a9c2ad9297eb1bc40597d626ca91d1460fd2a82318d604d6ea4c676c86115306
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Cookie
cache-control: max-age=3, must-revalidate
transfer-encoding: chunked
content-encoding: gzip
date: Sun, 22 Jan 2023 06:45:56 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 20d267853e48ef7d476459ed67da5d97
06d1bd08efd69c0e93486d3c423fa2640f372d29
24323cd45ca2ed01c63f908233d9b2ad5bb6f63394884c45bf6abb0221d0edd6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24323CD45CA2ED01C63F908233D9B2AD5BB6F63394884C45BF6ABB0221D0EDD6"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16176
Expires: Sun, 22 Jan 2023 11:15:32 GMT
Date: Sun, 22 Jan 2023 06:45:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4714c95a0c854e38f9be444f9343bf14
07ce5eb635448f2b3bafbe51e4dfeef47cdf4f7b
4d47e08c9afb704096e93a51f6e95c0dc7c7bc31e67ded39998ff37ed56e0965
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D47E08C9AFB704096E93A51F6E95C0DC7C7BC31E67DED39998FF37ED56E0965"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11963
Expires: Sun, 22 Jan 2023 10:05:19 GMT
Date: Sun, 22 Jan 2023 06:45:56 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 22 Jan 2023 06:34:49 GMT
content-type: application/json
age: 667
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 38c102db4bcfb9c4fb19174986950fd3
51c2cc8a3aca4da5c9ab3438467c29203fc0b0c3
dad6b64bc9f4dd827471ccc2e5273fceee574685376083aaa80f9d2f918037f2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAD6B64BC9F4DD827471CCC2E5273FCEEE574685376083AAA80F9D2F918037F2"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4334
Expires: Sun, 22 Jan 2023 07:58:11 GMT
Date: Sun, 22 Jan 2023 06:45:57 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Y65pUxROXLqEml7uQRq/MJDmMz3CEEBFmVS6e5ag/xmkbdzVwMZyucb9WFAWpGKoNqbtoAnj6AE=
x-amz-request-id: 80AYHX8CXF940ZM0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 22 Jan 2023 05:47:10 GMT
age: 3527
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:45:56 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A600%2C400%7CRoboto%3A300italic%2C400%2C500%2C700&ver=1.0.1
142.250.74.106200 OK 941 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A600%2C400%7CRoboto%3A300italic%2C400%2C500%2C700&ver=1.0.1
IP 142.250.74.106:0
Hash 3e0a45f31a80a6fccd4e70b2b26e3a0f
b837f51e7533933edf43e06f3c08c68d6e3afe51
f74fd0ca57c5469201b12309565f2056fa4dab75cbc002a6508879db05caced3
GET /css?family=Open+Sans%3A600%2C400%7CRoboto%3A300italic%2C400%2C500%2C700&ver=1.0.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 22 Jan 2023 06:45:57 GMT
Date: Sun, 22 Jan 2023 06:45:57 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
dhakametro24.net/wp-content/plugins/post-views-counter/css/frontend.css?ver=1.3.4
91.205.106.237200 OK 200 B URL HTTP/1.1 dhakametro24.net/wp-content/plugins/post-views-counter/css/frontend.css?ver=1.3.4
IP 91.205.106.237:0
File type ASCII text, with CR line terminators
Hash ae00602190c3949c5c6239873e2ccba0
1b73c5e5f80bec8a2d07e7a96388e1df62ff39e9
f084b6ee22234b4520e05e1a19e15edaf20ed94d0fc69416d790a1f7eac2a1f7
GET /wp-content/plugins/post-views-counter/css/frontend.css?ver=1.3.4 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=2592000
expires: Tue, 21 Feb 2023 06:45:57 GMT
content-type: text/css
last-modified: Wed, 14 Apr 2021 10:33:04 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 200
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 032ea16a79a95a9f16a60674c5f3ad5c
daea213df10fabce0cd857bcd4f3e64dd1293fad
4637cdfefc8df89f6f6cc042daa30247921cbd001bd16484b18c384f1e7b9781
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:45:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dhakametro24.net/wp-includes/css/dashicons.min.css?ver=5.7.6
91.205.106.237200 OK 36 kB URL HTTP/1.1 dhakametro24.net/wp-includes/css/dashicons.min.css?ver=5.7.6
IP 91.205.106.237:0
File type ASCII text, with very long lines (58981)
Hash 57daffc76b4eaf9a7deb7c0e03a61f85
7b028ad43294b75d4b241239bb0190c7ab9c5273
00ab13c2e8718e6804d864984db327ff9d83c04292849c09861c73bc9020241d
GET /wp-includes/css/dashicons.min.css?ver=5.7.6 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=2592000
expires: Tue, 21 Feb 2023 06:45:57 GMT
content-type: text/css
last-modified: Thu, 15 Apr 2021 07:01:47 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 35599
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/plugins/ultimate-form-builder-lite/css/jquery.selectbox.css?ver=1.4.9
91.205.106.237200 OK 649 B URL HTTP/1.1 dhakametro24.net/wp-content/plugins/ultimate-form-builder-lite/css/jquery.selectbox.css?ver=1.4.9
IP 91.205.106.237:0
File type ASCII text, with CRLF line terminators
Hash ab4f2a8530596141734216df5ebe9417
281ba1c7f3338d5f43f8db6344c2b02861a0d3af
fa5cc880d21592fb42571388ee6aa1174b859b30a1231f7710165f528a839ccd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-form-builder-lite/css/jquery.selectbox.css?ver=1.4.9 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=2592000
expires: Tue, 21 Feb 2023 06:45:57 GMT
content-type: text/css
last-modified: Wed, 14 Apr 2021 10:33:06 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 649
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/themes/supermag/assets/library/bxslider/js/jquery.bxslider.js?ver=4.2.5.1.2
91.205.106.237200 OK 14 kB URL HTTP/1.1 dhakametro24.net/wp-content/themes/supermag/assets/library/bxslider/js/jquery.bxslider.js?ver=4.2.5.1.2
IP 91.205.106.237:0
File type ASCII text, with CRLF line terminators
Hash 71af5edcc73dd2a1f3740b0f4a0b139e
e575d478600c975dbdc471a907c646e29c160a82
2352c247720dde2f2f1f9e1927c88134e35a02cd29a7575adeb98a047906a238
GET /wp-content/themes/supermag/assets/library/bxslider/js/jquery.bxslider.js?ver=4.2.5.1.2 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 29 Jan 2023 06:45:57 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 11:10:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 14298
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/plugins/ultimate-form-builder-lite/css/frontend.css?ver=1.4.9
91.205.106.237200 OK 4.2 kB URL HTTP/1.1 dhakametro24.net/wp-content/plugins/ultimate-form-builder-lite/css/frontend.css?ver=1.4.9
IP 91.205.106.237:0
Hash f39d40c4b4656ca401baa4ccd0617cc5
a0cccb69c5a07e262da4e43fd64dbd8c255724f4
e3cb57d7ada97bb38627ad550f241621b28f01a7201e10c8a866cf50db45a4e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-form-builder-lite/css/frontend.css?ver=1.4.9 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=2592000
expires: Tue, 21 Feb 2023 06:45:57 GMT
content-type: text/css
last-modified: Wed, 14 Apr 2021 10:33:06 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4229
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/themes/supermag/assets/library/bxslider/css/jquery.bxslider.min.css?ver=4.2.5
91.205.106.237200 OK 672 B URL HTTP/1.1 dhakametro24.net/wp-content/themes/supermag/assets/library/bxslider/css/jquery.bxslider.min.css?ver=4.2.5
IP 91.205.106.237:0
File type ASCII text, with very long lines (2212), with no line terminators
Hash abbec1bf09c82f6e40fe04dabff34927
55d03acb8d2c34580f5f811fe09d8838d8de788c
e95816010ac82eb74a4efa002a32afd9d3370c6a5d401cc36288b27052450fec
GET /wp-content/themes/supermag/assets/library/bxslider/css/jquery.bxslider.min.css?ver=4.2.5 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=2592000
expires: Tue, 21 Feb 2023 06:45:57 GMT
content-type: text/css
last-modified: Thu, 15 Apr 2021 11:10:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 672
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/themes/supermag/assets/library/Font-Awesome/css/font-awesome.min.css?ver=4.7.0
91.205.106.237200 OK 7.0 kB URL HTTP/1.1 dhakametro24.net/wp-content/themes/supermag/assets/library/Font-Awesome/css/font-awesome.min.css?ver=4.7.0
IP 91.205.106.237:0
File type ASCII text, with very long lines (30837), with CRLF line terminators
Hash f2852b974183db9355cb778bf12e2e09
04902db0d66fb45d7cc388ab23fc0525d93ccaf4
1dd0188967a90730cc1322d7a809524dd9207a5b604e7468b8f4779268d64aab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/supermag/assets/library/Font-Awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=2592000
expires: Tue, 21 Feb 2023 06:45:57 GMT
content-type: text/css
last-modified: Thu, 15 Apr 2021 11:10:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6992
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 032ea16a79a95a9f16a60674c5f3ad5c
daea213df10fabce0cd857bcd4f3e64dd1293fad
4637cdfefc8df89f6f6cc042daa30247921cbd001bd16484b18c384f1e7b9781
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:45:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dhakametro24.net/wp-content/themes/dupermag/style.css?ver=1.4.9
91.205.106.237200 OK 1.1 kB URL HTTP/1.1 dhakametro24.net/wp-content/themes/dupermag/style.css?ver=1.4.9
IP 91.205.106.237:0
File type ASCII text, with very long lines (395)
Hash e49d6d5fb5771e3e45651349c4544927
5e3790ba60bc411abca2486fd558681fe8828494
aa14f2827fa3f2d76d73e8244835bc81ab375a309c13fafb8e482de454f06dac
GET /wp-content/themes/dupermag/style.css?ver=1.4.9 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=2592000
expires: Tue, 21 Feb 2023 06:45:57 GMT
content-type: text/css
last-modified: Mon, 19 Apr 2021 09:47:16 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1142
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/themes/supermag/acmethemes/gutenberg/gutenberg-front.css?ver=1.0
91.205.106.237200 OK 415 B URL HTTP/1.1 dhakametro24.net/wp-content/themes/supermag/acmethemes/gutenberg/gutenberg-front.css?ver=1.0
IP 91.205.106.237:0
File type ASCII text, with CRLF line terminators
Hash 832120ecc5ecdd2ffd3ebe52ff86d990
46899804105c35dbc8d7a1ec0916e025c6c85776
5acd820e3fb179f1c2f0ea4f36ffdde64b5d885cfa9ff6e1ca2bc2812786a0d1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/supermag/acmethemes/gutenberg/gutenberg-front.css?ver=1.0 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=2592000
expires: Tue, 21 Feb 2023 06:45:57 GMT
content-type: text/css
last-modified: Thu, 15 Apr 2021 11:10:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 415
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.15
91.205.106.237200 OK 461 B URL HTTP/1.1 dhakametro24.net/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.15
IP 91.205.106.237:0
File type ASCII text, with very long lines (1466), with no line terminators
Hash 44495a884c86e5328142434580d35ee9
d8947b7cc83e65e2c78b2a1940de2cc920587c28
d66f0687f9238aa62ed63f6f942fde64c3d98fb231bf5baa5bfd8d79d847804d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/add-to-any/addtoany.min.css?ver=1.15 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=2592000
expires: Tue, 21 Feb 2023 06:45:57 GMT
content-type: text/css
last-modified: Wed, 14 Apr 2021 10:32:20 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 461
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/plugins/heateor-social-comments/css/front.css?ver=1.6
91.205.106.237200 OK 1.7 kB URL HTTP/1.1 dhakametro24.net/wp-content/plugins/heateor-social-comments/css/front.css?ver=1.6
IP 91.205.106.237:0
File type ASCII text, with very long lines (3945), with no line terminators
Hash 4284ec6b8850b677716f73f5e261e64c
8f98704438c7d4f06cbc12271e8296b29877e3fb
0019bf97f48123e748a9491e59227b016e6e18294239c06a834654358411f0f2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/heateor-social-comments/css/front.css?ver=1.6 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=2592000
expires: Tue, 21 Feb 2023 06:45:57 GMT
content-type: text/css
last-modified: Thu, 03 Dec 2020 11:37:16 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1735
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/themes/supermag/style.css?ver=5.7.6
91.205.106.237200 OK 10 kB URL HTTP/1.1 dhakametro24.net/wp-content/themes/supermag/style.css?ver=5.7.6
IP 91.205.106.237:0
File type assembler source, ASCII text, with very long lines (1011), with CRLF line terminators
Hash f529cce6e2d3d3da2b330896ff3c3824
72c77a4bfc31b9ec290b3de47f437bd288bc34da
34b5a917986aeb463d8c998300b0b6f3205f570e5d3bdadfd2e9b809da22eaac
GET /wp-content/themes/supermag/style.css?ver=5.7.6 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=2592000
expires: Tue, 21 Feb 2023 06:45:57 GMT
content-type: text/css
last-modified: Thu, 15 Apr 2021 11:10:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 10525
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/themes/dupermag/style.css?ver=5.7.6
91.205.106.237200 OK 1.1 kB URL HTTP/1.1 dhakametro24.net/wp-content/themes/dupermag/style.css?ver=5.7.6
IP 91.205.106.237:0
File type ASCII text, with very long lines (395)
Hash e49d6d5fb5771e3e45651349c4544927
5e3790ba60bc411abca2486fd558681fe8828494
aa14f2827fa3f2d76d73e8244835bc81ab375a309c13fafb8e482de454f06dac
GET /wp-content/themes/dupermag/style.css?ver=5.7.6 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=2592000
expires: Tue, 21 Feb 2023 06:45:57 GMT
content-type: text/css
last-modified: Mon, 19 Apr 2021 09:47:16 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1142
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
91.205.106.237200 OK 31 kB URL HTTP/1.1 dhakametro24.net/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
IP 91.205.106.237:0
File type ASCII text, with very long lines (65451)
Hash 04c6a3a52d7abe96844c0c40fb5c0eeb
253e27b112609e7a54af8fa7699b69d478a9b804
d684ec8a6f2bb53e785055572e415a0d206519fb7eb11968b39faa0ab8ecbf8c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 29 Jan 2023 06:45:57 GMT
content-type: application/javascript
last-modified: Fri, 25 Dec 2020 13:40:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 30976
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
91.205.106.237200 OK 4.2 kB URL HTTP/1.1 dhakametro24.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 91.205.106.237:0
File type ASCII text, with very long lines (11126)
Hash c41f3a82e911de81a1817131069bc7d2
1e883290a0b794916cead41e5f0705716fd77b89
e9791f24770f098ea30bb4d25e2e10bdedb97132d0bbf7d2bd79eedac22efa27
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 29 Jan 2023 06:45:57 GMT
content-type: application/javascript
last-modified: Fri, 25 Dec 2020 13:40:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4168
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/plugins/react-and-share/assets/js/idle.min.js?ver=0.0.2
91.205.106.237200 OK 786 B URL HTTP/1.1 dhakametro24.net/wp-content/plugins/react-and-share/assets/js/idle.min.js?ver=0.0.2
IP 91.205.106.237:0
File type ASCII text, with very long lines (2561)
Hash e09dd4c1182d7d9f43af5d25c3c1f674
dfa9cb6902c02c7696ea7cf0a998ce91fb7c1d9e
ca8fd5e3a1b88fa6bee25a98e850af96010bdde34faa3c509f51e611c9d073e5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/react-and-share/assets/js/idle.min.js?ver=0.0.2 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 29 Jan 2023 06:45:57 GMT
content-type: application/javascript
last-modified: Fri, 25 Dec 2020 14:01:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 786
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/plugins/react-and-share/assets/js/js.cookie.min.js?ver=3.3
91.205.106.237200 OK 899 B URL HTTP/1.1 dhakametro24.net/wp-content/plugins/react-and-share/assets/js/js.cookie.min.js?ver=3.3
IP 91.205.106.237:0
File type ASCII text, with very long lines (1696)
Hash 7aec39d90f1421a4032b11239f4706eb
34022bafeb62ff266f87c9acc7f51f0e62e50817
c751008ffdefc537be8e0f6bea62bf92be3748699dd24fba83fdc17a8a116939
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/react-and-share/assets/js/js.cookie.min.js?ver=3.3 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 29 Jan 2023 06:45:57 GMT
content-type: application/javascript
last-modified: Fri, 25 Dec 2020 14:01:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 899
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/plugins/react-and-share/assets/js/rns.js?ver=3.3
91.205.106.237200 OK 3.0 kB URL HTTP/1.1 dhakametro24.net/wp-content/plugins/react-and-share/assets/js/rns.js?ver=3.3
IP 91.205.106.237:0
Hash ea5a3465a4e13277ba942de3fefd7a32
63b73a369b8574462b67c17f15e8fdcd97b533cc
ba50e43f25dd641fc1843303046c4c952d038175f196fa78d8b9e361e2e86156
GET /wp-content/plugins/react-and-share/assets/js/rns.js?ver=3.3 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 29 Jan 2023 06:45:57 GMT
content-type: application/javascript
last-modified: Fri, 25 Dec 2020 14:01:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2958
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/plugins/ultimate-form-builder-lite/js/jquery.selectbox-0.2.min.js?ver=1.4.9
91.205.106.237200 OK 2.8 kB URL HTTP/1.1 dhakametro24.net/wp-content/plugins/ultimate-form-builder-lite/js/jquery.selectbox-0.2.min.js?ver=1.4.9
IP 91.205.106.237:0
File type ASCII text, with very long lines (8996)
Hash 5715625830c1dc440f7e9a4ea42e5dcf
90fd7b092ef68c5c9dc8a4d3d5667694000d4fb6
2544dfd465309139d585e0dca8edaf65846e6f0c91e46584ddd1848e45bed74c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-form-builder-lite/js/jquery.selectbox-0.2.min.js?ver=1.4.9 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 29 Jan 2023 06:45:57 GMT
content-type: application/javascript
last-modified: Wed, 14 Apr 2021 10:33:06 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2787
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/plugins/ultimate-form-builder-lite/js/frontend.js?ver=1.4.9
91.205.106.237200 OK 995 B URL HTTP/1.1 dhakametro24.net/wp-content/plugins/ultimate-form-builder-lite/js/frontend.js?ver=1.4.9
IP 91.205.106.237:0
File type ASCII text, with CRLF line terminators
Hash ac6f958d2e939055429fba2eb9d68690
5d772692059974acd24c39e16d108693b549da7f
69178904e4631574990bf24a207d631a1b5cc352b574ed65a3b22913e4d4932f
GET /wp-content/plugins/ultimate-form-builder-lite/js/frontend.js?ver=1.4.9 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 29 Jan 2023 06:45:57 GMT
content-type: application/javascript
last-modified: Wed, 14 Apr 2021 10:33:06 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 995
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/themes/supermag/assets/library/theia-sticky-sidebar/theia-sticky-sidebar.min.js?ver=1.7.0
91.205.106.237200 OK 1.8 kB URL HTTP/1.1 dhakametro24.net/wp-content/themes/supermag/assets/library/theia-sticky-sidebar/theia-sticky-sidebar.min.js?ver=1.7.0
IP 91.205.106.237:0
File type HTML document, ASCII text, with very long lines (5370), with CRLF line terminators
Hash 8c1f30b61e59ae3b016e6bfa3be86f23
7a4fd6b3d5b694f4cc40788151386ae4d0c4afa9
7ad2eac9eff07423edc6c5e73d679494c6d0f3ee5134d108b194e1e308888e24
GET /wp-content/themes/supermag/assets/library/theia-sticky-sidebar/theia-sticky-sidebar.min.js?ver=1.7.0 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 29 Jan 2023 06:45:57 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 11:10:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1777
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-includes/js/wp-emoji-release.min.js?ver=5.7.6
91.205.106.237200 OK 4.7 kB URL HTTP/1.1 dhakametro24.net/wp-includes/js/wp-emoji-release.min.js?ver=5.7.6
IP 91.205.106.237:0
File type ASCII text, with very long lines (11272)
Hash 7906f2ab533ff3db12c205828933a6e0
056ddd71154f5d35cb146b15198964d309d937d6
578faae5b8afee4694297209bef0f8d8485887e01d1dd25cfd2c40b0b0453826
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.7.6 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 29 Jan 2023 06:45:57 GMT
content-type: application/javascript
last-modified: Thu, 04 Feb 2021 06:46:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4675
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/plugins/react-and-share/assets/css/styles.css?ver=3.3
91.205.106.237200 OK 1.3 kB URL HTTP/1.1 dhakametro24.net/wp-content/plugins/react-and-share/assets/css/styles.css?ver=3.3
IP 91.205.106.237:0
Hash 8939857eb9925b65f15d314d21cc2f53
5f583dff8eba23532353c0a4a5b70847752149b4
d913000cbe7258a2a8c93a84c0aaa7583a0f01c1b74b321cd2d4fb33fe834d62
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/react-and-share/assets/css/styles.css?ver=3.3 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=2592000
expires: Tue, 21 Feb 2023 06:45:57 GMT
content-type: text/css
last-modified: Fri, 25 Dec 2020 14:01:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1273
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.8.4
91.205.106.237200 OK 3.7 kB URL HTTP/1.1 dhakametro24.net/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.8.4
IP 91.205.106.237:0
File type ASCII text, with very long lines (7856)
Hash 1bbe83e427ff4cd7fa304bfdef0cb1d3
8bb8ae44d3bd2c23a6f1bf6bc730a7617ea57061
fd8426f158a701f16900345b8fae1dd190392e89dcf7a76ae125071e9c474f43
GET /wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.8.4 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 29 Jan 2023 06:45:57 GMT
content-type: application/javascript
last-modified: Fri, 30 Apr 2021 15:40:50 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3671
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 22 Jan 2023 06:17:30 GMT
age: 1707
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
dhakametro24.net/wp-includes/js/wp-embed.min.js?ver=5.7.6
91.205.106.237200 OK 769 B URL HTTP/1.1 dhakametro24.net/wp-includes/js/wp-embed.min.js?ver=5.7.6
IP 91.205.106.237:0
File type ASCII text, with very long lines (1391)
Hash 82e67f050afdb38c20ac6eb305f97c17
df1349df76d66a9cf64377cf335c67c337d85470
5f6c33116e2106cd0f2f28c16062f1d584e74b8539a14ed45e17957634d71b7e
GET /wp-includes/js/wp-embed.min.js?ver=5.7.6 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 29 Jan 2023 06:45:57 GMT
content-type: application/javascript
last-modified: Thu, 04 Feb 2021 06:46:56 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 769
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/themes/supermag/assets/js/supermag-custom.js?ver=1.4.0
91.205.106.237200 OK 4.6 kB URL HTTP/1.1 dhakametro24.net/wp-content/themes/supermag/assets/js/supermag-custom.js?ver=1.4.0
IP 91.205.106.237:0
File type ASCII text, with CRLF line terminators
Hash fd7bced437e816861e8e7a41a23ba6b2
b00fb2e34139c929825ab514c46fbe2a6c2c47df
bfa21bdb982b00220d36c43157be7ddbc25ad1a6dc6da6b992f89e81cc9f41be
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/supermag/assets/js/supermag-custom.js?ver=1.4.0 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 29 Jan 2023 06:45:57 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 11:10:44 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4639
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://dhakametro24.net
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15860
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 19 Jan 2023 13:04:17 GMT
Expires: Fri, 19 Jan 2024 13:04:17 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 11 May 2022 19:24:42 GMT
Content-Type: font/woff2
Age: 236500
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://dhakametro24.net
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 15 Jan 2023 18:35:11 GMT
Expires: Mon, 15 Jan 2024 18:35:11 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
Age: 562246
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://dhakametro24.net
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15744
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 19 Jan 2023 14:34:21 GMT
Expires: Fri, 19 Jan 2024 14:34:21 GMT
Cache-Control: public, max-age=31536000
Age: 231096
Last-Modified: Wed, 11 May 2022 19:24:48 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://dhakametro24.net
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15920
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 19 Jan 2023 05:14:06 GMT
Expires: Fri, 19 Jan 2024 05:14:06 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 11 May 2022 19:24:45 GMT
Content-Type: font/woff2
Age: 264711
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 25d59e4444b16818a49fec7128c90dcd
ea263f33790881a01e317fa03d935f7109523e41
22e26ea1917d1a0fed0b2af636f1baecb59768b0f85c9ab6b1c37d45e84dfa2d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:45:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://dhakametro24.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jan 2023 18:52:55 GMT
expires: Tue, 16 Jan 2024 18:52:55 GMT
cache-control: public, max-age=31536000
age: 474782
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fc96297d0b59147e8f6052b16f1ca13f
23aeddfa143bb9be19b2ed06f2024a3a8aa120ce
034327c6ada560c662f451f3c95cd8531482d4ab51629e95875fab54c8f3e49a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 659
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:45:57 GMT
Last-Modified: Sun, 22 Jan 2023 06:34:58 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 25d59e4444b16818a49fec7128c90dcd
ea263f33790881a01e317fa03d935f7109523e41
22e26ea1917d1a0fed0b2af636f1baecb59768b0f85c9ab6b1c37d45e84dfa2d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:45:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ace90ee2f1ce8ca0d69556c6398555a6
49b53ab37b77ebf26525ef3a84aaa9a817af9df4
6d66736ed5245c62987c88f0c3570eefd8f45c09f60dc9b2e1d585f05d1f00e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:45:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dhakametro24.net/wp-content/themes/supermag/assets/library/Font-Awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
91.205.106.237200 OK 77 kB URL HTTP/1.1 dhakametro24.net/wp-content/themes/supermag/assets/library/Font-Awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 91.205.106.237:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/supermag/assets/library/Font-Awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://dhakametro24.net/wp-content/themes/supermag/assets/library/Font-Awesome/css/font-awesome.min.css?ver=4.7.0
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sun, 29 Jan 2023 06:45:57 GMT
content-type: font/woff2
last-modified: Thu, 15 Apr 2021 11:10:44 GMT
accept-ranges: bytes
content-length: 77160
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/uploads/2021/09/Evaly-MDwife-.jpg
91.205.106.237200 OK 8.3 kB URL HTTP/1.1 dhakametro24.net/wp-content/uploads/2021/09/Evaly-MDwife-.jpg
IP 91.205.106.237:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x168, components 3\012- data
Hash 4deca752b2fa6f9ee9812165a6419dbc
c3655ee64924f54962ce44b127134d6154825ff1
4024b14ff440dffeb93b7a32ef23d22f3661772d70056840211928f3f3c8a602
GET /wp-content/uploads/2021/09/Evaly-MDwife-.jpg HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Mon, 22 Jan 2024 06:45:57 GMT
content-type: image/jpeg
last-modified: Fri, 17 Sep 2021 14:49:36 GMT
accept-ranges: bytes
content-length: 8315
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/uploads/2021/03/cropped-Dhaka_Metro_logo_01-1.png
91.205.106.237200 OK 18 kB URL HTTP/1.1 dhakametro24.net/wp-content/uploads/2021/03/cropped-Dhaka_Metro_logo_01-1.png
IP 91.205.106.237:0
File type PNG image data, 290 x 69, 8-bit/color RGBA, non-interlaced\012- data
Hash d1d2f40f2415ad921062bc96138cb763
e57cdb0de8f2e832e39fd05ec598561a76b24c85
6d502578ac4f3d18955208fc865a6ba160873252001612521bb1169365b26b4a
GET /wp-content/uploads/2021/03/cropped-Dhaka_Metro_logo_01-1.png HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Mon, 22 Jan 2024 06:45:57 GMT
content-type: image/png
last-modified: Sat, 11 Sep 2021 12:53:27 GMT
accept-ranges: bytes
content-length: 17821
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/uploads/2021/04/nazrul-abbasuddin.jpg
91.205.106.237200 OK 15 kB URL HTTP/1.1 dhakametro24.net/wp-content/uploads/2021/04/nazrul-abbasuddin.jpg
IP 91.205.106.237:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 399x244, components 3\012- data
Hash 627a075acb0574c840831b725bb5d7f9
684dce3d3b925b2c020ce053a0e42d85d8248e8a
92a684d774f2002406f35b19b56d1782945ead2ff3f0de13f412a91c428365fd
GET /wp-content/uploads/2021/04/nazrul-abbasuddin.jpg HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Mon, 22 Jan 2024 06:45:57 GMT
content-type: image/jpeg
last-modified: Fri, 23 Apr 2021 18:40:56 GMT
accept-ranges: bytes
content-length: 15288
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ace90ee2f1ce8ca0d69556c6398555a6
49b53ab37b77ebf26525ef3a84aaa9a817af9df4
6d66736ed5245c62987c88f0c3570eefd8f45c09f60dc9b2e1d585f05d1f00e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:45:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/4248d311/www-player.css
172.217.21.174200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/4248d311/www-player.css
IP 172.217.21.174:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8a6331ed48be29c59230b0c7360068de
22a20436f427d6b8e26eb30ed9aab51a43d389bf
72f0818ab04697fc29d331b2add584f3cd5e269446c7297300701a4666c9d95e
GET /s/player/4248d311/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/n755Tn3Vsfk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49911
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 18:40:04 GMT
expires: Fri, 19 Jan 2024 18:40:04 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 12 Jan 2023 01:15:11 GMT
content-type: text/css
age: 216354
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 21:48:03 GMT
expires: Fri, 19 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 205075
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/4248d311/www-embed-player.vflset/www-embed-player.js
172.217.21.174200 OK 109 kB URL HTTP/2 www.youtube.com/s/player/4248d311/www-embed-player.vflset/www-embed-player.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (679)
Size 109 kB (109432 bytes)
Hash 711fcfe6f1ab52d89ab3474d437c1e48
b2f3e69e9d40b193de5e76ae13c6ad9ce0a8e537
361236d1317543e128074c35d22d65a2ba70f6ce9906b07a543e6b3c96239019
GET /s/player/4248d311/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/n755Tn3Vsfk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 109432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 19:17:49 GMT
expires: Fri, 19 Jan 2024 19:17:49 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 12 Jan 2023 01:15:11 GMT
content-type: text/javascript
age: 214089
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/4248d311/fetch-polyfill.vflset/fetch-polyfill.js
172.217.21.174200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/4248d311/fetch-polyfill.vflset/fetch-polyfill.js
IP 172.217.21.174:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/4248d311/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/n755Tn3Vsfk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 16:02:08 GMT
expires: Fri, 19 Jan 2024 16:02:08 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 12 Jan 2023 01:15:11 GMT
content-type: text/javascript
age: 225830
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.212.129.45101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.212.129.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XlgsGAl95KvmKP6Z3gVx2w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7zylaof492Ef8FJtzv4FlvtaedU=
www.youtube.com/embed/n755Tn3Vsfk
172.217.21.174200 OK 640 kB URL HTTP/2 www.youtube.com/embed/n755Tn3Vsfk
IP 172.217.21.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58644)
Size 640 kB (639923 bytes)
Hash 656c4401080fbcd52917297bead54604
e2b98fcd7130b21ea8ed23986702a381a63b2922
332fcd5a11159bf0c0075740039512f4094f79350cb00a2f90f5d16768a6e063
GET /embed/n755Tn3Vsfk HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dhakametro24.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 22 Jan 2023 06:45:57 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=l7IbycoBzFw; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TVRNMk5ESXdOemd6Tnprek56Z3dNQT09EKW3s54GGKW3s54G; Domain=.youtube.com; Expires=Fri, 21-Jul-2023 06:45:57 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=_o5xBIvSbf8; Domain=.youtube.com; Expires=Fri, 21-Jul-2023 06:45:57 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+434; expires=Tue, 21-Jan-2025 06:45:57 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dhakametro24.net/wp-content/uploads/2021/01/Advertisement.gif
91.205.106.237200 OK 80 kB URL HTTP/1.1 dhakametro24.net/wp-content/uploads/2021/01/Advertisement.gif
IP 91.205.106.237:0
File type GIF image data, version 89a, 970 x 90\012- data
Hash 7e5e37ba1766fc3899db7e1f1a3d41fd
885467f24d8009a07e99fcb99fee773a39d6b3fb
237447f9a18cc8fec2daf0e78ee10eba4e40547919c84dea17b58ade18b9a864
GET /wp-content/uploads/2021/01/Advertisement.gif HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Mon, 22 Jan 2024 06:45:57 GMT
content-type: image/gif
last-modified: Mon, 18 Jan 2021 09:52:22 GMT
accept-ranges: bytes
content-length: 80179
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/uploads/2021/03/cropped-Dhaka_Metro_logo_02-192x192.png
91.205.106.237200 OK 8.3 kB URL HTTP/1.1 dhakametro24.net/wp-content/uploads/2021/03/cropped-Dhaka_Metro_logo_02-192x192.png
IP 91.205.106.237:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash db623c9dbc98eb69a558a075bb2de7f4
a2d7a37edb8d7813d0a425feedde9f0a5ea7ede8
21c0d9b931897fec7a946955499205e6a872a8103bc79f319adbbde091a68312
GET /wp-content/uploads/2021/03/cropped-Dhaka_Metro_logo_02-192x192.png HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Mon, 22 Jan 2024 06:45:58 GMT
content-type: image/png
last-modified: Thu, 11 Mar 2021 15:55:37 GMT
accept-ranges: bytes
content-length: 8348
date: Sun, 22 Jan 2023 06:45:58 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/uploads/2021/03/cropped-Dhaka_Metro_logo_02-32x32.png
91.205.106.237200 OK 907 B URL HTTP/1.1 dhakametro24.net/wp-content/uploads/2021/03/cropped-Dhaka_Metro_logo_02-32x32.png
IP 91.205.106.237:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 458e40e2afed02b9610830c49aa6b029
4aa10815f5ed0dba78915a2d25491d82b9e4c198
9a6a2c75b36a6e3bb8ca84ce676f59556cb12eeb38a54e2c2a036e6c7e9b2d4a
GET /wp-content/uploads/2021/03/cropped-Dhaka_Metro_logo_02-32x32.png HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Mon, 22 Jan 2024 06:45:58 GMT
content-type: image/png
last-modified: Thu, 11 Mar 2021 15:55:37 GMT
accept-ranges: bytes
content-length: 907
date: Sun, 22 Jan 2023 06:45:58 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/uploads/2021/04/nazrul-abbasuddin-300x183.jpg
91.205.106.237200 OK 9.9 kB URL HTTP/1.1 dhakametro24.net/wp-content/uploads/2021/04/nazrul-abbasuddin-300x183.jpg
IP 91.205.106.237:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 300x183, components 3\012- data
Hash 56f8f5f994e4f7a48a32a3adeff4b26a
5424b063dd8c213462b646ff89672e53ccba5c20
dc111bde4470fa7c27c2cdc34389ca8e2697eec20a3faad969dc764a12361405
GET /wp-content/uploads/2021/04/nazrul-abbasuddin-300x183.jpg HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Mon, 22 Jan 2024 06:45:58 GMT
content-type: image/jpeg
last-modified: Fri, 30 Apr 2021 15:49:03 GMT
accept-ranges: bytes
content-length: 9854
date: Sun, 22 Jan 2023 06:45:58 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/uploads/2021/05/Khaleda-Zia-300x175.jpg
91.205.106.237200 OK 11 kB URL HTTP/1.1 dhakametro24.net/wp-content/uploads/2021/05/Khaleda-Zia-300x175.jpg
IP 91.205.106.237:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 300x175, components 3\012- data
Hash 8447e78a8f10d2f010d154efbb9d5316
0c0bdea900c2af82ab18dee736a14b02433b8538
2ead2a76780171279992e6baf103bb054b0352d843ac3dfb18ebb425ab0ec393
GET /wp-content/uploads/2021/05/Khaleda-Zia-300x175.jpg HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Mon, 22 Jan 2024 06:45:58 GMT
content-type: image/jpeg
last-modified: Mon, 03 May 2021 15:09:02 GMT
accept-ranges: bytes
content-length: 11265
date: Sun, 22 Jan 2023 06:45:58 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 39575bd6b9eabe88a5ed9d6e0d145b2d
f8cde48ad15b435045f6b617579191bba9f22ca8
1802b3fbb74dfcd57331256214cd79e91d811893e45eb00bf4341ab529bc7370
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:45:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 06:32:34 GMT
expires: Sun, 22 Jan 2023 06:47:34 GMT
cache-control: public, max-age=900
age: 805
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dhakametro24.net/wp-content/uploads/2018/01/26829341_519167645136690_1808895302_o-768x432.jpg
91.205.106.237200 OK 60 kB URL HTTP/1.1 dhakametro24.net/wp-content/uploads/2018/01/26829341_519167645136690_1808895302_o-768x432.jpg
IP 91.205.106.237:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 768x432, components 3\012- data
Hash 9bcee157842ca80cbfd8004d110d1eea
ca6ad256c90d417641db62d14eb93be09b137261
2a3540823e41ce5353fb253d47924de12d8cec834ddfefbe8a97bcc9b957cdc7
GET /wp-content/uploads/2018/01/26829341_519167645136690_1808895302_o-768x432.jpg HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Mon, 22 Jan 2024 06:45:58 GMT
content-type: image/jpeg
last-modified: Sun, 02 May 2021 10:09:23 GMT
accept-ranges: bytes
content-length: 60119
date: Sun, 22 Jan 2023 06:45:58 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/uploads/2021/04/BD-Political-Violence-768x432.jpg
91.205.106.237200 OK 71 kB URL HTTP/1.1 dhakametro24.net/wp-content/uploads/2021/04/BD-Political-Violence-768x432.jpg
IP 91.205.106.237:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 768x432, components 3\012- data
Hash 8730ef01d989d8f5037a0571b353e4b1
b408a0c3df780cbbc9fbd5330097cb79f92931b2
817bd8093c6fcabc544300d8d11a282f64f2c17f26a81bf2b1308a83d0c6839a
GET /wp-content/uploads/2021/04/BD-Political-Violence-768x432.jpg HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Mon, 22 Jan 2024 06:45:58 GMT
content-type: image/jpeg
last-modified: Fri, 30 Apr 2021 15:49:15 GMT
accept-ranges: bytes
content-length: 70929
date: Sun, 22 Jan 2023 06:45:58 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/uploads/2021/04/FB_IMG_1618860831399-768x432.jpg
91.205.106.237200 OK 64 kB URL HTTP/1.1 dhakametro24.net/wp-content/uploads/2021/04/FB_IMG_1618860831399-768x432.jpg
IP 91.205.106.237:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 768x432, components 3\012- data
Hash 305200942df5823c834b3d6483e3d5d9
88dfeb7e346348a3c88b6a12911578b56326cef6
95eb017ba4ea9ad3a1b8a8000e67da52dc9a84c62ac260d3a061d6d9dc4eea4f
GET /wp-content/uploads/2021/04/FB_IMG_1618860831399-768x432.jpg HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Mon, 22 Jan 2024 06:45:58 GMT
content-type: image/jpeg
last-modified: Fri, 30 Apr 2021 15:49:26 GMT
accept-ranges: bytes
content-length: 63758
date: Sun, 22 Jan 2023 06:45:58 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5074bfa38808c4a0f18b00a601cfef53
ffc0c526e49251605b2c95d0d1d595f9c702cd9a
6262e4155e8fbf18388f2f38c8e65cb87db94dae66d1dbbd329b4973d8b243df
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:45:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
142.250.74.162302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sun, 22 Jan 2023 06:45:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 39575bd6b9eabe88a5ed9d6e0d145b2d
f8cde48ad15b435045f6b617579191bba9f22ca8
1802b3fbb74dfcd57331256214cd79e91d811893e45eb00bf4341ab529bc7370
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:45:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5074bfa38808c4a0f18b00a601cfef53
ffc0c526e49251605b2c95d0d1d595f9c702cd9a
6262e4155e8fbf18388f2f38c8e65cb87db94dae66d1dbbd329b4973d8b243df
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:45:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 22 Jan 2023 06:45:59 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
redirector.googlevideo.com/initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odepv=1&alr=yes&id=39805&cmo=sensitive_content=yes&sc=yes&cmo=td=c.youtube.com
172.217.21.174200 OK 234 B URL HTTP/2 redirector.googlevideo.com/initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odepv=1&alr=yes&id=39805&cmo=sensitive_content=yes&sc=yes&cmo=td=c.youtube.com
IP 172.217.21.174:0
File type ASCII text, with no line terminators
Hash 5a48f176a48d7930116b10932ba029e8
afbcb396533a8e7b713dba62b9a715866fc0fc09
cc95978300c5fa86b5f4497edecf3dc97c3c0a0cefe63e281973753e76c2461c
GET /initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odepv=1&alr=yes&id=39805&cmo=sensitive_content=yes&sc=yes&cmo=td=c.youtube.com HTTP/1.1
Host: redirector.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 06:45:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
content-type: text/plain; charset=UTF-8
content-encoding: gzip
server: ClientMapServer
content-length: 234
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.170200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.170:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash aa1f952760d42c2b7d6231edc54aff74
a1fe248bb626e6b57b2be53239c329a1b8373860
177e9c755a74e1fa95e858cfab5ee185fe50f5d1fc1c42176da2f587bb37e3a0
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 22 Jan 2023 06:45:59 GMT
server: ESF
cache-control: private
content-length: 31275
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da015b9617eb971181d9c4dd127122ba
71c66195564fa97ae91eeea42abf3bcf834f2ee1
6d40594224e810808c9181cde5055053db53ecb7615e533e6c45741708f3a406
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:45:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 734914122d719ab9651f0bf7a4c1fe2f
6dab619cf1acaa1645caf9658fc31c1ee8530bec
9f81a0f9e79924cbbeb56efd122ad30c1e2097eac0d96ca27435027514c57241
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:45:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/KEPFzgz7hL5wYxHZrPU4Npb1OW8I4zSVf-eV-bRO_vgDRnbkWVwmuAQizAJTwjQe8P8RRF_HlmE=s68-c-k-c0x00ffffff-no-rj
142.250.74.129200 OK 2.9 kB URL HTTP/2 yt3.ggpht.com/KEPFzgz7hL5wYxHZrPU4Npb1OW8I4zSVf-eV-bRO_vgDRnbkWVwmuAQizAJTwjQe8P8RRF_HlmE=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 8a6cb8774fee4fb829c5d798bff732dd
f88ad571bd51cbff7837e4664972b7db89bd7db6
786c5b1b442d6727d762a9a3ee8817bc286dd204855d01cb7ecd30003ffddb10
GET /KEPFzgz7hL5wYxHZrPU4Npb1OW8I4zSVf-eV-bRO_vgDRnbkWVwmuAQizAJTwjQe8P8RRF_HlmE=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2938
x-xss-protection: 0
date: Sun, 22 Jan 2023 06:45:59 GMT
expires: Wed, 18 Jan 2023 17:37:54 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi/n755Tn3Vsfk/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGEYgTihlMA8=&rs=AOn4CLA1jNN-Yz6cEtvtlKF9gG2RrP-v5A
142.250.74.182200 OK 30 kB URL HTTP/2 i.ytimg.com/vi/n755Tn3Vsfk/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGEYgTihlMA8=&rs=AOn4CLA1jNN-Yz6cEtvtlKF9gG2RrP-v5A
IP 142.250.74.182:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3\012- data
Hash eb235e967d2bbe3f229b6004ec708a4e
3cc966cf1ca043703f697feb2198e914396ebd6e
11070d7ce516208d4182083bee39644d095af5ec57d99737567575e7cbe9e43c
GET /vi/n755Tn3Vsfk/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGEYgTihlMA8=&rs=AOn4CLA1jNN-Yz6cEtvtlKF9gG2RrP-v5A HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 29793
date: Sun, 22 Jan 2023 06:45:59 GMT
expires: Sun, 22 Jan 2023 08:45:59 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da015b9617eb971181d9c4dd127122ba
71c66195564fa97ae91eeea42abf3bcf834f2ee1
6d40594224e810808c9181cde5055053db53ecb7615e533e6c45741708f3a406
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:45:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 734914122d719ab9651f0bf7a4c1fe2f
6dab619cf1acaa1645caf9658fc31c1ee8530bec
9f81a0f9e79924cbbeb56efd122ad30c1e2097eac0d96ca27435027514c57241
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:45:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6947
Expires: Sun, 22 Jan 2023 08:41:46 GMT
Date: Sun, 22 Jan 2023 06:45:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6947
Expires: Sun, 22 Jan 2023 08:41:46 GMT
Date: Sun, 22 Jan 2023 06:45:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6947
Expires: Sun, 22 Jan 2023 08:41:46 GMT
Date: Sun, 22 Jan 2023 06:45:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6947
Expires: Sun, 22 Jan 2023 08:41:46 GMT
Date: Sun, 22 Jan 2023 06:45:59 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd68d33e7-2d1d-4f9d-9544-28746d9156e6.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd68d33e7-2d1d-4f9d-9544-28746d9156e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e71636bb9a13ad7d52d253e16cd6a3f
401dd58e34982d3434739b9a2f7182487ea1cac5
1ac336df72b6eb569983e197f094378a26a175113249bedca0610cabd57e2e54
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd68d33e7-2d1d-4f9d-9544-28746d9156e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8057
x-amzn-requestid: 5469b005-6740-4f3d-80ca-a45fd39cae68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNkCFiZoAMF8oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c80-210da08f113a3273257b7d61;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:43:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: j3SoP46ER0JjOaLh363bQ9QW4ZIW19_rbgeQ7Ey8W-zgyGMMLSLccA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:48:17 GMT
etag: "401dd58e34982d3434739b9a2f7182487ea1cac5"
content-type: image/jpeg
age: 32262
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71b4fb2b-957e-4b2e-a736-8b37c06f7c95.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71b4fb2b-957e-4b2e-a736-8b37c06f7c95.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03a13d74184595ec581932d00fc11945
656445fb81ad942ccb17044072dd7c1b4654b2c8
bed0c7c387b9e8ff3f1033f65544ce8527fa805d691ef805df01ca0dac938273
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71b4fb2b-957e-4b2e-a736-8b37c06f7c95.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14414
x-amzn-requestid: 516b8fe5-60c2-43bd-94ad-c8f3a24476fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNWREIoIAMFxLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c27-1dba5be24b3bec7b0072e1af;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CEKO3c9DXyHiFKW1kRPjR1c7bO7WbdiD-o3EhHDRtaSZVN5dI9mVOQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:52:07 GMT
etag: "656445fb81ad942ccb17044072dd7c1b4654b2c8"
content-type: image/jpeg
age: 32032
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa8dd86d-d1f8-4246-a33c-c80dbc2c2538.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa8dd86d-d1f8-4246-a33c-c80dbc2c2538.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b429642344aabb638e3acbd63463fe8d
f9ea147291359b0fb6e7a78983643949665003d7
acda68bb2566774c9b279e048b62aaaa5a27b87e783048d6765e598ac2c584fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa8dd86d-d1f8-4246-a33c-c80dbc2c2538.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12743
x-amzn-requestid: 6c542779-10fa-4bbd-9294-3127a104de12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNkBEa3IAMF6-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c7f-4d5a606011cb84fd14d7b175;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:43:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NLwQoDRTYi8Ol0cDp3gaJpQ7-0kq6ITtm9lzj1qFrKe2oGOK7YWMzg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:48:06 GMT
age: 32273
etag: "f9ea147291359b0fb6e7a78983643949665003d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a1de880-d267-45a1-8abe-5bbb4e38b0fa.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a1de880-d267-45a1-8abe-5bbb4e38b0fa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 965b482ff463008a1b5ff0d71d7e6d40
d76bd06810c236fd5fc1450b2bd0b851ebc11d46
0ed628d9cf3c181d5b95da521f0e725661e858e24bff1bb78b5f933c580b3e97
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a1de880-d267-45a1-8abe-5bbb4e38b0fa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10470
x-amzn-requestid: 572b1438-68f8-4492-9e57-5d0177114b68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fBYVuF8sIAMFq5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca0757-207d1a1d29c50a80328d65c2;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 03:15:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DIOBA_5UREdjzutxlCzf-4_71pY84L-3tf6iDCgP-ziBTtPMJr71Tw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 05:26:33 GMT
age: 4766
etag: "d76bd06810c236fd5fc1450b2bd0b851ebc11d46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a7ab95a69ddfa5014258076e66a6e19
1a54cca86788536002d6d18c5180ccf265ba1169
09348afd6055b26b5dba6f8f6ef763d52e6e040c039c6f763d64f71b8ca08d51
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10988
x-amzn-requestid: 67c03c6c-3896-4890-a75b-ecd7c1c1a4e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3foHG8tIAMF3XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61300-2de17e5b0225f9427c197bc5;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RlbJymJhU6Ti5RZCSIvPzloackAiBEBGapKI440u4ZIfB5FYBNugLw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 03:24:49 GMT
age: 12070
etag: "1a54cca86788536002d6d18c5180ccf265ba1169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd399906-0156-4422-876c-42e2142ca1ca.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd399906-0156-4422-876c-42e2142ca1ca.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 587de819b05bfb2793065133b65a93f3
b80e7b904ddc9a2cf87c9ac6ad2affc5dee4f5ce
95fed499ec2d8e6d88a3d84eca57ca20b294ed6b8b82779f50d12bd7fbff5559
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd399906-0156-4422-876c-42e2142ca1ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9932
x-amzn-requestid: 94af32c6-280b-4bda-a6dd-f41c5ab22027
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e-m6MHqPoAMFmzQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8eb74-2fd4708e39ed01c805c85652;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 07:04:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NezACadgboDZ-8Aiuckh7-NL_29B9EG-e_dpkzGrVTeZN8H15EfF7A==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 08:00:06 GMT
age: 81953
etag: "b80e7b904ddc9a2cf87c9ac6ad2affc5dee4f5ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 22 Jan 2023 06:45:59 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.170200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.170:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 73951c2a8435de8e38bc8c8ba9480dc6
396822640d14bc7a18a1ccdead8bbbd35fca6f06
6f090433351ebca5c3b44d1a3c38da48885a4280477ce1605596a169c269b568
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1202
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 22 Jan 2023 06:45:59 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dhakametro24.net/wp-content/uploads/2021/04/FB_IMG_1618853516300-300x202.jpg
91.205.106.237200 OK 13 kB URL HTTP/1.1 dhakametro24.net/wp-content/uploads/2021/04/FB_IMG_1618853516300-300x202.jpg
IP 91.205.106.237:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 300x202, components 3\012- data
Hash ff3b4bb33a33dea546ab7520c35930ab
27bc990901e5de861ac27f814451950ad626fdfb
2171dd0355c532a80fb91b0041b0dbcbc489d427cc647d6a71841ce10f5d336b
GET /wp-content/uploads/2021/04/FB_IMG_1618853516300-300x202.jpg HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Mon, 22 Jan 2024 06:45:59 GMT
content-type: image/jpeg
last-modified: Fri, 30 Apr 2021 15:49:29 GMT
accept-ranges: bytes
content-length: 13332
date: Sun, 22 Jan 2023 06:45:59 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/uploads/2021/02/corona-vaction.jpg
91.205.106.237200 OK 7.1 kB URL HTTP/1.1 dhakametro24.net/wp-content/uploads/2021/02/corona-vaction.jpg
IP 91.205.106.237:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 290x174, components 3\012- data
Hash a75bf1371200f6f15e39b403f15bdcc7
5e9042b07db35a364870378dae0885641862d1e6
fb3cd081f888a1fec9908a5ec9ca88a5a90b0020255a36999f7a1b31f71599a8
GET /wp-content/uploads/2021/02/corona-vaction.jpg HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Mon, 22 Jan 2024 06:45:59 GMT
content-type: image/jpeg
last-modified: Mon, 08 Mar 2021 11:56:19 GMT
accept-ranges: bytes
content-length: 7099
date: Sun, 22 Jan 2023 06:45:59 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f4d171538addb3e350e03876c9c23d81
9874648e426c9a8b65ddcb1d3fc944b8464be9f5
e89b056e51c85f967d05f0cb23a2212d0f391838df414dda9f61e67a96dbefff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/hMfiIRZZaMzaAz5FYaI1FR-xuNlC9MpkqGZdkT5mV6Q.js
216.58.207.228200 OK 14 kB URL HTTP/2 www.google.com/js/th/hMfiIRZZaMzaAz5FYaI1FR-xuNlC9MpkqGZdkT5mV6Q.js
IP 216.58.207.228:0
File type ASCII text, with very long lines (36392)
Hash 224f0c569b57002328a0d93922ad4f85
49f653f477e53d804034c7daf3f6ff850693ea48
367eb30e42b960d0cf60b3bd0f2dd41b61101f15285358dffeb2309b428533a0
GET /js/th/hMfiIRZZaMzaAz5FYaI1FR-xuNlC9MpkqGZdkT5mV6Q.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14417
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jan 2023 05:49:32 GMT
expires: Tue, 16 Jan 2024 05:49:32 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 03 Jan 2023 15:00:00 GMT
content-type: text/javascript
age: 521788
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dhakametro24.net/wp-admin/admin-ajax.php?action=rns_get_html
91.205.106.237200 OK 591 B URL HTTP/1.1 dhakametro24.net/wp-admin/admin-ajax.php?action=rns_get_html
IP 91.205.106.237:0
File type HTML document, ASCII text
Hash 07f2457e1e39ce1ec10593c12a108362
0425da388899d1d3f1d4f25fa14da4c5a08f5fbf
27ad251f7be4e2aaaa3ab6c293f310105d51b3db08c4e2df8929261bab3c908b
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/admin-ajax.php?action=rns_get_html HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
set-cookie: PHPSESSID=0b7bf6b2b8af7ecd1aeccf4483701c3f; path=/
pragma: no-cache
content-type: text/html; charset=UTF-8
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
content-length: 591
content-encoding: gzip
vary: Accept-Encoding
date: Sun, 22 Jan 2023 06:46:00 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
dhakametro24.net/wp-admin/admin-ajax.php
91.205.106.237200 OK 22 B URL HTTP/1.1 dhakametro24.net/wp-admin/admin-ajax.php
IP 91.205.106.237:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 061faf60a30dde2f20ba8f454c3020de
1940a26a9be338cb36f5b50a1d638ef36b124d51
21947b02ead137acb20e602e9448c7c453b2836d1a755aadd5e1c61ecd2eb034
Analyzer Verdict Alert fortinet Phishing
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 24
Origin: http://dhakametro24.net
Connection: keep-alive
Referer: http://dhakametro24.net/
Cookie: PHPSESSID=0b7bf6b2b8af7ecd1aeccf4483701c3f
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
pragma: no-cache
access-control-allow-origin: http://dhakametro24.net
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
content-type: application/json; charset=UTF-8
content-length: 22
content-encoding: gzip
vary: Accept-Encoding
date: Sun, 22 Jan 2023 06:46:01 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
dhakametro24.net/wp-content/uploads/2021/05/Khaleda-Zia.jpg
91.205.106.237200 OK 0 B URL HTTP/1.1 dhakametro24.net/wp-content/uploads/2021/05/Khaleda-Zia.jpg
IP 91.205.106.237:0
GET /wp-content/uploads/2021/05/Khaleda-Zia.jpg HTTP/1.1
Host: dhakametro24.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dhakametro24.net/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Mon, 22 Jan 2024 06:45:57 GMT
content-type: image/jpeg
last-modified: Mon, 03 May 2021 15:09:00 GMT
accept-ranges: bytes
content-length: 69110
date: Sun, 22 Jan 2023 06:45:57 GMT
server: LiteSpeed
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
static.addtoany.com/menu/page.js
104.22.70.197200 OK 0 B URL HTTP/2 static.addtoany.com/menu/page.js
IP 104.22.70.197:0
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dhakametro24.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 06:45:57 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 106208
etag: W/"c04-5f1f2ae2e431b"
last-modified: Wed, 11 Jan 2023 01:11:30 GMT
vary: Accept-Encoding
via: e3s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78d6546bbe30f13a-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans&ver=5.7.6
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans&ver=5.7.6
IP 142.250.74.106:0
GET /css?family=Open+Sans&ver=5.7.6 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dhakametro24.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 22 Jan 2023 06:45:57 GMT
date: Sun, 22 Jan 2023 06:45:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2