Overview

URL sprayitfwd.com/
IP162.240.64.171
ASNUNIFIEDLAYER-AS-1
Location United States
Report completed2022-07-07 00:15:32 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-07-07 2 sprayitfwd.com/ Phishing
2022-07-07 2 sprayitfwd.com/js/popper.min.js Phishing
2022-07-07 2 sprayitfwd.com/js/jquery-3.0.0.min.js Phishing
2022-07-07 2 sprayitfwd.com/js/jquery.min.js Phishing
2022-07-07 2 sprayitfwd.com/js/custom.js Phishing
2022-07-07 2 sprayitfwd.com/js/owl.carousel.js Phishing
2022-07-07 2 sprayitfwd.com/js/jquery.mCustomScrollbar.concat.min.js Phishing
2022-07-07 2 sprayitfwd.com/js/bootstrap.bundle.min.js Phishing
2022-07-07 2 sprayitfwd.com/js/plugin.js Phishing
2022-07-07 2 sprayitfwd.com/js/owl.carousel.js Phishing
2022-07-07 2 leostop.com/cgi-sys/suspendedpage.cgi?_=1657152920545 Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (15)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] cdnjs.cloudflare.com (1) 235 2014-04-23 07:31:51 UTC 2022-05-16 10:07:49 UTC 104.17.24.14
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-07-06 17:02:11 UTC 34.120.237.76
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-07-06 19:05:02 UTC 93.184.220.29
[Mnemonic Passive DNS] stackpath.bootstrapcdn.com (1) 2467 2018-04-05 04:41:29 UTC 2021-03-05 09:28:46 UTC 104.18.11.207
[Mnemonic Passive DNS] r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-07-06 04:41:34 UTC 23.36.76.226
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-07-06 04:55:23 UTC 54.230.111.7
[Mnemonic Passive DNS] leostop.com (2) 513163 2019-07-06 12:02:00 UTC 2021-02-19 07:08:25 UTC 104.21.92.174
[Mnemonic Passive DNS] e1.o.lencr.org (2) 6159 2021-08-20 07:36:30 UTC 2022-07-06 04:48:56 UTC 23.36.77.32
[Mnemonic Passive DNS] sprayitfwd.com (43) 0 No data No data 162.240.64.171 Unknown ranking
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-07-06 04:47:23 UTC 35.82.213.230
[Mnemonic Passive DNS] ocsp.pki.goog (5) 175 2017-06-14 07:23:31 UTC 2022-07-06 04:42:12 UTC 142.250.74.3
[Mnemonic Passive DNS] fonts.gstatic.com (2) 0 2017-01-30 04:59:51 UTC 2022-07-06 04:41:59 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS] netdna.bootstrapcdn.com (1) 3413 2017-01-30 05:02:32 UTC 2021-03-04 13:34:08 UTC 104.18.11.207
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.118
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 162.240.64.171

Date UQ / IDS / BL URL IP
2022-07-07 05:09:26 +0000
4 - 0 - 0 sitifinancial.com/SecureMTB/login.php?online_ (...) 162.240.64.171
2022-07-07 05:08:25 +0000
4 - 0 - 0 sitifinancial.com/SecureMTB/login.php?online_ (...) 162.240.64.171
2022-07-07 03:35:24 +0000
9 - 0 - 2 thevendorsource.com/admin/index.php 162.240.64.171
2022-07-07 03:35:00 +0000
4 - 0 - 1 sitifinancial.com/SecureMTB/login.php?online_ (...) 162.240.64.171
2022-07-07 03:01:04 +0000
3 - 0 - 0 cbcrating.com/SecureMTB/login.php?country={{c (...) 162.240.64.171
2022-07-07 02:08:25 +0000
4 - 0 - 0 cbcrating.com/SecureMTB/login.php?online_id=9 (...) 162.240.64.171
2022-07-07 01:04:51 +0000
4 - 0 - 1 sitifinancial.com/SecureMTB/login.php?online_ (...) 162.240.64.171
2022-07-07 00:15:31 +0000
0 - 0 - 11 sprayitfwd.com/ 162.240.64.171
2022-07-06 23:08:23 +0000
4 - 0 - 0 sitifinancial.com/SecureMTB/login.php?online_ (...) 162.240.64.171
2022-07-06 18:53:38 +0000
4 - 0 - 0 sitifinancial.com/SecureMTB/login.php?online_ (...) 162.240.64.171

Last 10 reports on ASN: UNIFIEDLAYER-AS-1

Date UQ / IDS / BL URL IP
2022-08-19 01:44:34 +0000
0 - 0 - 1 acupressureexpert.in/Netflix2/8ce87bdda85cd44 (...) 162.241.123.167
2022-08-19 01:40:09 +0000
0 - 0 - 1 mail.estartupchallenge-egabon.org/web/Jorange (...) 108.179.242.163
2022-08-19 01:39:44 +0000
0 - 0 - 1 mail.estartupchallenge-egabon.org/web/Jorange (...) 108.179.242.163
2022-08-19 01:39:35 +0000
0 - 0 - 1 mail.estartupchallenge-egabon.org/web/Jorange (...) 108.179.242.163
2022-08-19 01:39:30 +0000
0 - 0 - 1 mail.estartupchallenge-egabon.org/web/Jorange (...) 108.179.242.163
2022-08-19 01:39:21 +0000
0 - 0 - 1 mail.estartupchallenge-egabon.org/web/Jorange (...) 108.179.242.163
2022-08-19 01:39:15 +0000
0 - 0 - 1 meine-postbank-de.com/cgi-bin/error.php 198.57.247.183
2022-08-19 01:39:15 +0000
0 - 0 - 1 mail.estartupchallenge-egabon.org/web/Jorange (...) 108.179.242.163
2022-08-19 01:14:54 +0000
0 - 0 - 1 www.reacredit.com.br/painel/wa/simple_slide/p (...) 162.241.203.21
2022-08-19 01:13:25 +0000
0 - 0 - 2 https://hostingparacolombia.com/i9dn32.rar 162.241.85.82

Last 1 reports on domain: sprayitfwd.com

Date UQ / IDS / BL URL IP
2022-07-07 00:15:31 +0000
0 - 0 - 11 sprayitfwd.com/ 162.240.64.171


JavaScript

Executed Scripts (11)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (75)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "78A5DCFAF2D93D9C87CFB6DBC56100E9F22965D4500554BA65F71CB7D84DD666"
Last-Modified: Wed, 06 Jul 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10222
Expires: Thu, 07 Jul 2022 03:05:40 GMT
Date: Thu, 07 Jul 2022 00:15:18 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 06 Jul 2022 23:56:23 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5xUhB6VAk9rzGtvOx9Lp1-tedQgNPzKKwQu2caYhNS5XhxVWqKXkug==
Age: 1135


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.7
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Tue, 21 Jun 2022 12:10:22 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 06 Jul 2022 03:26:46 GMT
etag: "581454acdd98f34fd3fbabd0977ade29"
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OT8HLMJ_QQ_mXqbPinE530cVYJTl9_mwILfA42UwNWbD_ghcn4gODg==
age: 74913
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    581454acdd98f34fd3fbabd0977ade29
Sha1:   d8d86c0b513137aeb85de01cea7b272c35eb6ab4
Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Thu, 07 Jul 2022 00:15:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET / HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Server: Apache
Last-Modified: Wed, 04 Mar 2020 01:18:22 GMT
Accept-Ranges: bytes
Content-Length: 23290
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (668), with CRLF line terminators
Size:   23290
Md5:    3377081bfcb9697de4630d04135334a4
Sha1:   c54e4cccd88a99c307a131a54f3703e332c43faa
Sha256: ba3b062d790589c6718ae0825e9ebca32f41449f55bda0c6b37d85190aac3c43

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /ajax/libs/fancybox/2.1.5/jquery.fancybox.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sprayitfwd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
                                        
date: Thu, 07 Jul 2022 00:15:19 GMT
content-type: text/css; charset=utf-8
content-length: 955
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e58-f2d"
last-modified: Mon, 04 May 2020 16:10:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 9004584
expires: Tue, 27 Jun 2023 00:15:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fhjn%2Fg99rlixfXkFyNlK19Q6sK7yrnwuDWaEjCxs3AoncZZ4L58EvkYDmANoQAoHqDT6cSfb32TuNi3c2em3PxKOwBR5LRvftyYYFHMbD71BQLo3eXWFphsI5ZLpCRb%2BTp99cBLW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 726c62901cbcb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3885), with no line terminators
Size:   955
Md5:    254cb13c6249ee8b9472c24687430bce
Sha1:   b8a63a6e9a1c8a4b459b3406c488063656895e9e
Sha256: 35b2fbdb02a628e43ff25273c788262646b73374101214e88fc8ce83026295c8
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css/owl.theme.default.min.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css/responsive.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 04 Mar 2020 01:35:46 GMT
Accept-Ranges: bytes
Content-Length: 10932
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   10932
Md5:    80991eb72c503fe2f4cd438a3aa81cce
Sha1:   fdad3b21b06f300e34780ff03f36ef66ba36bb6f
Sha256: fb58a03173b85d93f8287136f20f3c8f2358994473c398820a027b3946bd43cd
                                        
                                            GET /css/owl.carousel.min.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 3248
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3081)
Size:   3248
Md5:    351b4e5f569a83790bed10824208390d
Sha1:   c20bb4cbb04f19dd2ffc4e8734b96fe06cdc9b48
Sha256: 813f1398bf1531b20c365414d810e75f2ae867a70391794ca28eb57e18117c66
                                        
                                            GET /css/jquery.mCustomScrollbar.min.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 42839
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (42839), with no line terminators
Size:   42839
Md5:    f59e3f4c0087b4d8ddc27bdd9c9ab92b
Sha1:   fac9b521062feb5250c04d62128a8c3ddb312632
Sha256: 247184981eb6f698a94e431a83d68c6b0df623cce57b6e29dc5a6c11e23aa195
                                        
                                            GET /js/popper.min.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:52 GMT
Accept-Ranges: bytes
Content-Length: 19190
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (19013)
Size:   19190
Md5:    ccc533cf501d3f124323b95318c6bbb8
Sha1:   947b7849caa627e6f13941ce7d358fbe74cf3b68
Sha256: 6527e14ac1690f2e8b1fe033fe68d7673b27015a2affab7fe064aa39bb0f7d85

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css/style.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 04 Mar 2020 01:35:52 GMT
Accept-Ranges: bytes
Content-Length: 16894
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   16894
Md5:    c60b9a02c1d27c2eead0ba7a39f1af3e
Sha1:   a6bd4926c195d0fa40bd038c1b15f3105c57ae5a
Sha256: e827ae3349c8147a2eecb752dc77d9b32c39347c7b4ae7ee451061781f52cd29
                                        
                                            GET /css/bootstrap.min.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 140421
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65324)
Size:   140421
Md5:    fee68c0f2f583161134a1fcb5950501d
Sha1:   8e52dd818562db0ba0764bba172cb91ce248d8b0
Sha256: 34959e43e6ecf368807a84f92ad9aa6e2dcd5f0c5c1e57da55e8f3248d9d9255
                                        
                                            GET /js/jquery-3.0.0.min.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:50 GMT
Accept-Ranges: bytes
Content-Length: 11324
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   11324
Md5:    68c83ed206a2b972d61a89dfb6d250d0
Sha1:   1d310c0931fd748d904facfead4deaf7ad5739d1
Sha256: 263eb1915970b23889768338a7e7c82a23908b944100e50443183905636de4ff

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/jquery.min.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:50 GMT
Accept-Ranges: bytes
Content-Length: 87088
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65290)
Size:   87088
Md5:    cbde2a48700724f03cee8c63d5911fbb
Sha1:   c867c50e43b7f62a4238b84e9f7fd2fffc0c6da5
Sha256: c90c190b73facc126891f2f132ec481e9d65f0eb550e34610e244adfaec23492

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/custom.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Fri, 20 Mar 2020 19:41:12 GMT
Accept-Ranges: bytes
Content-Length: 9866
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   9866
Md5:    74318ae0b9e1d194a71b21e7538478da
Sha1:   49409148fc39f3c65102a76675a55bb844e34efe
Sha256: 9ff93263ee4725706c4515e9fb3be76d9e0f83cd54d9e009e295ac76e211ef9f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/owl.carousel.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/jquery.mCustomScrollbar.concat.min.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:50 GMT
Accept-Ranges: bytes
Content-Length: 45479
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32001)
Size:   45479
Md5:    42a368e95b4a38989c8984c672d29ec0
Sha1:   70b2b29b138b9ddcdcbb58bd5d825f780eadcdfa
Sha256: fd8027b53a97cbd5782e85c5908e563c39776703ff9279f50658e630927b4167

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/bootstrap.bundle.min.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:50 GMT
Accept-Ranges: bytes
Content-Length: 70808
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65297)
Size:   70808
Md5:    62e633210885066c625c46081cc2b339
Sha1:   8709e629eeefeb122c09d1d5f902854845a0b496
Sha256: efcad26419c1257989e551ae58bf2692e9ef872f7883df51c39ddbb2c8c74949

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 06 Jul 2022 23:34:57 GMT
Cache-Control: max-age=3600
Expires: Thu, 07 Jul 2022 00:10:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -qQU6uMzFb_yKp7YKh9BNm6DySvNI41fEr4NxHwOuE8zqMqNXompIA==
Age: 2423


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /css/normalize.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 7381
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   7381
Md5:    8d9d541cc4c37ce152038f142628e199
Sha1:   b2e67ca61fc06e08530de1a70c476c72000fa297
Sha256: 1b9540dbd7121fe2712bcf8c78054bdfa4215254efec58a9724e5d9d55e9517c
                                        
                                            GET /css/icomoon.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 28414
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   28414
Md5:    e841f7cdec90ebf92272192c8e8bc027
Sha1:   adb98f477baaa9e703034dbb04e374f65800124a
Sha256: c009b6d8414d258f737d128b4519be3f3a13fcd81b7b3682753ff06de3b54d13
                                        
                                            GET /css/css/font-awesome.min.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
                                        
                                            GET /css/meanmenu.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Sat, 13 Jul 2019 19:18:38 GMT
Accept-Ranges: bytes
Content-Length: 3842
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   3842
Md5:    00294f3d8a54d4083e10a75b1fa5b5f1
Sha1:   7ebb52584dddecfc0ce9cd48b9c01ba9d883540a
Sha256: a599cf444dcb981d4291e0cc1f89575117c6569e78ec8eb3452c63d35b2affef
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 729
Cache-Control: 'max-age=158059'
Date: Thu, 07 Jul 2022 00:15:19 GMT
Last-Modified: Thu, 07 Jul 2022 00:03:10 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /css/swiper.min.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
                                        
                                            GET /css/slick.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 1884
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1884
Md5:    f46bd015743c36e5514de87e0c1b40e5
Sha1:   11d17a03235ff610f893d04c5c6a30c7b1b401d3
Sha256: 00f74ce6434ed37ab229be8039bcdf6495a2fa58cc1e4ee65c5e623ec6b7af17
                                        
                                            GET /css/jquery.fancybox.min.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:20 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 14143
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (14143), with no line terminators
Size:   14143
Md5:    ba919c6d4aced8bb72840a2618f397a3
Sha1:   b6148ec09012fa119d02e0fc64d8e91ec272cd30
Sha256: 71655a3a80f0ede6a9011e1ab7d584473c29026c09f500cbe9bef99da96c70fe
                                        
                                            GET /css/jquery-ui.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:20 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 35973
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2363)
Size:   35973
Md5:    c4a88ec0cb998929a670c0c58d7dc526
Sha1:   03135a88e8dbc36020dd453d1e7407ce9a3a2cc2
Sha256: 44f8a56d427917b5fa0dd7933ba545679be5e6b3b93099e64a4e29c2159f57c0
                                        
                                            GET /js/plugin.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:52 GMT
Accept-Ranges: bytes
Content-Length: 918708
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32000), with CRLF line terminators
Size:   918708
Md5:    1627446b73ab91f2df237b4fb989a9cf
Sha1:   392dca8a67c0804b18b90ee6171e9ef015f8e5da
Sha256: 0a403468ff0fb786bebdddc7625da883b09f9f8e83ba5475ad3ea729241447eb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css/nice-select.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:20 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 3653
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   3653
Md5:    7641aec4b8c405f570860925f7f64580
Sha1:   84460de5f6746a823d71cd2df0328ffa21f8431a
Sha256: 685f9eca266a49de2eaa2f052eee413ecef3ec2bca80b6d7e04c70dc02d0906a
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EHvaX+JpXJXfJ035FiUFUQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.82.213.230
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7I5y5n8fIk13KlaoeNMB7Sc2YyE=

                                        
                                            GET /css/animate.min.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:46 GMT
Accept-Ranges: bytes
Content-Length: 53678
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (53660)
Size:   53678
Md5:    a332e9019e2a787d926d9fa1abaeb9d4
Sha1:   0b841113e864a4f89e12387d816546cf5bdc86fe
Sha256: 86abaffb470415e30702185491101c1f3767a73b2283305428d2450e358442ac
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://sprayitfwd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16360
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Jul 2022 19:35:18 GMT
expires: Thu, 06 Jul 2023 19:35:18 GMT
cache-control: public, max-age=31536000
age: 16803
last-modified: Wed, 11 May 2022 19:25:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16360, version 1.0\012- data
Size:   16360
Md5:    4333f8c1f02dee549bdb7353a3b48e82
Sha1:   a6bd7db06cf5ea54c529c1c8efc81cb805fa51e3
Sha256: e3f25c51e5e6f03dc0513385a1d8730f36537309864c444ab253ed66b2bf2db3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://sprayitfwd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16720
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Jul 2022 19:34:58 GMT
expires: Thu, 06 Jul 2023 19:34:58 GMT
cache-control: public, max-age=31536000
age: 16823
last-modified: Wed, 11 May 2022 19:25:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16720, version 1.0\012- data
Size:   16720
Md5:    c416910cae8fe4258cdf8c35933e9f4c
Sha1:   4a768ba0a3abc49b572c08c235db9f066ffc2b18
Sha256: 9434dddcdf38e072b039bb92f9e90639ec0e0563e8ff51604a60d91830c29289
                                        
                                            GET /images/logo.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 01:21:20 GMT
Accept-Ranges: bytes
Content-Length: 1997
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 136 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size:   1997
Md5:    7bbadb3dd646a2edc3dd8a263b00c936
Sha1:   049ece13cd509870c81ae6b42982e296fa9e9892
Sha256: e870ffa713e824fb44c8f0d109f240831141c4d1685883e802e0ff7ad5e844c2
                                        
                                            GET /images/instagram-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 22:54:36 GMT
Accept-Ranges: bytes
Content-Length: 1583
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size:   1583
Md5:    5de678dcd97c12113c5a43123d4f9974
Sha1:   33415d07265f444f1bcd30af723146af5f7e1df1
Sha256: 8542fb2e0f9e6fd45250f608ae756aebdf35474e57a66933b51f6e40536396ab
                                        
                                            GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1 
Host: stackpath.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sprayitfwd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.11.207
HTTP/2 200 OK
                                        
date: Thu, 07 Jul 2022 00:15:19 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/15/2021 21:49:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 2729ae8f2fc6c761bdc17d91cc795f58
cdn-cache: HIT
cf-cache-status: HIT
age: 2599673
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 726c62901ba7b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   51218
Md5:    dafcbd828ae63be70778965a4bdd6240
Sha1:   cae9a1e35fd4b1cb1a7255ba1bd5e19c0915dde5
Sha256: 46a29401504ba55e8bdd04de33044fb0de64e3e8ce6c142045a793ff31b3c650
                                        
                                            GET /images/user-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Last-Modified: Fri, 28 Feb 2020 00:31:34 GMT
Accept-Ranges: bytes
Content-Length: 1081
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 19 x 18, 8-bit/color RGBA, non-interlaced\012- data
Size:   1081
Md5:    3e7cad0a8a7ae8bba0767a89144270b2
Sha1:   1025152e225a0159cb58dd089e845fe84f001af0
Sha256: 77c2d031efbf23e7b781e3f95d2fb70d0699232d840b7f8257cfdcb1a154f209
                                        
                                            GET /images/linkedin-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 22:54:06 GMT
Accept-Ranges: bytes
Content-Length: 1319
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size:   1319
Md5:    14c774ab5830977fdb82585d6c944d71
Sha1:   cdaf014e8c56d003a19e01b83e5f079a456747ab
Sha256: 3b0651857b83929c88605cf5ef6107a6e7e62fc5bcf73fb41edd13e0259bb1e9
                                        
                                            GET /images/twitter-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 22:53:10 GMT
Accept-Ranges: bytes
Content-Length: 1370
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 30 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   1370
Md5:    4c72add1274a1163bd6642cc7dd7315f
Sha1:   819fb2842120b17aeb14c60b7609971696b81a64
Sha256: 8147dc5c46a3869f9024e917d9abf277bb343c7dd7022475dda29c854cbbc1ed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/owl.carousel.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /images/search-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 01:23:30 GMT
Accept-Ranges: bytes
Content-Length: 1189
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 21 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size:   1189
Md5:    dc9dbe8d63916e2108f9bd259cb00754
Sha1:   dff571352ba43ae3d8e53efd4335579da5821981
Sha256: e7637da0f34a4c4f6875d68424cf18c63efd7236df79481838009ccc1ce65f46
                                        
                                            GET /images/toogle-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 01:22:52 GMT
Accept-Ranges: bytes
Content-Length: 1066
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 41 x 23, 8-bit/color RGBA, non-interlaced\012- data
Size:   1066
Md5:    095cfcfb6f5c4cc9bf827b9351d4f1d1
Sha1:   45151af253747675a19b140f96053bcfe9884cda
Sha256: 0707e24c0e91121de581aceac65f8367265d6d3548afb0c8388fe3099bbc272c
                                        
                                            GET /images/about-bg.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 20:53:30 GMT
Accept-Ranges: bytes
Content-Length: 617160
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 1920 x 684, 8-bit/color RGB, non-interlaced\012- data
Size:   617160
Md5:    d6e712967f89bd28371fbb8cf02c8c2d
Sha1:   a789ed586b41bda7b2709c1831813728fd8c2783
Sha256: 888b198ae412f38c2f5e8f48c4872b0eef3046e9c4852b8b67f18885b4faa5b0
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909"
Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3246
Expires: Thu, 07 Jul 2022 01:09:27 GMT
Date: Thu, 07 Jul 2022 00:15:21 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909"
Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3246
Expires: Thu, 07 Jul 2022 01:09:27 GMT
Date: Thu, 07 Jul 2022 00:15:21 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909"
Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3246
Expires: Thu, 07 Jul 2022 01:09:27 GMT
Date: Thu, 07 Jul 2022 00:15:21 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909"
Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3246
Expires: Thu, 07 Jul 2022 01:09:27 GMT
Date: Thu, 07 Jul 2022 00:15:21 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909"
Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3246
Expires: Thu, 07 Jul 2022 01:09:27 GMT
Date: Thu, 07 Jul 2022 00:15:21 GMT
Connection: keep-alive

                                        
                                            GET /tracking/tracking.js?_=1657152920545 HTTP/1.1 
Host: leostop.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         104.21.92.174
HTTP/1.1 301 Moved Permanently
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 07 Jul 2022 01:15:21 GMT
Location: https://leostop.com/tracking/tracking.js?_=1657152920545
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uRyqmsmMpxR6KXvSM%2FWRZHVnaor6icNr%2FVJdgIhkor4YfV7WD1DBPSz3Yr2zUtLa2BggLbItufrXbpJpv6OhVvPECLuGKmaqBwFXUMQ%2F4Dd348%2FQTujne6ypl1kxhA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 726c629f7d03b50f-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa89fb6c-1b8f-4b5f-881a-7c1b4ddc61b9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 4829
x-amzn-requestid: 9345b8b6-c799-4398-86f8-618eec6f54d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UjGL9F4oIAMFZQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bdea4c-0699926943cefd29234495fa;Sampled=0
x-amzn-remapped-date: Thu, 30 Jun 2022 18:24:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: SMiaJuChqVtH1akE4ReBrQQQS5Ic3HWrxL6FolBADdFQPakWPK9-zw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 21:56:11 GMT
age: 8350
etag: "b639fd1617311bd45a8615efc46b043526add4aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4829
Md5:    08b23daa51c5aa9893d433505300ef81
Sha1:   b639fd1617311bd45a8615efc46b043526add4aa
Sha256: 861c1f7c52fd5c5d2b8d0ae86ee2e3d46df0e9552ed2657f8aa6114703320779
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2fc71a-842c-433d-8506-e191aa0edcd6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 4243
x-amzn-requestid: 7529aa91-0ea7-442d-a0b7-c3c74f0d5d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UthU8HNdoAMFpUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c215b9-527e994b56eb0630557d6dd5;Sampled=0
x-amzn-remapped-date: Sun, 03 Jul 2022 22:18:33 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DQPLClNEQSPyiJJEq83p-1_lCk1cLIqpXQuPUQA2EzYd4kc0D9ILaw==
via: 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 04:44:24 GMT
age: 70257
etag: "5f4a7a2dcc9ffbb5bb61859a6337ec9c8f11f1f3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4243
Md5:    4dadb5bd9157f2899ea250117bf6655e
Sha1:   5f4a7a2dcc9ffbb5bb61859a6337ec9c8f11f1f3
Sha256: 236f94db1ce5926743b6f0692509ab20c17fca595b5c062133a9d24fc80d6f0d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd91e1318-19c1-478d-9499-3baab13b925b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6764
x-amzn-requestid: 066475d9-bed3-4626-9a4d-a9e713866195
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U3UCmEwgIAMFSDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c60076-694099bd5429b3a91e282d27;Sampled=0
x-amzn-remapped-date: Wed, 06 Jul 2022 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: jh7ZAJd4DsRo2ta0q52WTWDvbtko84520eh2OKRfDv7KdoEW4fGtXQ==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 21:45:37 GMT
age: 8984
etag: "245427c92c74e85f199f9fd9563c91cb62cba979"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6764
Md5:    92e0cfdf03ce76aa5a899b42fc763e83
Sha1:   245427c92c74e85f199f9fd9563c91cb62cba979
Sha256: 2216f105d3350eabd7422e964bbbd9758009675ace79437c368097a27bf1f1fb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1f48beb-da86-42f3-b5da-39fa82b568cb.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7249
x-amzn-requestid: 74cbc653-182e-4ef0-9fe5-901ddaa4edaf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UoBIEGKqIAMFp8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bfe233-383f73a750696511624ff453;Sampled=0
x-amzn-remapped-date: Sat, 02 Jul 2022 06:14:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BVo4WA3x-2hGSrOBQTIcT5yjiYcdzQby4NDOrnrWpREFtHG5x52Jzg==
via: 1.1 25b9a991f871f75614e7f92f97b136a4.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 09:18:45 GMT
age: 53796
etag: "2f79d1e28bb827f7fa60b6675dba8022c28a1a3d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7249
Md5:    5c958b0c904620aff5f5f8a74f80d9f9
Sha1:   2f79d1e28bb827f7fa60b6675dba8022c28a1a3d
Sha256: 8bba608d028bbb678f021eaca3364856f930069f44b647346e649eca4c383955
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F922dd00d-fd62-44d8-aed0-44e2f9cf82d4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 10272
x-amzn-requestid: 8351e692-985b-4891-b827-77b52d9fa1ad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Utc5yGQnIAMFYLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c20ea4-58e49c525fba7a4d71ae9aed;Sampled=0
x-amzn-remapped-date: Sun, 03 Jul 2022 21:48:20 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: sDaxe8WDrbE53siAcd90FUbOcpLIL2YLybRGhZa-Nx_x2msBCP72yw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 15:30:48 GMT
etag: "e514dd2ba6506dbfa0393dacd64630699e739697"
content-type: image/jpeg
age: 31473
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10272
Md5:    eddc9e66ac69496089132a17abcb74ac
Sha1:   e514dd2ba6506dbfa0393dacd64630699e739697
Sha256: ea84cd380943f8b4f74dccea600b23701bbf46b0ab1b512065b6b4cf0b4eab05
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13136825-0301-44c6-8c81-faf21628fe4c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6737
x-amzn-requestid: 9a9c33df-daa2-49fb-ba8e-fd5a3149828e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UeP9ZG93oAMFX6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bbf9ef-248528170cf451be2662dbef;Sampled=0
x-amzn-remapped-date: Wed, 29 Jun 2022 07:06:23 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GZWZ5vCdHbLeGN4FdZbd8ysfjqcGd-7MsBW_steUpJ38jyLd16JNtw==
via: 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 03:53:29 GMT
age: 73312
etag: "5e2f835320ab350cdd1c3ad1ceb71db2bb27b84f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6737
Md5:    44f59062cacc44be268845c493de29de
Sha1:   5e2f835320ab350cdd1c3ad1ceb71db2bb27b84f
Sha256: c37305dfa7a241e526c7246a6eb71360dbfa2fe5d7f369f37ef7ddbfe1b97749
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "0F8B0E82954EEECC85FC189CB3A33845EC68B656B0D4DBBBEA011CF9782DD1B7"
Last-Modified: Tue, 05 Jul 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5912
Expires: Thu, 07 Jul 2022 01:53:53 GMT
Date: Thu, 07 Jul 2022 00:15:21 GMT
Connection: keep-alive

                                        
                                            GET /font-awesome/4.0.3/css/font-awesome.css HTTP/1.1 
Host: netdna.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sprayitfwd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.11.207
HTTP/2 200 OK
                                        
date: Thu, 07 Jul 2022 00:15:19 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 2021-08-03 04:14:00
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 6358afe6e12aefed963ad27f3935d6d1
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 2599605
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 726c62901b9fb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  troff or preprocessor input, ASCII text, with very long lines (305)
Size:   5938
Md5:    71dd49f76686f3a5ff4deb91ee27cdb2
Sha1:   d4d13de0e834307b1c2e6ffbd96d772c11043ed6
Sha256: b71eed55a433db417a76072feada576a3623cc9448bdf82d6e7a6afe74fb1794
                                        
                                            GET /images/fb-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 22:53:40 GMT
Accept-Ranges: bytes
Content-Length: 1173
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 16 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size:   1173
Md5:    69d2acc3fbc9b7ea73c4bade1f784d34
Sha1:   1430163934603696fd14040cbe09ceb44ae25381
Sha256: e468312322e0cc3a726c201aea5aef13fef84acc3554da77b5fee35cd6d0493d
                                        
                                            GET /images/call-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 23:07:40 GMT
Accept-Ranges: bytes
Content-Length: 1123
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 18 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size:   1123
Md5:    507eaa1bd1bc094154ffd8d78c86a8bb
Sha1:   86276f8605c80b83e92d8453a2fa861c27c31a7d
Sha256: e903a9b90f0144dc2c9275d63014d5d6004fad56cbaaac8c1f81a02c23f72794
                                        
                                            GET /cgi-sys/suspendedpage.cgi?_=1657152920545 HTTP/1.1 
Host: leostop.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://sprayitfwd.com/
Connection: keep-alive

                                         
                                         104.21.92.174
HTTP/1.1 301 Moved Permanently
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 07 Jul 2022 01:15:21 GMT
Location: https://leostop.com/cgi-sys/suspendedpage.cgi?_=1657152920545
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dmHe59idDc40Y8mmBo%2FW2yUMCD9SbsbXfcClioU4JO9UuI%2Bw4il7gQlnh%2FAvz1Axgruaas31T2HEW66i%2FQAiixLc1Ivi%2BmjZDLZx87pxfOE041aqeJrO4tvc61TAiw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 726c62a21e9db50f-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "0F8B0E82954EEECC85FC189CB3A33845EC68B656B0D4DBBBEA011CF9782DD1B7"
Last-Modified: Tue, 05 Jul 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5912
Expires: Thu, 07 Jul 2022 01:53:53 GMT
Date: Thu, 07 Jul 2022 00:15:21 GMT
Connection: keep-alive

                                        
                                            GET /images/banner-bg.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 01:40:04 GMT
Accept-Ranges: bytes
Content-Length: 1845249
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 1920 x 1143, 8-bit/color RGBA, non-interlaced\012- data
Size:   1845249
Md5:    46afeb30c88cb118a54bdcdcbfc242d0
Sha1:   f302e0fb7e59ea1369c60f645a3d1fc53966e943
Sha256: b244e2e4bda949010a46277ffcf8d75beaf1039eae116894ca335aa6b26f4c21
                                        
                                            GET /images/mail-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 23:08:00 GMT
Accept-Ranges: bytes
Content-Length: 1215
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 25 x 17, 8-bit/color RGBA, non-interlaced\012- data
Size:   1215
Md5:    7f6f6b71c691d44135eff2a0db2cea17
Sha1:   b5d1b35c92ce3e19296fda3ff50a0400fdfe8cb0
Sha256: 0d99fc05bed096309fdea6e7ab46a7b758360307b50f3c795000f3a8f7a91bc0
                                        
                                            GET /images/banner-img.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 01:37:00 GMT
Accept-Ranges: bytes
Content-Length: 961239
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 664 x 1031, 8-bit/color RGBA, non-interlaced\012- data
Size:   961239
Md5:    1cce91ed82665967b2efeeb02cd44f8f
Sha1:   7fa802c7ab7ce7afeba0a3fff898b01ec0cb3f19
Sha256: 8c1e84bb6b22d5ca952c61324463bd0768e21e33187ee917c43d06a74dde3acd
                                        
                                            GET /images/img-3.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 20:47:22 GMT
Accept-Ranges: bytes
Content-Length: 1042844
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 816 x 699, 8-bit/color RGB, non-interlaced\012- data
Size:   1042844
Md5:    9d494e0c312456490443eabe9b0b6c23
Sha1:   093346dcf20f3285573619280de260594ad6aafd
Sha256: 3f9abba495798fc7b30aee209901caa01113ae996a3e2edca29ec30326ab8d48
                                        
                                            GET /images/img-2.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 20:46:32 GMT
Accept-Ranges: bytes
Content-Length: 609312
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 816 x 699, 8-bit/color RGB, non-interlaced\012- data
Size:   609312
Md5:    dd0345d2b0306d20bc420e9b8d31a13d
Sha1:   c675c1109e7969f24440a85d30732018e9e5bb52
Sha256: 1f6cf4ceee60ad4e9efc1c2d09aef9bcbf7aca4d86280aa7a7e2411731322b96
                                        
                                            GET /images/fevicon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 07 Jul 2022 00:15:22 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
                                        
                                            GET /images/img-1.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:21 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 19:14:56 GMT
Accept-Ranges: bytes
Content-Length: 647891
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 816 x 699, 8-bit/color RGB, non-interlaced\012- data
Size:   647891
Md5:    2ccae0f4be37dbaec9a4e088dd036b30
Sha1:   518b0064566201d193a5e055d5c2960c847e5648
Sha256: 6f11ab403158d93c51633a95574bd800dcda59140e190f4712e05d539ac56e0b