r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8407
Expires: Sun, 29 Jan 2023 11:11:11 GMT
Date: Sun, 29 Jan 2023 08:51:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2918
Expires: Sun, 29 Jan 2023 09:39:42 GMT
Date: Sun, 29 Jan 2023 08:51:04 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 08:35:36 GMT
content-type: application/json
age: 928
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6447
Expires: Sun, 29 Jan 2023 10:38:31 GMT
Date: Sun, 29 Jan 2023 08:51:04 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WPf50CY+LrA+DhZ/B+Ot4TWBPMciN3dNwskEizjjgslxhk2oZvUZbcd5aap89xM1NCGFtZ9r0mgci+tSWz0vsQ==
x-amz-request-id: D59B8KXYE3X0VQA6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 08:50:15 GMT
age: 49
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 08:51:04 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
adanahidrofor.com/DFZE4Z5FZE5E/dhlexp2m/dhl/info.php
301 Moved Permanently 0 B URL HTTP/1.1 adanahidrofor.com/DFZE4Z5FZE5E/dhlexp2m/dhl/info.php
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /DFZE4Z5FZE5E/dhlexp2m/dhl/info.php HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Set-Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; expires=Mon, 29-Jan-2024 08:51:02 GMT; Max-Age=31536000; path=/; domain=.adanahidrofor.com
8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5; path=/; HttpOnly
Location: /error-404.html
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Date: Sun, 29 Jan 2023 08:51:02 GMT
Server: LiteSpeed
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 08:41:41 GMT
age: 563
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
adanahidrofor.com/error-404.html
200 OK 5.7 kB URL HTTP/1.1 adanahidrofor.com/error-404.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1774), with CRLF, CR, LF line terminators
Hash e64ec0634742418c70bde2d474628bee
6fb7fa005a42a02c54760889b20cc39d6826d38c
f1e6d0caa82e3421c89cc7c324de0549e0c934a0cfc2c849aa9a5ff177aa739b
Analyzer Verdict Alert fortinet Phishing
GET /error-404.html HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Set-Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; expires=Mon, 29-Jan-2024 08:51:02 GMT; Max-Age=31536000; path=/; domain=.adanahidrofor.com
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Sun, 29 Jan 2023 08:51:03 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Transfer-Encoding: chunked
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21106
Expires: Sun, 29 Jan 2023 14:42:50 GMT
Date: Sun, 29 Jan 2023 08:51:04 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=Montserrat:700,400
200 OK 521 B URL HTTP/1.1 fonts.googleapis.com/css?family=Montserrat:700,400
IP
Hash b52e405858cd07e929b5387c0ed0d1de
8dc157b5ece5222f0f175eee9379a699dee76cd8
e289bd897465ef8c6c74d81d09ee98cf500d744073df727158f6323caf335547
GET /css?family=Montserrat:700,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 29 Jan 2023 08:51:04 GMT
Date: Sun, 29 Jan 2023 08:51:04 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/themes/base/jquery-ui.css
200 OK 6.1 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/themes/base/jquery-ui.css
IP
File type ASCII text, with very long lines (551)
Hash 0808145a9c4e923e12de287e8ff7b899
a51d7d241f781180919b88366f90d585485472f2
680a28f33c54f05ee7d52d72f15ad098ea5c3cf5799b42da33c6329a14e9251b
GET /ajax/libs/jqueryui/1.9.2/themes/base/jquery-ui.css HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 6060
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 25 Jan 2023 04:18:54 GMT
Expires: Thu, 25 Jan 2024 04:18:54 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/css; charset=UTF-8
Age: 361930
fonts.googleapis.com/css?family=Open+Sans:300,300italic,400italic,400,600,600italic,700,700italic,800,800italic
200 OK 1.1 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:300,300italic,400italic,400,600,600italic,700,700italic,800,800italic
IP
Hash 7d5978eb65ebf46f535000aeb7b83d11
d64c84281e4ca0605a4f4cc201edd15c2328a7f7
fffe03db40fdc7db46668277add134eb4886f80caa9faf08b9ca8360908e3ebd
GET /css?family=Open+Sans:300,300italic,400italic,400,600,600italic,700,700italic,800,800italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 29 Jan 2023 08:51:04 GMT
Date: Sun, 29 Jan 2023 08:51:04 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css
200 OK 6.0 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css
IP
File type ASCII text, with very long lines (23577)
Hash 79b25bba7faf617a700078021baf261d
afe865347d7edd54588209e2c192160aa4fdba2b
0d532abf8b1c2cc786dda91d183f02a318c82e03e6fd920addf82d0f4ef818bd
GET /font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 08:51:04 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
CDN-EdgeStorageId: 632, 617, 617
Last-Modified: Mon, 25 Jan 2021 22:04:54 GMT
CDN-CachedAt: 2021-06-08 21:08:57
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: e6a55b08fe5091f45c9e99ce9e9f98c2
Content-Encoding: gzip
CDN-Status: 200
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 20423863
Server: cloudflare
CF-RAY: 7910b9537904b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js
200 OK 63 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js
IP
File type ASCII text, with very long lines (64562)
Hash 468446a7240461af44b59ebb2047c231
47b7c525dc91bece99df0c414960b9490b986ba8
ae1a0126552472d1e1347ceb8027ed725db3b93fcbc0b39745a92412cc1641a6
GET /ajax/libs/jqueryui/1.9.2/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 62563
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 26 Jan 2023 15:38:16 GMT
Expires: Fri, 26 Jan 2024 15:38:16 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 234768
adanahidrofor.com/templates/jm-guest-house/css/bootstrap_responsive.32.css
200 OK 4.1 kB URL HTTP/1.1 adanahidrofor.com/templates/jm-guest-house/css/bootstrap_responsive.32.css
IP
Hash 3801b95b59982885882a8c3b38c39651
1c77c06836cf444713ea187b14edc198c8bd6dd4
3e5ab3899a9d4a5d012fb85f93dcf8e008b5b1407d286795e96489e5b04f7753
GET /templates/jm-guest-house/css/bootstrap_responsive.32.css HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: text/css
Last-Modified: Mon, 23 May 2016 22:47:44 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 4089
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/modules/mod_djmegamenu/mobilethemes/dark/djmobilemenu.css
200 OK 1.4 kB URL HTTP/1.1 adanahidrofor.com/modules/mod_djmegamenu/mobilethemes/dark/djmobilemenu.css
IP
Hash ac29823bc2c17fc7b91be18442aae0df
7ea53f55d2e04541f1fcbc70055efdd469cfb816
7c0fa619dd1a354279e76f70db826c4f6c29aa367d5b013b89cf09db9a3457bc
GET /modules/mod_djmegamenu/mobilethemes/dark/djmobilemenu.css HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Oct 2015 06:16:46 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 1398
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/modules/mod_djmegamenu/assets/css/offcanvas.css
200 OK 1.3 kB URL HTTP/1.1 adanahidrofor.com/modules/mod_djmegamenu/assets/css/offcanvas.css
IP
Hash 0ee4509cf92056441cf4ebbf84e33060
403893652b21c3646c8c6301c3dc799614eaf609
f4c5c13e884658d1ca56c94b315470a292af44a20c0d6ee395087925ccd85def
GET /modules/mod_djmegamenu/assets/css/offcanvas.css HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Oct 2015 06:16:46 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 1256
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/modules/mod_djmegamenu/assets/css/animations.css
200 OK 252 B URL HTTP/1.1 adanahidrofor.com/modules/mod_djmegamenu/assets/css/animations.css
IP
Hash 4934e900512437b3c502a55e06d27511
2bda5926d021c99e0192bc67d76d64f1020baa2f
ee708421649d5f4bdaba883578eb34764a1e441beba80b2fcf50c5c122577a30
GET /modules/mod_djmegamenu/assets/css/animations.css HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Oct 2015 06:16:46 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 252
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/modules/mod_js_cookie_alert/tmpl/css/style.css
200 OK 803 B URL HTTP/1.1 adanahidrofor.com/modules/mod_js_cookie_alert/tmpl/css/style.css
IP
File type ASCII text, with CRLF line terminators
Hash db35fedfcd517fae70bfe309041e702f
46b2b2d42c55c8a67d7d903d077262821239a4f5
d9d384e76c0977e6514e9aa7b80ebefe4cf6b32eda1f06aef6fc97c2975342bc
GET /modules/mod_js_cookie_alert/tmpl/css/style.css HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: text/css
Last-Modified: Sat, 31 Dec 2022 07:16:40 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 803
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/templates/jm-guest-house/css/template_responsive.32.css
200 OK 1.1 kB URL HTTP/1.1 adanahidrofor.com/templates/jm-guest-house/css/template_responsive.32.css
IP
Hash 376b365b40fda9cb3f23981f630193be
2c80765667cb2704bf12790d3541151df329b4d8
02baf51b75548b276698ba3139a19da22ed464299cb4af9211e7fefde411477d
GET /templates/jm-guest-house/css/template_responsive.32.css HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: text/css
Last-Modified: Mon, 23 May 2016 22:47:45 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 1068
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/templates/jm-guest-house/css/djmegamenu.32.css
200 OK 1.5 kB URL HTTP/1.1 adanahidrofor.com/templates/jm-guest-house/css/djmegamenu.32.css
IP
Hash 02169493113f92781c8ccbb8ef1839cf
3478060678a6fe2b5ebc0e60201a999b02e9cf1c
9eaee0876c6a676c82605d1d78b6279a89456abf04fe576fe32c018341525c4c
GET /templates/jm-guest-house/css/djmegamenu.32.css HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: text/css
Last-Modified: Mon, 23 May 2016 22:47:43 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 1450
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/media/jui/js/jquery-noconflict.js
200 OK 21 B URL HTTP/1.1 adanahidrofor.com/media/jui/js/jquery-noconflict.js
IP
Hash e2060c4e5e5955c824723b13a212d3ec
18420ce484978f8ba3d7371febf1638828bb7a67
5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6
Analyzer Verdict Alert fortinet Phishing
GET /media/jui/js/jquery-noconflict.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Fri, 09 Oct 2015 09:04:56 GMT
Accept-Ranges: bytes
Content-Length: 21
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/media/system/js/html5fallback.js
200 OK 2.4 kB URL HTTP/1.1 adanahidrofor.com/media/system/js/html5fallback.js
IP
File type Unicode text, UTF-8 text, with very long lines (6474), with no line terminators
Hash 3ba83de6c38110d92dcb0534476764e7
720c43c8f09d777e0a245704bdf714d9c99b7121
6644f3c650b1a3e22a6076f449732e0f15a455beb228919f72b1a2f3b936eecb
Analyzer Verdict Alert fortinet Phishing
GET /media/system/js/html5fallback.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Fri, 09 Oct 2015 09:04:56 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 2383
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/media/system/js/caption.js
200 OK 334 B URL HTTP/1.1 adanahidrofor.com/media/system/js/caption.js
IP
File type ASCII text, with very long lines (413)
Hash 67dcbc30fcfad1892362b21170522298
3ff742e04689a2cad78f844f1b76d457bdb72ca5
81c52b778cf87c87d1569c8fc4229d226eaab8e86833d315ec48b48be074fba1
Analyzer Verdict Alert fortinet Phishing
GET /media/system/js/caption.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Fri, 09 Oct 2015 09:04:56 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 334
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/media/jui/js/jquery-migrate.min.js
200 OK 3.1 kB URL HTTP/1.1 adanahidrofor.com/media/jui/js/jquery-migrate.min.js
IP
File type ASCII text, with very long lines (7085)
Hash 07f6145db9cb4514f8902cc369977175
0c78bdd62090d509f8ce56a54801ac5b6e1b888c
e8cdafc088e42d092246e1dce3ec1a06f0d8d5251035fec5f460d127541fac67
Analyzer Verdict Alert fortinet Phishing
GET /media/jui/js/jquery-migrate.min.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Fri, 09 Oct 2015 09:04:56 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 3065
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/media/jui/js/bootstrap.min.js
200 OK 7.7 kB URL HTTP/1.1 adanahidrofor.com/media/jui/js/bootstrap.min.js
IP
File type ASCII text, with very long lines (29002)
Hash 9a41bb18ba2ebd8eb66b1508c3042023
06b164a7aab13f513be265a6ee0ffdff986211cb
14f1294e3dfe9322f32ca8f1c439157a78a1c406f32d4fa5b8a8071cab8aa806
Analyzer Verdict Alert fortinet Phishing
GET /media/jui/js/bootstrap.min.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Fri, 09 Oct 2015 09:04:56 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 7706
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +kBoJK08vrQBUM+VJivdug==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2WkyG+v9nBLT4rPW8OnaVoYyoF8=
adanahidrofor.com/media/jui/js/jquery.min.js
200 OK 33 kB URL HTTP/1.1 adanahidrofor.com/media/jui/js/jquery.min.js
IP
File type ASCII text, with very long lines (32038)
Hash f0aac4934ee2ea25525ad0ca770b3708
db4a9b9ab8410611263f6f86514136ad62f960f3
f88c2ed17762cb51efaa0d4b968c1eeff763b1fcbdacd9374bc33d347dd38aa0
Analyzer Verdict Alert fortinet Phishing
GET /media/jui/js/jquery.min.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Fri, 09 Oct 2015 09:04:56 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 33401
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/media/jui/js/jquery.ui.sortable.min.js
200 OK 6.2 kB URL HTTP/1.1 adanahidrofor.com/media/jui/js/jquery.ui.sortable.min.js
IP
File type ASCII text, with very long lines (24096)
Hash 509c3cdd354df3711d5d30e65498ddb0
b6c43be21b2d0d8241fb7cba2328ce380a7a486d
4cc33f4820e366ccee7dbbf17a48f49932695ddf4ab633d2e882e4b269e89656
Analyzer Verdict Alert fortinet Phishing
GET /media/jui/js/jquery.ui.sortable.min.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Fri, 09 Oct 2015 09:04:56 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 6232
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/plugins/system/ef4_jmframework/includes/assets/template/js/layout.js
200 OK 471 B URL HTTP/1.1 adanahidrofor.com/plugins/system/ef4_jmframework/includes/assets/template/js/layout.js
IP
File type ASCII text, with very long lines (914)
Hash a5bcb7837d444ddb64e0c64cadca1ad1
b336891190487e6dfc93c943b0314715ede4a979
4c978ef6e80679fa306359a7fcd3d59efd677ef37ff9506b43e9817313b657a1
Analyzer Verdict Alert fortinet Phishing
GET /plugins/system/ef4_jmframework/includes/assets/template/js/layout.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Fri, 09 Oct 2015 09:07:52 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 471
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/templates/jm-guest-house/js/scripts.js
200 OK 780 B URL HTTP/1.1 adanahidrofor.com/templates/jm-guest-house/js/scripts.js
IP
Hash bb9042cadb225b6da707f977d6a06766
605b4a455f6faa086d5c3f44bda48e48e082807b
856c01af68a6ac0d030b9c7490c5b99d9dcf789a829e7eed13b179d6c3aa59fa
Analyzer Verdict Alert fortinet Phishing
GET /templates/jm-guest-house/js/scripts.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Wed, 28 Oct 2015 09:13:14 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 780
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/templates/jm-guest-house/js/offcanvas.js
200 OK 624 B URL HTTP/1.1 adanahidrofor.com/templates/jm-guest-house/js/offcanvas.js
IP
File type ASCII text, with CRLF line terminators
Hash 228baec1abbfb33564677b22c17d9b80
da095052acbdb93bfbeef0b0ba34863d295d3e9f
3cd1682f9e693a3319d621625bafe7d72c0e276cbd7d64d5a265f28e718ca8c8
Analyzer Verdict Alert fortinet Phishing
GET /templates/jm-guest-house/js/offcanvas.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Thu, 29 Oct 2015 07:52:04 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 624
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 08:51:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adanahidrofor.com/templates/jm-guest-house/js/backtotop.js
200 OK 407 B URL HTTP/1.1 adanahidrofor.com/templates/jm-guest-house/js/backtotop.js
IP
File type ASCII text, with CRLF line terminators
Hash 23961078f60eaa3447d6fee47789c7bb
210e213322ca957fdf4932784751d7a0d62f3f54
a16472f34ccf7fe247c629b679e97fcffb0a8b3a7a060703d6e4536314a577a2
Analyzer Verdict Alert fortinet Phishing
GET /templates/jm-guest-house/js/backtotop.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Fri, 09 Oct 2015 09:05:08 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 407
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/templates/jm-guest-house/js/sticky.js
200 OK 754 B URL HTTP/1.1 adanahidrofor.com/templates/jm-guest-house/js/sticky.js
IP
File type ASCII text, with CRLF line terminators
Hash 6af73ffdbd6a90d525627e716093e9bb
44fdb68c63fb6dcd8ecd1ab57ba4011989598fea
e8f895f8345f7d59df98c3bfecac018af0c0c36cc724748239b7c453b29913ab
Analyzer Verdict Alert fortinet Phishing
GET /templates/jm-guest-house/js/sticky.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Thu, 29 Oct 2015 11:32:12 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 754
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/templates/jm-guest-house/js/effects.js
200 OK 387 B URL HTTP/1.1 adanahidrofor.com/templates/jm-guest-house/js/effects.js
IP
File type ASCII text, with CRLF line terminators
Hash 5f064cd65a8331932fdc16d4ed77f646
cb9739a84fe9a452aa3bd4a00e143077432825f0
69103729f10e6f8ddd689358ce66f16536a98a21add9121ad6e78602761fb690
Analyzer Verdict Alert fortinet Phishing
GET /templates/jm-guest-house/js/effects.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Tue, 20 Oct 2015 06:36:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 387
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/modules/mod_djmegamenu/assets/js/jquery.djmegamenu.js
200 OK 2.4 kB URL HTTP/1.1 adanahidrofor.com/modules/mod_djmegamenu/assets/js/jquery.djmegamenu.js
IP
File type ASCII text, with very long lines (6607)
Hash bc4b36b30bcf73b194592d7227f45240
a054f3f09bacde6a3e9f72ba32c81bae17f51127
b98a23615deae7f2e34afa8a949672340098234c9c6eba0fb7914e2c3cd80bfc
Analyzer Verdict Alert fortinet Phishing
GET /modules/mod_djmegamenu/assets/js/jquery.djmegamenu.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Oct 2015 06:16:46 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 2351
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/modules/mod_djmegamenu/assets/js/jquery.djmobilemenu.js
200 OK 1.4 kB URL HTTP/1.1 adanahidrofor.com/modules/mod_djmegamenu/assets/js/jquery.djmobilemenu.js
IP
File type ASCII text, with very long lines (3466)
Hash 95cc3395c4e3620bf65e63a48a9bd149
d5585d3e19a72aa3de81face9f6f4e21a897d116
e6d9f0a8f51a3ad22b056c83a2f367cdc1897fe212f0ba2a3eadde623dd3eb9f
Analyzer Verdict Alert fortinet Phishing
GET /modules/mod_djmegamenu/assets/js/jquery.djmobilemenu.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Fri, 30 Oct 2015 06:16:46 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 1441
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/modules/mod_js_cookie_alert/tmpl/js/jquery.cookiealert.js
200 OK 2.6 kB URL HTTP/1.1 adanahidrofor.com/modules/mod_js_cookie_alert/tmpl/js/jquery.cookiealert.js
IP
File type HTML document, ASCII text, with very long lines (361), with CRLF line terminators
Hash b176fb7da0ec1822ec14882280d82f68
bb5ceb1c40901696541245742eefba8d0af89cac
896abdd95b26b6cde844f82dcaf53e23f2f606bd126eaa99c3c019f849399a7d
Analyzer Verdict Alert fortinet Phishing
GET /modules/mod_js_cookie_alert/tmpl/js/jquery.cookiealert.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Sat, 31 Dec 2022 07:16:40 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 2623
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
fonts.googleapis.com/css?family=Open%20Sans:300,
200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Open%20Sans:300,
IP
Hash 6dfb6e52ceb8a228cd2255aede815f03
f960f0fd681e51f155fd059e66b7f401f6efb62b
399fb4fa3b3a9bdf15bac8a8ac63eaa40951c21aa294a897d42cf0470b28471c
GET /css?family=Open%20Sans:300, HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adanahidrofor.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 08:51:05 GMT
date: Sun, 29 Jan 2023 08:51:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adanahidrofor.com/modules/mod_js_cookie_alert/tmpl/js/jquery.cookie.js
200 OK 1.4 kB URL HTTP/1.1 adanahidrofor.com/modules/mod_js_cookie_alert/tmpl/js/jquery.cookie.js
IP
File type ASCII text, with CRLF line terminators
Hash cf124cf4f7e9be7ae54486370556bf92
4fb9b996ca003c464caeab5b67ae81af7a6bdeb9
ef1cc2d2c596f5c6c7e08f6fab45338910d56f9c8575cadc468d580806a58940
Analyzer Verdict Alert fortinet Phishing
GET /modules/mod_js_cookie_alert/tmpl/js/jquery.cookie.js HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: application/javascript
Last-Modified: Sat, 31 Dec 2022 07:16:40 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 1397
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/templates/jm-guest-house/css/template.32.css
200 OK 11 kB URL HTTP/1.1 adanahidrofor.com/templates/jm-guest-house/css/template.32.css
IP
File type assembler source, ASCII text
Hash d4bdf85f4f6bcd35cc583a2cfaaff92d
2e31073bf70022b47c1d3968e6ef8c8b5b832373
f97e610af66a4bed12479a4071a27dc3c2de12a1e642d961f58e472d055592f2
GET /templates/jm-guest-house/css/template.32.css HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: text/css
Last-Modified: Mon, 23 May 2016 22:47:45 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 11026
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/templates/jm-guest-house/css/offcanvas.32.css
200 OK 631 B URL HTTP/1.1 adanahidrofor.com/templates/jm-guest-house/css/offcanvas.32.css
IP
Hash 68252ea974b6e6b3b5ece5e1db928565
ed7cbacf187f2090a0ced90619b24f42f0c5dd09
8d407e8f262cf50bc51d37af5c2a0dd93879a2c3fc8b5e66edf41bda6ef8f6fa
GET /templates/jm-guest-house/css/offcanvas.32.css HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: text/css
Last-Modified: Mon, 23 May 2016 22:47:45 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 631
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
adanahidrofor.com/images/adana-hidrofor-logo.png
200 OK 1.8 kB URL HTTP/1.1 adanahidrofor.com/images/adana-hidrofor-logo.png
IP
File type PNG image data, 253 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 7080a3398bfa9c2a510a5fed96468e43
539b2b71f540c6fe256d63f88b98bd4b5e1b4a6b
fe3eb5ee5cf38faae9275fb267fd573af3f1667fc76e973ce6b8b7df0fdcfe62
GET /images/adana-hidrofor-logo.png HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: image/png
Last-Modified: Mon, 23 May 2016 22:47:33 GMT
Accept-Ranges: bytes
Content-Length: 1831
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
200 OK 31 kB URL HTTP/1.1 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://adanahidrofor.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 30928
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 10:05:15 GMT
Expires: Sat, 27 Jan 2024 10:05:15 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 11 Jul 2022 18:57:39 GMT
Content-Type: font/woff2
Age: 168350
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://adanahidrofor.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 24 Jan 2023 18:35:14 GMT
Expires: Wed, 24 Jan 2024 18:35:14 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
Age: 396951
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wdhyzbi.woff2
200 OK 25 kB URL HTTP/1.1 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wdhyzbi.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 25036, version 1.0\012- data
Hash 9dd150fb7229e143e0f71ba1fe8c8f63
664abfc4941054600213dda51a3d6f0d05b3c312
cffe139366b3882387dddbd10d59e7d9aa29345793fdbf51ddde809ca6a0bec2
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wdhyzbi.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://adanahidrofor.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 25036
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 25 Jan 2023 18:29:30 GMT
Expires: Thu, 25 Jan 2024 18:29:30 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 11 Jul 2022 18:59:41 GMT
Content-Type: font/woff2
Age: 310895
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
200 OK 31 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 31320, version 1.0\012- data
Hash 3fe71527811fbfedd2c07962e1bc49e7
f63e158a0480c5d711b5e268db0e75e57d87a8a5
24c0e724005344165ee0a0ff4c96a914e174bb4caa20c8a533fb194d92853e95
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://adanahidrofor.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 31320
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 06:46:53 GMT
Expires: Sat, 27 Jan 2024 06:46:53 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 15 Aug 2022 18:11:37 GMT
Content-Type: font/woff2
Age: 180252
adanahidrofor.com/templates/jm-guest-house/images/backtotop.png
200 OK 125 B URL HTTP/1.1 adanahidrofor.com/templates/jm-guest-house/images/backtotop.png
IP
File type PNG image data, 17 x 9, 1-bit colormap, non-interlaced\012- data
Hash 1ff61f452ba463527225da229b1e6223
3b235135d23771261d42483749cb9084591270bc
01ad61902bf6a98421542df2e3ad09266d6b9f4d2ad4ba0928dcf76b1242a8f3
GET /templates/jm-guest-house/images/backtotop.png HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/templates/jm-guest-house/css/template.32.css
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: image/png
Last-Modified: Thu, 29 Oct 2015 10:04:26 GMT
Accept-Ranges: bytes
Content-Length: 125
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6c02f54ead0885029d0d2b58208f191a
98d0271b2051017d9b003c3f1a31fb833bf52f92
7c624051c43dc3e3477d1e4c47cfe2f9fa45ec697fa1c04c2e740060f28b798f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C624051C43DC3E3477D1E4C47CFE2F9FA45EC697FA1C04C2E740060F28B798F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8273
Expires: Sun, 29 Jan 2023 11:08:58 GMT
Date: Sun, 29 Jan 2023 08:51:05 GMT
Connection: keep-alive
static.getbutton.io/widget-send-button/js/init.js
302 Moved Temporarily 145 B URL HTTP/1.1 static.getbutton.io/widget-send-button/js/init.js
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 7938fc116951d02bc261f707297cf915
c7f2a9311468d25830f39a6e280e22cc871149ca
a7a0cbe25a887e612a079e22a6b8bee676d68530d19ddf883a19088768f6f464
GET /widget-send-button/js/init.js HTTP/1.1
Host: static.getbutton.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://adanahidrofor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.16.0
Date: Sun, 29 Jan 2023 08:51:05 GMT
Content-Type: text/html
Content-Length: 145
Connection: keep-alive
Location: https://static.getbutton.io/widget/bundle.js
adanahidrofor.com/plugins/system/ef4_jmframework/includes/assets/template/bootstrap/fonts/glyphicons-halflings-regular.woff
200 OK 23 kB URL HTTP/1.1 adanahidrofor.com/plugins/system/ef4_jmframework/includes/assets/template/bootstrap/fonts/glyphicons-halflings-regular.woff
IP
File type Web Open Font Format, TrueType, length 23320, version 1.0\012- data
Hash 68ed1dac06bf0409c18ae7bc62889170
22037a3455914e5662fa51a596677bdb329e2c5c
fc969dc1c6ff531abcf368089dcbaf5775133b0626ff56b52301a059fc0f9e1e
Analyzer Verdict Alert fortinet Phishing
GET /plugins/system/ef4_jmframework/includes/assets/template/bootstrap/fonts/glyphicons-halflings-regular.woff HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://adanahidrofor.com/templates/jm-guest-house/css/bootstrap.32.css
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:03 GMT
Content-Type: font/woff
Last-Modified: Fri, 09 Oct 2015 09:07:52 GMT
Accept-Ranges: bytes
Content-Length: 23320
Date: Sun, 29 Jan 2023 08:51:03 GMT
Server: LiteSpeed
maxcdn.bootstrapcdn.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0
200 OK 57 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0
IP
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
GET /font-awesome/4.3.0/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://adanahidrofor.com
Connection: keep-alive
Referer: http://maxcdn.bootstrapcdn.com/
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 08:51:05 GMT
Content-Type: font/woff2
Content-Length: 56780
Connection: keep-alive
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
ETag: "97493d3f11c0a3bd5cbd959f5d19b699"
Last-Modified: Mon, 25 Jan 2021 22:04:54 GMT
CDN-CachedAt: 08/18/2022 19:50:49
CDN-ProxyVer: 1.02
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: a2d82ffcb9acc02f60985bd1be0242e5
CDN-Cache: HIT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7910b956c9be0b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
adanahidrofor.com/media/djextensions/css/animate.min.css
200 OK 4.2 kB URL HTTP/1.1 adanahidrofor.com/media/djextensions/css/animate.min.css
IP
File type ASCII text, with very long lines (46462)
Hash 4d94e5a0831a2bd0f889fd21887141c4
6af8abfabc4bb692c49f5c531b7d6b9d50085e69
b764a086bc0939895e832b3a95499fd6fc046be8eb2ff8d48f6738330d6fb333
GET /media/djextensions/css/animate.min.css HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:04 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Oct 2015 06:16:46 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 4248
Date: Sun, 29 Jan 2023 08:51:04 GMT
Server: LiteSpeed
static.getbutton.io/widget/bundle.js
200 OK 94 kB URL HTTP/1.1 static.getbutton.io/widget/bundle.js
IP
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (65475)
Hash 0419520b9b47130e0d22dfd1a44a2369
e6a0c0e15fbf6053025aa180e419b0501fe0e515
090919d9e5d9421f54feb29e6fe76aa3d367f7a71e5bf4dd9f1540f6142df9ea
GET /widget/bundle.js HTTP/1.1
Host: static.getbutton.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://adanahidrofor.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.16.0
Date: Sun, 29 Jan 2023 08:51:05 GMT
Content-Type: application/javascript
Last-Modified: Tue, 24 Jan 2023 14:35:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63cfec9d-4a67d"
Expires: Sun, 29 Jan 2023 11:51:05 GMT
Cache-Control: max-age=10800
Access-Control-Allow-Origin: *
Content-Encoding: gzip
adanahidrofor.com/media/djextensions/css/animate.ext.css
200 OK 433 B URL HTTP/1.1 adanahidrofor.com/media/djextensions/css/animate.ext.css
IP
Hash d8ed69f746a6e54830bde33d6d8e0616
418c94ad2b7cba4473df2a01f34d6f06603642ff
09fe8339fb4e001090ae02bf53b973ea35a607529e80df196228c12c59efbc4e
GET /media/djextensions/css/animate.ext.css HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:04 GMT
Content-Type: text/css
Last-Modified: Fri, 30 Oct 2015 06:16:46 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 433
Date: Sun, 29 Jan 2023 08:51:04 GMT
Server: LiteSpeed
adanahidrofor.com/templates/jm-guest-house/images/favicon.ico
200 OK 1.2 kB URL HTTP/1.1 adanahidrofor.com/templates/jm-guest-house/images/favicon.ico
IP
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 31c0353ce496673278e1c062d894ce33
88f0b66e8184d95040602252318bbd3a97561a8d
07938733372287e30e2bb12849a7085d1b7a7bb095808010ee8bd84171839427
GET /templates/jm-guest-house/images/favicon.ico HTTP/1.1
Host: adanahidrofor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://adanahidrofor.com/error-404.html
Cookie: be48b84e1b601cc6333e6b6f3ece5827=bb1e0f75ba1bacb136b50481e3260d6b; 8dcc52ce06e21917a524644329882e1f=k7e9r2bbrssd0tjq8gt57j04n5
HTTP/1.1 200 OK
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Sun, 05 Feb 2023 08:51:04 GMT
Content-Type: image/x-icon
Last-Modified: Thu, 29 Oct 2015 10:04:26 GMT
Accept-Ranges: bytes
Content-Length: 1150
Date: Sun, 29 Jan 2023 08:51:04 GMT
Server: LiteSpeed
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13538
Expires: Sun, 29 Jan 2023 12:36:44 GMT
Date: Sun, 29 Jan 2023 08:51:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13538
Expires: Sun, 29 Jan 2023 12:36:44 GMT
Date: Sun, 29 Jan 2023 08:51:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 5a5a883e-d7d4-4fc5-925a-3a95830c504e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVguyG7BIAMFm8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d214c4-390b59a32060e41203533c58;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 05:51:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ewSsCY4u9DwRtaj00U9JCim9tYeCgHRuIQFpdHm4ttI6L02-e44iDQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:11:24 GMT
age: 34782
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61c84a42-94fd-4328-97f3-9602ba58a2d1.jpeg
200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61c84a42-94fd-4328-97f3-9602ba58a2d1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d19ea264e32a923808112293d74b97c7
19a01a961cca989ee07ff53e50d6f2e65d73729a
16792f5d3ff24bda8f7ac4b6b522c736c4e070b5aa9fd109fa868906064278c8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61c84a42-94fd-4328-97f3-9602ba58a2d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5021
x-amzn-requestid: e31ce00f-0014-42a0-832d-90852c823cd1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFNoZGgxIAMFz1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb8fcf-72f835c06d6604ec1eeee3d3;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 07:10:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nh1ha9gcWLXGZFahBAETcNpC6wB6Va4tUpYV76mz5BwVknVn1m7dzQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 12:02:22 GMT
age: 74924
etag: "19a01a961cca989ee07ff53e50d6f2e65d73729a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c77437e3a7361861aed8bfecbfe6bd6
fefd238c13c0fdfb7d964c90fcc8a8cbbf953034
282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: d56c9b84-dc1f-4d5c-91bf-7db55058bf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLyeEGOloAMFpzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce3126-5013a6b971d6800c5c85a4eb;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:03:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D2ZAelkDgsd0wjoOSoPRwTzhozs84_aIcgwU-QmbDrTnHztVD0VL_A==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 14:57:16 GMT
age: 64430
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 17:35:56 GMT
age: 54910
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4jPbm4WufkUKm7ljLvpHrJUFhr-JQ_nl3iYfI5S8nTqEszFdUtz9EQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 05:24:09 GMT
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
age: 12417
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6021d6a06bff2826eb341747e82484f7
a817ff1ba206234627706551820d0d9856b398de
f0ba6de8709fdb73e94dbdace635232c76b9d70dad73badaca0542d9ad49604d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11624
x-amzn-requestid: dff12902-8b83-4df1-a2c9-a2ee9565830f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIhnjEmpIAMFdlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce2fc-0216188a3154167648f7d976;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:17:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: kxzVU1bNn09g_-73AY-mNvzhHo-dTyQinPkfPEqhDcKFfrTnbDpaZQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:15:07 GMT
age: 34559
etag: "a817ff1ba206234627706551820d0d9856b398de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
45.143.99.90
34.117.237.239
104.18.10.207
23.36.77.32
95.216.228.15