Overview

URL www.glabintl.com/uploaded_files/userfiles/files/easy-coin-master-hack-without-verification_gm406889139.pdf
IP54.254.246.208
ASNAMAZON-02
Location Singapore
Report completed2022-09-15 16:50:18 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-15 2 www.glabintl.com/uploaded_files/userfiles/files/easy-coin-master-hack-witho (...) Phishing
2022-09-15 2 www.glabintl.com/assets/developers/js/common.js Phishing
2022-09-15 2 www.glabintl.com/assets/designer/resources/Scripts/script.int.dg.js Phishing
2022-09-15 2 www.glabintl.com/assets/designer/resources/Scripts/jquery.easy-autocomplete (...) Phishing
2022-09-15 2 www.glabintl.com/assets/designer/resources/Scripts/helpers.min.js Phishing
2022-09-15 2 www.glabintl.com/fav.ico Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (12)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-15 04:50:53 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-15 11:12:10 UTC 93.184.220.29
mnemonic passive DNS ajax.aspnetcdn.com (2) 693 2012-05-24 13:35:31 UTC 2022-09-15 04:55:38 UTC 152.199.19.160
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-15 04:47:36 UTC 34.120.237.76
mnemonic passive DNS maxcdn.bootstrapcdn.com (2) 724 2014-06-18 00:37:31 UTC 2022-09-15 06:47:25 UTC 104.18.10.207
mnemonic passive DNS cdnjs.cloudflare.com (1) 235 2020-10-20 10:17:36 UTC 2022-09-15 05:10:24 UTC 104.17.24.14
mnemonic passive DNS use.fontawesome.com (3) 942 2017-01-30 04:43:25 UTC 2022-09-15 05:02:56 UTC 172.64.197.18
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-15 04:51:36 UTC 23.36.76.226
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-15 12:06:25 UTC 143.204.55.115
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-15 05:55:39 UTC 143.204.55.35
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-15 05:55:58 UTC 54.148.228.200
mnemonic passive DNS www.glabintl.com (16) 0 2019-07-25 00:34:52 UTC 2022-09-15 15:31:20 UTC 54.254.246.208 Unknown ranking


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 54.254.246.208

Date UQ / IDS / BL URL IP
2022-11-25 15:42:05 +0000
0 - 0 - 1 royalindianjourney.co.in/uploaded_files/userf (...) 54.254.246.208
2022-11-25 15:42:03 +0000
0 - 0 - 1 royalindianjourney.co.in/uploaded_files/userf (...) 54.254.246.208
2022-11-24 09:46:42 +0000
0 - 0 - 2 www.vaytechceramic.com/uploaded_files/userfil (...) 54.254.246.208
2022-11-24 09:46:03 +0000
0 - 0 - 2 www.vaytechceramic.com/uploaded_files/userfil (...) 54.254.246.208
2022-11-22 19:41:23 +0000
0 - 0 - 1 www.clooetherattorneys.com/uploaded_files/use (...) 54.254.246.208

Last 5 reports on ASN: AMAZON-02

Date UQ / IDS / BL URL IP
2022-11-26 23:03:31 +0000
0 - 0 - 2 www1.thronwoodheights.com/?backfill=0&domainn (...) 75.2.73.197
2022-11-26 23:01:19 +0000
0 - 0 - 1 www1.thomasadamslaw.com/?tm=1&subid4=16672327 (...) 75.2.73.197
2022-11-26 23:00:58 +0000
0 - 0 - 1 www1.thomasadamslaw.com/?tm=1&subid4=16671794 (...) 75.2.73.197
2022-11-26 22:58:34 +0000
0 - 0 - 4 chance2win.xyz/zeydoo/ph/finance-survey/lp10/ (...) 54.230.111.125
2022-11-26 22:58:08 +0000
0 - 0 - 1 rezuke.gooredirect.xyz/go/4eba7a73-cd7b-4cc6- (...) 3.70.16.242

Last 5 reports on domain: glabintl.com

Date UQ / IDS / BL URL IP
2022-09-26 03:04:04 +0000
0 - 0 - 6 www.glabintl.com/uploaded_files/userfiles/fil (...) 54.254.246.208
2022-09-26 03:04:02 +0000
0 - 0 - 6 www.glabintl.com/uploaded_files/userfiles/fil (...) 54.254.246.208
2022-09-15 17:06:57 +0000
0 - 0 - 6 www.glabintl.com/uploaded_files/userfiles/fil (...) 54.254.246.208
2022-09-15 16:50:18 +0000
0 - 0 - 6 www.glabintl.com/uploaded_files/userfiles/fil (...) 54.254.246.208
2022-09-15 16:49:13 +0000
0 - 0 - 6 www.glabintl.com/uploaded_files/userfiles/fil (...) 54.254.246.208

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-26 03:04:04 +0000
0 - 0 - 6 www.glabintl.com/uploaded_files/userfiles/fil (...) 54.254.246.208
2022-09-26 03:04:02 +0000
0 - 0 - 6 www.glabintl.com/uploaded_files/userfiles/fil (...) 54.254.246.208
2022-09-15 17:06:57 +0000
0 - 0 - 6 www.glabintl.com/uploaded_files/userfiles/fil (...) 54.254.246.208
2022-09-15 16:49:13 +0000
0 - 0 - 6 www.glabintl.com/uploaded_files/userfiles/fil (...) 54.254.246.208
2022-09-15 16:48:56 +0000
0 - 0 - 6 www.glabintl.com/uploaded_files/userfiles/fil (...) 54.254.246.208


JavaScript

Executed Scripts (12)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (42)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3050
Expires: Thu, 15 Sep 2022 17:40:57 GMT
Date: Thu, 15 Sep 2022 16:50:07 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 15 Sep 2022 16:10:28 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AaIlGhFfc0PlWmUinAf52PtSu4g2lfh9La0BCRuZ-VW25mL3hE8XAg==
Age: 2379


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 15 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jfLdoSMetop9UzmpB0bNZA0CxvJyZMFFBj46T8umh8q26MdKjeYD_g==
age: 44092
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 15 Sep 2022 16:50:07 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 15 Sep 2022 16:03:22 GMT
Expires: Thu, 15 Sep 2022 16:03:50 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hOqrVOzkhsj477ggwXAyqM6BvZ82cgKFvNacOR3GNLn33drh6cMktA==
Age: 2805


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5317
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 16:50:08 GMT
Last-Modified: Thu, 15 Sep 2022 15:21:31 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fmIuAUi2fhIMbg8ms8IIbw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.148.228.200
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tMwQH97h7HDPaKF0NU937JoyAeE=

                                        
                                            GET /uploaded_files/userfiles/files/easy-coin-master-hack-without-verification_gm406889139.pdf HTTP/1.1 
Host: www.glabintl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         54.254.246.208
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 15 Sep 2022 16:50:08 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=256e27798c81d7ca72dab54a55c0eb27677b1ba3; expires=Thu, 15-Sep-2022 18:50:08 GMT; Max-Age=7200; path=/; HttpOnly
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3672
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Size:   3672
Md5:    6f2e9f40bed34bfdf00473792621d0bb
Sha1:   28085ad1d4223687fdfd92dc6d864ae930ddf0e2
Sha256: dea9f5c28f6e68ca2fef3ab32586fb5ca950bfa538af01d9ec9ad340876e5d6f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.glabintl.com
Connection: keep-alive
Referer: http://www.glabintl.com/

                                         
                                         104.18.10.207
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Thu, 15 Sep 2022 16:50:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
Content-Encoding: gzip
ETag: W/"450fc463b8b1a349df717056fbb3e078"
Last-Modified: Mon, 25 Jan 2021 22:04:04 GMT
CDN-CachedAt: 08/20/2022 02:36:43
CDN-ProxyVer: 1.02
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: b420cb4e0b8018195c9f6e9ccfbc5452
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 360
Server: cloudflare
CF-RAY: 74b2dc14e98bb527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  ASCII text, with very long lines (65325)
Size:   24997
Md5:    ec92e8d138258dd0056c4f779365c255
Sha1:   dd516d2b02c227cf4f703afc5306665ca56405c4
Sha256: 7d4d89d1e52ca90ac3ce6967561b1acfe4e5de74dfaac1eb5ee290d601374d50
                                        
                                            GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.glabintl.com
Connection: keep-alive
Referer: http://www.glabintl.com/

                                         
                                         104.18.10.207
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 15 Sep 2022 16:50:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
Content-Encoding: gzip
ETag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
Last-Modified: Mon, 25 Jan 2021 22:04:04 GMT
CDN-CachedAt: 08/20/2022 02:32:25
CDN-ProxyVer: 1.02
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: e62ac7318e3c779bf02a79d41314526b
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 360
Server: cloudflare
CF-RAY: 74b2dc14fbc31c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  ASCII text, with very long lines (48664)
Size:   15262
Md5:    87bd4c05d4b94c7f5e52fd13bfcad7c6
Sha1:   f22e9c95b0c2c7cf572314a448cb1c7edadf34a7
Sha256: e94ce2d7c0ba0a68ce023bb5f6251c6984840728effc39adaf5d5735ff5e7fb8
                                        
                                            GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.glabintl.com
Connection: keep-alive
Referer: http://www.glabintl.com/

                                         
                                         104.17.24.14
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 15 Sep 2022 16:50:08 GMT
Content-Length: 6908
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=30672000
Content-Encoding: gzip
ETag: "5eb03fa9-4af4"
Last-Modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 102747
Expires: Tue, 05 Sep 2023 16:50:08 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HgnPd9mv5AbwC6RdOZSvbb%2F8GTgyz2G2feZdl4P8Maeb2OuIw5OsegYCmuLzxvjLHjem0WoudE3L4f5ky7ybv0aflykgzdMYcXfzqk9mS9W9GgfejH3M49Jgk18wSqGmx2P5dXyr"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74b2dc14fb641c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  ASCII text, with very long lines (19015)
Size:   6908
Md5:    6ee68b87fae57a6f48a87f6c062f4aed
Sha1:   c4c7895d4a339ab9b70bf49d14d9b812ea40c519
Sha256: 2160d992b5d27b6a0acd094ba72c1ce52a39709d1ac051d3ace1c795e876348a
                                        
                                            GET /releases/v5.0.13/css/all.css HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.glabintl.com
Connection: keep-alive
Referer: http://www.glabintl.com/

                                         
                                         172.64.197.18
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 15 Sep 2022 16:50:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-amz-id-2: St29gRl5TOXKflww3iWTZ/Uu3ufN8ay/5HRqcvtYQn5Bgxnv2nwZBCTHo3Wz+/UVC0R5ghdVNsc=
x-amz-request-id: EW2XJ3RJHFCZTXB5
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Max-Age: 3000
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
Last-Modified: Wed, 30 Jun 2021 15:27:31 GMT
ETag: W/"d61bfe9b56c13ecff5313ee3abb45e8b"
Cache-Control: max-age=31556926
CF-Cache-Status: HIT
Age: 359
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8wrnwaZ1i8uko4wndJBiEinhcinQfIKBj6KiVZ4ZpN%2FCcrs57J53qKyGnAYl6uCzezydET5adWLr3XS2lSD2wVgpEThAckcA3P8Mgw7%2FJtZvyHKH%2B0H2k3z7Pw%2BC%2FCfLZx%2Bx6RyD"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74b2dc151e4874f1-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  ASCII text, with very long lines (40884)
Size:   8875
Md5:    b813336740138a0ff8045fde73c3e746
Sha1:   45d6272c054cbc0bb0d93d8346254f5a10792293
Sha256: e4f33bd4ce1955fdb43586f933064b5d382f1f7ebfc42edd6ab493dbeaef10d3
                                        
                                            GET /ajax/jquery/jquery-1.10.2.min.js HTTP/1.1 
Host: ajax.aspnetcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.glabintl.com/

                                         
                                         152.199.19.160
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Date: Thu, 15 Sep 2022 16:50:08 GMT
Location: https://ajax.aspnetcdn.com/ajax/jquery/jquery-1.10.2.min.js
Server: ECAcc (ska/F79E)
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 178


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   178
Md5:    d624e63daa1dccbf7cc9a67e534cc240
Sha1:   8fc668f55387c439689a76660d36795f1fa89d2d
Sha256: ef600775b0a36ddaa5733cc2c92da0ce56a2782366b77a4b69cc5ebc4f4da594
                                        
                                            GET /ajax/jquery/jquery-1.10.2.min.js HTTP/1.1 
Host: ajax.aspnetcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.glabintl.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.19.160
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 7649847
cache-control: public,max-age=31536000
date: Thu, 15 Sep 2022 16:50:09 GMT
etag: "f168924cc33d21:0"
last-modified: Mon, 31 Oct 2016 23:10:49 GMT
server: ECAcc (ska/F79E)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 41705
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32072)
Size:   41705
Md5:    54998ffa3c6e8385b98b3c6495644f92
Sha1:   e49357ddbe3491d9d0c8e83783b525cbd0d0f420
Sha256: e475f0b97f212acf9e817003d9f8813ae08c8f484207d05faf152246f5d062be
                                        
                                            GET /assets/designer/themes/default/css/conditional_dsr.css HTTP/1.1 
Host: www.glabintl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.glabintl.com/uploaded_files/userfiles/files/easy-coin-master-hack-without-verification_gm406889139.pdf
Cookie: PHPSESSID=256e27798c81d7ca72dab54a55c0eb27677b1ba3

                                         
                                         54.254.246.208
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 15 Sep 2022 16:50:08 GMT
Server: Apache
Last-Modified: Tue, 16 Apr 2019 12:58:50 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sat, 15 Oct 2022 16:50:08 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 15372
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (14065), with CRLF line terminators
Size:   15372
Md5:    9d4927bd68856c6533ec08da7c34b3d7
Sha1:   bd0a05fce1ba34a450cd7a2c58ab3b0977093b31
Sha256: 0992b3c340bd57a9eadf32f6be4851aa2c3a92e67389c5c81bc712524a9794e6
                                        
                                            GET /assets/developers/css/proj.css HTTP/1.1 
Host: www.glabintl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.glabintl.com/uploaded_files/userfiles/files/easy-coin-master-hack-without-verification_gm406889139.pdf
Cookie: PHPSESSID=256e27798c81d7ca72dab54a55c0eb27677b1ba3

                                         
                                         54.254.246.208
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 15 Sep 2022 16:50:09 GMT
Server: Apache
Last-Modified: Mon, 25 Mar 2019 12:08:25 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sat, 15 Oct 2022 16:50:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1555
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1555
Md5:    45722e3f4f9ec98ada6124f1ef5c4d2d
Sha1:   41dd2d815eddb220ce45df8c26eafb721d04c823
Sha256: e8d365f578b4f4b669adcceb2fbc0649f061ee168f182a9d2b8cf9be1a23d315
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2301
Expires: Thu, 15 Sep 2022 17:28:30 GMT
Date: Thu, 15 Sep 2022 16:50:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2301
Expires: Thu, 15 Sep 2022 17:28:30 GMT
Date: Thu, 15 Sep 2022 16:50:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2301
Expires: Thu, 15 Sep 2022 17:28:30 GMT
Date: Thu, 15 Sep 2022 16:50:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2301
Expires: Thu, 15 Sep 2022 17:28:30 GMT
Date: Thu, 15 Sep 2022 16:50:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2301
Expires: Thu, 15 Sep 2022 17:28:30 GMT
Date: Thu, 15 Sep 2022 16:50:09 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9922
x-amzn-requestid: de1e3e45-74ff-41b2-986f-e78473cb6d98
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YVc1SGM7IAMFw0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631edb54-2099524d6f2c338b41eea101;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 07:10:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: g4LYoK2-sx5QTvWPxwsh8yhHjOswmtzMB6d4N9YAvQOvspuvSFbJOA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:17:07 GMT
age: 66782
etag: "c7cf1f6a259cece60a34261ec83ee00736e1d72b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9922
Md5:    3ef9865421a37eae9a4df04083d27485
Sha1:   c7cf1f6a259cece60a34261ec83ee00736e1d72b
Sha256: 723b65ba660f22281f85d6caceea23e9cd932ee9084dc905a08a585746c4c4cc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9071
x-amzn-requestid: b450f7cf-6cc7-4d1f-aef3-4496f0971727
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeIxuEq6oAMF9jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632254d7-6912ef8731d81fa43b805e5b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:25:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6LDUuDX1W8-Q88pDJma0xCAd5QuJ0YV-VpJ_8LVyDHX9YN1k0fQZ8Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:25:28 GMT
etag: "d37ad0f40bc1f3f0022467dd0af2478980bd858a"
age: 66281
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9071
Md5:    1633672fad0b564108cf81ad711dc881
Sha1:   d37ad0f40bc1f3f0022467dd0af2478980bd858a
Sha256: cc7176a297f6009f07074fb9af796132b4452833be675bf378cc950fe81a582a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9400
x-amzn-requestid: 8cf35176-18a1-427b-870c-bdae465060c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYM18E-iIAMFcmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ff4f2-427bc0ff6593e71e25b91589;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 03:11:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0nTpbTo79RT78Sin1pTWaq4pRKWZyqnBkZCT2p66wWoW-A1OScJmIg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:09 GMT
age: 73740
etag: "96ab8cd8e14350f730d26731f3445710324e24e2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9400
Md5:    4833535b1650b0ac875704023b650e66
Sha1:   96ab8cd8e14350f730d26731f3445710324e24e2
Sha256: d2b5a51e39a4890ba56e819d4d5d1d57d4d3cfc50dde42efdf23b8e9be17d1c7
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafb10f81-8409-401c-bd62-3ec01954600c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6770
x-amzn-requestid: b7c9513c-b8ba-41c7-9f9a-0a9d2266172d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FlpEVRIAMFygA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144fbd-7a4408363cdc46c9355a9f47;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fqj5PljprRruE1jwYAVwKoHkjys-RakUjzuV67_Ued6T4et99JPxPg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:42:04 GMT
age: 68885
etag: "f6b742549ea35a4b1345cffb937a8bbcceee08ef"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6770
Md5:    2e5f57ba37fac4e6047a9a321a8ec084
Sha1:   f6b742549ea35a4b1345cffb937a8bbcceee08ef
Sha256: f8c67c54806e47089b9ba297599e3e4cde1fd2e2e38b76acc9e8de0e99d7b77e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1266c973-1bdd-4969-82ca-1106689fe929.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5078
x-amzn-requestid: b6177371-a8ba-4541-a48d-21bd806e866e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0erUHT-IAMFWKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311ab15-157ed5b700e0aad5481f5c0f;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 07:04:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Vlo8vCUrKDtvhAGHSYKMmPk-wVNgx9OlU3ZVrpgG0tgk8ZBllAtXNQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:58 GMT
age: 73691
etag: "af100925cba1be716fd2200715d6136bd7f0c5bc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5078
Md5:    f50c34bc30a732593e8fe465055a44ff
Sha1:   af100925cba1be716fd2200715d6136bd7f0c5bc
Sha256: 703049736ccc8815945d69634059c4cd39533417e0969107d460c36a6787c761
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8447
x-amzn-requestid: 6a307dbf-af18-4b40-a2c4-cda4a6e302d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLe84HUzIAMFkUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631adeb8-166dc8b954f4e5b50a0843de;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 06:35:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qQaQeJRgo5OcpjqbzgyZQCl-pYpvj6P_aoB07WGfV0YXyZqv4AQNCg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:42:17 GMT
age: 68872
etag: "14131148fda4e8d85b582fd20e76bcc814341bf1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8447
Md5:    5a6939786c9343412c9af87efd3f44e0
Sha1:   14131148fda4e8d85b582fd20e76bcc814341bf1
Sha256: 8412c50f0fdc131d9c4422f2d7307fc1ee062c3580a1d754ef71cf84f9727d49
                                        
                                            GET /assets/designer/themes/default/css/fluid_dg.css HTTP/1.1 
Host: www.glabintl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.glabintl.com/uploaded_files/userfiles/files/easy-coin-master-hack-without-verification_gm406889139.pdf
Cookie: PHPSESSID=256e27798c81d7ca72dab54a55c0eb27677b1ba3

                                         
                                         54.254.246.208
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 15 Sep 2022 16:50:09 GMT
Server: Apache
Last-Modified: Mon, 25 Mar 2019 12:09:00 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sat, 15 Oct 2022 16:50:09 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4310
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (14327), with CRLF line terminators
Size:   4310
Md5:    7d1ae14173faef8d8c21905cccf0bbfb
Sha1:   b832c3f5be858fb41d21caa49f66e5a726db75c1
Sha256: e5bc38150369773f59d5c9b1129f02417f7edba40fe9311563b957d5ba610cba
                                        
                                            GET /assets/developers/js/common.js HTTP/1.1 
Host: www.glabintl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.glabintl.com/uploaded_files/userfiles/files/easy-coin-master-hack-without-verification_gm406889139.pdf
Cookie: PHPSESSID=256e27798c81d7ca72dab54a55c0eb27677b1ba3

                                         
                                         54.254.246.208
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 15 Sep 2022 16:50:10 GMT
Server: Apache
Last-Modified: Mon, 25 Mar 2019 12:08:25 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Thu, 22 Sep 2022 16:50:10 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2313
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   2313
Md5:    18282585c2f8279d7d55fd5fd19e645c
Sha1:   153917e08cabf788ed2bdd155bf753be09c32cdc
Sha256: beb3775ad7be3d3781e2265946f4c5f7a650f7b2c6739af8ef53d233d80e89bf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /assets/designer/themes/default/css/owl.theme.default.min.css HTTP/1.1 
Host: www.glabintl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.glabintl.com/uploaded_files/userfiles/files/easy-coin-master-hack-without-verification_gm406889139.pdf
Cookie: PHPSESSID=256e27798c81d7ca72dab54a55c0eb27677b1ba3

                                         
                                         54.254.246.208
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 15 Sep 2022 16:50:10 GMT
Server: Apache
Last-Modified: Mon, 01 Apr 2019 12:53:03 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sat, 15 Oct 2022 16:50:10 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 538
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   538
Md5:    b0d0c7ca51cc52edb1277328e751887e
Sha1:   7235e9dc89e11c7ed83b8eea78fc6abfd9ee361a
Sha256: bba8443f99191a3da85db54a4f87bb9a8c6aa5c127dcc2c50ad60beb15b45ee8
                                        
                                            GET /releases/v5.0.13/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.glabintl.com
Connection: keep-alive
Referer: http://use.fontawesome.com/

                                         
                                         172.64.197.18
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Thu, 15 Sep 2022 16:50:10 GMT
Content-Length: 50372
Connection: keep-alive
x-amz-id-2: 4s7/uDxr7EoGDb82dxaj9T5V3Na59xj+Y7c03fCL49z5eTOY23sEOFy0WwzC1eNTEuGgc1zOuIc=
x-amz-request-id: EW2JNNFEKD784W0B
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Max-Age: 3000
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
Last-Modified: Wed, 30 Jun 2021 15:27:47 GMT
ETag: "8a8c0474283e0d9ef41743e5e486bf05"
Cache-Control: max-age=31556926
CF-Cache-Status: HIT
Age: 361
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xEJb0ftQXEWjMZEe1o9KB%2FkK2ejSShK481H4eHDUxbv0%2BWvXJlyM1A5J8HcclP90vKvSOEp2jj6yy7ACijHGO9y6Eq2layJW32fP%2FpUBRlmiP%2Be4Jl83etJD3msqejlbUIzjW0K5"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74b2dc1f4e8c74f1-LHR
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 50372, version 1.0\012- data
Size:   50372
Md5:    8a8c0474283e0d9ef41743e5e486bf05
Sha1:   1ba4dd60af529d1a72d0e57467c3bc0bbb728a4d
Sha256: cbbca7d9888b4a9eab7d479756d2924f9b067fd38dab376797029df741f96ee4
                                        
                                            GET /assets/designer/themes/default/images/search-icon.png HTTP/1.1 
Host: www.glabintl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.glabintl.com/uploaded_files/userfiles/files/easy-coin-master-hack-without-verification_gm406889139.pdf
Cookie: PHPSESSID=256e27798c81d7ca72dab54a55c0eb27677b1ba3

                                         
                                         54.254.246.208
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 15 Sep 2022 16:50:10 GMT
Server: Apache
Last-Modified: Mon, 25 Mar 2019 12:09:01 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 15 Sep 2023 16:50:10 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1255
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 48 x 39, 8-bit/color RGB, non-interlaced\012- data
Size:   1255
Md5:    27494bbd7a6ec812861162d600c0cf83
Sha1:   fbecb7b01331e351ff056e903725d184dd260734
Sha256: e281cc5b0ce2a6bb60a3a28463abc1c07ad8478c133abeaa71d26d51534a07bb
                                        
                                            GET /assets/designer/themes/default/images/logo.png HTTP/1.1 
Host: www.glabintl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.glabintl.com/assets/designer/themes/default/css/conditional_dsr.css
Cookie: PHPSESSID=256e27798c81d7ca72dab54a55c0eb27677b1ba3

                                         
                                         54.254.246.208
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 15 Sep 2022 16:50:10 GMT
Server: Apache
Last-Modified: Mon, 25 Mar 2019 12:09:01 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 15 Sep 2023 16:50:10 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10280
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 250 x 56, 8-bit/color RGBA, non-interlaced\012- data
Size:   10280
Md5:    0ab1c771e00f7a404dd7ed994306f91e
Sha1:   f9903b3b5c3457b7e4b6183beb9901635faeacb7
Sha256: 8cd336bdff5e946a0201b272012eb31882482aa4ec76115c6b84c3195ddde6ae
                                        
                                            GET /assets/designer/resources/Scripts/script.int.dg.js HTTP/1.1 
Host: www.glabintl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.glabintl.com/uploaded_files/userfiles/files/easy-coin-master-hack-without-verification_gm406889139.pdf
Cookie: PHPSESSID=256e27798c81d7ca72dab54a55c0eb27677b1ba3

                                         
                                         54.254.246.208
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 15 Sep 2022 16:50:10 GMT
Server: Apache
Last-Modified: Mon, 08 Apr 2019 11:55:19 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Thu, 22 Sep 2022 16:50:10 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1800
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (453), with CRLF line terminators
Size:   1800
Md5:    eff100a8023d43a80ca4416e45fdb6c8
Sha1:   abf93094b4f9d0aa41f3b29061a2c5296d1e4e1f
Sha256: 6d04a468dbf3c94c9d39e516a35c2058ca6f7a9b4042471d7f3542b9f67560be

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /assets/designer/themes/default/images/top.png HTTP/1.1 
Host: www.glabintl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.glabintl.com/assets/designer/themes/default/css/conditional_dsr.css
Cookie: PHPSESSID=256e27798c81d7ca72dab54a55c0eb27677b1ba3

                                         
                                         54.254.246.208
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 15 Sep 2022 16:50:10 GMT
Server: Apache
Last-Modified: Mon, 25 Mar 2019 12:09:01 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 15 Sep 2023 16:50:10 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1493
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 103 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size:   1493
Md5:    6ec189d82d718315b991e43808716a84
Sha1:   ffe03cc3de3df41c137c36158255e9b151cff92a
Sha256: e8776ae1a0d7cefd910e866d12260f6a0adddf03c4832fa345db2311d6659c21
                                        
                                            GET /releases/v5.0.13/webfonts/fa-brands-400.woff2 HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.glabintl.com
Connection: keep-alive
Referer: http://use.fontawesome.com/

                                         
                                         172.64.197.18
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Thu, 15 Sep 2022 16:50:10 GMT
Content-Length: 61336
Connection: keep-alive
x-amz-id-2: 0EmRMutwHhyZVw9glmHDOyFj/gKHe1SWDaLqS0g2/GAgS9UDzgCmJwc+712SyctEJErjLTBGDu0=
x-amz-request-id: WTT4JTQ8YZ1QH2KC
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Max-Age: 3000
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
Last-Modified: Wed, 30 Jun 2021 15:27:47 GMT
ETag: "3654744dc6d6c37c9b3582b57622df5e"
Cache-Control: max-age=31556926
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c%2F8TusNHSIEfjUCgzUFQ2oUNCKy4t7G4jAVzIbe9CwlX44Vk7%2BiaCuTpRy%2FVsMIC%2BV%2FmOQ9l7T45urLOmM8fJ67k23N7kzRu%2BpwwVHKbNuVfy1A9e%2BgMz82S5Cx48ELbCBRG%2Bs1A"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74b2dc1f8eea74f1-LHR
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 61336, version 1.0\012- data
Size:   61336
Md5:    3654744dc6d6c37c9b3582b57622df5e
Sha1:   0ec12ea1707f5bc812b627f41cccad2aff01e54b
Sha256: 1ddd3b7b68a96da02979f972e4e9a8b6af63b5a17c75d7c7e0e3901d9f3a729c
                                        
                                            GET /assets/designer/resources/Scripts/jquery.easy-autocomplete.min.js HTTP/1.1 
Host: www.glabintl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.glabintl.com/uploaded_files/userfiles/files/easy-coin-master-hack-without-verification_gm406889139.pdf
Cookie: PHPSESSID=256e27798c81d7ca72dab54a55c0eb27677b1ba3

                                         
                                         54.254.246.208
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 15 Sep 2022 16:50:10 GMT
Server: Apache
Last-Modified: Mon, 25 Mar 2019 12:08:37 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Thu, 22 Sep 2022 16:50:10 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4897
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (15653), with CRLF line terminators
Size:   4897
Md5:    a55ac568c97bd6f0dc4c04315a53bb25
Sha1:   c830c34652fb7a1ae38eca079b3ffb54c4f98773
Sha256: 227c7e70aab8a07a47d196ee15a109c33aa5cb5eae874386277024fb59d5fe7d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /assets/designer/themes/default/images/footer-bg.jpg HTTP/1.1 
Host: www.glabintl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.glabintl.com/assets/designer/themes/default/css/conditional_dsr.css
Cookie: PHPSESSID=256e27798c81d7ca72dab54a55c0eb27677b1ba3

                                         
                                         54.254.246.208
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 15 Sep 2022 16:50:10 GMT
Server: Apache
Last-Modified: Mon, 25 Mar 2019 12:09:01 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 15 Sep 2023 16:50:10 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30900
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 886x195, components 3\012- data
Size:   30900
Md5:    c06744d43b85a7b08ddf966c69f51ca1
Sha1:   081f2b0f970e4daa38c9cf8854fa2a1b00c84bb2
Sha256: e29676eaa9abd2e4704a9d21d6cdb2869527f96071384530c4865481a9612c65
                                        
                                            GET /assets/designer/themes/default/images/404.jpg HTTP/1.1 
Host: www.glabintl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.glabintl.com/uploaded_files/userfiles/files/easy-coin-master-hack-without-verification_gm406889139.pdf
Cookie: PHPSESSID=256e27798c81d7ca72dab54a55c0eb27677b1ba3

                                         
                                         54.254.246.208
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 15 Sep 2022 16:50:10 GMT
Server: Apache
Last-Modified: Mon, 25 Mar 2019 12:09:00 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 15 Sep 2023 16:50:10 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 60542
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 713x270, components 3\012- data
Size:   60542
Md5:    7ddf861cd6ddb2109e94a5d4721c1d98
Sha1:   248b8d6a471f707e4782e4c2d69d12fb6f16ba7c
Sha256: e04aba42fbaaaf96839d9901080b882aa23980d18458fe212c014da49eae1d6e
                                        
                                            GET /assets/designer/resources/Scripts/helpers.min.js HTTP/1.1 
Host: www.glabintl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.glabintl.com/uploaded_files/userfiles/files/easy-coin-master-hack-without-verification_gm406889139.pdf
Cookie: PHPSESSID=256e27798c81d7ca72dab54a55c0eb27677b1ba3

                                         
                                         54.254.246.208
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 15 Sep 2022 16:50:10 GMT
Server: Apache
Last-Modified: Mon, 25 Mar 2019 12:08:37 GMT
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Thu, 22 Sep 2022 16:50:10 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 32224
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (31997), with CRLF line terminators
Size:   32224
Md5:    ec575084c9e773d7bff8c5f0f216df65
Sha1:   825217ab761d5dde5d7dfc674942e6a75f03f5ec
Sha256: 6f7ef6c334f6075308066a319355fe7b7de44c954fda6fa6b739a4963fe619ae

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /fav.ico HTTP/1.1 
Host: www.glabintl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.glabintl.com/uploaded_files/userfiles/files/easy-coin-master-hack-without-verification_gm406889139.pdf
Cookie: PHPSESSID=256e27798c81d7ca72dab54a55c0eb27677b1ba3

                                         
                                         54.254.246.208
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Thu, 15 Sep 2022 16:50:11 GMT
Server: Apache
Last-Modified: Mon, 25 Mar 2019 12:07:55 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 15 Sep 2023 16:50:11 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8882
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size:   8882
Md5:    52bb36d003655fdcb324d2a079567cd3
Sha1:   0540ae36b91549c554434abc12bd6da37a08398b
Sha256: 759a6e52e80a7e0bcaa6c7a679bfb9205eac85a0a8e9be6ae665c3349be48764

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /uploaded_files/thumb_cache/thumb_1600_350_inner-banner1.jpg HTTP/1.1 
Host: www.glabintl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.glabintl.com/uploaded_files/userfiles/files/easy-coin-master-hack-without-verification_gm406889139.pdf
Cookie: PHPSESSID=256e27798c81d7ca72dab54a55c0eb27677b1ba3

                                         
                                         54.254.246.208
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 15 Sep 2022 16:50:10 GMT
Server: Apache
Last-Modified: Mon, 01 Apr 2019 07:33:12 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Fri, 15 Sep 2023 16:50:10 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x350, components 3\012- data
Size:   332934
Md5:    306e600a7070682d54c958a9174298d3
Sha1:   54547717d5b1aa72cd7357df25afa752b79d899f
Sha256: ae2e66dc45d85e9f12fc52323fcb131592bd3b35163f4a3f4c5eaee70519ef6f