r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8737
Expires: Fri, 25 Nov 2022 12:36:53 GMT
Date: Fri, 25 Nov 2022 10:11:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12994
Expires: Fri, 25 Nov 2022 13:47:50 GMT
Date: Fri, 25 Nov 2022 10:11:16 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /m81I/z6vPSB/al8/RjuRWnqlpDL56otUvTVXdyiKPj5ikDyApf3zcASP3xj1xUsx1eger+2OQ8=
x-amz-request-id: S48EYA0HN79DF90X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 09:40:45 GMT
age: 1831
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5074
Cache-Control: max-age=92669
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:16 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:55:45 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 09:19:04 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3132
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 10:11:16 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.manomav.com/
92.42.110.125301 Moved Permanently 0 B IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
X-Redirect-By: WordPress
Location: https://www.manomav.com/
Content-Length: 0
Date: Fri, 25 Nov 2022 10:11:16 GMT
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 10:11:11 GMT
cache-control: public,max-age=3600
age: 6
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3351
Cache-Control: max-age=85883
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:17 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:02:40 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.69.181.45101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.69.181.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: RTvXlWuIrOaYRWqv6roeug==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6APk+5s5Y/wqWng/L1Y3pwO7fNw=
www.manomav.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
92.42.110.125200 OK 10 kB URL HTTP/2 www.manomav.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (39791)
Hash 3cc7696f4c8caa2b1c7acab0c2ae1515
2df12fe5d820c9c8129c9276e2bb94f9df860331
5ec052aed0f32fed1fc31c9be24e1cd03a7bcdede8ae098af3d1997fdfb51a6a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:19:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10549
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
92.42.110.125200 OK 848 B URL HTTP/2 www.manomav.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
92.42.110.125200 OK 791 B URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash 70803413c9597ee8c0d1014c24614132
ebcf83176e785a74666e9a6f6237509f11e6dcca
fd2994ae20595548eaaf7b3071ced4b3ed29db6d87940a6a1c9672a10ae399e6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 791
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.3.24
92.42.110.125200 OK 1.7 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.3.24
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (6794)
Hash 9bb930afefcd08578e40d87e6cf74366
c2a096ebbc4a5e7400bb4d4294d5c011eb975a27
5c85203c7d95fbc0a76522a933408c07fe6e362c8094e514ec3c0bcb9e6bbd34
GET /wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.3.24 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1660
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5
92.42.110.125200 OK 3.8 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (42839), with no line terminators
Hash 0f2a1830a2eb3452fe698134828443d4
4d04d53d82c38785c13e1aa7cf012cb9dbf3db28
a037316b9cce9cab96056fd1797693e625fda9cfcd5337f5412b9aa8b6aae3ad
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3806
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3
92.42.110.125200 OK 6.8 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (45348), with no line terminators
Hash ac86c46c81a26a9b2dddfaff693e20ed
bcab73993780f26ad845347f3930b629cccbdfc2
cdc2f8852d087adb339f2813bb8663c5ef58722ac581ee64b5ea6751a74612b4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6791
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/related-youtube-videos/css/themes.css?ver=5.9.5
92.42.110.125200 OK 299 B URL HTTP/2 www.manomav.com/wp-content/plugins/related-youtube-videos/css/themes.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash b4b641c8dd35d1a192ac30e5b99e4fed
061d040bb66758a4cc0d23ae1961e1863c02cddc
533d451b0804ee878b1fe48fc359d6e5a6c126f7535453ac3e84ba92bdddfe35
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/related-youtube-videos/css/themes.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 299
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/service-box/assets/css/font-awesome/css/font-awesome.min.css?ver=5.9.5
92.42.110.125200 OK 6.7 kB URL HTTP/2 www.manomav.com/wp-content/plugins/service-box/assets/css/font-awesome/css/font-awesome.min.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (30837)
Hash 5dbbe85d6a3308dceb97d91b740b0f11
3f70abf9963371962665167f98ba52365481496d
751d4fdd16bd33cc9c93bcaadcd316922ca9bbd74cb6a9e1705c8bef4330dabf
GET /wp-content/plugins/service-box/assets/css/font-awesome/css/font-awesome.min.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6657
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/service-box/assets/css/bootstrap-front.css?ver=5.9.5
92.42.110.125200 OK 1.5 kB URL HTTP/2 www.manomav.com/wp-content/plugins/service-box/assets/css/bootstrap-front.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type assembler source, ASCII text, with very long lines (780)
Hash 2450779d95988cbe3c194d0f237670a8
e4af4b0e996b3697247d61f69d22f2273bd2b502
f1d88e4d468177db9f7fee176aa747ff09b992e73c4646cac2f3ef1afb584de9
GET /wp-content/plugins/service-box/assets/css/bootstrap-front.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1513
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/service-box/assets/css/owl.carousel.min.css?ver=5.9.5
92.42.110.125200 OK 1.2 kB URL HTTP/2 www.manomav.com/wp-content/plugins/service-box/assets/css/owl.carousel.min.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash ed801a1ee20bd6fd608be655cb07414e
6d6e3bdcd175b935d5344fb88e81a179a950f0c8
70edd720e30cc3723648f94458c7f0a990ddb8736c2400a201f03bc969a0dce1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/service-box/assets/css/owl.carousel.min.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1219
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widget.css?ver=5.9.5
92.42.110.125200 OK 2.1 kB URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widget.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (1332), with CRLF line terminators
Hash f0638c8e827007a1f336d2d6a0322b86
5302f4e9c29b18011f6dc53d15386676c55fad8c
84a8a5ed9f1590af4e0377b5003ab886cb049c639c45b24b9bde37fd2f2863de
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widget.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:15:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2060
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Style/richwebicons.css?ver=5.9.5
92.42.110.125200 OK 6.6 kB URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Style/richwebicons.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (412), with CRLF line terminators
Hash 30d7ed83122fd22771242fe54d4d8d5a
2cda87a11934256a1c1d83f6d1a668204a8f87b8
307b245e22943e5e4d6e105a69d3babd867a89f08cad2f94ccd7dd12c58697cc
GET /wp-content/plugins/slider-images/Style/richwebicons.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:15:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6633
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/recent-facebook-posts/assets/css/default.min.css?ver=2.0.13
92.42.110.125200 OK 627 B URL HTTP/2 www.manomav.com/wp-content/plugins/recent-facebook-posts/assets/css/default.min.css?ver=2.0.13
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (2339), with no line terminators
Hash 1a1871d6af0a277a4d7639e3e300fd9e
650e0b90196359669cf8590659b0f7c205375d12
4ad1e09185368fe44a670a5770d413b8665150b0ba206d05c17f93feca54cdce
GET /wp-content/plugins/recent-facebook-posts/assets/css/default.min.css?ver=2.0.13 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 627
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/genericons/genericons.css?ver=3.2
92.42.110.125200 OK 16 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/genericons/genericons.css?ver=3.2
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (19226), with CRLF line terminators
Hash 20f23c9697d6cc3fe3bee8fb8c0a8a68
08f4902584fd5a3048108387833104418e220cd0
5ee3fbfe65bb5c9cea06a44a3962ff4241b33fffa6a8d63ba6abc8b32f9af5dc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/genericons/genericons.css?ver=3.2 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16120
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/style.css?ver=5.9.5
92.42.110.125200 OK 575 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav/style.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (403)
Hash ac2e554d3dbf718e78606ede087cc049
01665beced7abf0e74306ffc4988657a98160997
93b8c3c40df3c91b35ab315213170cd3539922538f662b7645281831b0e3ba3c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/style.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 575
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.1
92.42.110.125200 OK 467 B URL HTTP/2 www.manomav.com/wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (3439), with no line terminators
Hash 04772b9a0d585dfb3c5761d2d3e8fd1a
1e5bd07f0138eafe870044ed503ac4e70970dd47
86c487538e95f949bc90d27f9db5fbfd5ea625fd8ad54e5972b87be7500c4f32
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:12:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 467
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.1
92.42.110.125200 OK 308 B URL HTTP/2 www.manomav.com/wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash 2475dc1856a51066526df1559de3dc3f
5a8f5901fd85da4e9dbdebfd6414b4ee5d251945
9461e6eb400fba6ff730e74e1e64bcd071e7a23fe123bf1c116cf95e5e6578f9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:12:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 308
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
92.42.110.125200 OK 30 kB URL HTTP/2 www.manomav.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (65447)
Hash 34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
92.42.110.125200 OK 4.0 kB URL HTTP/2 www.manomav.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.3.24
92.42.110.125200 OK 7.4 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.3.24
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (1518)
Hash 7d2b4b55e04a6146c2b720c9d0a13d67
383c540478a21bc16b9a2c717a2ed28037fc3434
5f54b010dad731bceeeaa543a4767f3ca865cdb705c9d645068d35214e49970a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.3.24 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7419
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
92.42.110.125200 OK 8.8 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (25075)
Hash 1bc242a2555501251f4581a861d273b5
8182ba41622cb62f0b476c7f0f93aa835c6c9ec2
1834970e62778a993bf85b79b67c3e9687a2721f187722bdc1dc5f45605119b4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8752
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5
92.42.110.125200 OK 12 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (32001)
Hash e37dc9214e778f86c6dd07ca57bfe23d
2e1092d6634e370f97d3f7682e540f024fe9d80c
0c0f613b62e2faf3bdb93c389f666914323e163f757e4fed41bd9754602a7555
GET /wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12358
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0
92.42.110.125200 OK 2.0 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (5661)
Hash 02411584ba4f45db9c42a9944b4387f6
6536a6c1bd50cec302906246bfcb26796cee78c8
900005aa2f419bb5d3232695ab1fb3fd350586937dedc1ade84aeb40be6cdbff
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2017
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.3
92.42.110.125200 OK 31 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.3
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash 954aad693c0471a47f7a5438eabaf004
744c122858868545722250cbedf4a20c4e8ab07b
ded172a5737b0a1ed127c10d69f43be4087f2dbceaf851807c403863db7268d0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.3 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 31363
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/plugins/service-box/assets/js/owl.carousel.min.js?ver=1
92.42.110.125200 OK 11 kB URL HTTP/2 www.manomav.com/wp-content/plugins/service-box/assets/js/owl.carousel.min.js?ver=1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (31997)
Hash 3cb10c6c01ef15e7d2c5ef33c6f06ee5
561a0008fd649a946ff6cdba379547c998cb4582
2107b826f18f7f10f78a38641124da03dad389704816a86136488123a0f01f3d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/service-box/assets/js/owl.carousel.min.js?ver=1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11139
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Widget.js?ver=5.9.5
92.42.110.125200 OK 0 B URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Widget.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Widget.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-length: 0
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.easing.1.2.js?ver=5.9.5
92.42.110.125200 OK 837 B URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.easing.1.2.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (408)
Hash 24979d6f0439bd29a296a15a0af37440
d3936e7582eed7085442653449ed2f5bf991eeae
62b83c18b7f291559532f0061d9562d7a941198fe82b851c20fa135f96160cb3
GET /wp-content/plugins/slider-images/Scripts/jquery.easing.1.2.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 837
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.anythingslider.min.js?ver=5.9.5
92.42.110.125200 OK 188 B URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.anythingslider.min.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash ab146f4e02cf2813634d311b1d9141ba
47fa96bd2c56803cb6b6d0a85442d8cf927fcc0b
fe2f780b72df154bac9018fe4baa456963cefb7249f0c1a4ec111fe1b8368fde
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/slider-images/Scripts/jquery.anythingslider.min.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-length: 188
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.colorbox-min.js?ver=5.9.5
92.42.110.125200 OK 4.1 kB URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.colorbox-min.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (9604)
Hash b3adc1a7f7dd023c2494e3834421bc89
3cb62b9faa35f4a7dba45a984406fb3f1bd75190
d26ac67d779d67d2ff53113c5972807ee79c76f47a810b5bbb6140b137ec476b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/slider-images/Scripts/jquery.colorbox-min.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4103
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/grid.css
92.42.110.125200 OK 1.3 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/grid.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash ac2c35e1b949f8154133fb4468d3d5cf
5374c530e8a62f448e826f3677b3bbfc9f727c09
f22d52ff425aef56c61abd727de012968c449a36de2f0a238f83c2f1dd264289
GET /wp-content/themes/manomav/css/grid.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1329
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/style.css
92.42.110.125200 OK 5.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/style.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash c9d6de9b3da4e1bd1f8b601269de456f
151d0eb4f001c63314709d57c596303ee47d9bd9
b1d971443f8f1db1f34b1a14c6ac1e21bff7987bd37c4e856398d93cce5c111d
GET /wp-content/themes/manomav/css/style.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5588
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/search.css
92.42.110.125200 OK 1.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/search.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 7355ef7b9168aae08f682ae45afc5941
75e8172962f7a2a7dfad2d96f2c8d7ec65ec7006
7037ec382a90222c29992ee657592996b500e88ec2aa3be15efd4d40851ee48e
GET /wp-content/themes/manomav/css/search.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1569
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/camera.css
92.42.110.125200 OK 1.2 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/camera.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash 75f4f7c39dad79e31a958f1c7eded89d
d08426e2b95ecfab3892710be8202e8a9f1865f8
768ea26c96921cb2f931879b5fc661c6f69e589772e0b5eb0476b2fa2d35517f
GET /wp-content/themes/manomav/css/camera.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1159
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/jquery.fancybox.css
92.42.110.125200 OK 1.3 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/jquery.fancybox.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 37110acaee335e72e0712f7152823006
1beabc4c70adca4de893be66c147fe435cb00b55
4bc71a992d1743fc76b0307fe1c4b625705fbf9af9efa31803bba81e7c049dce
GET /wp-content/themes/manomav/css/jquery.fancybox.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1282
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/google-map.css
92.42.110.125200 OK 174 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/google-map.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash d269908f072f380ea45b133c503b2ce0
b2f9f143c16a858df0afed0316487d15ee8e1553
2d1cca22aadb4f3e063e370cb31a8dfa475b387be75552271dfb659f9cdc7072
GET /wp-content/themes/manomav/css/google-map.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 174
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/contact-form.css
92.42.110.125200 OK 3.1 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/contact-form.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (2096)
Hash 511bef2a86c236383f0c58811367e697
df18f686b763cf2d353d689ad8efe8375e3adfa2
4d3fb8684f0b3f6559d3b564f755921c16c27d3bade8fc75965f751c3996241b
GET /wp-content/themes/manomav/css/contact-form.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3099
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/js/device.min.js
92.42.110.125200 OK 868 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav/js/device.min.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (645), with CRLF line terminators
Hash 5090a07e86b65c91c0f8523dbd961ab3
defbd6761de94fe1efcfecd36b4084300885ad12
82ae7f744c08401d562664f09e436403446aa40b3c81b5e1f7219c0eb359bca4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/js/device.min.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 868
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/images/mepl.png
92.42.110.125200 OK 6.9 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/mepl.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 286 x 284, 8-bit/color RGB, non-interlaced\012- data
Hash abe4ddf571667a910a00df0e92f67c19
c60d14f2e841073caf32c084a54af1837fad443c
b8aa99a10991b257a5ef2ffccb6bb86e5b7edacbcf2ccedc93016cdf84251c07
GET /wp-content/themes/manomav/images/mepl.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 6859
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/page-1_img06.png
92.42.110.125200 OK 1.0 kB URL HTTP/2 www.manomav.com//wp-content/uploads/page-1_img06.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 75 x 74, 8-bit colormap, non-interlaced\012- data
Hash 0936d25b5f0c880c758f834f5ff657af
665fb53da09cc0305e4af9f9d618b8ef95a45e31
b3241198cf470de3ecf19c7e5d6d5c1611504eed1faa54c723d75075a38a907d
GET //wp-content/uploads/page-1_img06.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 1041
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/constructions-analysis.jpg
92.42.110.125200 OK 17 kB URL HTTP/2 www.manomav.com//wp-content/uploads/constructions-analysis.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 370x247, components 3\012- data
Hash dace8485e254d259575929c33e9edbfd
637a6995a59734474006907df651352c6774a894
b150508454d6d1b33b6bc0dd99f3b38cb725bb949e546984425426eb88509ce1
GET //wp-content/uploads/constructions-analysis.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 16757
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/page-1_img05.png
92.42.110.125200 OK 837 B URL HTTP/2 www.manomav.com//wp-content/uploads/page-1_img05.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 75 x 74, 8-bit colormap, non-interlaced\012- data
Hash 496303110421a9ba99d696965b1af3ec
c7a660708c506099abb8d2b4dac5851aac8df6f3
b60b9e8dd0a9172871cb8f9c0e628b6ccd13d79d6dff1b3c16441eda70428aa5
GET //wp-content/uploads/page-1_img05.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 837
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/TECHNOLOGY-ADVANCE.jpg
92.42.110.125200 OK 14 kB URL HTTP/2 www.manomav.com//wp-content/uploads/TECHNOLOGY-ADVANCE.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 370x245, components 3\012- data
Hash 77df0a6308453dd3f8c3128a534815ba
21b7f5979e84ba135638dc1eb01b94eb8ebee067
ff57a4151e0d4d5413b21122dc6f4fbde486df5b02e0c3d31d7960ceadaeda5e
GET //wp-content/uploads/TECHNOLOGY-ADVANCE.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 13523
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/data-tables-generator-by-supsystic/app/assets/js/dtgsnonce.js?ver=0.01
92.42.110.125200 OK 41 B URL HTTP/2 www.manomav.com/wp-content/plugins/data-tables-generator-by-supsystic/app/assets/js/dtgsnonce.js?ver=0.01
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 29a98c4f5edd4ec8249f165ffcfbfd37
20c6a355a13d953617d6e7c50c91432a03917d43
2e599dfaffe056d6e6f7f19cd3e1d47169ac4468bd9fb2f9f4033940f7fc7584
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/data-tables-generator-by-supsystic/app/assets/js/dtgsnonce.js?ver=0.01 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:13:09 GMT
accept-ranges: bytes
content-length: 41
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 76544babbcf6515110bd81aaee8e7e63
043497692868c67ac84cdfe70d0a484517abd1c2
a19d5958d683662375a2469d1d7e551188469b967eb6f2bae2d5e43dac51a4f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
92.42.110.125200 OK 2.3 kB URL HTTP/2 www.manomav.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (6494), with no line terminators
Hash d36aa71a696fa330e746e020f51706c1
d562000b49ba8a70ae9a0f7cfff1b879fcf978b0
fb18eb2f616d3ccb9f8d8ce3d01f4ada3f0a269eab413b7bd7ad38ebfe8d781a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2330
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
92.42.110.125200 OK 6.8 kB URL HTTP/2 www.manomav.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (19111)
Hash d626306dffd33f5fe5c26a7f3eb31e11
c6a49756a49e4e3b65834485e4755b021cff392c
f96d9b10de2d4256189f9e282c2f400cb8d59e23d7a6845b62e4c8aa820cea84
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6810
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
92.42.110.125200 OK 3.1 kB URL HTTP/2 www.manomav.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (9720), with no line terminators
Hash 7b3d5adb95a380672e7d5da68b57b3c0
58db2566c56407e29d4557d912663b36ec328b14
aaa8914b936896ede7bb53ba3a4273d63bf82ed918efe0cfac6f2b3f4641a423
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3050
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.15
92.42.110.125200 OK 287 B URL HTTP/2 www.manomav.com/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.15
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash b549377103ff5923af6a2bda22756d18
a4c00dace4932f712d63f67f2af4c5ea9d97d823
5518b4e3dc40d0172dab6d1c8e5babda33e6a59bb600677ab2c314ce3a9cb1e5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.15 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:13:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 287
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
92.42.110.125200 OK 8.6 kB URL HTTP/2 www.manomav.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (24733), with no line terminators
Hash 68595c6cc0dcbfdacf99bc94ff77ad86
2b2719f3d55566841af05dacf068dc2d3c10dcce
5ce4baf7eead42a8568d54a21c089360bb8667b592908350c1d8cb454844e2ce
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:13:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8563
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6
92.42.110.125200 OK 439 B URL HTTP/2 www.manomav.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (999), with no line terminators
Hash 941c9d44f1c480a37006540de948ef9a
29bc99b84660341fc37d60774b3083025a19147c
d297692ee1e68d1e2499576903508be06859340a25eded15b2565631a592851e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 439
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/js/jquery.js
92.42.110.125200 OK 32 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/js/jquery.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (32086), with CRLF line terminators
Hash 06a2b2c3ee18a2c3846e756c2e2b2cb4
5088db61206ef8a341da7e358bc182c2d28a4c75
f3b18f58b0161082f9f2d1441cd1c969efd18c4826c29c6525de52ee4af61b03
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/js/jquery.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32304
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/js/jquery-migrate-1.2.1.js
92.42.110.125200 OK 5.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/js/jquery-migrate-1.2.1.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 04c400ba07fddcda3018399d7181fff4
5215c06557983bb8897812522eefb300f3be9b14
cd2799411ea3af1cb3f953b06c15da3cc4054a0faa8e6ae0f59d26a48a7f0618
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/js/jquery-migrate-1.2.1.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5559
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/facilitateHome.jpg
92.42.110.125200 OK 43 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/facilitateHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash 8c0c6954d4cb5f5775528bd9bc4beb3a
006fb61c3c2ea0752e91099348c73dcb46772d47
b6a06abb2cf96835290b072f31b4bf3cc0ccb2a88d208b3d5aaef0ee67661055
GET /wp-content/uploads/photo-gallery/facilitateHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 42688
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/page-1_img04.png
92.42.110.125200 OK 976 B URL HTTP/2 www.manomav.com//wp-content/uploads/page-1_img04.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 75 x 74, 8-bit colormap, non-interlaced\012- data
Hash b16a8668230f6f41b82bc03669b39bf1
2457c8a555d93e88d70c0f7c809719a1851a5ec5
56410a1989ec35d1575ded12f1f6b1954c416b8f3c851647b9dae5b77679254d
GET //wp-content/uploads/page-1_img04.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 976
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/Knowledge-Sharing-1.jpg
92.42.110.125200 OK 21 kB URL HTTP/2 www.manomav.com//wp-content/uploads/Knowledge-Sharing-1.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 370x246, components 3\012- data
Hash 06cc248bfe6d3fd9f92ed1015102f9b7
f996ea896de5e30b393fec41b7b5c9ac54d3b8ea
8cabfa97d5842afd288e5c2726ee2768ab472a42901d754b1a91e7677593a23f
GET //wp-content/uploads/Knowledge-Sharing-1.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 20878
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/images/page-1_img08.png
92.42.110.125200 OK 2.0 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/page-1_img08.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 80 x 61, 8-bit/color RGBA, non-interlaced\012- data
Hash ceb41965553f18f73f8409c3030ea8cc
a6cf9929f2bc85f9ddeb3188eb15279407bde432
d9dff2f6cc6ceb2bead6dd1b2f488be068ecf5608c93410b339cba16b8a29e41
GET /wp-content/themes/manomav/images/page-1_img08.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 2034
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/js/script.js
92.42.110.125200 OK 2.4 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/js/script.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text
Hash 5fcb47dadd3297ac861a4fe8656cc30c
7e00652626d70125b3cb5743a11c00885162ab4d
14dc1ef50af74df54ff7b59fa69ed99b6f83381596d68da4943f8b7ffbba2730
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/js/script.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2374
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
92.42.110.125200 OK 4.5 kB URL HTTP/2 www.manomav.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (15224)
Hash 3c05cdbb96f694e86b05c7a3e5c6703f
615a7094f3210830bd5e6f08f845c101be2eefeb
371bb131cc739b177f4c90f67535f020d0bbee092e2ff1bad6ac38e978da3092
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:17 GMT
content-type: application/javascript
last-modified: Tue, 08 Jun 2021 22:15:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4539
date: Fri, 25 Nov 2022 10:11:17 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/animate.css
92.42.110.125200 OK 4.4 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/animate.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 09ea38bbdd5d82125e69048cbb9067ae
17e771fd58069275493a18dc80bf14b4ab191a56
9c0f6b7c3f54797bf48d128737920cd2c5d705edea21ed68370cbf54ed053524
GET /wp-content/themes/manomav/css/animate.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4425
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LeU98IfAAAAAD2zMRBHKynflTKmFsNAw_XYzNxE&ver=3.0
142.250.74.164200 OK 584 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LeU98IfAAAAAD2zMRBHKynflTKmFsNAw_XYzNxE&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash a801506f4b5f0d8b40cba9d70ffedb73
c010c06415d21cbe475485d1f4b0af46e7935ee6
4fc0582e3cfb3e6f0e3ff3579b6b3a9d9f92fd7ed8869e4a27e92bb4eaf9ebc6
GET /recaptcha/api.js?render=6LeU98IfAAAAAD2zMRBHKynflTKmFsNAw_XYzNxE&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 25 Nov 2022 10:11:18 GMT
date: Fri, 25 Nov 2022 10:11:18 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.manomav.com/font-awesome/4.3.0/css/font-awesome.min.css
92.42.110.125200 OK 5.1 kB URL HTTP/2 www.manomav.com/font-awesome/4.3.0/css/font-awesome.min.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (23502)
Hash 7826f5087340a4cd319f2f3789cdd95a
cdcc88c38b1ce8fe1dda21dfdcd3b8b29aa47b6c
04a0fef17dabf0233d639fb47758824276bafb3286a63b888ea363f75a1339c0
GET /font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5089
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a0111a2443450172e5d2b48d350a8f57
75e89d4cd001303e66a93880f96d6c47e7d665ab
c9865c82b8f373aeb3a7333b0f65408211d832aba753c35d3544ecb2913f4f64
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/themes/manomav//js/jquery.cookie.js
92.42.110.125200 OK 1.3 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.cookie.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash b8922e4804dbd0e23f774988a1c23d4f
5385ed7ddb2e70318b1630948c67979bc64b0ab3
09b27d742e6b54386eb3c93d6526d6742a5759ff8cc14c2445bf0deb24650fdf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.cookie.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1340
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.easing.1.3.js
92.42.110.125200 OK 1.9 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.easing.1.3.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 2caffc7a73cc9190fe3b124cc781a42e
46ad6641d1ebf8e091bde798a73d175d4c9facab
3e40e775308d772a7b0312d951db5db75105184d893cb92acf6e8ba1e338104d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.easing.1.3.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1903
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-N27W84R
142.250.74.168200 OK 63 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-N27W84R
IP 142.250.74.168:0
File type ASCII text, with very long lines (3702)
Hash 1625bc7ee9f6e73107ab58c4926ed952
637baa00d330595b2b953ac16201d4409e9566ff
2f60d6e87620f181b27a1d3b832842ad2ab19e7eb3f04bed1eb693e697e613d7
GET /gtm.js?id=GTM-N27W84R HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 25 Nov 2022 10:11:18 GMT
expires: Fri, 25 Nov 2022 10:11:18 GMT
cache-control: private, max-age=900
last-modified: Fri, 25 Nov 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 62994
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/tmstickup.js
92.42.110.125200 OK 779 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/tmstickup.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash c0c4de491cc3f43583e42eb6a7ba8f64
830c1e66d8447ef834b9dca2b68f5d1a0deec6cc
4914d9aa236670673ae668ba22d198eb283998adb8edf260f15728d83aa45e5d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/tmstickup.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 779
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/images/page-1_img07.png
92.42.110.125200 OK 59 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/page-1_img07.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 523 x 279, 8-bit/color RGBA, non-interlaced\012- data
Hash b17b9c5d84e23303a9e4192a2dfe13a3
b8c9f0f7526204ad8a4e6f5e58b2621b148c5846
874f9ca80a4b8d85470b9d70e7afdd6f05c4db1183bc116402525f9eff185580
GET /wp-content/themes/manomav/images/page-1_img07.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 58983
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/images/ajax_loader.png
92.42.110.125200 OK 10 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/images/ajax_loader.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 87b180d6f33ba5c4a931c2877484c5c3
76c99bb0eef2610b0b0c7a30fa3b20ab9c6dce59
5b13155d5e5495ecbd27b9fabc7b64d08cf8eaee2a83cb790d7c376fb1fc84a7
GET /wp-content/plugins/photo-gallery/images/ajax_loader.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: image/png
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-length: 10388
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/images/blank.gif
92.42.110.125200 OK 43 B URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/images/blank.gif
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /wp-content/plugins/photo-gallery/images/blank.gif HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: image/gif
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-length: 43
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/images/primary-bg.jpg
92.42.110.125200 OK 104 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/primary-bg.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2015:04:28 14:19:02], baseline, precision 8, 1000x1000, components 3\012- data
Size 104 kB (104067 bytes)
Hash 33179044aa898ce83b0aa3fc7b5ef629
3459f02efa6b32aae7546d00d16aaba7a187d433
643bd15b632853388d44a19b19b2fcca9af0d07fee4d33d040b0090d2122445c
GET /wp-content/themes/manomav/images/primary-bg.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 104067
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.manomav.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff
92.42.110.125200 OK 57 kB URL HTTP/2 www.manomav.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
Analyzer Verdict Alert fortinet Malware
GET /font-awesome/4.3.0/fonts/fontawesome-webfont.woff HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.manomav.com/font-awesome/4.3.0/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: font/woff
last-modified: Wed, 30 Mar 2022 15:49:32 GMT
accept-ranges: bytes
content-length: 56780
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts/bwg.ttf?qy18kk
92.42.110.125200 OK 7.5 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts/bwg.ttf?qy18kk
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, bwg \012- data
Hash dae2130d98859247658e1e20ee533365
11f728cc64d77fb4fa61450e836c3c32f11958bf
97c83c5dacfb91b48c48b6ac0989f58eb8183d2a12f41e5f0d7553a0ff3bd467
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts/bwg.ttf?qy18kk HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: font/ttf
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7544
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a0111a2443450172e5d2b48d350a8f57
75e89d4cd001303e66a93880f96d6c47e7d665ab
c9865c82b8f373aeb3a7333b0f65408211d832aba753c35d3544ecb2913f4f64
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/themes/manomav//js/jquery.ui.totop.js
92.42.110.125200 OK 521 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.ui.totop.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text, with CRLF line terminators
Hash 61f8dcda919aab860cfb126c145390b0
82356eb7d64c90583fd975c1c82a203ec49534dc
61177932bfa875a6ad4cb6ef709b97821d610d45d9d77233864b7ffb3360566c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.ui.totop.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 521
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/themes/manomav//js/superfish.js
92.42.110.125200 OK 2.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/superfish.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash d5a50923fec57fc00cf76026094d6e20
645422233ad47b65e96d2f0dd8ccf46f76eb6084
2a892227b0f6b165380e8365222ca51e48725b963763d183f60d4133ff5b69a3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/superfish.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2604
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.rd-navbar.js
92.42.110.125200 OK 1.5 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.rd-navbar.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash ba84d20a0e659888094b4fd6af4e3c7d
04ea110dca487ee4b61795abcd0266fc7cfa62c4
25c05adf736a47e42c84ce9ae73eaea98e09a056d5a839705c7bb392faf63574
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.rd-navbar.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1488
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/wow.js
92.42.110.125200 OK 2.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/wow.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 2fd30581ab54d111e16cfed38983162f
7a5f473ca305b14177415829aa17176ad79a0bcd
3b902ea2e5ade7cd8c3742fc7acf92d823e743cf2134ddbda0ef555e1b5aef0c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/wow.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2630
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox.js
92.42.110.125200 OK 14 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF, CR line terminators
Hash 47b8b47f3065d7c1a7e41b8284656b67
fb5128734e13dc3a2dbe06604f4583d3dd72b7d9
28f74b55d6c059b9cb2fe7d9df4d5a51f6ae92a28721fecc709b1386327eeef3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.fancybox.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13997
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-media.js
92.42.110.125200 OK 1.9 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-media.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 6e0eb49957743e04b5fbcb713068b239
3914094ae05d176832ec2f594ccedb2b9330d0b4
202c4298ebfc56b14e6a4e929c175683f241f2f758c16617138b8ba1b635974a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.fancybox-media.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1881
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-buttons.js
92.42.110.125200 OK 994 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-buttons.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (411), with CRLF line terminators
Hash a3732175d4e9b44383f144d5ef77ca52
002cc74393490c7d8ff12d689082987f36c3f9ad
c9e6d91b7df0781566516f9c2ef9f3c7db9cff41521eb3a96f9f9b7f99400c8d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.fancybox-buttons.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 994
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 14:07:32 GMT
expires: Thu, 23 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 158626
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2
216.58.207.195200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17508, version 1.0\012- data
Hash 7fbdfaab6bd8b191496ffe1ef1b9e748
e9e592f8498d489d8000f3a4cfb1bb447f251edd
bb8007225d94a099cddbade7ea904667c0dd0b68d5e30778e5c6257589ab94d1
GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17508
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:44:33 GMT
expires: Thu, 23 Nov 2023 19:44:33 GMT
cache-control: public, max-age=31536000
age: 138405
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:21 GMT
expires: Thu, 23 Nov 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 139017
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cutive/v17/NaPZcZ_fHOhV3IpLSPJC.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/cutive/v17/NaPZcZ_fHOhV3IpLSPJC.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23176, version 1.0\012- data
Hash 1a46e43cdc6a2aa4db72a144956d324b
a262bb0c7203a615e67005881cb863062de96db6
c8e606c88b52a4176eaf5d9612001876d15d15a0c8aa1f436e86ca5681d62b36
GET /s/cutive/v17/NaPZcZ_fHOhV3IpLSPJC.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23176
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 03:20:45 GMT
expires: Thu, 23 Nov 2023 03:20:45 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 16:50:37 GMT
content-type: font/woff2
age: 197433
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:40:23 GMT
expires: Thu, 23 Nov 2023 19:40:23 GMT
cache-control: public, max-age=31536000
age: 138655
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:53:49 GMT
expires: Thu, 23 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 141449
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 139030
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3500.6853796165988!2d77.37689231460489!3d28.669137689175127!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x390cf0762353b4a3%3A0xdd610ca0583c1124!2sManomav+Engineers+Pvt+Ltd!5e0!3m2!1sen!2sin!4v1460878080850
142.250.74.164200 OK 1.8 kB URL HTTP/2 www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3500.6853796165988!2d77.37689231460489!3d28.669137689175127!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x390cf0762353b4a3%3A0xdd610ca0583c1124!2sManomav+Engineers+Pvt+Ltd!5e0!3m2!1sen!2sin!4v1460878080850
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3554)
Hash 5947b9333aa606ce4d7a8bfd2eee1feb
4fb419545a1ba6ec2a07027273183ee36b4957ca
d68a0da804372193ecdb7eaaf3d8473663f3ea48f0b062487fc6e90c92dd495e
GET /maps/embed?pb=!1m18!1m12!1m3!1d3500.6853796165988!2d77.37689231460489!3d28.669137689175127!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x390cf0762353b4a3%3A0xdd610ca0583c1124!2sManomav+Engineers+Pvt+Ltd!5e0!3m2!1sen!2sin!4v1460878080850 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Fri, 25 Nov 2022 10:11:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-eS2evktDLSXStikwvQA7zQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1785
x-xss-protection: 0
server-timing: gfet4t7; dur=194
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 3e74417af1d3df81b4b66ecfb3291c72
faa8eee480f5912c4ae3c55a939305103424833a
420f3ddac4616c132d1efb0c38ec0b450b5248264ef6298bc3faefd615549d61
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 10:11:18 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 07:31:19 GMT
Expires: Tue, 29 Nov 2022 07:31:18 GMT
Etag: "faa8eee480f5912c4ae3c55a939305103424833a"
Cache-Control: max-age=335399,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f999778cefb4f3-OSL
www.manomav.com/wp-content/uploads/photo-gallery/pmcHome.jpg
92.42.110.125200 OK 45 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/pmcHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash 31c25d4abf593439281ec7d1901d2e37
11ae8ec356a433d00bca1b503e1f0b97de26f271
54c692448b2292ddbddfb689e1e96a3c215fc9a553a3158c627f4bf367ee8970
GET /wp-content/uploads/photo-gallery/pmcHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: image/jpeg
last-modified: Sat, 19 Aug 2017 10:40:55 GMT
accept-ranges: bytes
content-length: 45232
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/qsHome.jpg
92.42.110.125200 OK 35 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/qsHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash f4dbe5e0f58442c89ea6e2a24a35154c
2fefb02e6afa44e11bd6338c2df40237e0a5491a
75f568ae74d726b3c18d85f78fd17c0e077c27c68fc0cc103985996c3a34ba49
GET /wp-content/uploads/photo-gallery/qsHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: image/jpeg
last-modified: Sat, 19 Aug 2017 10:40:56 GMT
accept-ranges: bytes
content-length: 34551
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/bimHome.jpg
92.42.110.125200 OK 54 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/bimHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash d1b55265a9c929812723f8ba7c386ec4
6e7c65ef9a961d44dd598caa64c23ba10b67e521
f9e0106f4c433d265f5b88b807c221c6380e85068337e1fb1823c7f4a66aa13e
GET /wp-content/uploads/photo-gallery/bimHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: image/jpeg
last-modified: Sat, 19 Aug 2017 10:40:54 GMT
accept-ranges: bytes
content-length: 53571
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/bbsHome.jpg
92.42.110.125200 OK 80 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/bbsHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash 320b350237ff8de359326619d852ac17
768f352ef58f9d4aa8283e0cd893bed18f370b6d
cf8ff002d0dc615c8e8c2c4614ac442428e0407b5d006c411dc7177f98ef253a
GET /wp-content/uploads/photo-gallery/bbsHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 10:11:18 GMT
content-type: image/jpeg
last-modified: Sat, 19 Aug 2017 10:40:30 GMT
accept-ranges: bytes
content-length: 80516
date: Fri, 25 Nov 2022 10:11:18 GMT
X-Firefox-Spdy: h2
load.sumo.com/73.0a035390359aab65eb82.js
194.242.11.186200 OK 103 kB URL HTTP/2 load.sumo.com/73.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type HTML document, ASCII text, with very long lines (40498)
Size 103 kB (102569 bytes)
Hash 7c4325b918d3373e9356fd1a1b494bca
4d12eee94112616e76665b9ea05ac2ae0f324a60
5b8dcfab30115e349f2c950901853338eeace1e9a738739f65a32fcca336ab95
GET /73.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 10:11:18 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"ad6f2454f01de902ffd473d51c1207bf"
last-modified: Wed, 05 Oct 2022 16:49:51 GMT
x-amz-id-2: Hz9r0Oy0Lsbgn9NcYv/B+XTMeQ2xOfGvr5EDFJozese24w/F5uOsPkmwbJdvmhKzxtztGF2d/m8=
x-amz-request-id: EMRCGRD8TNPBR2V9
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2022 17:52:27
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 92c622a80d2e10e1761c12f1acc9aa1d
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d3d2d21ac304813a16da64921ce18ba4
98b1762c675c61eeb18254986461e6b1074ebc92
af00429c189464ddb8df704dc48035421f943444df6ca17390fb97466c2e7e9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4014b3f4adf5c5373118894c244afb12
1198e79d0e1e14408e3c0084a3f479122020a723
affc5983ee364e0310c082b225a90cff4ba2d01b68d2cdaf6b5ecbe780cad66d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5404
Cache-Control: max-age=159918
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:18 GMT
Etag: "63804d58-1d7"
Expires: Sun, 27 Nov 2022 06:36:36 GMT
Last-Modified: Fri, 25 Nov 2022 05:06:32 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
142.250.74.163200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 08:12:22 GMT
expires: Sat, 25 Nov 2023 08:12:22 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 7136
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
load.sumo.com/72.0a035390359aab65eb82.js
194.242.11.186200 OK 64 kB URL HTTP/2 load.sumo.com/72.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type Unicode text, UTF-8 text, with very long lines (31962)
Hash 9f30de8115fc1eb9c10e801aa9ad4575
28ad6afabf9f13720b3219394df17a90325d657c
83c7721ca7ad6db632d0cab5e55bcd23145ad1480c26e440c16ad5a8ca8d1cf7
GET /72.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 10:11:18 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"a1c4ecc2ca5bc12d61068cd427f9729f"
last-modified: Mon, 01 Aug 2022 17:37:14 GMT
x-amz-id-2: yncNVLF2WNTvfJNP5kgASaiZWLNa84vsckpGLCsBd0rTvIK+s4Z1y1Nb+RCG+2BivC/7SoYE1tk=
x-amz-request-id: ARECMNYEHV1MDN3P
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/09/2022 20:15:00
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 32f00655d9d22595773742a7c4d6a0f1
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: u2cQ8eLXYOvC5aVzx55Ji8flSsORSyI/8pQrNtuyb+Xr/CPAci2TJ8FgSGY/k0EqrohdrEZwFz4us5z8/TN7Fg==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 10:11:18 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/961138791/?random=1669371078015&cv=11&fst=1669371078015&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&rfmt=3&fmt=4
142.250.74.66200 OK 903 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/961138791/?random=1669371078015&cv=11&fst=1669371078015&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&rfmt=3&fmt=4
IP 142.250.74.66:0
File type ASCII text, with very long lines (1981), with no line terminators
Hash fd03eca9e07959704b2ece0da500a56d
b7d94e7d11280c105376f5cb9e43c362906d49fb
17af203cc72a575e751a7906e09ff75ba1faabf0401c12904f323c111ae509c9
GET /pagead/viewthroughconversion/961138791/?random=1669371078015&cv=11&fst=1669371078015&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 25 Nov 2022 10:11:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 903
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 25-Nov-2022 10:26:18 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4014b3f4adf5c5373118894c244afb12
1198e79d0e1e14408e3c0084a3f479122020a723
affc5983ee364e0310c082b225a90cff4ba2d01b68d2cdaf6b5ecbe780cad66d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5404
Cache-Control: max-age=159918
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:18 GMT
Etag: "63804d58-1d7"
Expires: Sun, 27 Nov 2022 06:36:36 GMT
Last-Modified: Fri, 25 Nov 2022 05:06:32 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d3d2d21ac304813a16da64921ce18ba4
98b1762c675c61eeb18254986461e6b1074ebc92
af00429c189464ddb8df704dc48035421f943444df6ca17390fb97466c2e7e9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16826
Expires: Fri, 25 Nov 2022 14:51:44 GMT
Date: Fri, 25 Nov 2022 10:11:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16826
Expires: Fri, 25 Nov 2022 14:51:44 GMT
Date: Fri, 25 Nov 2022 10:11:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16826
Expires: Fri, 25 Nov 2022 14:51:44 GMT
Date: Fri, 25 Nov 2022 10:11:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16826
Expires: Fri, 25 Nov 2022 14:51:44 GMT
Date: Fri, 25 Nov 2022 10:11:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16826
Expires: Fri, 25 Nov 2022 14:51:44 GMT
Date: Fri, 25 Nov 2022 10:11:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4006a9037ab5f28dca62b0aa7a704c41
74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b
556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5MlzpHpq7auKLSAYikINuPAylXI11VJL3xxIJ9Dyub-7rjQaPfg0WQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 02:07:28 GMT
age: 29030
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4dfd2143-7cf2-4a28-b8bf-bc3121d6a4d8.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4dfd2143-7cf2-4a28-b8bf-bc3121d6a4d8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4abf25d4a15ce58edadd54994b3434a2
18800e21d05596f7b64213072dee7dda5c1faf61
633138e70f43e2be9cc447967044c4070bfc4d9285e5228361bebe255dc286e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4dfd2143-7cf2-4a28-b8bf-bc3121d6a4d8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10950
x-amzn-requestid: 9bb73841-83d9-48b2-8c79-f00a57612b4a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFNstFeZoAMFopQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637ec31d-4e6aafd367c7740c77df133b;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 01:04:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5e4ptr__XHPd9Qsf8lEDqiZGKptuB9en72UAucNWxlGG_mEbhpFgdA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 07:43:51 GMT
age: 8847
etag: "18800e21d05596f7b64213072dee7dda5c1faf61"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 481c033b9ffd030ff0de6e35cf788b47
85d3baad9217af2b5d75c019d2ef95dbb919a788
02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 8f679d7f-2ea5-4e47-b78d-79af59435a62
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFPHYHkAIAMFpBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637ec562-26108a785e910dc3355d58f1;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 01:14:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NKwpIdw2RZNZNh69AF5GNvunA_QfRGClvzcRP3zYwn7c8BLBlt097g==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 08:37:15 GMT
age: 5643
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8784bb7a8b88736a6016f712e3183bf3
b0ddc1555d2506177adcdcea77864d75f1245d07
8e331713b0ad0b5670dd33dfdadde665e076a40ddb80905d4df89876d49803d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11743
x-amzn-requestid: 9ab0aba7-5cd1-4f6c-8984-dc221e1cbf8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cICD-F7joAMFqmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe3b2-152ba5f1495a44447356cdab;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oWSNdsrz59sJC2znLnFqa_Zm3T14_d6j-rjzDQe4yV22Dy2Qc4Swaw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:45 GMT
age: 44193
etag: "b0ddc1555d2506177adcdcea77864d75f1245d07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:47:08 GMT
age: 44650
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9e23502-5ace-42f4-a990-42412dc7e04e.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9e23502-5ace-42f4-a990-42412dc7e04e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f6292a2988fb4505d0098553b8e99ddc
9b8aafcda0e22edcc16d3048f4b88659d3b42419
16b7b473229c5e519ab81b385c50277424f3f3b2a5d7647035e84ba58e44f3be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9e23502-5ace-42f4-a990-42412dc7e04e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6385
x-amzn-requestid: 4c2a84f7-f038-4f5a-86c2-5c8ce1a48c6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cI5NVFMAoAMFn7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63803bee-45c6411c2430e2375f530dd8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 03:52:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fj82i9qJmEiUy2DOkkowq8WRyzupMwNyQqu110sJ3o72HEW4yb7bjQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 07:22:46 GMT
age: 10112
etag: "9b8aafcda0e22edcc16d3048f4b88659d3b42419"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 163d4912a06d8358abc770dc0351d7b4
1e8dc04b95e704679ab729f81716466ea8a3e591
72245d178d481350af611804e557032ffb7bb3a3e8cdb83f3332a5ffba78d193
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/961138791/?random=1669371078015&cv=11&fst=1669370400000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&fmt=3&is_vtc=1&random=1966630103&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/961138791/?random=1669371078015&cv=11&fst=1669370400000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&fmt=3&is_vtc=1&random=1966630103&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/961138791/?random=1669371078015&cv=11&fst=1669370400000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&fmt=3&is_vtc=1&random=1966630103&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 25 Nov 2022 10:11:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 163d4912a06d8358abc770dc0351d7b4
1e8dc04b95e704679ab729f81716466ea8a3e591
72245d178d481350af611804e557032ffb7bb3a3e8cdb83f3332a5ffba78d193
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=1600006463365685&ev=PageView&dl=https%3A%2F%2Fwww.manomav.com%2F&rl=&if=false&ts=1669371078601&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1669371078600.1045276386&it=1669371078231&coo=false&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1600006463365685&ev=PageView&dl=https%3A%2F%2Fwww.manomav.com%2F&rl=&if=false&ts=1669371078601&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1669371078600.1045276386&it=1669371078231&coo=false&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1600006463365685&ev=PageView&dl=https%3A%2F%2Fwww.manomav.com%2F&rl=&if=false&ts=1669371078601&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1669371078600.1045276386&it=1669371078231&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 25 Nov 2022 10:11:19 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 12:31:58 GMT
expires: Sun, 19 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 509961
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:46:16 GMT
expires: Fri, 24 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 44703
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52837639-2&cid=274438655.1669371078&jid=62508260&gjid=2082051279&_gid=279274205.1669371078&_u=YEBAAEAAAAAAACAAI~&z=2110821170
142.251.1.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52837639-2&cid=274438655.1669371078&jid=62508260&gjid=2082051279&_gid=279274205.1669371078&_u=YEBAAEAAAAAAACAAI~&z=2110821170
IP 142.251.1.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52837639-2&cid=274438655.1669371078&jid=62508260&gjid=2082051279&_gid=279274205.1669371078&_u=YEBAAEAAAAAAACAAI~&z=2110821170 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.manomav.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 25 Nov 2022 10:11:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sumo.com/api/load/
52.34.133.113200 OK 921 B IP 52.34.133.113:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (920), with no line terminators
Hash a47148f29380501e6ad34d9779861d00
373eb10625d0daa54f0a8aeae0d7ff90dc59be55
8639a81a41f718e76398998b14c86029c0bfe2c19ea5ddd16d1978449a5bf718
POST /api/load/ HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 210
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 10:11:20 GMT
content-type: application/json; charset=utf-8
content-length: 921
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://www.manomav.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
set-cookie: __smSessionId=s%3A0A8BbQtvARtkwUGQkKT22A5i.CqrTr9JeeNfdMTomux%2FlWrIlfYPLjGSkg8lLy5f06o0; Path=/; Expires=Fri, 25 Nov 2022 18:56:56 GMT; HttpOnly
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
sumo.com/services
52.34.133.113204 No Content 0 B IP 52.34.133.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /services HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-sumo-auth
Referer: https://www.manomav.com/
Origin: https://www.manomav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 25 Nov 2022 10:11:20 GMT
access-control-allow-origin: https://www.manomav.com
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE
access-control-allow-headers: pragma, x-requested-with, accept, x-sumo-auth, x-sumo-token, content-type
access-control-max-age: 2592000
X-Firefox-Spdy: h2
load.sumo.com/22.0a035390359aab65eb82.js
194.242.11.186200 OK 98 kB URL HTTP/2 load.sumo.com/22.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4a30f98cbdb043d129b87ff9727e7968
ec495e127b1536d010ea60c3508b196c46324b24
2f9b018f3bbad5717525d9adf89d8da2d71770d608a3d6e7e601b26ef0e7230a
GET /22.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 10:11:20 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"8af82c4c30a069f66de02526c2f332af"
last-modified: Wed, 05 Oct 2022 16:49:12 GMT
x-amz-id-2: AXgNUG4Gx/RKXwLPg9dg1H/Ru1HgWxjBqrFSIBFGJq0xRjGTk7ZFg/3uvwXewFKOoQ+oVX84uOM=
x-amz-request-id: N7TD803J1C8YZ1DX
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2022 17:52:26
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: eb9ff5ff2c8baeb65becebcafaf913c3
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/_/images/apps/9e8a4d2a-6f8c-415e-851b-bdfe4c01d5c1/sumome-white-60.png
194.242.11.186200 OK 17 kB URL HTTP/2 load.sumo.com/_/images/apps/9e8a4d2a-6f8c-415e-851b-bdfe4c01d5c1/sumome-white-60.png
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type gzip compressed data, max compression\012- data
Hash 052a175d279ec8c660a24a627356bc84
1d53d5e01b8857fdab9fd75090c150d60cca00e9
7b7960857480979f5906276518a945986cfb0abe693a31359e40f536db4db6a1
GET /_/images/apps/9e8a4d2a-6f8c-415e-851b-bdfe4c01d5c1/sumome-white-60.png HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 10:11:20 GMT
content-type: image/png
content-length: 16033
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: "41b89a0b07f71fa603b49342a98a4769"
last-modified: Wed, 05 Oct 2022 16:50:11 GMT
x-amz-id-2: evz+Kk9XyJLWg1OMv1RBLFX2GHSB4PT1p07GCj+eZlzpJcJqZbyxIWjSFxA8rVlOaIJudVhorI0=
x-amz-request-id: RXB6ZDRY23JRBDQT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2022 17:52:25
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 970d00853b4cf811133c7a64b2b138de
cdn-cache: HIT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 10:11:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
clients6.google.com/rpc?key=AIzaSyCKSbrvQasunBoV16zDH9R33D88CeLr9gQ
142.250.74.142404 Not Found 1.6 kB URL HTTP/2 clients6.google.com/rpc?key=AIzaSyCKSbrvQasunBoV16zDH9R33D88CeLr9gQ
IP 142.250.74.142:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash fdafd7cfefa898c6cdd100bbb5a9a66b
8bfb3adcc308a18d8367634e5850520d94895206
1b033c332a02fde4de1489e33cfe304e2ab016ccc725d5216fad989975330318
OPTIONS /rpc?key=AIzaSyCKSbrvQasunBoV16zDH9R33D88CeLr9gQ HTTP/1.1
Host: clients6.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.manomav.com/
Origin: https://www.manomav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
referrer-policy: no-referrer
content-length: 1564
date: Fri, 25 Nov 2022 10:11:21 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
load.sumo.com/10.0a035390359aab65eb82.js
194.242.11.186200 OK 136 kB URL HTTP/2 load.sumo.com/10.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (10913), with no line terminators
Size 136 kB (135882 bytes)
Hash 429072336541030132fa34ae7fc6e938
ccf658bf81c4e9e91973f49f3e98c3f1a02b175a
500997b517d512e864171589ef5ec55a74ab038491319d245ac068431e863947
GET /10.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 10:11:20 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"fc263e7087822a0b00ff93677d6df4ea"
last-modified: Mon, 01 Aug 2022 17:36:09 GMT
x-amz-id-2: 2kF2L6GATDS/sHhd4gngOW1Rx7Yq2vmR0s/p/GkToAVBNdoukWzSUGmtutFH9geKnl8Ggp42Yps=
x-amz-request-id: Z6QZPQPN1V71YR3C
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/03/2022 12:08:26
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c46bbc9a61c652bb14f19f2f4874c065
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
sumo.com/apps/share/facebook/queue
52.34.133.113200 OK 16 B URL HTTP/2 sumo.com/apps/share/facebook/queue
IP 52.34.133.113:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST /apps/share/facebook/queue HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 109
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 10:11:21 GMT
content-type: application/json; charset=utf-8
content-length: 16
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://www.manomav.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
X-Firefox-Spdy: h2
reddit.com/button_info.json?url=https%3A%2F%2Fwww.manomav.com%2F&jsonp=jQuery11020033004260843539024_1669371078180&_=1669371078181
151.101.1.140301 Moved Permanently 0 B URL HTTP/2 reddit.com/button_info.json?url=https%3A%2F%2Fwww.manomav.com%2F&jsonp=jQuery11020033004260843539024_1669371078180&_=1669371078181
IP 151.101.1.140:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /button_info.json?url=https%3A%2F%2Fwww.manomav.com%2F&jsonp=jQuery11020033004260843539024_1669371078180&_=1669371078181 HTTP/1.1
Host: reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
retry-after: 0
location: https://www.reddit.com/button_info.json?url=https%3A%2F%2Fwww.manomav.com%2F&jsonp=jQuery11020033004260843539024_1669371078180&_=1669371078181
accept-ranges: bytes
date: Fri, 25 Nov 2022 10:11:21 GMT
via: 1.1 varnish
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: private, max-age=3600
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.2, "failure_fraction": 0.2}
content-length: 0
X-Firefox-Spdy: h2
sumo.com/services
52.34.133.113200 OK 39 kB IP 52.34.133.113:0
Hash 0f2869d0923033ad801e19870a8bb585
8459ac132902d533a3c63cf09d13a67299c3aef2
693530ee00f83b1fa6a510443d8fc767384eecb717e8523783844327cd1cd3a8
POST /services HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Sumo-Auth: 0A8BbQtvARtkwUGQkKT22A5i
Content-Length: 748
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 10:11:20 GMT
content-type: application/json; charset=utf-8
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://www.manomav.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-encoding: gzip
set-cookie: __smSessionId=s%3A0OepNil1w2gS2Idj65b8MXiE.PSnondAc8wAQLR%2BCptGM3haBOi55hPYDuT%2BkjBCbiHc; Path=/; Expires=Fri, 25 Nov 2022 18:56:56 GMT; HttpOnly
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
X-Firefox-Spdy: h2
www.reddit.com/button_info.json?url=https%3A%2F%2Fwww.manomav.com%2F&jsonp=jQuery11020033004260843539024_1669371078180&_=1669371078181
151.101.85.140200 OK 169 B URL HTTP/2 www.reddit.com/button_info.json?url=https%3A%2F%2Fwww.manomav.com%2F&jsonp=jQuery11020033004260843539024_1669371078180&_=1669371078181
IP 151.101.85.140:0
File type ASCII text, with no line terminators
Hash d8b0a4081c04229527dc7deb3855ea03
6a088dea0797c6b4fb3fc3f124b881201483c6da
2078a1c1767eb77f827c87b879415c0f9cf5712aea88d70c311b90c2d0ddb78d
GET /button_info.json?url=https%3A%2F%2Fwww.manomav.com%2F&jsonp=jQuery11020033004260843539024_1669371078180&_=1669371078181 HTTP/1.1
Host: www.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.manomav.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
x-ua-compatible: IE=edge
expires: -1
cache-control: private, s-maxage=0, max-age=0, must-revalidate, no-store
x-ratelimit-remaining: 299
x-ratelimit-used: 1
x-ratelimit-reset: 519
access-control-allow-origin: *
access-control-expose-headers: X-Moose
x-moose: majestic
accept-ranges: bytes
date: Fri, 25 Nov 2022 10:11:21 GMT
via: 1.1 varnish
strict-transport-security: max-age=31536000; includeSubdomains
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
set-cookie: csv=2; Max-Age=63072000; Domain=.reddit.com; Path=/; Secure; SameSite=None
edgebucket=WKQxbZWhD67W7MsSY3; Domain=reddit.com; Max-Age=63071999; Path=/; secure
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.2, "failure_fraction": 0.2}
content-length: 169
X-Firefox-Spdy: h2
sumo.com/api/jsonpcallback
52.34.133.113200 OK 16 B URL HTTP/2 sumo.com/api/jsonpcallback
IP 52.34.133.113:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST /api/jsonpcallback HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 136
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 10:11:21 GMT
content-type: application/json; charset=utf-8
content-length: 16
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://www.manomav.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
sumo.com/api/jsonpcallback
52.34.133.113200 OK 16 B URL HTTP/2 sumo.com/api/jsonpcallback
IP 52.34.133.113:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST /api/jsonpcallback HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 133
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 10:11:21 GMT
content-type: application/json; charset=utf-8
content-length: 16
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://www.manomav.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
load.sumo.com/4.0a035390359aab65eb82.js
194.242.11.186200 OK 179 kB URL HTTP/2 load.sumo.com/4.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (4895), with no line terminators
Size 179 kB (179435 bytes)
Hash 094d65e943c42119a03f92a24aa03779
c96ee36aebc59214a0d283eccf2c623cfff30e5f
32396556e3e9a4a899c50c63244d5c3f5a4f0ede27ea51a483fbb51b965406da
GET /4.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 10:11:20 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"a39d043b7c7bba70750cf288ee5ef71a"
last-modified: Wed, 05 Oct 2022 16:49:25 GMT
x-amz-id-2: 4fcmsSo4UqJwhOqjF2RabwAMenMTkrbZaYqouwX9hgXNAhvFAfHRrltlEFVyyBl16ZbGgXMNzVw=
x-amz-request-id: 3ZW0ENMS0W1WHH93
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2022 17:52:23
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 9c12d561270f7f2497033b7000560c6f
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8b6ee13d43732f7c764a49500d092865
5d15fd672e968d59b541e4d5d0d01cd5e69f4075
fc3623d527147e1c6aab399251ed8d527e6eefdee6ad7183f00df2613498bfe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8006
x-amzn-requestid: 78aab013-df11-464b-a1c7-ee41b7e77b40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB-AHSrIAMFvKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38c-4d795f410a57fc2c21d7075d;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: q53jN1uOtSdeThbk2_0UF6Rl3g4_-_TW7uK1_6Z5oDwSTSRk8XRjyQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:35:08 GMT
etag: "5d15fd672e968d59b541e4d5d0d01cd5e69f4075"
content-type: image/jpeg
age: 45377
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:300|Roboto:400,500,300,300italic,900,900italic,700|Cutive
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato:300|Roboto:400,500,300,300italic,900,900italic,700|Cutive
IP 142.250.74.10:0
GET /css?family=Lato:300|Roboto:400,500,300,300italic,900,900italic,700|Cutive HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 10:11:18 GMT
date: Fri, 25 Nov 2022 10:11:18 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
load.sumo.com/21.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/21.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /21.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 10:11:20 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"beda094dfc3b530efd0d2d83c5a0280c"
last-modified: Thu, 28 Jul 2022 18:31:17 GMT
x-amz-id-2: CzydRzq5oDc790yclkehRSY/N4HbM9hWKTus/bfXU8tfT7c8w5WJiAtBJReHCyxz/8iaHbXHhh8=
x-amz-request-id: EGJRDEFA51GD0GY6
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/31/2022 19:36:57
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: ebf1e7921e311503c6dac206dd400180
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.manomav.com/
92.42.110.125200 OK 0 B IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://www.manomav.com/wp-json/>; rel="https://api.w.org/", <https://www.manomav.com/wp-json/wp/v2/pages/27>; rel="alternate"; type="application/json", <https://www.manomav.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Fri, 25 Nov 2022 10:11:17 GMT
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2
load.sumo.com/
194.242.11.186200 OK 0 B IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET / HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 10:11:18 GMT
content-type: text/javascript
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=600
etag: W/"415c9608bc47ee8a16b3a2f2c0aee7b0"
last-modified: Wed, 05 Oct 2022 16:50:13 GMT
x-amz-id-2: yWwpYjuVMUCRycTod3A8/6vZcH3rcKsHfa5zJ7LX12WcHiXnoQ7ORq4B2BUmD5heklcYFhcOKoY=
x-amz-request-id: WS2CDS9DCKR7RTS8
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2022 17:52:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 1093de9f4318286e426a08137f77b8a4
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext
IP 142.250.74.10:0
GET /css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 10:11:18 GMT
date: Fri, 25 Nov 2022 10:11:18 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
load.sumo.com/97.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/97.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /97.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 10:11:20 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"857476cf6e94c14c223d4481353b4c19"
last-modified: Wed, 05 Oct 2022 16:50:09 GMT
x-amz-id-2: ivLgePp99n+ZarwwIGfwkVmGRAYb4QxGeSvx8UgYP1MNGiAabrpG7mN+2Dt//iij5k+SC/+tlqI=
x-amz-request-id: N7TDDPZ99MS9H4FS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2022 17:52:26
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 681405ceec5f4f4b3be63517966255f0
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
sumo.com/api/site/cd1bca00eacd80003180400024d3dc00665d4f00baeba900a7bd3b00f61c8c00/features?site_id=cd1bca00eacd80003180400024d3dc00665d4f00baeba900a7bd3b00f61c8c00
52.34.133.113200 OK 0 B URL HTTP/2 sumo.com/api/site/cd1bca00eacd80003180400024d3dc00665d4f00baeba900a7bd3b00f61c8c00/features?site_id=cd1bca00eacd80003180400024d3dc00665d4f00baeba900a7bd3b00f61c8c00
IP 52.34.133.113:0
GET /api/site/cd1bca00eacd80003180400024d3dc00665d4f00baeba900a7bd3b00f61c8c00/features?site_id=cd1bca00eacd80003180400024d3dc00665d4f00baeba900a7bd3b00f61c8c00 HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Sumo-Auth: 0A8BbQtvARtkwUGQkKT22A5i
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 10:11:21 GMT
content-type: application/json; charset=utf-8
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://www.manomav.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
etag: "-362431178"
content-encoding: gzip
set-cookie: __smSessionId=s%3AGOGJEBIVxLFg9qxYfm4pZFBu.oxINBLzYu0k7MqyGhOY8AQlJBkRFWee6L1CXboU4R84; Path=/; Expires=Fri, 25 Nov 2022 18:56:57 GMT; HttpOnly
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
widgets.pinterest.com/v1/urls/count.json?callback=jQuery11020033004260843539024_1669371078178&source=6&url=https%3A%2F%2Fwww.manomav.com%2F&_=1669371078179
151.101.84.84200 OK 0 B URL HTTP/2 widgets.pinterest.com/v1/urls/count.json?callback=jQuery11020033004260843539024_1669371078178&source=6&url=https%3A%2F%2Fwww.manomav.com%2F&_=1669371078179
IP 151.101.84.84:0
GET /v1/urls/count.json?callback=jQuery11020033004260843539024_1669371078178&source=6&url=https%3A%2F%2Fwww.manomav.com%2F&_=1669371078179 HTTP/1.1
Host: widgets.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/javascript
cache-control: must-revalidate, max-age=887
expires: Fri, 25 Nov 2022 10:26:21 GMT
x-envoy-upstream-service-time: 1
x-pinterest-rid: 2272638240717838
accept-ranges: none
date: Fri, 25 Nov 2022 10:11:21 GMT
content-encoding: br
vary: accept-encoding
X-Firefox-Spdy: h2