r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 96defe1601ba891731eee83f0830649d
ba500679fd337488c3f60543561740ff0dfc1898
d2a320a9feb1a874af3da921db2a8619513968724ef8eb0715c010291c4cf8d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2A320A9FEB1A874AF3DA921DB2A8619513968724EF8EB0715C010291C4CF8D9"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6838
Expires: Mon, 26 Dec 2022 00:39:55 GMT
Date: Sun, 25 Dec 2022 22:45:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9cce060ddc316540d079e6816a1e7412
709a74969d1996d2b35ef0f7f34ae18455169f1e
6d58b895476c9ab451d8fc51df98809adca445bc6e9d720430e80a0c85242879
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D58B895476C9AB451D8FC51DF98809ADCA445BC6E9D720430E80A0C85242879"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5417
Expires: Mon, 26 Dec 2022 00:16:14 GMT
Date: Sun, 25 Dec 2022 22:45:57 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 25 Dec 2022 22:34:59 GMT
content-type: application/json
age: 658
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6b1d63d9d906daa309dc263b4991bbe9
04680ddd86781d46dfe6a9671571b3ad1f3758f3
46fff7230b88de4cd81dfb0feb783d2dec27e49041f9257d2fb891030781bf6c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46FFF7230B88DE4CD81DFB0FEB783D2DEC27E49041F9257D2FB891030781BF6C"
Last-Modified: Fri, 23 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13666
Expires: Mon, 26 Dec 2022 02:33:43 GMT
Date: Sun, 25 Dec 2022 22:45:57 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: hjcIq+tyO9Mn4AlDT9wV6wkHomcHMSCKLOmFpIRBof1jvyIw3G9S+vKv1ziFKo0LHbqbD31EkBE=
x-amz-request-id: 6DD8NFCA1Y6PZ4R5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 25 Dec 2022 21:57:10 GMT
age: 2927
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Dec 2022 22:45:57 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ciclg.com/
203.176.128.88200 OK 7.3 kB IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (578)
Hash 534a36d083515e796c6ad14833a39f14
eea2d4caa0bb9c75cdac73dd57fcf861d8054685
aa698615959f772eefc0af4010b32823783b8a9d2543d5b3f1c5536e74108477
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:57 GMT
Server: Apache
Cache-Control: no-cache, private
Content-Encoding: gzip
Vary: Accept-Encoding
Set-Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; expires=Mon, 26-Dec-2022 00:45:58 GMT; Max-Age=7200; path=/
laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D; expires=Mon, 26-Dec-2022 00:45:58 GMT; Max-Age=7200; path=/; HttpOnly
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Pragma, Last-Modified, Expires, Alert, Content-Type, Retry-After, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 25 Dec 2022 22:08:04 GMT
age: 2274
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bdc6ddd27a64c85bd15f78b39a79874c
965b8f1b763483b4b4dfe35526d27393d1fdf05c
d2f4dee4d920109e0751634731bea278c9ea9e6c0120ac07969eba74ddbfe615
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1966
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 22:45:58 GMT
Last-Modified: Sun, 25 Dec 2022 22:13:12 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ciclg.com/css/bootnavbar.css
203.176.128.88200 OK 601 B URL HTTP/1.1 ciclg.com/css/bootnavbar.css
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
Hash 73edbd8c156b538a2e92555e6034d12d
8a25e44821fec198b30e20b0670528e8406e4042
28f821efaf4860c623d3d2673ee891f5aad6f8a7531b06717201c938cff53bed
GET /css/bootnavbar.css HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:58 GMT
Server: Apache
Last-Modified: Wed, 06 Nov 2019 02:49:09 GMT
Accept-Ranges: bytes
Content-Length: 601
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ciclg.com/css/responsive.css
203.176.128.88200 OK 7.4 kB URL HTTP/1.1 ciclg.com/css/responsive.css
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type ASCII text, with CRLF line terminators
Hash 242740c5d610846e450c425db4f8dc4a
6aee5f768539376b39b358887edaedfb30a5dfe7
6fdc3052fe72669f9c6b3a50546e3ee81f8f8a79d912e590c74ec245cf3a8228
GET /css/responsive.css HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:58 GMT
Server: Apache
Last-Modified: Fri, 27 Dec 2019 02:58:04 GMT
Accept-Ranges: bytes
Content-Length: 7426
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ciclg.com/css/owl.carousel.min.css
203.176.128.88200 OK 3.4 kB URL HTTP/1.1 ciclg.com/css/owl.carousel.min.css
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type ASCII text, with very long lines (3184)
Hash b2752a850d44f50036628eeaef3bfcfa
fba46353cf90450ef3d362a123f1e7af3e8c561e
521410e1fc44780061e09adc980275fb5ea277fd5d9e538454214ec4379ff4bc
GET /css/owl.carousel.min.css HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:58 GMT
Server: Apache
Last-Modified: Fri, 20 Apr 2018 13:22:10 GMT
Accept-Ranges: bytes
Content-Length: 3351
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
54.149.83.187101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.83.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LEqhECPeNbjNm7ZdJyEaZw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0OZXaxjIGHBoEDN1bK0g7GLDIac=
ciclg.com/css/all.min.css
203.176.128.88200 OK 80 kB URL HTTP/1.1 ciclg.com/css/all.min.css
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type ASCII text, with very long lines (65363)
Hash 71e5408ecf4f768f48abb6c07954606a
dc02d65e0584963f932eeea0fe5d2b309145bf56
6c1e504329ecacaa8b5e2ef0ae74c4bbff05a6a90a9b6d0cc78c267d734fa6a2
GET /css/all.min.css HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:58 GMT
Server: Apache
Last-Modified: Sat, 11 May 2019 17:29:18 GMT
Accept-Ranges: bytes
Content-Length: 79987
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ciclg.com/css/owl.theme.default.min.css
203.176.128.88200 OK 1.0 kB URL HTTP/1.1 ciclg.com/css/owl.theme.default.min.css
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type ASCII text, with very long lines (846)
Hash 594b81805a98b267e47c70a8fad30d9f
684d84ec40b305ca14efc88c91f12972cb6342b4
924b0dc630d1c5dff9fa31aead9509775b1d476bfe0a5ac2977b2f11205a26ac
GET /css/owl.theme.default.min.css HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:58 GMT
Server: Apache
Last-Modified: Fri, 20 Apr 2018 13:22:10 GMT
Accept-Ranges: bytes
Content-Length: 1013
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ciclg.com/css/app.css
203.176.128.88200 OK 20 kB IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
Hash 27a1fd1ef8d3f208b988e47015b49f3f
73aff8342e10706ac907243797ed95df11394344
5032bcaf6aacbf32d43be88c49ead870bb865a972142d626cac746b4082b5f2c
GET /css/app.css HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:58 GMT
Server: Apache
Last-Modified: Sat, 28 Dec 2019 03:34:45 GMT
Accept-Ranges: bytes
Content-Length: 19739
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 508c2c991a10f5f048c213f732698d4c
5a43bb96597ada2c1a16fb35c6cd74529bb306c4
bdf5e18cacb564fe4be4448d268ecee27b7139b91109b6d0727f2b809c6b5f3f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 22:45:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Bungee|Battambang|Overpass|Hanuman&display=swap
142.250.74.106200 OK 1.2 kB URL HTTP/2 fonts.googleapis.com/css?family=Bungee|Battambang|Overpass|Hanuman&display=swap
IP 142.250.74.106:0
Hash ae12a9640ec658f6229b1c9c0562c665
4d2ade65c43a8420e72f570438a9c3f90c1e1997
3f641c6d469e20fc22ed4dbb1990deeece4a9ed53b82e83be28797eed5d1dae3
GET /css?family=Bungee|Battambang|Overpass|Hanuman&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ciclg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 25 Dec 2022 22:45:58 GMT
date: Sun, 25 Dec 2022 22:45:58 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ciclg.com/js/bootstrap.min.js
203.176.128.88200 OK 51 kB URL HTTP/1.1 ciclg.com/js/bootstrap.min.js
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type ASCII text, with very long lines (50758)
Hash 67176c242e1bdc20603c878dee836df3
27a71b00383d61ef3c489326b3564d698fc1227c
56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
Analyzer Verdict Alert fortinet Phishing
GET /js/bootstrap.min.js HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:58 GMT
Server: Apache
Last-Modified: Tue, 24 Jul 2018 01:37:42 GMT
Accept-Ranges: bytes
Content-Length: 51039
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ciclg.com/css/bootstrap.min.css
203.176.128.88200 OK 141 kB URL HTTP/1.1 ciclg.com/css/bootstrap.min.css
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type ASCII text, with very long lines (65319), with CRLF line terminators
Size 141 kB (140942 bytes)
Hash 62907ef14a08ac2199b60610b616d0e5
7ccf464455d57e73be3acf820ba77ee92ad4fc13
3beb48429a842d5c330b9b4cc0a518652e1eca16121f40bdc1d4c41e4ff1a08c
GET /css/bootstrap.min.css HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:58 GMT
Server: Apache
Last-Modified: Wed, 02 Oct 2019 09:46:26 GMT
Accept-Ranges: bytes
Content-Length: 140942
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ciclg.com/js/bootnavbar.js
203.176.128.88200 OK 1.4 kB URL HTTP/1.1 ciclg.com/js/bootnavbar.js
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
Hash 8559df351dfd0d53b529d93eaaa93e04
8f3e1661d2aafb1a670864c9126b32a41b56fc7f
a64d0a68aa076082881b2200418ba5226d04fe62155efbae1ae2810f0ccbbbf5
Analyzer Verdict Alert fortinet Phishing
GET /js/bootnavbar.js HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:59 GMT
Server: Apache
Last-Modified: Wed, 06 Nov 2019 02:49:29 GMT
Accept-Ranges: bytes
Content-Length: 1352
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ciclg.com/js/popper.min.js
203.176.128.88200 OK 21 kB URL HTTP/1.1 ciclg.com/js/popper.min.js
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type ASCII text, with very long lines (20800)
Hash 7e58cd01528ac4394af369c152c17bc2
9496922c892ea80e86d868c4509610d61a1f2847
587c080125b135d29a931ed371e50ffc1a9641831c1087de2cd74532815f4560
Analyzer Verdict Alert fortinet Phishing
GET /js/popper.min.js HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:58 GMT
Server: Apache
Last-Modified: Fri, 25 Jan 2019 02:33:36 GMT
Accept-Ranges: bytes
Content-Length: 20973
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9fe005199dbfabe75a3a76101f6350ac
c0f4b84d6a715f64d3d5df00ead1e9e34dfb5ddf
42bfa8181326696656bc80d1ed096eab92cc91ee4ea8ff18bbdf4a09b9180961
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 22:45:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a4887aa0a07d726c889d8dfbddc359c6
83658ae9db1abb14fb2b869bf451caa97ef58e4d
085603732bde2eb04b81ae99e116350593ad282d21e81bfd624c0f9543247cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 22:45:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a4887aa0a07d726c889d8dfbddc359c6
83658ae9db1abb14fb2b869bf451caa97ef58e4d
085603732bde2eb04b81ae99e116350593ad282d21e81bfd624c0f9543247cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 22:45:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/battambang/v24/uk-mEGe7raEw-HjkzZabPnKp4g.woff2
216.58.207.227200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/battambang/v24/uk-mEGe7raEw-HjkzZabPnKp4g.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 11388, version 1.0\012- data
Hash d639955a46074bc8132cd5e6cf993e20
9c1501514f67517d510c45a6d8cf191c289d119e
1976d0a00bbe48dcb74a4cbe0dfaa30f3dc745357a591079df2b238846933715
GET /s/battambang/v24/uk-mEGe7raEw-HjkzZabPnKp4g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ciclg.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11388
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Dec 2022 19:24:33 GMT
expires: Wed, 20 Dec 2023 19:24:33 GMT
cache-control: public, max-age=31536000
age: 444086
last-modified: Tue, 19 Apr 2022 18:46:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/battambang/v24/uk-mEGe7raEw-HjkzZabPnmp4hxx.woff2
216.58.207.227200 OK 40 kB URL HTTP/2 fonts.gstatic.com/s/battambang/v24/uk-mEGe7raEw-HjkzZabPnmp4hxx.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 39580, version 1.0\012- data
Hash 9f9a14f2e8f4488e4b09d62a134ef5f1
7ba76aab75dccfb9e7ed14f48c91b4c3678a12b3
a1eac1483f4729689a4efbcfe191d75cc05196d4fc9de953e265a75b67ae55c6
GET /s/battambang/v24/uk-mEGe7raEw-HjkzZabPnmp4hxx.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ciclg.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Dec 2022 19:08:53 GMT
expires: Sat, 23 Dec 2023 19:08:53 GMT
cache-control: public, max-age=31536000
age: 185826
last-modified: Tue, 19 Apr 2022 18:46:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a4887aa0a07d726c889d8dfbddc359c6
83658ae9db1abb14fb2b869bf451caa97ef58e4d
085603732bde2eb04b81ae99e116350593ad282d21e81bfd624c0f9543247cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 22:45:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ciclg.com/img/china.svg
203.176.128.88200 OK 2.5 kB IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2163), with CRLF line terminators
Hash b9a0524ec897244773b2d3fc42d3e825
976bd374ceaeec34fde5c5f25f3dc4634a9f2998
c9487d3869c2e2ca26f227bd2512992ca2233c6c2ee4cbe47dd17b804d18dfd4
Analyzer Verdict Alert fortinet Phishing
GET /img/china.svg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:59 GMT
Server: Apache
Last-Modified: Fri, 04 Oct 2019 03:40:00 GMT
Accept-Ranges: bytes
Content-Length: 2508
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
ciclg.com/img/ciclg-logo.png
203.176.128.88200 OK 74 kB URL HTTP/1.1 ciclg.com/img/ciclg-logo.png
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type PNG image data, 600 x 140, 8-bit/color RGBA, non-interlaced\012- data
Hash dbc4a1b72f47aecc1e9e0029511d4458
395f39931f03041bea934601b20ebd53492c051a
b6ecffa562c3e3fe0ed16d2878185dca599e591b98d4bab11824d44e23f6c6e3
GET /img/ciclg-logo.png HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:59 GMT
Server: Apache
Last-Modified: Fri, 04 Oct 2019 08:14:52 GMT
Accept-Ranges: bytes
Content-Length: 74330
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
ciclg.com/js/jquery-3.3.1.min.js
203.176.128.88200 OK 87 kB URL HTTP/1.1 ciclg.com/js/jquery-3.3.1.min.js
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type ASCII text, with very long lines (65451)
Hash a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery-3.3.1.min.js HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:58 GMT
Server: Apache
Last-Modified: Thu, 06 Dec 2018 07:29:24 GMT
Accept-Ranges: bytes
Content-Length: 86927
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ciclg.com/storage/about-companies/September2022/dxeuqd3urKG3tnFGMNWy.jpg
203.176.128.88200 OK 26 kB URL HTTP/1.1 ciclg.com/storage/about-companies/September2022/dxeuqd3urKG3tnFGMNWy.jpg
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 851x315, components 3\012- data
Hash 89e611dcb6adaf198b1629778eb63da9
ba78c346d81d211fe49aa448f7f9876309ba7a3e
bc1cf3a2007b6864f6c99e65c4469654ac81f783d2a7ec0c861e5b3aabcd49d6
GET /storage/about-companies/September2022/dxeuqd3urKG3tnFGMNWy.jpg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:59 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 05:00:57 GMT
Accept-Ranges: bytes
Content-Length: 26482
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3908.4783588438463!2d104.87955211434246!3d11.589205146834876!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x310951cec5dd54d1%3A0x99cf3aef2d903ed8!2sCambodia%20International%20Cooperation%20Law%20Group!5e0!3m2!1sen!2skh!4v1570506067239!5m2!1sen!2skh
142.250.74.132200 OK 1.5 kB URL HTTP/2 www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3908.4783588438463!2d104.87955211434246!3d11.589205146834876!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x310951cec5dd54d1%3A0x99cf3aef2d903ed8!2sCambodia%20International%20Cooperation%20Law%20Group!5e0!3m2!1sen!2skh!4v1570506067239!5m2!1sen!2skh
IP 142.250.74.132:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2897)
Hash 0b8f3b2df79dde4574ae739deaaffb33
c5e000f9efa8b8171aceb4b38bbb80fe813923da
9af23d926b92374df19b0272dee21f2c0b83f1997b12b76e973e34a82bdef7c6
GET /maps/embed?pb=!1m18!1m12!1m3!1d3908.4783588438463!2d104.87955211434246!3d11.589205146834876!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x310951cec5dd54d1%3A0x99cf3aef2d903ed8!2sCambodia%20International%20Cooperation%20Law%20Group!5e0!3m2!1sen!2skh!4v1570506067239!5m2!1sen!2skh HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ciclg.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sun, 25 Dec 2022 22:45:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-tgl9TyX_G9S7iauibscy_g' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1485
x-xss-protection: 0
server-timing: gfet4t7; dur=142
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash d87a680fee13f66e99db5704e6700cd3
373346b37aa676c70dcc2be7313cb4eeeec91492
43eb7a490fefe7ccefcbd23d7284ff229bb4d3f09aaca3f884c98a9e17522878
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 22:45:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ciclg.com/js/owl.carousel.min.js
203.176.128.88200 OK 44 kB URL HTTP/1.1 ciclg.com/js/owl.carousel.min.js
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type ASCII text, with very long lines (31997)
Hash f416f9031fef25ae25ba9756e3eb6978
e2a600e433df72b4cfde93d7880e3114917a3cbe
a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d
Analyzer Verdict Alert fortinet Phishing
GET /js/owl.carousel.min.js HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:58 GMT
Server: Apache
Last-Modified: Fri, 20 Apr 2018 13:22:10 GMT
Accept-Ranges: bytes
Content-Length: 44342
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
maps.gstatic.com/maps-api-v3/embed/js/51/3/init_embed.js
142.250.74.3200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/3/init_embed.js
IP 142.250.74.3:0
File type ASCII text, with very long lines (2669)
Hash 670da89542ecf04a8bbff2049748654f
2fcd2c31427edfd9b3180e233a009677b0d88973
d1bdcacb4973ce7c60a0f59144bf6fb699eea4fc016ca1780cdf61dbd9efb3bc
GET /maps-api-v3/embed/js/51/3/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69327
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Dec 2022 20:12:32 GMT
expires: Thu, 21 Dec 2023 20:12:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 18:55:12 GMT
content-type: text/javascript
age: 354807
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ciclg.com/webfonts/fa-solid-900.woff2
203.176.128.88200 OK 117 kB URL HTTP/1.1 ciclg.com/webfonts/fa-solid-900.woff2
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type Web Open Font Format (Version 2), TrueType, length 117364, version 329.-17695\012- data
Size 117 kB (117364 bytes)
Hash 6832e004c9705a8332676bcd85c4138c
3e777bc1e531efe30588a01fac3685f8a782c8d1
fe529bb3f596ef36f463c8be98e02b43acccdfc0626719077481fe94e03cff21
Analyzer Verdict Alert fortinet Phishing
GET /webfonts/fa-solid-900.woff2 HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://ciclg.com/css/all.min.css
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:59 GMT
Server: Apache
Last-Modified: Tue, 07 May 2019 11:03:52 GMT
Accept-Ranges: bytes
Content-Length: 117364
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff2
ciclg.com/webfonts/fa-regular-400.woff2
203.176.128.88200 OK 145 kB URL HTTP/1.1 ciclg.com/webfonts/fa-regular-400.woff2
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type Web Open Font Format (Version 2), TrueType, length 145136, version 329.-17695\012- data
Size 145 kB (145136 bytes)
Hash 751ce4031742c06c5b4ab34d00d16bd4
2a2164bffb4bd952baaee14a6a4e24bdc0015e6c
99c5e07f20628e4c3acb7f51960ff451d0628f5f630015d3e73d091b546fb031
Analyzer Verdict Alert fortinet Phishing
GET /webfonts/fa-regular-400.woff2 HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://ciclg.com/css/all.min.css
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:59 GMT
Server: Apache
Last-Modified: Tue, 07 May 2019 11:03:52 GMT
Accept-Ranges: bytes
Content-Length: 145136
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: font/woff2
ciclg.com/webfonts/fa-brands-400.woff2
203.176.128.88200 OK 75 kB URL HTTP/1.1 ciclg.com/webfonts/fa-brands-400.woff2
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type Web Open Font Format (Version 2), TrueType, length 74652, version 329.-17695\012- data
Hash 983d5f613da1fe0aebda986a7cc4d091
ad20748f086785da3a3707fea9b1baedec3fcbd9
554a6afbe6416e8556e2735042512e57d021e00e49a964d84de15eb72b16504c
Analyzer Verdict Alert fortinet Phishing
GET /webfonts/fa-brands-400.woff2 HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://ciclg.com/css/all.min.css
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:59 GMT
Server: Apache
Last-Modified: Tue, 07 May 2019 11:03:52 GMT
Accept-Ranges: bytes
Content-Length: 74652
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2
ciclg.com/storage/posts/August2022/p3cuvApQDM40s23g5rOv.jpg
203.176.128.88200 OK 92 kB URL HTTP/1.1 ciclg.com/storage/posts/August2022/p3cuvApQDM40s23g5rOv.jpg
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1000x750, components 3\012- data
Hash 9e3df251fe9fc737ab66ac92fa7de142
2423cf43dec296cb933fb9003445c10b5b6e32c2
9d566ffd30423025ef5d8cb2f6aca948c2ebd1b522b61346433094debe780317
GET /storage/posts/August2022/p3cuvApQDM40s23g5rOv.jpg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:59 GMT
Server: Apache
Last-Modified: Mon, 29 Aug 2022 01:40:06 GMT
Accept-Ranges: bytes
Content-Length: 91859
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
ciclg.com/storage/posts/August2022/q82yny2exTOk5UltsCDq.jpg
203.176.128.88200 OK 104 kB URL HTTP/1.1 ciclg.com/storage/posts/August2022/q82yny2exTOk5UltsCDq.jpg
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1000x750, components 3\012- data
Size 104 kB (103673 bytes)
Hash e39b2ce7a1b16c97a9669a16c026b6c1
7a2a12e89228cd5da3cc658e872e6f75ebf6a835
3babf4e3d59599a6224d2f17ef9aa8a2bc549f9e77d9000fe8c3637a078ff4f9
GET /storage/posts/August2022/q82yny2exTOk5UltsCDq.jpg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:59 GMT
Server: Apache
Last-Modified: Mon, 22 Aug 2022 02:11:19 GMT
Accept-Ranges: bytes
Content-Length: 103673
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
ciclg.com/fonts/AKbalthom%20Kbach.ttf
203.176.128.88200 OK 833 kB URL HTTP/1.1 ciclg.com/fonts/AKbalthom%20Kbach.ttf
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type TrueType Font data, 19 tables, 1st "FFTM", 25 names, Macintosh, Copyright (c) 2013, AKbalthom (www.akbalthom.com)RegularAKbalthom Kbach:Version 1.50Version 1.50\012- data
Size 833 kB (832912 bytes)
Hash aa2de3f4d4d50ff69a336ffb65fa1e27
eb737cba43d614c8d2d9b57208615a577b195e62
b7c7d20f770177380060123492ad59dcf3d0d58cb65de8baf51900185211633a
Analyzer Verdict Alert fortinet Phishing
GET /fonts/AKbalthom%20Kbach.ttf HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:59 GMT
Server: Apache
Last-Modified: Mon, 23 Sep 2019 09:21:24 GMT
Accept-Ranges: bytes
Content-Length: 832912
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: font/ttf
ciclg.com/storage/slide-shows/September2022/89dsi85G9mEQYjXjNPFE.png
203.176.128.88200 OK 189 kB URL HTTP/1.1 ciclg.com/storage/slide-shows/September2022/89dsi85G9mEQYjXjNPFE.png
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type PNG image data, 1135 x 420, 8-bit/color RGBA, non-interlaced\012- data
Size 189 kB (188605 bytes)
Hash 279970292dae9cb3f9dd5206c37e49c4
a38183956f94b1c79d521e1c0047f5daceba7531
8a58b18448bcf76faba12ae75e2b19fe4e3326b4861e1e52936c0b0917af53cc
GET /storage/slide-shows/September2022/89dsi85G9mEQYjXjNPFE.png HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:59 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 05:06:06 GMT
Accept-Ranges: bytes
Content-Length: 188605
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
ciclg.com/storage/posts/May2021/JY9Q2CurnFPgzURZIiU0.jpg
203.176.128.88200 OK 74 kB URL HTTP/1.1 ciclg.com/storage/posts/May2021/JY9Q2CurnFPgzURZIiU0.jpg
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1000x1000, components 3\012- data
Hash ba274a7fc516c27e3dc77919a95b0482
68bbf2176bb12fa8c2fd54ec0d4ec7d5f969b38a
1a99e9d858c7241dd3ccc5158c0f61371423d926445ef60a34d8c5c05656ce06
GET /storage/posts/May2021/JY9Q2CurnFPgzURZIiU0.jpg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:59 GMT
Server: Apache
Last-Modified: Wed, 19 May 2021 02:55:25 GMT
Accept-Ranges: bytes
Content-Length: 73463
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
ciclg.com/storage/posts/December2019/fTs4JylXjIoPfBwJl8BC.jpg
203.176.128.88200 OK 17 kB URL HTTP/1.1 ciclg.com/storage/posts/December2019/fTs4JylXjIoPfBwJl8BC.jpg
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 500x140, components 3\012- data
Hash 71e2bd1c2a0bef2ffbcc272474c10a01
5efaffd0266c816dd435ab919214b587165c0ad7
242377a93610c43db0e55c2d3657bd7dca8912b3c27610813f1d93547d1c1c7d
GET /storage/posts/December2019/fTs4JylXjIoPfBwJl8BC.jpg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:45:59 GMT
Server: Apache
Last-Modified: Tue, 24 Dec 2019 09:28:27 GMT
Accept-Ranges: bytes
Content-Length: 17233
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5b2790419bb1f19fd29300d548278b98
64671f1c88a1271e9bcda28ac13a01e330a2a07e
1ce1ca2a9d6783fa668b57c8764e8c3a17fde26812161af8ce8096b3691b9279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1CE1CA2A9D6783FA668B57C8764E8C3A17FDE26812161AF8CE8096B3691B9279"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12377
Expires: Mon, 26 Dec 2022 02:12:17 GMT
Date: Sun, 25 Dec 2022 22:46:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5b2790419bb1f19fd29300d548278b98
64671f1c88a1271e9bcda28ac13a01e330a2a07e
1ce1ca2a9d6783fa668b57c8764e8c3a17fde26812161af8ce8096b3691b9279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1CE1CA2A9D6783FA668B57C8764E8C3A17FDE26812161AF8CE8096B3691B9279"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12377
Expires: Mon, 26 Dec 2022 02:12:17 GMT
Date: Sun, 25 Dec 2022 22:46:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5b2790419bb1f19fd29300d548278b98
64671f1c88a1271e9bcda28ac13a01e330a2a07e
1ce1ca2a9d6783fa668b57c8764e8c3a17fde26812161af8ce8096b3691b9279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1CE1CA2A9D6783FA668B57C8764E8C3A17FDE26812161AF8CE8096B3691B9279"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12377
Expires: Mon, 26 Dec 2022 02:12:17 GMT
Date: Sun, 25 Dec 2022 22:46:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5b2790419bb1f19fd29300d548278b98
64671f1c88a1271e9bcda28ac13a01e330a2a07e
1ce1ca2a9d6783fa668b57c8764e8c3a17fde26812161af8ce8096b3691b9279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1CE1CA2A9D6783FA668B57C8764E8C3A17FDE26812161AF8CE8096B3691B9279"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12377
Expires: Mon, 26 Dec 2022 02:12:17 GMT
Date: Sun, 25 Dec 2022 22:46:00 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f5421b0-4d90-4126-813c-f0b20b8058dc.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f5421b0-4d90-4126-813c-f0b20b8058dc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4a39035081117434c8be0b4b9d247edd
62ce877ea88dc4c691fce6ce36149eb3db8849ba
594754f2ab4a2f394d465893b9f73364c6ca1d03b688c8bc71ae687b70364c4d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f5421b0-4d90-4126-813c-f0b20b8058dc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6402
x-amzn-requestid: e473a47b-af93-4aef-87ee-0ae9bd9ea1fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duNbQHdWoAMFRZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c2ae-571725cd15512b1d33f622c7;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:37:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YS_2VrIREftdRQ3aNY7qUGMY0c-QZlXFNhpyCaOEJ8MsNl0D9Am_-g==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:51:05 GMT
age: 3295
etag: "62ce877ea88dc4c691fce6ce36149eb3db8849ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5272da38-01a8-4043-804a-cb62488152e1.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5272da38-01a8-4043-804a-cb62488152e1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0eedc9584ce3db2443c98e94536e9dbb
779c88e1e3ef3f8ad5fc2b4dc545cda6298eeb74
ca4bde46fc0a3b1e17704ac46c011405e82ceb7a2780886ce70f0a798bc47f6b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5272da38-01a8-4043-804a-cb62488152e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8423
x-amzn-requestid: 29317808-72e9-404e-b4d7-2a2ca85c1ab2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duNZzHywoAMFcKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c2a4-5a2a88970fbc7d1d2f9da797;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:37:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: n2tDc6R0yKValING-YZqmchO90g5ATryaSbcxFMeioWSFEVnGDM0CA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:50:07 GMT
age: 3353
etag: "779c88e1e3ef3f8ad5fc2b4dc545cda6298eeb74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a5f634-727e-4b8d-ab9e-15f34604a3d6.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a5f634-727e-4b8d-ab9e-15f34604a3d6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4d56ed7f66802ac154bc856e5bb69c13
3fc1162af1229f939cc1253aa86d476da51950cd
e10eed5b4c912f9730169ac07f9ba6c471f1d27c8d0efdfed8bb4a6cb5880869
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a5f634-727e-4b8d-ab9e-15f34604a3d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6073
x-amzn-requestid: 69e21df1-a420-4ad7-b0bf-4d9eacb5bee3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duOGEGvmIAMFoag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c3c0-6b8069e3057cf71d7284fbf7;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:42:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cgxS2QNcD1b_3t2BTbbnUpDp8F9GM--NIw4cVzoKxXL3btqDf9h-9A==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:57:13 GMT
age: 2927
etag: "3fc1162af1229f939cc1253aa86d476da51950cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1170b8f7-9efd-47d4-8f22-05af9334d2a1.webp
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1170b8f7-9efd-47d4-8f22-05af9334d2a1.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4dba0cdb1d2b6c9d61f85f66817137bb
e97b3e4f82bfea16e1991c566fa647d0531a4265
2aee5b88869edcdcb8427831e1c547828f5f013e793646ebbe29e56955df90fa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1170b8f7-9efd-47d4-8f22-05af9334d2a1.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9040
x-amzn-requestid: 155323c6-61ec-42c2-9a6d-a25493949cdf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duMupGpNoAMFrBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c190-32280eaf0734f99d555ffb02;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:33:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: hZzrydMtwKz3g7jNxoeX0aHGPGOHKZfr8hAdxFV6teHfI0G4HVJ20A==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 22:06:28 GMT
etag: "e97b3e4f82bfea16e1991c566fa647d0531a4265"
content-type: image/jpeg
age: 2372
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb455abdd-02b7-40a4-8270-5537daf8bfa6.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb455abdd-02b7-40a4-8270-5537daf8bfa6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dc21adaf610ae3e2c03cb89e07049109
77aac4c52cf8c392b28400fa9d7cccf45f3d43d6
31efc3bc0a2a761a55340becd6ac62bcc7906742bafde0349b0fd0bb24cacffb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb455abdd-02b7-40a4-8270-5537daf8bfa6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12703
x-amzn-requestid: 44e7f28d-fbca-4faa-8bec-554d9ca63c79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dkUi4E2uIAMFTrg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a4ce12-4f6520936d6b071938624b03;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 21:37:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5rUH27LiE019TMmer0Ts_YUrJzZXb274xuuHOupa-2jxuYLlHIg4iQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Dec 2022 23:28:19 GMT
age: 83861
etag: "77aac4c52cf8c392b28400fa9d7cccf45f3d43d6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2665a6ae98ace2eab671f9e8a9f0978
d1b0b2b7bf8c8bf2e9765e9103908aba36989727
ae9125caee2dc267c67bf4f31f2669e03f65c47a43f2d0ab83081eb043d23d85
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9932
x-amzn-requestid: 280fdeaa-a0e1-4306-9adb-52c0f28b4002
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duNZzGcjoAMF5wg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c2a4-73e3e4b34b67da2d2dbb8020;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:37:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nR7WiQ1kUfI129AOECPfR181bNjexz6B7BEIYxDRiGNqfKCQPiBKOQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:57:09 GMT
age: 2931
etag: "d1b0b2b7bf8c8bf2e9765e9103908aba36989727"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ciclg.com/storage/posts/December2019/GdbA88LxmngFytMEaMdU.jpg
203.176.128.88200 OK 7.4 kB URL HTTP/1.1 ciclg.com/storage/posts/December2019/GdbA88LxmngFytMEaMdU.jpg
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 194x194, components 3\012- data
Hash d142575d40e949ee03772c92a1cf869c
0ff4656ab4f3970acdaea4a4887771301c0a9c4c
899a3d8678a3788c6c17fc0ca7a86443205b1879ee8c1b87492674211a2e568e
GET /storage/posts/December2019/GdbA88LxmngFytMEaMdU.jpg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 24 Dec 2019 08:34:33 GMT
Accept-Ranges: bytes
Content-Length: 7366
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
ciclg.com/storage/posts/December2019/Akp0VtJVDnMOq8UugAoi.jpg
203.176.128.88200 OK 8.2 kB URL HTTP/1.1 ciclg.com/storage/posts/December2019/Akp0VtJVDnMOq8UugAoi.jpg
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 500x140, components 3\012- data
Hash c1ef96b06704f62f0cfd932ba20ff0d2
ecebed5b356ff71a3da520daad252d15edf353b5
67383604e470cf189fa190b2bf4a712eef382c8abd80966272de12614b179fe2
GET /storage/posts/December2019/Akp0VtJVDnMOq8UugAoi.jpg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 24 Dec 2019 08:31:40 GMT
Accept-Ranges: bytes
Content-Length: 8206
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
ciclg.com/img/kh.svg
203.176.128.88200 OK 9.6 kB IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (9251), with CRLF line terminators
Hash 773db3024d58ddb34b094dc5ccb8a6f0
a764d612b8f579b0cf636688ced73b142d576331
9c150f1e9f15b6c3e9b0a40d2d8eeb95f73bf0c462bc035b4272f3297108c4c1
Analyzer Verdict Alert fortinet Phishing
GET /img/kh.svg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Fri, 04 Oct 2019 03:39:52 GMT
Accept-Ranges: bytes
Content-Length: 9593
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
ciclg.com/img/en.svg
203.176.128.88200 OK 5.1 kB IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4807), with CRLF line terminators
Hash 7040f7f33ad0a8557de5fd78f173e410
f35e525559bf354eee26b910e36cc1e3bc3177af
2fcf637fa5eb864dfeede8033d2ea44ea0de99fa57307d251ed9280f08105e36
Analyzer Verdict Alert fortinet Phishing
GET /img/en.svg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Fri, 04 Oct 2019 03:39:42 GMT
Accept-Ranges: bytes
Content-Length: 5149
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
ciclg.com/storage/service-items/June2020/31lq30ZEH7unC5LWb3ll.png
203.176.128.88200 OK 23 kB URL HTTP/1.1 ciclg.com/storage/service-items/June2020/31lq30ZEH7unC5LWb3ll.png
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type PNG image data, 725 x 725, 8-bit/color RGBA, non-interlaced\012- data
Hash 250b8db81840d55217fef9cb01f41dd7
1f66944be38a0b9675a1c69b602066e11ca1520a
17a50318e0673d452e57b0f6fd072b6d7fdfa72447e3f0ea2ca029950564ffa2
GET /storage/service-items/June2020/31lq30ZEH7unC5LWb3ll.png HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Fri, 12 Jun 2020 02:06:31 GMT
Accept-Ranges: bytes
Content-Length: 22621
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
ciclg.com/storage/service-items/December2019/bXLa5EBGA139y68X7zkF.png
203.176.128.88200 OK 49 kB URL HTTP/1.1 ciclg.com/storage/service-items/December2019/bXLa5EBGA139y68X7zkF.png
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type PNG image data, 725 x 725, 8-bit/color RGBA, non-interlaced\012- data
Hash e67832b81bee627cae9e3d812b04a4e2
4c73ecc1439dc1fef4a771eb4f23883810e863ec
90bd13736b176df391f87d6c94d050a69fa35f1e6b80b642f2943598fea3171e
GET /storage/service-items/December2019/bXLa5EBGA139y68X7zkF.png HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 24 Dec 2019 08:53:36 GMT
Accept-Ranges: bytes
Content-Length: 48971
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
ciclg.com/storage/service-items/December2019/Y79OqTC55szgGJSQOk4l.png
203.176.128.88200 OK 18 kB URL HTTP/1.1 ciclg.com/storage/service-items/December2019/Y79OqTC55szgGJSQOk4l.png
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type PNG image data, 725 x 725, 8-bit/color RGBA, non-interlaced\012- data
Hash 2ccf9d856c5df50ee6fecf9139e85925
9a284aadb32933e9e5abf324afeca40657514de1
3e5320651d426ced1967e8d18caac837fae9a21fa58d599497132daf6f4b3ecf
GET /storage/service-items/December2019/Y79OqTC55szgGJSQOk4l.png HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 24 Dec 2019 08:53:22 GMT
Accept-Ranges: bytes
Content-Length: 18496
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
ciclg.com/storage/service-items/December2019/4XxVWjjy4XpLuqypnRKK.png
203.176.128.88200 OK 23 kB URL HTTP/1.1 ciclg.com/storage/service-items/December2019/4XxVWjjy4XpLuqypnRKK.png
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type PNG image data, 725 x 725, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e7919904e80a508933cbf9fc5ac328f
699070ade2f878e9ae5f675cc68e672c0ee5de0e
195095279bfc8914ae557f7937cc0740158be69987b1a13026bd979335e909f7
GET /storage/service-items/December2019/4XxVWjjy4XpLuqypnRKK.png HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 24 Dec 2019 08:53:11 GMT
Accept-Ranges: bytes
Content-Length: 23197
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
ciclg.com/storage/service-items/December2019/gQL3P1Mtl8LPK0XpX29u.png
203.176.128.88200 OK 14 kB URL HTTP/1.1 ciclg.com/storage/service-items/December2019/gQL3P1Mtl8LPK0XpX29u.png
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type PNG image data, 725 x 725, 8-bit/color RGBA, non-interlaced\012- data
Hash 04538a2e80575a06f1f772a7a3182649
2d8b4ea262cebe27470a1ea101a89769d4bd4ebf
145270fb3d65b9743d6f66cbe30b6d1dbad472760da5486cf962aec96bda36b2
GET /storage/service-items/December2019/gQL3P1Mtl8LPK0XpX29u.png HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 24 Dec 2019 08:53:00 GMT
Accept-Ranges: bytes
Content-Length: 14436
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
ciclg.com/storage/service-items/December2019/6b5UeXhS3vPGfT87Q8pR.png
203.176.128.88200 OK 21 kB URL HTTP/1.1 ciclg.com/storage/service-items/December2019/6b5UeXhS3vPGfT87Q8pR.png
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type PNG image data, 725 x 725, 8-bit/color RGBA, non-interlaced\012- data
Hash 595087e434eae247f068ee717cfcc863
3bafe1cdc166852c3c969854703125b68c8eca9a
94977abe9983b7209e71e195cc89aee59cbe3e78495e773d28e7245918adaaef
GET /storage/service-items/December2019/6b5UeXhS3vPGfT87Q8pR.png HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 24 Dec 2019 09:17:35 GMT
Accept-Ranges: bytes
Content-Length: 21144
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
ciclg.com/storage/service-items/December2019/0QeOitCtkgYMf8ZZKXNY.png
203.176.128.88200 OK 68 kB URL HTTP/1.1 ciclg.com/storage/service-items/December2019/0QeOitCtkgYMf8ZZKXNY.png
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type PNG image data, 725 x 725, 8-bit/color RGBA, non-interlaced\012- data
Hash 7ec1652858e149814962910511f5eed3
a1ee6d106dc9fc599834a373bed91961c7663ab7
f20695d9fe01c08028bba999c3c2dd84b3dc5544d77997049c3d1bc4b65bbce8
GET /storage/service-items/December2019/0QeOitCtkgYMf8ZZKXNY.png HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 24 Dec 2019 08:51:36 GMT
Accept-Ranges: bytes
Content-Length: 67456
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
ciclg.com/storage/service-items/December2019/CzWJx8VDQ5LlUfWlIlDk.png
203.176.128.88200 OK 24 kB URL HTTP/1.1 ciclg.com/storage/service-items/December2019/CzWJx8VDQ5LlUfWlIlDk.png
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type PNG image data, 725 x 725, 8-bit/color RGBA, non-interlaced\012- data
Hash 8e156228b467ce9bb446ca5d817c0b73
d5bc4b606b759228c8b1e3ccf508cc900f3b1f83
d73e35152aadeef7a2811f2270846ce1b4c9c90f09bccc0c47ee5a706243d6a5
GET /storage/service-items/December2019/CzWJx8VDQ5LlUfWlIlDk.png HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 24 Dec 2019 08:51:18 GMT
Accept-Ranges: bytes
Content-Length: 24090
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
ciclg.com/storage/service-items/December2019/NGAUG9UczUFbQRCo0BlQ.png
203.176.128.88200 OK 24 kB URL HTTP/1.1 ciclg.com/storage/service-items/December2019/NGAUG9UczUFbQRCo0BlQ.png
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type PNG image data, 725 x 725, 8-bit/color RGBA, non-interlaced\012- data
Hash 8f58f610b9b70eddaaf22e5c79b3b99f
8fed3874c8ea249186d62416b90d3860e035ed5b
53cba6dae1889279d8c437561353874eda65cc1e70554d4aa51ee4cacfe0a768
GET /storage/service-items/December2019/NGAUG9UczUFbQRCo0BlQ.png HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 24 Dec 2019 08:51:02 GMT
Accept-Ranges: bytes
Content-Length: 23680
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
ciclg.com/storage/service-items/December2019/vaLE680RS86Pgm25meUl.png
203.176.128.88200 OK 34 kB URL HTTP/1.1 ciclg.com/storage/service-items/December2019/vaLE680RS86Pgm25meUl.png
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type PNG image data, 725 x 725, 8-bit/color RGBA, non-interlaced\012- data
Hash 14ff69b6153e1ba1c6f61a3b240a7ba0
75789a29d5bb357a81be66b04d08652ca879a3dd
04b5899b922b96980434883c210bb2684b1e77da0a46e75aea8ac33c160a0e69
GET /storage/service-items/December2019/vaLE680RS86Pgm25meUl.png HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 24 Dec 2019 08:50:43 GMT
Accept-Ranges: bytes
Content-Length: 34287
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
ciclg.com/storage/service-items/December2019/V1JZf0m21LIDObBqQZQk.png
203.176.128.88200 OK 31 kB URL HTTP/1.1 ciclg.com/storage/service-items/December2019/V1JZf0m21LIDObBqQZQk.png
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type PNG image data, 725 x 725, 8-bit/color RGBA, non-interlaced\012- data
Hash 424c4e608a4359450cbdaf4b3929e4ac
5dccaa05ab3b4229dd2afaf5d788a5758778956a
2b8f442511f556bee486c859df999fa40ade8398025a45d826436f40cba7881e
GET /storage/service-items/December2019/V1JZf0m21LIDObBqQZQk.png HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 24 Dec 2019 08:50:27 GMT
Accept-Ranges: bytes
Content-Length: 30802
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
ciclg.com/storage/service-items/December2019/dhQTxLvG0myApDT8fA0z.png
203.176.128.88200 OK 36 kB URL HTTP/1.1 ciclg.com/storage/service-items/December2019/dhQTxLvG0myApDT8fA0z.png
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type PNG image data, 725 x 725, 8-bit/color RGBA, non-interlaced\012- data
Hash c5cb8efcbce93338159c45574403dd3b
3c8ec86c5dafab414e9f647488c89bddf460cca7
e77d3838fb081a496fcf2f23e53c5429170803acad4fe3d65b67eeb5422a5486
GET /storage/service-items/December2019/dhQTxLvG0myApDT8fA0z.png HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 24 Dec 2019 08:50:12 GMT
Accept-Ranges: bytes
Content-Length: 35889
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
ciclg.com/img/footer-logo2.png
203.176.128.88200 OK 129 kB URL HTTP/1.1 ciclg.com/img/footer-logo2.png
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type PNG image data, 1632 x 1408, 8-bit/color RGBA, non-interlaced\012- data
Size 129 kB (128767 bytes)
Hash 1b7c2f64caa94b7554bc7adadd4c743c
a8554f35340f66a2d8341a570d8e9db290bac8aa
5cfddd862339006781d30982a77aef62233b48c54094957edc86d91660289323
GET /img/footer-logo2.png HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Fri, 11 Oct 2019 10:01:56 GMT
Accept-Ranges: bytes
Content-Length: 128767
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
ciclg.com/storage/teams/November2019/MZTEh2M0VDU7tMUKb8ad.jpg
203.176.128.88200 OK 120 kB URL HTTP/1.1 ciclg.com/storage/teams/November2019/MZTEh2M0VDU7tMUKb8ad.jpg
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 1000x1382, components 3\012- data
Size 120 kB (119903 bytes)
Hash 5c26e3999d8a12925d0f8b26e71fe131
9cb6bcae59eb16f2d783bee33823d6c73a0b9fed
b8b02b1bcbb09e4a814b65def4d9358f771537c5ee1bc42895c7c66f79c8b9cb
GET /storage/teams/November2019/MZTEh2M0VDU7tMUKb8ad.jpg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 19 Nov 2019 04:05:17 GMT
Accept-Ranges: bytes
Content-Length: 119903
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
ciclg.com/storage/teams/November2019/WK7g4FJDkawevisvYutX.JPG
203.176.128.88200 OK 98 kB URL HTTP/1.1 ciclg.com/storage/teams/November2019/WK7g4FJDkawevisvYutX.JPG
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 1000x1382, components 3\012- data
Hash 65118612ea115ce3976c2ae59ff493c3
cd7af33041018b8f938bceaaedd83870ddce96b4
941bedde85b5472b0197c5c9f30f9ef299b9b3683c5186f0a68a47c596aa6088
Analyzer Verdict Alert fortinet Phishing
GET /storage/teams/November2019/WK7g4FJDkawevisvYutX.JPG HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 19 Nov 2019 04:10:49 GMT
Accept-Ranges: bytes
Content-Length: 98027
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
ciclg.com/storage/teams/November2019/8jAYy9OSxIzA1KrP4lwX.JPG
203.176.128.88200 OK 129 kB URL HTTP/1.1 ciclg.com/storage/teams/November2019/8jAYy9OSxIzA1KrP4lwX.JPG
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 1000x1382, components 3\012- data
Size 129 kB (129343 bytes)
Hash 818868391e54a4c0b1c4025cdad7fa16
93da6025379520bf6a1b298296f1d359fc27931b
7f891d6cfb1325662ef744e149aaa942cf6e031915c6c9dd809a810d59a32a7b
Analyzer Verdict Alert fortinet Phishing
GET /storage/teams/November2019/8jAYy9OSxIzA1KrP4lwX.JPG HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 19 Nov 2019 04:10:29 GMT
Accept-Ranges: bytes
Content-Length: 129343
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
ciclg.com/storage/teams/November2019/M80SlkDuP2vtgBcjPmSN.jpg
203.176.128.88200 OK 141 kB URL HTTP/1.1 ciclg.com/storage/teams/November2019/M80SlkDuP2vtgBcjPmSN.jpg
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 1000x1382, components 3\012- data
Size 141 kB (141059 bytes)
Hash d7f368047025407dbcf2e78c0e6666c4
f4735f1a035715ba2381a7dffb68f071c27b2eee
d37c9a334a892bcc49939bd25fba42a9c15cec9e0e45536868c782e98dab9f03
GET /storage/teams/November2019/M80SlkDuP2vtgBcjPmSN.jpg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 19 Nov 2019 04:11:50 GMT
Accept-Ranges: bytes
Content-Length: 141059
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
ciclg.com/storage/teams/November2019/70RHUT4INmRn3hrsmjZM.jpg
203.176.128.88200 OK 83 kB URL HTTP/1.1 ciclg.com/storage/teams/November2019/70RHUT4INmRn3hrsmjZM.jpg
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 1000x1382, components 3\012- data
Hash d52c16d328d6b1c9cb235c2c4daa7073
9ce9345546ae0544b27a8b6aa6565f9f5c0b35a4
3d5b9669d7887bbd9ea1318439e3a0e98b30d0b9a5db4d21fbeb11c679938b4c
GET /storage/teams/November2019/70RHUT4INmRn3hrsmjZM.jpg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 19 Nov 2019 04:12:07 GMT
Accept-Ranges: bytes
Content-Length: 82596
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
ciclg.com/storage/teams/November2019/0wPvM0ayvdDeXV1L84iN.jpg
203.176.128.88200 OK 88 kB URL HTTP/1.1 ciclg.com/storage/teams/November2019/0wPvM0ayvdDeXV1L84iN.jpg
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 1000x1382, components 3\012- data
Hash 05a38a2d8d4a6f4cfb0d41db95693491
90ee090a4c862a2bca11e73dfaf1b7d13d18c091
1c46ba2ce9a7113097dbd74a2e2e0cab245b501220d59231e1bb3161549a80ab
GET /storage/teams/November2019/0wPvM0ayvdDeXV1L84iN.jpg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 19 Nov 2019 04:11:26 GMT
Accept-Ranges: bytes
Content-Length: 88002
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
ciclg.com/storage/teams/November2019/P99P7HWkMpp4u1rwCqyd.JPG
203.176.128.88200 OK 128 kB URL HTTP/1.1 ciclg.com/storage/teams/November2019/P99P7HWkMpp4u1rwCqyd.JPG
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 1000x1382, components 3\012- data
Size 128 kB (128499 bytes)
Hash f4ecea3a0dff19c14c530f9a77a81bc7
f02d632c6774437bd25d86992229455645e3b414
4f47101bbe9c2907ca7e2d4fac945efbc4f944ae2b390c3603fd2841b4b9e50c
Analyzer Verdict Alert fortinet Phishing
GET /storage/teams/November2019/P99P7HWkMpp4u1rwCqyd.JPG HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 19 Nov 2019 04:11:07 GMT
Accept-Ranges: bytes
Content-Length: 128499
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
ciclg.com/storage/posts/December2019/KQDfLEK48S7iLB07Gb6w.jpg
203.176.128.88200 OK 9.8 kB URL HTTP/1.1 ciclg.com/storage/posts/December2019/KQDfLEK48S7iLB07Gb6w.jpg
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 194x194, components 3\012- data
Hash 53266ecef654e22087bea975b360d213
ff94623ec3e46d070769d58005596ed7870f4736
45e0549fa5d0e979f055f9bbe98a5dcd30b08f089d5cc39fead01f8abc6dbd88
GET /storage/posts/December2019/KQDfLEK48S7iLB07Gb6w.jpg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 24 Dec 2019 08:38:28 GMT
Accept-Ranges: bytes
Content-Length: 9823
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
ciclg.com/storage/posts/December2019/69FKM2ujZ6KJc4SBmTVM.jpg
203.176.128.88200 OK 12 kB URL HTTP/1.1 ciclg.com/storage/posts/December2019/69FKM2ujZ6KJc4SBmTVM.jpg
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 500x140, components 3\012- data
Hash 7bc6a9149d180164d1eeececf3aadb60
af5d81a6a3c78754dc3edd41d7fd4a7db2e41dbd
3790e25153ca4717b8b01f1544d4c13f8e9cd8bf22fbbd83149c08dbdec12a61
GET /storage/posts/December2019/69FKM2ujZ6KJc4SBmTVM.jpg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Tue, 24 Dec 2019 08:36:21 GMT
Accept-Ranges: bytes
Content-Length: 12129
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
ciclg.com/storage/posts/February2021/po1SLj9QZYHsZWPwX5SA.jpg
203.176.128.88200 OK 16 kB URL HTTP/1.1 ciclg.com/storage/posts/February2021/po1SLj9QZYHsZWPwX5SA.jpg
IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 225x225, components 3\012- data
Hash bdd9fbca9dc48cbea5995d13d79dc4bb
61fadf29fe07d7a1d4b830e0bbab0a0d98749aad
7c785dbee4b304e9595546aa5cbabb36cdc34e51d98a012ebe465f57ea32f47b
GET /storage/posts/February2021/po1SLj9QZYHsZWPwX5SA.jpg HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:00 GMT
Server: Apache
Last-Modified: Thu, 25 Feb 2021 07:13:49 GMT
Accept-Ranges: bytes
Content-Length: 15883
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ff7f3aeffbfbf1cf84807c449a6aa7ff
83a8182ef5eeed00b17ea52d1880e8d189cf0634
652c1dbc3399321734421d123fb1c56cd1b5543fd667fac16ea4093c5b92e45a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3385
Cache-Control: max-age=124855
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 22:46:01 GMT
Etag: "63a80a27-1d7"
Expires: Tue, 27 Dec 2022 09:26:56 GMT
Last-Modified: Sun, 25 Dec 2022 08:30:31 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash 94be08779dbeb07390845dbf04610c22
f799f1e250ef6346ee74b8207b2369a9a9ee6cc7
3530cbe7eca0a110250c0c53df8c1cbc546c7729dafd22caac04bea440981004
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ciclg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 88328fc0853f106b90221bf7957db116
etag: "faa254003cac43c571c4e6c53a856f2b"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 25 Dec 2022 22:49:55 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: lL4Id52+sHOQhF2/BGEMIg==
x-fb-debug: b3e+WHIQiQOOfM53mgk6L9j7s1m01U1qhBjxZoAQNV5yoiKcK1IKOG8+bh0gqe5ttzGZPZVhWiXZGO6kLMDNCg==
content-length: 1685
x-fb-trip-id: 1904183273
date: Sun, 25 Dec 2022 22:46:01 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ff7f3aeffbfbf1cf84807c449a6aa7ff
83a8182ef5eeed00b17ea52d1880e8d189cf0634
652c1dbc3399321734421d123fb1c56cd1b5543fd667fac16ea4093c5b92e45a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3385
Cache-Control: max-age=124855
Content-Type: application/ocsp-response
Date: Sun, 25 Dec 2022 22:46:01 GMT
Etag: "63a80a27-1d7"
Expires: Tue, 27 Dec 2022 09:26:56 GMT
Last-Modified: Sun, 25 Dec 2022 08:30:31 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk.js?hash=032ac23af419fc5e31b771c236bc203d
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=032ac23af419fc5e31b771c236bc203d
IP 31.13.72.12:0
File type ASCII text, with very long lines (18530)
Hash 9bbe22fb29fb923aeb34c8cc24c3560e
203dd186f94bc3f685fa6a39bad8159b8066b714
c8cae93e3bd3ed148fbcc21d0d151ad97afc148a0f56e3e908d335be617648f6
GET /en_US/sdk.js?hash=032ac23af419fc5e31b771c236bc203d HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ciclg.com
Connection: keep-alive
Referer: http://ciclg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 5fc84ca94a598d16f3256d27e6252660
etag: "7a53399da8ac8f10f0a8f6701ccafc9f"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 25 Dec 2023 20:43:17 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: m74i+yn7kjrrNMjMJMNWDg==
x-fb-debug: 48g2RbZEWyv26L1JGzTtL6xxsQwKmjvoCyLL9yavxl14xVxJ8UsM3laehE5famKbFJm8PosDift+chnxxAOtiw==
priority: u=3,i
content-length: 88472
x-fb-trip-id: 1904183273
date: Sun, 25 Dec 2022 22:46:01 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ciclg.com/img/icon.png
203.176.128.88200 OK 29 kB IP 203.176.128.88:0
ASN #38235 ANGKOR DATA COMMUNICATION
File type PNG image data, 141 x 140, 8-bit/color RGBA, non-interlaced\012- data
Hash 448755472b53649afad158acf4facda1
7f0070592706771c3db4dcb0c36f1baf6c07a6f8
f4b398e7e32bfd5ddade7b4bac0e05dee559e9487ed33f36009bd4c797850b66
GET /img/icon.png HTTP/1.1
Host: ciclg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciclg.com/
Cookie: XSRF-TOKEN=eyJpdiI6InZJbisxd082NnNnMnpyd3dnN1NuSXc9PSIsInZhbHVlIjoicXhrclJsQmhqRUxxSitjcFZQOXBXYVhTZ3pKQUY3VTMxajRmREIxaHlHQXFGZVNvTjFsTVpoS3BFeDhjcndTV0J3dXY0aXhZbjlGVGVuTFwvdUZhdkJBPT0iLCJtYWMiOiI4MDFlNmQ2NThmZjlhZmVlY2M3ZGE2YjMyNjFkM2E5OGQ1YWEwZTdlMDQ2OGYyYWNjODczNDhkNDgyZGEwYWRmIn0%3D; laravel_session=eyJpdiI6InRuNitsSktGMnEwUzBsQjNDbW56bEE9PSIsInZhbHVlIjoicWhaRjlBcE53K2treno0MzE5UFZvOVBHWEVqNHp3VG9FamdUa1A4RGlcL2M1SW5kRU5YNG9WSldLTnlxS2ZmRzEzR1BhU1NIbHZ6NXk4bGpteTR5bUFRPT0iLCJtYWMiOiJkZTQ2NjIzNjZlYThkNWI3MWQ0Nzg4NzUxM2Y2MzYxNWNkZjRjNWI0MDI3Yzc2YTc2YWVjNDkzMDBlOWU5YjljIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Dec 2022 22:46:01 GMT
Server: Apache
Last-Modified: Mon, 07 Oct 2019 03:31:54 GMT
Accept-Ranges: bytes
Content-Length: 28600
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
www.facebook.com/tr/?id=186814865584969&ev=fb_page_view&dl=http%3A%2F%2Fciclg.com%2F&rl=&if=false&ts=1672008358441&sw=1280&sh=1024&at=
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=186814865584969&ev=fb_page_view&dl=http%3A%2F%2Fciclg.com%2F&rl=&if=false&ts=1672008358441&sw=1280&sh=1024&at=
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=186814865584969&ev=fb_page_view&dl=http%3A%2F%2Fciclg.com%2F&rl=&if=false&ts=1672008358441&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ciclg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 25 Dec 2022 22:46:01 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type gzip compressed data, max compression\012- data
Hash 2c5e576c986fa3babe2c32f4a7ca3f3c
2f9f0aaf63ec000b07fc073c26fddfb6ab4e4466
f560931ec3844307c32fb2b1503925261fc99f30ecd22d27664b104e13e5567c
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Dec 2022 19:33:54 GMT
expires: Thu, 21 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 357127
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2