r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 408d1564e8f59e6626e41be4106ce2e6
4149a1f17e8f7c446e7aa4963f3a49b6a00b6164
46e2e79c7977854058dec9cde88f963dd498dd235c3bb15b39a9e5ce1027d7fe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46E2E79C7977854058DEC9CDE88F963DD498DD235C3BB15B39A9E5CE1027D7FE"
Last-Modified: Thu, 09 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16264
Expires: Fri, 10 Feb 2023 10:12:57 GMT
Date: Fri, 10 Feb 2023 05:41:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 84247d80b610d0c6da587141b21323ae
46461f8709d099f5295998f41aaafa5be4387ea6
bee5e9e0d7b4a24609950ceb40194bffb482c36152d376bb119e7cc3aba488dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BEE5E9E0D7B4A24609950CEB40194BFFB482C36152D376BB119E7CC3ABA488DC"
Last-Modified: Thu, 09 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9862
Expires: Fri, 10 Feb 2023 08:26:15 GMT
Date: Fri, 10 Feb 2023 05:41:53 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 10 Feb 2023 05:34:19 GMT
content-type: application/json
age: 454
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 50a2f8cdbbd1059f5318753155bba7ef
405e63ea4683be44f876feae34b5cb645ff751f2
f6ac743a5a17d64d2858fec5791050d2dc8074ddd823826c93e67bffdb2f0868
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6AC743A5A17D64D2858FEC5791050D2DC8074DDD823826C93E67BFFDB2F0868"
Last-Modified: Thu, 09 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17555
Expires: Fri, 10 Feb 2023 10:34:28 GMT
Date: Fri, 10 Feb 2023 05:41:53 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: BHpy+uneD7p2KFORsVvZLKs3ct6OobRbyBzueXGgnV94raVk/NBiUINYFg9ERUiKIPBd9ETPX58=
x-amz-request-id: S7ZJH6KRE65WGEWQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 10 Feb 2023 05:36:39 GMT
age: 314
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 10 Feb 2023 05:41:53 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 10 Feb 2023 04:51:21 GMT
age: 3032
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 248ce16379b12f11927ecc3142aec450
fa5b189f2d9182479170cb61cc1723571e437bd2
a8d259b331bdefb00625b9bf057d44d0b3290fda0734c57eda187b04e23d59d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8D259B331BDEFB00625B9BF057D44D0B3290FDA0734C57EDA187B04E23D59D4"
Last-Modified: Wed, 08 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6983
Expires: Fri, 10 Feb 2023 07:38:17 GMT
Date: Fri, 10 Feb 2023 05:41:54 GMT
Connection: keep-alive
push.services.mozilla.com/
35.165.116.156101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.116.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +U09GVQHc7qlpXJcdHl8nA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kUGK83KEXctBAg+VcddT0zSB2T8=
alemargroups.com/
103.229.73.193301 Moved Permanently 0 B IP 103.229.73.193:0
ASN #55660 PT Master Web Network
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 10 Feb 2023 05:41:53 GMT
Server: Apache
X-Redirect-By: WordPress
Location: https://www.alemargroups.com/
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fa3b80f6c5e48935acba628afd26f4ce
f69397ac7d88fc285d79b1a17ec28340c8a5c564
6019b3d5a40f38c020b87c2bc5d25b3646b7cccd3bf005f835cb74b46869100d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6019B3D5A40F38C020B87C2BC5D25B3646B7CCCD3BF005F835CB74B46869100D"
Last-Modified: Thu, 09 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4014
Expires: Fri, 10 Feb 2023 06:48:49 GMT
Date: Fri, 10 Feb 2023 05:41:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fa3b80f6c5e48935acba628afd26f4ce
f69397ac7d88fc285d79b1a17ec28340c8a5c564
6019b3d5a40f38c020b87c2bc5d25b3646b7cccd3bf005f835cb74b46869100d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6019B3D5A40F38C020B87C2BC5D25B3646B7CCCD3BF005F835CB74B46869100D"
Last-Modified: Thu, 09 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4014
Expires: Fri, 10 Feb 2023 06:48:49 GMT
Date: Fri, 10 Feb 2023 05:41:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fa3b80f6c5e48935acba628afd26f4ce
f69397ac7d88fc285d79b1a17ec28340c8a5c564
6019b3d5a40f38c020b87c2bc5d25b3646b7cccd3bf005f835cb74b46869100d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6019B3D5A40F38C020B87C2BC5D25B3646B7CCCD3BF005F835CB74B46869100D"
Last-Modified: Thu, 09 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4014
Expires: Fri, 10 Feb 2023 06:48:49 GMT
Date: Fri, 10 Feb 2023 05:41:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fa3b80f6c5e48935acba628afd26f4ce
f69397ac7d88fc285d79b1a17ec28340c8a5c564
6019b3d5a40f38c020b87c2bc5d25b3646b7cccd3bf005f835cb74b46869100d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6019B3D5A40F38C020B87C2BC5D25B3646B7CCCD3BF005F835CB74B46869100D"
Last-Modified: Thu, 09 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4014
Expires: Fri, 10 Feb 2023 06:48:49 GMT
Date: Fri, 10 Feb 2023 05:41:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fa3b80f6c5e48935acba628afd26f4ce
f69397ac7d88fc285d79b1a17ec28340c8a5c564
6019b3d5a40f38c020b87c2bc5d25b3646b7cccd3bf005f835cb74b46869100d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6019B3D5A40F38C020B87C2BC5D25B3646B7CCCD3BF005F835CB74B46869100D"
Last-Modified: Thu, 09 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4014
Expires: Fri, 10 Feb 2023 06:48:49 GMT
Date: Fri, 10 Feb 2023 05:41:55 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d8355b5-6110-4928-a878-535b6bf5c0e2.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d8355b5-6110-4928-a878-535b6bf5c0e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 72fc09b3ec7cb56bcd09a804edaada31
85eefc6a7faf28aa265bc233d81b2dcb4d560bd9
b0303b397bc167c677e88aac531a1d3fdacda498cfe66bcf7abe27a7d0bbcf6c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d8355b5-6110-4928-a878-535b6bf5c0e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9862
x-amzn-requestid: d393e142-1307-4157-9755-b93818e9dae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AGMlKGQtoAMF8NQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e58e20-26f51d077f1b5c5c1a7476da;Sampled=0
x-amzn-remapped-date: Fri, 10 Feb 2023 00:21:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lRIf8b7LHoIS_6Up1wieskmtKcDDgW9PsJz-wLfzSN0rhG2QO7zjSg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 10 Feb 2023 00:36:15 GMT
age: 18340
etag: "85eefc6a7faf28aa265bc233d81b2dcb4d560bd9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f08f6ea-4484-451f-a0d7-0c04aaa1add6.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f08f6ea-4484-451f-a0d7-0c04aaa1add6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 409d88da86fdfad6ca1b3bb41673a9eb
910df78320a5ed1c67960cad7c990d8759ad898d
98cffe838bf164b96921b158493c051957887ea45acd8bbb7ff952c5901d337e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f08f6ea-4484-451f-a0d7-0c04aaa1add6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10146
x-amzn-requestid: f92e17a9-5e28-4c00-84c8-495043107685
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AGJ0IGGWoAMFzKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e589b3-3c287cda4e33ca9c18c4bdaa;Sampled=0
x-amzn-remapped-date: Fri, 10 Feb 2023 00:02:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XaJRihi1xPeOLNVrZAk-NrCf0f4u537g7UqvVVo0buu3-M0IZnercA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 10 Feb 2023 00:12:42 GMT
age: 19753
etag: "910df78320a5ed1c67960cad7c990d8759ad898d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5163068-995f-4605-87b9-fe1d8af68f7c.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5163068-995f-4605-87b9-fe1d8af68f7c.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9addca8f99eeeca4a7b2152f7719ca0
7c78e7f5bb27d7842883a606f8e48368d6db3ba6
6d3d60faf08733651971d8843b668e874cf600c370d91512d5720a69c52ee387
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5163068-995f-4605-87b9-fe1d8af68f7c.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12273
x-amzn-requestid: 73a2f4cf-3d26-4b63-bbf4-4d4af96a803d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AGJ0yFZ2oAMFkfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e589b7-17f0e6e57cb00aee2222a54c;Sampled=0
x-amzn-remapped-date: Fri, 10 Feb 2023 00:03:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Yp0_kOy29Vnea6IL17CzmMnT40730IezAZ7c_kHviIfmZVriDGvWTA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 10 Feb 2023 00:12:42 GMT
age: 19753
etag: "7c78e7f5bb27d7842883a606f8e48368d6db3ba6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5709d9c0-ad9a-4ad2-a513-238ddbd715c1.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5709d9c0-ad9a-4ad2-a513-238ddbd715c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 699375010f95c72afcd52eb0aee10a96
f5d98fd3ccea9c5c66bd4e0921c946bbc6256985
2fa5fee4559d62a614efa72585f7c90636a40d03e605d0e46bf5ba5a1b729b91
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5709d9c0-ad9a-4ad2-a513-238ddbd715c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5739
x-amzn-requestid: a7d3deb1-d9e1-44bc-9acb-4a5d72f5c3c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AGHwXEnZIAMFSPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e58668-215e18d01a1e368b61ae1650;Sampled=0
x-amzn-remapped-date: Thu, 09 Feb 2023 23:48:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uUrtzv8hpVcBu3nlWz8CNFNrqUOgEeurIq9LZIJ9hkFLlZbTQufYqA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Fri, 10 Feb 2023 00:09:54 GMT
age: 19921
etag: "f5d98fd3ccea9c5c66bd4e0921c946bbc6256985"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff18889c9-0ffe-4e16-8b23-a567260f8e70.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff18889c9-0ffe-4e16-8b23-a567260f8e70.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bbb0439b722696021369b436571c7abe
3ecd03ad4535d9d92f31cba294a6df79fa37e7da
62f7e02deb38a666d1a2349703d54b409ca8f38b689c3b5b3706571ced9d0c4d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff18889c9-0ffe-4e16-8b23-a567260f8e70.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8195
x-amzn-requestid: 4b28d4d8-5358-404b-bae4-39ffe606ea6a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AF0VoHjMoAMFa-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e56756-4839a573183aae4c6eda6546;Sampled=0
x-amzn-remapped-date: Thu, 09 Feb 2023 21:36:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: E6IupdWk4g-FUH0fLC6m02cootSrA_u47GaTIYKw7eeJT7h7IRvbOg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 09 Feb 2023 21:43:53 GMT
age: 28682
etag: "3ecd03ad4535d9d92f31cba294a6df79fa37e7da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 53cb7d8a-b5bd-4e12-aa43-1bfd5215bc72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ACoe0HZxIAMFeRA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e4212b-11225faf68d7247977b0f122;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 22:24:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: z7Vj4dUck5S3ji_hWN23c7xATzoh1c-m-OMDYZ3gh81pKDWRhLpKCA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 09 Feb 2023 06:02:36 GMT
age: 85159
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 764f6498bfc9fce44fcfaca97119697f
d285cc1f81ca9f23891ff68c2380e0f9e9e96e0c
8d1b5c3b41446c6b296d3a8c96bfdfca8f1a68cc8aa2008ea1b86a8194281f5e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 10 Feb 2023 05:41:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.alemargroups.com/
103.229.73.193200 OK 14 kB IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Hash 0af06adebe72febfd415948f8dd7ce29
2db7025e72dff606e6934ac981aed04033a7106e
aca258c0cdcb018b01b3aee0f8257620b0323f86436b4ecada14f1e61d9fa2dc
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:54 GMT
Server: Apache
Link: <https://www.alemargroups.com/wp-json/>; rel="https://api.w.org/", <https://www.alemargroups.com/wp-json/wp/v2/pages/7>; rel="alternate"; type="application/json", <https://www.alemargroups.com/>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 13781
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 764f6498bfc9fce44fcfaca97119697f
d285cc1f81ca9f23891ff68c2380e0f9e9e96e0c
8d1b5c3b41446c6b296d3a8c96bfdfca8f1a68cc8aa2008ea1b86a8194281f5e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 10 Feb 2023 05:41:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.alemargroups.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
103.229.73.193200 OK 11 kB URL HTTP/1.1 www.alemargroups.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (43771)
Hash 069a79d16ded6a02071f286cd2025c44
dd5970e01b8a10dadcf074f72a1c8095f25e947a
78261bccee805c6913bf7e23e2e25314f05f690300a77a40ca36e1e516b20203
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Mon, 04 Jul 2022 10:40:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 10912
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash b29d1d6101400be7f1c8666902224c04
1ff072a0b8d316b61862ffbce03a69adda1d8833
c90e0e9e51ce1bdb4fcf2204d135e158736f84d943bd1810461c755d58b764e8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 10 Feb 2023 05:41:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.google.com/maps/api/js
142.250.74.142200 OK 53 kB URL HTTP/2 maps.google.com/maps/api/js
IP 142.250.74.142:0
File type ASCII text, with very long lines (2518)
Hash ffab776137fa0777c219fcf42388c8cb
d67b53e21c097e42e62c055c8b581e49e0f6e87b
8167c9bde351236af43373b137626364e0c1328797cb3df1fce0b8b2fde28226
GET /maps/api/js HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Fri, 10 Feb 2023 05:41:56 GMT
expires: Fri, 10 Feb 2023 06:11:56 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53215
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=20
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash b29d1d6101400be7f1c8666902224c04
1ff072a0b8d316b61862ffbce03a69adda1d8833
c90e0e9e51ce1bdb4fcf2204d135e158736f84d943bd1810461c755d58b764e8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 10 Feb 2023 05:41:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.alemargroups.com/wp-content/plugins/simple-lightbox/client/css/app.css?ver=2.8.1
103.229.73.193200 OK 82 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/simple-lightbox/client/css/app.css?ver=2.8.1
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with CRLF line terminators
Hash 111e98f6145b1e5c6c29b954ff7816f3
01df2332f02ed4c8976919a2f24007a644320196
9fe062e0c1a047a674c79ee62b5b8662f2872dcd349e50b44bc6f2630a0417cf
GET /wp-content/plugins/simple-lightbox/client/css/app.css?ver=2.8.1 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 04:18:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 82
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2.2
103.229.73.193200 OK 620 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2.2
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
Hash 9f99d02cd2ebab69c2ddb8aa94ad8088
38d7a42447667ea805a063cc3012cd34b9a975d4
456d79e339948bd957d7e8d6cf2ca4ac9fda277dfbfa13093a0502322e595c08
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2.2 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 04:21:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 620
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/siteorigin-panels/css/front-flex.min.css?ver=2.11.5
103.229.73.193200 OK 293 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/siteorigin-panels/css/front-flex.min.css?ver=2.11.5
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (971), with no line terminators
Hash bc8c976d069f1a7269a56591babd5a1b
9d13b923a2d6547242f48f6ea1936ccc079f1efb
729fbe778b9c0630e2fc0faaa3ec1f43b6078f0c4b66330ede984acbcb0e3269
GET /wp-content/plugins/siteorigin-panels/css/front-flex.min.css?ver=2.11.5 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 04:10:22 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 293
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.7
103.229.73.193200 OK 2.1 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.7
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
Hash a85d209fef9224fe16ec8cc6a5c6141d
8610912a07e6e49462dd7d52611d58b718bcd8c9
7cabfe1a57bd55ffabc6c8f1352405074243a362d29719ded5bad2ea6cd3def1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.7 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 06:14:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2125
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.7
103.229.73.193200 OK 8.3 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.7
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (7136)
Hash 240e50457531271a7d61051f935fdda5
948c44a86556a79995fe1ca68de2e06ad2864616
ceb5e1522e0e320f1c7ef11d82d46eec7ccd6c5a18ead42024787b26f1257c7b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.7 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 06:14:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 8303
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
103.229.73.193200 OK 4.0 kB URL HTTP/1.1 www.alemargroups.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (11126)
Hash 1fbb59519536e28eeb7ae7173973c39f
f6542c5d0f96f621eea4f3cb442021dfe33863fa
b1b54befd52c3605721bf8b5a6c0290c572929138358738826873751256b191c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 07:36:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3998
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/themes/buildpress/assets/js/modernizr.custom.24530.js
103.229.73.193200 OK 1.6 kB URL HTTP/1.1 www.alemargroups.com/wp-content/themes/buildpress/assets/js/modernizr.custom.24530.js
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type HTML document, ASCII text, with very long lines (3446)
Hash 72a4896150d0bf7b523b24785fe70ae8
3d98e6bde8c9da13e73f95e1336a0fb70da137ec
e55443f0eebb6b964f1e571f8541844cfe15c760baaeda6bcf260288d31489e7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/buildpress/assets/js/modernizr.custom.24530.js HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 03:15:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1625
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/themes/buildpress/bower_components/respimage/respimage.min.js?ver=1.2.0
103.229.73.193200 OK 3.9 kB URL HTTP/1.1 www.alemargroups.com/wp-content/themes/buildpress/bower_components/respimage/respimage.min.js?ver=1.2.0
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (8789)
Hash 6eed344b300fcc73c2caf9b0de9b82cc
efd34e9e7f0f1ad6b44c4ece4add535afc43d26d
7abb9145aedb6b046283c4d5a78b69ee12e87eb996ffbc7c728aafbab7062499
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/buildpress/bower_components/respimage/respimage.min.js?ver=1.2.0 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 03:15:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3942
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/themes/buildpress/style.css?ver=5.6.2
103.229.73.193200 OK 34 kB URL HTTP/1.1 www.alemargroups.com/wp-content/themes/buildpress/style.css?ver=5.6.2
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type assembler source, ASCII text, with very long lines (1012)
Hash 68f0e304be6525a053e31ae08cbc6c87
ffedf075b1342e7a65c804357261792e321bb5ea
420c71ac45ffe5203ab382e6ea46180505e6c22e915536d26733946b7be7a4d5
GET /wp-content/themes/buildpress/style.css?ver=5.6.2 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 03:15:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 33505
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
103.229.73.193200 OK 4.6 kB URL HTTP/1.1 www.alemargroups.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (15660)
Hash a0083d25b89ea80ecd2393db9f865d62
24eaf2df7c722fb13f2b5bf77ada5ee446720c25
f7533cb93f2efbb9e3bccfa9ff4036a2cafa7dd1bd4d66bea4833306b321e957
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Tue, 12 Apr 2022 04:26:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 4614
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
103.229.73.193200 OK 30 kB URL HTTP/1.1 www.alemargroups.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (65447)
Hash d5935cacfd471ce64891335a0e163f0f
883b406801168b978994e8d8c7f252a31321cf61
caea13ed31fcdedf7f54e2383e8a64c1d86d6767c11f227c046ab2952a7d3ce9
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 13:37:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 30310
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/font-awesome/css/font-awesome.min.css?ver=6.0.3
103.229.73.193200 OK 6.7 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/font-awesome/css/font-awesome.min.css?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (30837)
Hash 3bca42e5004726d89ebdea033d8ae93f
629b1195ec0fa24286d5d6a06fe319c139a4872f
1f3dde16a1674c2dcc2af76809687ed4ab30a42c4a3097fb6d53b6115fbd294b
GET /wp-content/plugins/grid-plus/assets/lib/font-awesome/css/font-awesome.min.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 6662
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/animate/animate.css?ver=6.0.3
103.229.73.193200 OK 839 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/animate/animate.css?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
Hash 11023c8033155e8841848462681a4e32
1c23021dcff5c1691cfdb1a8c7ded685d803a9ab
74b127775d115a1eb12854618c0e8327e8fe0569d5783d699ac36be7bb9c9978
GET /wp-content/plugins/grid-plus/assets/lib/animate/animate.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 839
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/ladda/ladda.min.css?ver=6.0.3
103.229.73.193200 OK 972 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/ladda/ladda.min.css?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (7600)
Hash 136eb7ec6438a2129468a4c25e5a7312
7fca9898d3ba2d8f50661e0b0d17cbeccc1f69f2
1f8a6e7565408c87fad00e1d809ff4b932b1b5edcb8b4230ab7c2e9a1e7b1b93
GET /wp-content/plugins/grid-plus/assets/lib/ladda/ladda.min.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 972
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/light-gallery/css/lightgallery.min.css?ver=6.0.3
103.229.73.193200 OK 3.0 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/light-gallery/css/lightgallery.min.css?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (16537)
Hash 08a9ca6a206735613964c19b441b3142
cb06707b8e267b0a1d69dddfe7848a5820f6c8da
31a0b6262e0b415cc45228f1fe8f76e96d53d54f7e6ef68e267cd4ac1854385e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/light-gallery/css/lightgallery.min.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3013
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.min.css?ver=6.0.3
103.229.73.193200 OK 2.1 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.min.css?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (8906), with no line terminators
Hash f403a2d6aa3d0dbebddb27c2e1f021b4
b8b7b50445b697312a4649d6abb685a88250ecea
80e133c8884488fad1b0409fd2ea50935206c385ffc97d3a2e1f1cddc72ddc18
GET /wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.min.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:56 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2050
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 4f2f88314f749d4c7a7e191f6048e567
664f0e39dd5da0a254653709a6e5c7758796e7b1
06b8f63716968fbcda99cab5960c2629c985a2886f78fcb674b981e88486ae79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 10 Feb 2023 05:41:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.alemargroups.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Feb 2023 15:38:44 GMT
expires: Tue, 06 Feb 2024 15:38:44 GMT
cache-control: public, max-age=31536000
age: 309793
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.alemargroups.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 07:08:09 GMT
expires: Sat, 03 Feb 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 599628
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Hash 4610010f425c140b99c88b6819ce1c02
a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.alemargroups.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 Feb 2023 12:07:20 GMT
expires: Fri, 09 Feb 2024 12:07:20 GMT
cache-control: public, max-age=31536000
age: 63277
last-modified: Wed, 27 Apr 2022 16:02:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bc97de4b2dead07cab1fd1462f568477
06cb1976b6110e63c728a26c2af8f009eb98d763
a31f290b895eb6968cb464280c3decd117eb33a28ad61eb8667bce68ca960178
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4674
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 10 Feb 2023 05:41:57 GMT
Last-Modified: Fri, 10 Feb 2023 04:24:03 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 4f2f88314f749d4c7a7e191f6048e567
664f0e39dd5da0a254653709a6e5c7758796e7b1
06b8f63716968fbcda99cab5960c2629c985a2886f78fcb674b981e88486ae79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 10 Feb 2023 05:41:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack-extra.min.css?ver=6.0.3
103.229.73.193200 OK 1.5 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack-extra.min.css?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (25417), with no line terminators
Hash 0e2bded91feab38e87889404f667e19c
fab42aace712fccea9402c8c8f6e2ccdedb6c27c
6dd742f009e16bff7a3b366c7286a2b0d671ada7e3106d959c19871c811cd2bb
GET /wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack-extra.min.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1515
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/owl-carousel/grid.owl.carousel.min.css?ver=6.0.3
103.229.73.193200 OK 829 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/owl-carousel/grid.owl.carousel.min.css?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (3064)
Hash 6fda017f6f8859dd602ba2970aa54d65
3c18ab01a792a856f01da11d004275dc9f655778
7b7d3c430b34eefb8070d3f8a475e9a5d9e6f96227c69968c2b6f53c69c789c9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/owl-carousel/grid.owl.carousel.min.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 829
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/grid-plus/assets/css/fe_style.css?ver=6.0.3
103.229.73.193200 OK 3.1 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/css/fe_style.css?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
Hash 80f492bbb5d5c36f35395a6cc92aefe6
5e5e64dc2c4049e100c519c9069030991a7c2d72
63c71f89b5183d213833a0e847a2d8e0650154ba51c4f0fc8d3410800676087a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/css/fe_style.css?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3121
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.alemargroups.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2.2
103.229.73.193200 OK 3.7 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2.2
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
Hash 0dda35cfb3d24663b1bd3c072540183d
1717c573205edc2d9186f668cdeb310a8394c491
2895b624b4cac02ff107ca50ba188c3024fa8816f19e3dc61060f324d73e4a97
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2.2 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 04:21:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 3658
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-includes/js/underscore.min.js?ver=1.13.3
103.229.73.193200 OK 7.2 kB URL HTTP/1.1 www.alemargroups.com/wp-includes/js/underscore.min.js?ver=1.13.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (18876)
Hash f50c037d9600f4800b12c7c1887ce481
9dca5e090fdd523d92df2af5670ba510193c2acd
7e089b45b49183b8981f2ffa13ca9209599b91abb84c17c222fc15f75e644547
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Wed, 27 Apr 2022 13:09:22 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 7198
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/themes/buildpress/assets/js/main.min.js?ver=5.6.2
103.229.73.193200 OK 8.7 kB URL HTTP/1.1 www.alemargroups.com/wp-content/themes/buildpress/assets/js/main.min.js?ver=5.6.2
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (28401), with no line terminators
Hash ccbee3832673b2b6d4574d30d91fccce
9fe9d9d1fb15335cd16024d550272925b297280e
074779b28f02b94e16d7b6ab256551f258f8e50b7ed784942972eac109bbc148
GET /wp-content/themes/buildpress/assets/js/main.min.js?ver=5.6.2 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 03:15:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 8738
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bc97de4b2dead07cab1fd1462f568477
06cb1976b6110e63c728a26c2af8f009eb98d763
a31f290b895eb6968cb464280c3decd117eb33a28ad61eb8667bce68ca960178
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4674
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 10 Feb 2023 05:41:57 GMT
Last-Modified: Fri, 10 Feb 2023 04:24:03 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
static.xx.fbcdn.net/rsrc.php/v3/yH/r/Ri9uQBVEGyt.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16200 OK 251 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yH/r/Ri9uQBVEGyt.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.221.16:0
File type ASCII text, with very long lines (370)
Hash 103bd155f871b6d4a5c50aaed2c0e43e
c280179b62004a150cf58b2c966391b3fa662ff0
937b928daa475bbcd28f93f877f83d38c96092e7f227663759a5268bd0c38152
GET /rsrc.php/v3/yH/r/Ri9uQBVEGyt.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 10 Feb 2024 00:47:21 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: EDvRVfhxttSlxQqu0sDkPg==
x-fb-debug: qRqyio5TbIkMBmHxiBh59c/+2CNr6TlZwu/bbtFAV6zFkBYfnNDQqf6c/mbMVUvewihJI8WRyGCcwhcuHIN9Hg==
content-length: 251
x-fb-trip-id: 1679558926
date: Fri, 10 Feb 2023 05:41:57 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yU/r/O4UmSNWin4E.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yU/r/O4UmSNWin4E.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.221.16:0
File type C source, ASCII text, with very long lines (8848)
Hash 40fab775b9d5c0cd37478bb98c8d3fd4
3a47077aff06f1dcb1c7f15371f717bcc0501ddf
15bda90227b20a41920214b955645583399f5231147f10d3dee099fe91b442e4
GET /rsrc.php/v3/yU/r/O4UmSNWin4E.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 03 Feb 2024 05:31:19 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: QPq3dbnVwM03R4u5jI0/1A==
x-fb-debug: eYsoq8BYA90PFuqygUQx9aP5JeEhLxq6gzgLtBeGSeu2o7kNUCBKdzvBZ51ecor7CeT4y2H7cTO95JZjQsjpAA==
priority: u=3,i
content-length: 16342
x-fb-trip-id: 1679558926
date: Fri, 10 Feb 2023 05:41:57 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yF/l/en_US/6Qb3pd11_My.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16200 OK 24 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yF/l/en_US/6Qb3pd11_My.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.221.16:0
File type ASCII text, with very long lines (42208)
Hash ab6609be952eae15bf98ea411677d247
9ab8c00fa7c7347253aaa73f9f9e82167f7b5ac0
98f1e8eb497199d40d5d6b02c5c14d73209b3d253d0f843ec9073d1c7041da43
GET /rsrc.php/v3iEpO4/yF/l/en_US/6Qb3pd11_My.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 09 Feb 2024 19:37:54 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: q2YJvpUurhW/mOpBFnfSRw==
x-fb-debug: YKl8hEhwC4wge/64VL676QBoE7tZYfn3qkiKEj0B86cu46o5jUEEjGvrqHkz+1lECmlLzBBSlpOJtUdsU9/Fjw==
content-length: 23578
x-fb-trip-id: 1679558926
date: Fri, 10 Feb 2023 05:41:57 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yO/l/0,cross/mZkZVRETkZ0.css?_nc_x=Ij3Wp8lg5Kz
157.240.221.16200 OK 4.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yO/l/0,cross/mZkZVRETkZ0.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.221.16:0
File type ASCII text, with very long lines (4431)
Hash 4ebfb6a4be7a93617f8fb62f56158350
f47c18515d99f1ff2e0023714082b85aafbaaaea
d8fe704ef41d59cd740ca4a00a8fe616f8ea0cdffccd90416a2f3f84210044ab
GET /rsrc.php/v3/yO/l/0,cross/mZkZVRETkZ0.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 09 Feb 2024 18:53:50 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Tr+2pL56k2F/j7YvVhWDUA==
x-fb-debug: uKiyucGnRIbBJcawVsRyQ6P7x59MNwo2lsqqGJWEMW15ocdNdbQqdkUjtQaXwbQPVNDysgtIVzYz7abZurNN/A==
priority: u=3,i
content-length: 4621
x-fb-trip-id: 1679558926
date: Fri, 10 Feb 2023 05:41:57 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yl/l/0,cross/RD2-r4YEUU-.css?_nc_x=Ij3Wp8lg5Kz
157.240.221.16200 OK 3.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yl/l/0,cross/RD2-r4YEUU-.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.221.16:0
File type ASCII text, with very long lines (3040)
Hash 92f65721396150264500f4cd2434f5dc
f70b2c100fe1972b6c5cd75b14ae0590e87315be
fce33d76c8f66080cc16ca3579af290096897e51f0cf9c237293cc46a3ca5c97
GET /rsrc.php/v3/yl/l/0,cross/RD2-r4YEUU-.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 09 Feb 2024 16:55:17 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: kvZXITlhUCZFAPTNJDT13A==
x-fb-debug: e8upgtzx/QYTIHhK/eRVea32vOOYu2JhtGJS/5UWQBa/NLrW2JlTBuaX24RTgcGp5A8yGixaacHj85n38hcaFw==
priority: u=3,i
content-length: 3172
x-fb-trip-id: 1679558926
date: Fri, 10 Feb 2023 05:41:57 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
157.240.221.16200 OK 830 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.221.16:0
File type ASCII text, with very long lines (724)
Hash d63a02ce87c07ffcfa869fef7fc5f233
cae745fef84088abe3525bb77f75c55cd1d4cc2c
bf9d4d71541a0a1f31b10be351add847ee935da6de355756314c8ca96512444d
GET /rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 02 Feb 2024 00:26:18 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 1joCzofAf/z6hp/vf8XyMw==
x-fb-debug: IA7hTRJMjFqkoNo+AcRiqY6mvCQyxVOLNlEE6CJV9QGjFCgAkQfk5AagMoRcvsHUFTYtOrJp+QdsVUgCSpgfww==
content-length: 830
x-fb-trip-id: 1679558926
date: Fri, 10 Feb 2023 05:41:57 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yu/r/Cc4_IUKH7my.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yu/r/Cc4_IUKH7my.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.221.16:0
File type ASCII text, with very long lines (5542)
Hash 5697459d302e854dd06522ab2df27d7a
f0a6ac95a26a3459fc8aa6b40f83eaa3136a4378
05898a1c2c428afaaa2bbf37938d8a39416e3e2afbfc80ff75c10780f53a2ad0
GET /rsrc.php/v3/yu/r/Cc4_IUKH7my.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 10 Feb 2024 00:47:21 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: VpdFnTAuhU3QZSKrLfJ9eg==
x-fb-debug: qml4CiNMbHa9sa4UBXTNqyXtSq9T8urk2j0gbS+xVe4qubTqdFbNMW7dPiFQeqEX54l8mSGCQIJJqSWOiv6WLg==
content-length: 12404
x-fb-trip-id: 1679558926
date: Fri, 10 Feb 2023 05:41:57 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y-/r/v2YXMt9Wuck.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16200 OK 1.8 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y-/r/v2YXMt9Wuck.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.221.16:0
File type ASCII text, with very long lines (1984)
Hash 2603cbaaf5f84df12f9fa35fe311a714
50a794e9078127ea62eac0ad81544d002ac3f4b6
a1592c0ef392f48594a74904e6b2d1de11a7aaef476b698061de3b88f801e64e
GET /rsrc.php/v3/y-/r/v2YXMt9Wuck.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 09 Feb 2024 17:53:35 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: JgPLqvX4TfEvn6Nf4xGnFA==
x-fb-debug: 9V6Pia2YPX1n9GQ6kl5G7NVgU6MisnmsZLvjFQRThfbd8Z7JOMOjIlXL2i00Eqe+qccvcX6OcGwGhw8PMOG3dg==
content-length: 1800
x-fb-trip-id: 1679558926
date: Fri, 10 Feb 2023 05:41:57 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.alemargroups.com/wp-content/plugins/siteorigin-panels/js/styling.min.js?ver=2.11.5
103.229.73.193200 OK 353 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/siteorigin-panels/js/styling.min.js?ver=2.11.5
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (811), with no line terminators
Hash 7ca5dfed1d4f55e44f086a9eef55ece7
97cb9acbd4c9b71848bd59c82fa0ba6644231bd3
212e895d5d640ff18b6a681a8c36ec89823a112348e53c5e66079ef65e98eb2b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/siteorigin-panels/js/styling.min.js?ver=2.11.5 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 04:10:22 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 353
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/light-gallery/js/lightgallery-all.min.js?ver=1
103.229.73.193200 OK 11 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/light-gallery/js/lightgallery-all.min.js?ver=1
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (1141)
Hash 7c152828ae66c7b17962099139600511
08afae573e0b1f9c1523e0c71934eea3549ab1e6
cac7f24b78b439c65f504b38e6727de753dccde010a98c89c35c0615b0f2607f
GET /wp-content/plugins/grid-plus/assets/lib/light-gallery/js/lightgallery-all.min.js?ver=1 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 11113
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/ladda/ladda.min.js?ver=6.0.3
103.229.73.193200 OK 1.0 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/ladda/ladda.min.js?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (2370)
Hash d2a3cfe7056b10e2df42feffb19ba106
2c5e39d4a9525167ef6ff3e59d0d2e0671042bc1
aae6a9b2aadd435699da13e7ed02f5d96bd4dad82cf6ff5770b092bf8dc2ebd4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/ladda/ladda.min.js?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 1009
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/ladda/spin.min.js?ver=6.0.3
103.229.73.193200 OK 2.0 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/ladda/spin.min.js?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (4360)
Hash 68e6c4562e0f6988a08c235cd19dd9eb
307238fd1fa3c54296c598df9821e00a14739c4f
68e22fe76bd4ec8ed11b5e9f81985644aa383c169af665acbb79aa0a1ba98068
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/ladda/spin.min.js?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 2023
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.min.js?ver=1
103.229.73.193200 OK 8.1 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.min.js?ver=1
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (33418), with no line terminators
Hash 236361227ddc0656cfbbe387a9a83bfb
72d6f2f6ab9427c4e5cf9f8c4b5d00db0c7e80af
95eda5df9e41ad26c1525e4e7375b247a5208cb9883f038c8fed81d1550beee4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.min.js?ver=1 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 8093
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/uploads/2016/05/IMG_5662-300x200.jpg
103.229.73.193200 OK 15 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2016/05/IMG_5662-300x200.jpg
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x200, components 3\012- data
Hash f5f5d5c874a278eddde0a16e71e9033a
6770dc7d0160d27b1d1f5a17d0d8582e58b1c854
793754d136629000f452805945a26eddd3e5c3c66a1f80b88c5790a8dfb0f455
GET /wp-content/uploads/2016/05/IMG_5662-300x200.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Wed, 12 Jul 2017 03:15:50 GMT
Accept-Ranges: bytes
Content-Length: 15017
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/matchmedia/matchmedia.js?ver=6.0.3
103.229.73.193200 OK 591 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/matchmedia/matchmedia.js?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
Hash 86f05b750bdbe3c7b37bca3cea815249
3d1156e9482dfc8b5d457a67eb2477ced27332a3
d245c0b5b34fc53c1dd84924f791e2eab10487f88c570b01074bc68e05274f08
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/matchmedia/matchmedia.js?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 591
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-includes/js/wp-util.min.js?ver=6.0.3
103.229.73.193200 OK 647 B URL HTTP/1.1 www.alemargroups.com/wp-includes/js/wp-util.min.js?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (1305)
Hash 2a76be55e22646ae466bdf7f7b9547f3
9a36bc2691e2bd04a08858a234d017ac87e74745
38aa38eaeb3a904f34a2761068fddf3dc02cce608c7a07c3f45413bd6b378174
GET /wp-includes/js/wp-util.min.js?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Fri, 25 Jun 2021 13:20:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 647
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/owl-carousel/grid.owl.carousel.min.js?ver=6.0.3
103.229.73.193200 OK 11 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/owl-carousel/grid.owl.carousel.min.js?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (32001)
Hash f68791b46205dad0dd704f6073567993
44238d342530fa6b01324fc044c24bec08292038
9fe13449184bc9081f9ce415da18590cbb8e47ce5dfce17ac1f0d017aea5f80f
GET /wp-content/plugins/grid-plus/assets/lib/owl-carousel/grid.owl.carousel.min.js?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 10566
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.jQueryUI.min.js?ver=6.0.3
103.229.73.193200 OK 821 B URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.jQueryUI.min.js?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (1094)
Hash 6dced4cd2108b47fa6496ff87d5c608f
4656beef6dfd7d8e546f56ca103e42f8b24cc0bb
a310d9b17645d234b17e52a54681428bb6cc02581b52cc5564eb59e87dce9a75
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/grid-stack/gridstack.jQueryUI.min.js?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 821
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/plugins/grid-plus/assets/js/frontend/grid.min.js?ver=1
103.229.73.193200 OK 5.3 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/js/frontend/grid.min.js?ver=1
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (21026), with no line terminators
Hash b9713a8d2a625ca8b7a996771ef374bc
7f833514d4fc5162313bbd0eecfccd1c130c93fa
249d5798569a98e8fc23b2c09270e9a1df6c8df265f81142bc680cdda02cf3be
GET /wp-content/plugins/grid-plus/assets/js/frontend/grid.min.js?ver=1 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 5267
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/uploads/2016/05/IMG_5584-1-300x200.jpg
103.229.73.193200 OK 16 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2016/05/IMG_5584-1-300x200.jpg
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x200, components 3\012- data
Hash 3685bd42c99c553e9830f6d9c683baf2
0e1710172015b6d4293cf3872e02df16b6f5a438
f52a8cbdd23f7a6ef3d2e9fe6d6c3435299cf3f50c5c73e868a92d49fac120a0
GET /wp-content/uploads/2016/05/IMG_5584-1-300x200.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Wed, 12 Jul 2017 03:15:25 GMT
Accept-Ranges: bytes
Content-Length: 16379
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/jquery-ui.js?ver=6.0.3
103.229.73.193200 OK 105 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/grid-stack/jquery-ui.js?ver=6.0.3
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type ASCII text, with very long lines (547)
Size 105 kB (105053 bytes)
Hash a971a2ecaa854377282ed563e1b37a4c
132c04c5c957a35eafc4b1e940e54d24d6f7717a
63aaa6e77dd6879cdcebb15a925f4fc55c01804718f74cbb987202aa4f2d77a0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/grid-stack/jquery-ui.js?ver=6.0.3 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 105053
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.alemargroups.com/wp-content/uploads/2022/10/alemar-logo-web.png
103.229.73.193200 OK 13 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2022/10/alemar-logo-web.png
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type PNG image data, 257 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash b6c768acbfa2498457f24ce449ae703a
590317159bdccbb76acd2bc62e975f7962102ad3
4d7f07d425f57b1f4e9aef9c6bbccec32ce1a13970898a059c66dcb9b5d4138d
GET /wp-content/uploads/2022/10/alemar-logo-web.png HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 06:02:00 GMT
Accept-Ranges: bytes
Content-Length: 13277
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.alemargroups.com/wp-content/themes/buildpress/bower_components/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
103.229.73.193200 OK 77 kB URL HTTP/1.1 www.alemargroups.com/wp-content/themes/buildpress/bower_components/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/buildpress/bower_components/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.alemargroups.com/wp-content/themes/buildpress/style.css?ver=5.6.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 03:16:05 GMT
Accept-Ranges: bytes
Content-Length: 77160
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/woff2
www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
103.229.73.193200 OK 77 kB URL HTTP/1.1 www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/grid-plus/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.alemargroups.com/wp-content/plugins/grid-plus/assets/lib/font-awesome/css/font-awesome.min.css?ver=6.0.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 13:02:54 GMT
Accept-Ranges: bytes
Content-Length: 77160
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff2
www.alemargroups.com/wp-content/uploads/2016/05/pesantren-aytam1.jpg
103.229.73.193200 OK 196 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2016/05/pesantren-aytam1.jpg
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=15, manufacturer=Canon, model=Canon EOS 600D, orientation=upper-left, xresolution=216, yresolution=224, resolutionunit=2, datetime=2016:08:22 14:47:52], baseline, precision 8, 1140x760, components 3\012- data
Size 196 kB (195957 bytes)
Hash 79b990414b6191eeb85ac15d7e2a667e
654182721ed9ca7757877964908ede96940efea3
0637015899507cc726a3924f350bdced49770271c1f0dd619099c2aa992ee71e
GET /wp-content/uploads/2016/05/pesantren-aytam1.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Thu, 25 Aug 2016 02:22:20 GMT
Accept-Ranges: bytes
Content-Length: 195957
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2016/05/1.jpeg
103.229.73.193200 OK 363 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2016/05/1.jpeg
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6], baseline, precision 8, 1280x720, components 3\012- data
Size 363 kB (362733 bytes)
Hash bc638ef35e5626ca1aaf672cddbc715b
a13841f7ae90fb563060c375cfba61d13ea41f78
94085f27a1f0e1e89101fdf2b145f345773ad1d93ad47e046abadd2c67773d7a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2016/05/1.jpeg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Wed, 11 Mar 2020 05:02:50 GMT
Accept-Ranges: bytes
Content-Length: 362733
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2022/01/Tambun-bekasi-sembako20jan2022-03-03-08-39-21.jpg
103.229.73.193200 OK 924 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2022/01/Tambun-bekasi-sembako20jan2022-03-03-08-39-21.jpg
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size 924 kB (923902 bytes)
Hash 579b34dc84abf0e93119b0d9f107ae27
3992bc577da43c2758160521510b00a9a494c309
1bc0e5f02da2478d2e5385fc23ee4928ea8fb55b32521fa42f1ab2fc5b8d77e5
GET /wp-content/uploads/2022/01/Tambun-bekasi-sembako20jan2022-03-03-08-39-21.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:58 GMT
Server: Apache
Last-Modified: Thu, 03 Mar 2022 01:39:54 GMT
Accept-Ranges: bytes
Content-Length: 923902
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2023/02/M-22-261-new2023-02-01-10-39-47.jpg
103.229.73.193200 OK 780 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2023/02/M-22-261-new2023-02-01-10-39-47.jpg
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size 780 kB (780306 bytes)
Hash 6884f51a536cd01024e435d490d797e7
3bbde36d548fa628833b02776d57ba11125b04ef
6b345835b1d900d9e42ff350d0d67828fdfd7a4a7d3b128b62384a057d39a920
GET /wp-content/uploads/2023/02/M-22-261-new2023-02-01-10-39-47.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:58 GMT
Server: Apache
Last-Modified: Wed, 01 Feb 2023 03:43:17 GMT
Accept-Ranges: bytes
Content-Length: 780306
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2022/12/DJI_03032022-11-24-14-14-21-scaled.jpg
103.229.73.193200 OK 853 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2022/12/DJI_03032022-11-24-14-14-21-scaled.jpg
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x1440, components 3\012- data
Size 853 kB (853080 bytes)
Hash 38d664837a6dac24d0754e4cf2426e77
1e7de98771d60b475069022071130469c1b02c20
e8ba617a258cd14fcddb3a8724f51d8c56621aff2147e4725819099d45e8ca20
GET /wp-content/uploads/2022/12/DJI_03032022-11-24-14-14-21-scaled.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Tue, 20 Dec 2022 02:30:24 GMT
Accept-Ranges: bytes
Content-Length: 853080
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2022/05/banner22-a.jpg
103.229.73.193200 OK 1.0 MB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2022/05/banner22-a.jpg
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 1921x581, components 4\012- data
Size 1.0 MB (1025080 bytes)
Hash 20ef157210a705981536de9be189fa52
4b9f092c8e5c14943022605193da6255e94e23a9
12c60c7aafe751d78b7fb03bc8a798d4601f055c93372b8e225752ddf6ab3fc1
GET /wp-content/uploads/2022/05/banner22-a.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:57 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 03:35:59 GMT
Accept-Ranges: bytes
Content-Length: 1025080
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2023/02/20221104_C07802022-11-07-09-26-34-Copy.jpg
103.229.73.193200 OK 264 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2023/02/20221104_C07802022-11-07-09-26-34-Copy.jpg
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 768x432, components 3\012- data
Size 264 kB (263805 bytes)
Hash 8a99cf39ef6fbe57f75c066539cbff48
1eaf19dc547508b6cc20740ca88aec58c8771467
864f766e99f77471280851ba0a21d1f84bed0f01a78ab899b5dabb7889cce52b
GET /wp-content/uploads/2023/02/20221104_C07802022-11-07-09-26-34-Copy.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:58 GMT
Server: Apache
Last-Modified: Thu, 02 Feb 2023 09:21:19 GMT
Accept-Ranges: bytes
Content-Length: 263805
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2014/12/title-area-pattern.png
103.229.73.193200 OK 128 B URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2014/12/title-area-pattern.png
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type PNG image data, 8 x 8, 1-bit colormap, non-interlaced\012- data
Hash 53c5fda1e551716c64a36adf016e1d4f
18a156efadd869836bddd99ff10cbf4a8a335d24
da6baac7451afef63526b39498c44deeccfcb17ca6613cf878e2491f90e83828
GET /wp-content/uploads/2014/12/title-area-pattern.png HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:59 GMT
Server: Apache
Last-Modified: Thu, 26 May 2016 09:25:46 GMT
Accept-Ranges: bytes
Content-Length: 128
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
www.alemargroups.com/wp-content/uploads/2023/02/M-22-261-new2023-02-01-10-37-21.jpg
103.229.73.193200 OK 1.4 MB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2023/02/M-22-261-new2023-02-01-10-37-21.jpg
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size 1.4 MB (1397377 bytes)
Hash ad2912396c3524832a4bb8afee814fdb
41b98a40418256eed20fbc59c75d260e42538b99
052200d01571e79fb44d5c819edd976b2cd8531e04d9df161ab68d45020f7f13
GET /wp-content/uploads/2023/02/M-22-261-new2023-02-01-10-37-21.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:58 GMT
Server: Apache
Last-Modified: Wed, 01 Feb 2023 03:42:17 GMT
Accept-Ranges: bytes
Content-Length: 1397377
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/uploads/2014/12/motivational-background1.jpg
103.229.73.193200 OK 29 kB URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2014/12/motivational-background1.jpg
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x300, components 3\012- data
Hash 4b2e779cc5dad9847b7d77af77953c89
f5cc060ce60a362f3c777ad7e903aae33472ea22
da39b565322e9c4bd4b06dcad8dd555828914195d24e1fb91411ebecf588558c
GET /wp-content/uploads/2014/12/motivational-background1.jpg HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:59 GMT
Server: Apache
Last-Modified: Thu, 26 May 2016 09:25:45 GMT
Accept-Ranges: bytes
Content-Length: 29082
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
www.alemargroups.com/wp-content/themes/buildpress/assets/images/title-area-pattern.png
103.229.73.193200 OK 84 B URL HTTP/1.1 www.alemargroups.com/wp-content/themes/buildpress/assets/images/title-area-pattern.png
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type PNG image data, 8 x 8, 8-bit grayscale, non-interlaced\012- data
Hash e5065d40e5692707dd035134ae21e619
a31c99b1ed932ceeb45a96a705445d03d26edee8
26944c2903b328352f2315ed3131315bfb18e8e25fee42adcca1bc4756a524ae
GET /wp-content/themes/buildpress/assets/images/title-area-pattern.png HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:59 GMT
Server: Apache
Last-Modified: Thu, 08 Oct 2020 03:15:36 GMT
Accept-Ranges: bytes
Content-Length: 84
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.170200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.170:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.alemargroups.com
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 10 Feb 2023 05:41:59 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.alemargroups.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.alemargroups.com/wp-content/uploads/2021/01/favicon.ico
103.229.73.193200 OK 273 B URL HTTP/1.1 www.alemargroups.com/wp-content/uploads/2021/01/favicon.ico
IP 103.229.73.193:0
ASN #55660 PT Master Web Network
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 3ad5b73ef44591d8d685368f30371adf
82fab3aa612b11a8cfd64ec3964ee671903ac480
cc1daa62ab6ef962be8dea6d74178fbc3df76d0f17b62ef43cab6cbc3736e36b
GET /wp-content/uploads/2021/01/favicon.ico HTTP/1.1
Host: www.alemargroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 10 Feb 2023 05:41:59 GMT
Server: Apache
Last-Modified: Mon, 11 Jan 2021 01:16:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
Content-Length: 273
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/x-icon
fonts.googleapis.com/css?family=Source+Sans+Pro%3A400%2C700%7CMontserrat%3A400%2C700&subset=latin
142.250.74.138200 OK 1.1 MB URL HTTP/2 fonts.googleapis.com/css?family=Source+Sans+Pro%3A400%2C700%7CMontserrat%3A400%2C700&subset=latin
IP 142.250.74.138:0
Size 1.1 MB (1064160 bytes)
Hash 7bb2e32246188157f566b5102c528550
6704d7b262c8ddd191d5d92aad86d4f4bc3c0d55
e77a363d4531283bded578a192c48fb5b9f5feb19bdf1cfcce50b50105729cdf
GET /css?family=Source+Sans+Pro%3A400%2C700%7CMontserrat%3A400%2C700&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 Feb 2023 05:41:56 GMT
date: Fri, 10 Feb 2023 05:41:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4ea6f5f-ba9c-442f-a14f-817a680f0332.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4ea6f5f-ba9c-442f-a14f-817a680f0332.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a509d92906cf492e2acfead9626c21f2
b9f9eff58370d75410beff8943367b46157206d4
4e73f307ae7137f255910659736da2eb6230e0d189a40293bc74eade1b3b5eca
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4ea6f5f-ba9c-442f-a14f-817a680f0332.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12024
x-amzn-requestid: 89f748af-a713-4db1-9550-169d3a70c83c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AGI1IFSmoAMFwdA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e58820-0b9e37184a1c0f1911c059b1;Sampled=0
x-amzn-remapped-date: Thu, 09 Feb 2023 23:56:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Wjw9JX2JxmxFvKSZzC53Zmh4tDklcSbsTdKNJEFteXszMIAFG9amjg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 10 Feb 2023 00:13:36 GMT
age: 19706
etag: "b9f9eff58370d75410beff8943367b46157206d4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yR/r/UmkunxOHDy5.js?_nc_x=Ij3Wp8lg5Kz
157.240.221.16200 OK 0 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yR/r/UmkunxOHDy5.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.221.16:0
GET /rsrc.php/v3/yR/r/UmkunxOHDy5.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 09 Feb 2024 05:35:30 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KjXq/I3qEOlXGNu3oHySIg==
x-fb-debug: VDUMr+67od/YkcSY9mE3ECvJ2dyi6g1fFYFNo9MIqLgMuYXlf3y7YRMLjszuliBLa7gD/mFnqFU/MddGe0NdXw==
priority: u=3,i
content-length: 85239
x-fb-trip-id: 1679558926
date: Fri, 10 Feb 2023 05:41:57 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/plugins/likebox.php?colorscheme=light&stream=false&show_border=false&header=false&show_faces=true&width=263&height=290&href=https%3A%2F%2Fwww.facebook.com%2Falemarwatanmiah%2F
157.240.221.35200 OK 0 B URL HTTP/2 www.facebook.com/plugins/likebox.php?colorscheme=light&stream=false&show_border=false&header=false&show_faces=true&width=263&height=290&href=https%3A%2F%2Fwww.facebook.com%2Falemarwatanmiah%2F
IP 157.240.221.35:0
GET /plugins/likebox.php?colorscheme=light&stream=false&show_border=false&header=false&show_faces=true&width=263&height=290&href=https%3A%2F%2Fwww.facebook.com%2Falemarwatanmiah%2F HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.alemargroups.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: NJvNRWB+cEI1J0gsYGAQohdGHIgY7sn/4I43zqnMjJIiGO3dKM1Xm6NHKwR+2p0SdT5rs2htrBYmHkFqD2xQLw==
date: Fri, 10 Feb 2023 05:41:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2