firefox.settings.services.mozilla.com/v1/
54.230.111.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 3f17af4e8a1739eda4a518039f4892f9
c3feba08ae7e8f57e0fe9bcd2ebedea6bda67cbb
c485b09cad08b5233fe8753682faf59219fe0d18fcc34d90dc88fb0971295f5f
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 09 Oct 2022 04:47:48 GMT
Expires: Sun, 09 Oct 2022 05:24:26 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MABABJRV-oOAUAh-CgeyvTBjXw8_8aQSqSfMNZKK1ddsYDOp8uyyww==
Age: 558
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cf768e41672570b0a4a9fe86045915fc
2249064a86b2ba11e28208b9fba1c9f1db4f3e9e
a049499f78078df12f4d1c5180f1f36715a5c99db4f31c18ee06bcf0b6382b30
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A049499F78078DF12F4D1C5180F1F36715A5C99DB4F31C18EE06BCF0B6382B30"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9852
Expires: Sun, 09 Oct 2022 07:41:18 GMT
Date: Sun, 09 Oct 2022 04:57:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3d0ffae9abfdf558a6286013a0201c8b
2dc8ea0000a1b0c0f849611fdd73429bca51bfad
8e19eab9b6d16819f9ef3920971542cbcf5dd18280617e2de1a3827f0c149398
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8E19EAB9B6D16819F9EF3920971542CBCF5DD18280617E2DE1A3827F0C149398"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4472
Expires: Sun, 09 Oct 2022 06:11:38 GMT
Date: Sun, 09 Oct 2022 04:57:06 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: gpWygTlC8G1rgLgljX/6vyQS0PMAHAfsvhl1Ug1NfnQO/ziK7fv0sKg+C3zvnPklFGO+0R8B/h0=
x-amz-request-id: RBWZY9EA6KJ2F3P6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 09 Oct 2022 03:59:52 GMT
age: 3434
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 09 Oct 2022 04:57:06 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sun, 09 Oct 2022 04:29:41 GMT
Cache-Control: max-age=3600
Expires: Sun, 09 Oct 2022 05:25:02 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uyTjGFsCPeYMXo8KPKVYRFqRGBMLoYUt-6Qz9IQSt4u5h2JMFPUumQ==
Age: 1645
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5479444ef227af03029fbb9d154f0107
0563678ec07ab3707b716ca4c638ece4c8ad7de4
4850d49786a140003b90ae108104ffbfe80a6e0d9f584656a09f0fff11dc9d0d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 438
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 04:57:07 GMT
Last-Modified: Sun, 09 Oct 2022 04:49:49 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
anketyeri.com/personal/business/business-resources/malware/
185.106.93.203200 OK 34 kB URL HTTP/1.1 anketyeri.com/personal/business/business-resources/malware/
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1084), with CRLF, LF line terminators
Hash 53840cc6c81112c0ae3a0b9e1573d03e
60191d2c8de7059a5c49198deb54a34875e510f5
abe0755777aaa467e4e08f81bdf8cacacc97166f457d5e119c2d573e518a1f28
Analyzer Verdict Alert fortinet Phishing
GET /personal/business/business-resources/malware/ HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "1f1fa-5ea8739f84e07-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 34275
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
push.services.mozilla.com/
34.215.107.141101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.107.141:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZdMjrWt57kQYLoRLKUBMtQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fKKtxVdRxosbBeckA9hz8DACiG8=
anketyeri.com/sdccu-common.js?matcher
185.106.93.203404 Not Found 196 B URL HTTP/1.1 anketyeri.com/sdccu-common.js?matcher
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /sdccu-common.js?matcher HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 404 Not Found
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 196
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
anketyeri.com/sdccu-common.js?cache
185.106.93.203404 Not Found 196 B URL HTTP/1.1 anketyeri.com/sdccu-common.js?cache
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /sdccu-common.js?cache HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 404 Not Found
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 196
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
anketyeri.com/sdccu-common.js?async
185.106.93.203404 Not Found 196 B URL HTTP/1.1 anketyeri.com/sdccu-common.js?async
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /sdccu-common.js?async HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 404 Not Found
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 196
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
anketyeri.com/personal/rez7rhr.js
185.106.93.203200 OK 7.1 kB URL HTTP/1.1 anketyeri.com/personal/rez7rhr.js
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type Unicode text, UTF-8 text, with very long lines (5994)
Hash f3ef9a2eefbcadf50fc966b970b1edc3
c18f00c0e019dbebf58fb8cd356af728bf0b1612
ce8b467c7c2b7bb7a52f12c7e4e9b7f72120b523dab0a158c1139d0102814e49
GET /personal/rez7rhr.js HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "58a2-5ea8739f7ffe8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7109
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
anketyeri.com/personal/CMSPages/cms.blankmasterpage?_templates=25698
185.106.93.203200 OK 8.9 kB URL HTTP/1.1 anketyeri.com/personal/CMSPages/cms.blankmasterpage?_templates=25698
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type Unicode text, UTF-8 (with BOM) text, with very long lines (8907), with no line terminators
Hash 7d0fba3bc56aa6a8362778f7ccd1b792
5134f4aad5a2861b7e6d821379afd752df9d0ad3
359d547b468fb9c87a40614c6e339d12019dbc6946f29e61ddd1d0f447f236b2
GET /personal/CMSPages/cms.blankmasterpage?_templates=25698 HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "22ce-5ea8739f84e07"
Accept-Ranges: bytes
Content-Length: 8910
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
anketyeri.com/personal/CMSPages/WebServiceCall.js?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
185.106.93.203200 OK 231 B URL HTTP/1.1 anketyeri.com/personal/CMSPages/WebServiceCall.js?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type ASCII text, with very long lines (339), with no line terminators
Hash 030dff7be12d93ae578b42a759ce9e22
dba152106113f332f45f4708acb3908cd9abc0e8
da749b6d55bc55fbfa1f33431ce49cbc50270fabd1fd6b6c92a3b0bf227c7562
GET /personal/CMSPages/WebServiceCall.js?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "153-5ea8739f84e07-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 231
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
anketyeri.com/personal/ScriptResource-1.axd?d=Ph9KYRob2cmMiWgs3oahYm6kJWVf5b3rW0VPleGY9IM3nq0mBib0Td-GUHKzUHv05XaIK5_8z_JIUSNX9yigZHdHj_jshdKg0rcnYfKgvSyh8nJl0&t=7c776dc1
185.106.93.203200 OK 18 kB URL HTTP/1.1 anketyeri.com/personal/ScriptResource-1.axd?d=Ph9KYRob2cmMiWgs3oahYm6kJWVf5b3rW0VPleGY9IM3nq0mBib0Td-GUHKzUHv05XaIK5_8z_JIUSNX9yigZHdHj_jshdKg0rcnYfKgvSyh8nJl0&t=7c776dc1
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type ASCII text, with very long lines (18210), with CRLF line terminators
Hash 4d5b54591b8b07f10307ef8dc32d42d2
f31ed98a0311edb91384140c2d0f4ec80af00fd9
5a2bfafaae624bf22eada3a71ec9be1b9ee03e68fbbd36ac5924b381b96525e7
GET /personal/ScriptResource-1.axd?d=Ph9KYRob2cmMiWgs3oahYm6kJWVf5b3rW0VPleGY9IM3nq0mBib0Td-GUHKzUHv05XaIK5_8z_JIUSNX9yigZHdHj_jshdKg0rcnYfKgvSyh8nJl0&t=7c776dc1 HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "4743-5ea8739f7ffe8"
Accept-Ranges: bytes
Content-Length: 18243
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b9f0247fb5bf6e6458f14094551436e1
0ac483f7caef89a55829041189790c8fc7eb8cd7
1b157a9bf613ddbf329225759780db82a249f8502b1b7cb6742907224b4c775e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 04:57:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
anketyeri.com/personal/ScriptResource-3.axd?d=FNlZi5ISb4gvFXGjCHC1Xo4kls3Qo2mfT6530TzxF5rGWycuZJGjVNsDK62rHXBpiwt04ScTdNtsaD6WmARueCAoq6XnVnJ2acJRzU5vYQjRN2CcIBfeXxwS_B7-HXPtPAx1hQ2&t=7c776dc1
185.106.93.203200 OK 6.4 kB URL HTTP/1.1 anketyeri.com/personal/ScriptResource-3.axd?d=FNlZi5ISb4gvFXGjCHC1Xo4kls3Qo2mfT6530TzxF5rGWycuZJGjVNsDK62rHXBpiwt04ScTdNtsaD6WmARueCAoq6XnVnJ2acJRzU5vYQjRN2CcIBfeXxwS_B7-HXPtPAx1hQ2&t=7c776dc1
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type ASCII text, with very long lines (6332), with CRLF line terminators
Hash 3601137efd2bc312c42de965f54deb75
b5f821dd31eff8103456e120baee0d5a136c06fc
32f55c50d21c4372bca6312f7f3667173fdb77c5f72f1ff8754204c6a20b7835
GET /personal/ScriptResource-3.axd?d=FNlZi5ISb4gvFXGjCHC1Xo4kls3Qo2mfT6530TzxF5rGWycuZJGjVNsDK62rHXBpiwt04ScTdNtsaD6WmARueCAoq6XnVnJ2acJRzU5vYQjRN2CcIBfeXxwS_B7-HXPtPAx1hQ2&t=7c776dc1 HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "18dd-5ea8739f7ffe8"
Accept-Ranges: bytes
Content-Length: 6365
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
anketyeri.com/personal/ajax/libs/slick-carousel/1.9.0/slick.min.js
185.106.93.203200 OK 11 kB URL HTTP/1.1 anketyeri.com/personal/ajax/libs/slick-carousel/1.9.0/slick.min.js
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type ASCII text, with very long lines (32026)
Hash 08514e597a0931a0de080f782739e505
5f38db7b5edbb8dcc4202c158d5091ecfc8670cf
d0ac2a38e98afa1c7784897e4044221019754257bd11596d51af92eaa348a876
GET /personal/ajax/libs/slick-carousel/1.9.0/slick.min.js HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "ab69-5ea8739f81f28-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10753
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.googletagmanager.com/gtm.js?id=GTM-HZ8Q5
142.250.74.168200 OK 96 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-HZ8Q5
IP 142.250.74.168:0
File type ASCII text, with very long lines (31993)
Hash b135fd5bb978d6cbe84fbd2168480820
b61591d64f3e1524efd9c2d3433becd87b2ed12d
a8df4a7bab212e4b749eb2391cf259ae825d5a095c31bbf26b950e34ec24ad65
GET /gtm.js?id=GTM-HZ8Q5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 09 Oct 2022 04:57:07 GMT
expires: Sun, 09 Oct 2022 04:57:07 GMT
cache-control: private, max-age=900
last-modified: Sun, 09 Oct 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95854
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
anketyeri.com/personal/ScriptResource-2.axd?d=SCktwi-Z1SFGgmHzICetrvGRem7c1pRfroXndkJrh2-50rUSVmsDTlN1cLCfQ3t0N05MGnX_blGdu9j2MshWQqvJhjbfKm8DMb68e0OdVE0A7u0zNxlRZUs_IIDNFtjg0MHhcw2&t=7c776dc1
185.106.93.203200 OK 21 kB URL HTTP/1.1 anketyeri.com/personal/ScriptResource-2.axd?d=SCktwi-Z1SFGgmHzICetrvGRem7c1pRfroXndkJrh2-50rUSVmsDTlN1cLCfQ3t0N05MGnX_blGdu9j2MshWQqvJhjbfKm8DMb68e0OdVE0A7u0zNxlRZUs_IIDNFtjg0MHhcw2&t=7c776dc1
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type ASCII text, with very long lines (11266), with CRLF line terminators
Hash 44a21d61ec4ff08020066075a5cd1e7d
12841b74cdf16fad5d6032ce147be4ae3fb24857
339cf00d7bd0e014b4b15a8afb0e9c4667604aa843cee1d23c6c3b79c0d4830b
GET /personal/ScriptResource-2.axd?d=SCktwi-Z1SFGgmHzICetrvGRem7c1pRfroXndkJrh2-50rUSVmsDTlN1cLCfQ3t0N05MGnX_blGdu9j2MshWQqvJhjbfKm8DMb68e0OdVE0A7u0zNxlRZUs_IIDNFtjg0MHhcw2&t=7c776dc1 HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "53a0-5ea8739f7ffe8"
Accept-Ranges: bytes
Content-Length: 21408
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b9f0247fb5bf6e6458f14094551436e1
0ac483f7caef89a55829041189790c8fc7eb8cd7
1b157a9bf613ddbf329225759780db82a249f8502b1b7cb6742907224b4c775e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 04:57:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
anketyeri.com/personal/js/silvercloudjs/silvercloud.js
185.106.93.203200 OK 19 kB URL HTTP/1.1 anketyeri.com/personal/js/silvercloudjs/silvercloud.js
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type Unicode text, UTF-8 text, with very long lines (57760), with no line terminators
Hash f498f7751778f7f6478b615b57c1c597
f2b44efc2eac39011e090878cbb154079bd0ae0b
8332fdd488ed30ac5bd6080fbfb32a2d0c466d845741ceb302c974867e496d26
GET /personal/js/silvercloudjs/silvercloud.js HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "e1a1-5ea8739f58ee9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 18599
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
anketyeri.com/personal/maps/api/js?key=AIzaSyBwjZ4dO5NRv-va7XTp3ml0f6kwtjPaICY&callback=initMap
185.106.93.203200 OK 165 kB URL HTTP/1.1 anketyeri.com/personal/maps/api/js?key=AIzaSyBwjZ4dO5NRv-va7XTp3ml0f6kwtjPaICY&callback=initMap
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type ASCII text, with very long lines (2460)
Size 165 kB (164807 bytes)
Hash cac490603fd8c246ab3dd4c5bd804a7b
1270ea8d7a0f7ffa0c0bd55919a2886d1cb608ee
d274509b8242b51bc2d9d620d427fe6af97f09bc09af1d0ca3c52ba1330a3443
GET /personal/maps/api/js?key=AIzaSyBwjZ4dO5NRv-va7XTp3ml0f6kwtjPaICY&callback=initMap HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "283c7-5ea8739f59e89"
Accept-Ranges: bytes
Content-Length: 164807
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
anketyeri.com/personal/PatternLibrary/dist/assets/js/app.js
185.106.93.203200 OK 69 kB URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/js/app.js
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type Unicode text, UTF-8 text, with very long lines (32039)
Hash b801b521680c37453d41a5da3d27cc1a
0cd097ece7a5ec01820026e337aadaa342c85b61
8755c872f9cfc48bb158644fa12d3107ad59cede6ae16859c8e56998f3921c16
GET /personal/PatternLibrary/dist/assets/js/app.js HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "3e013-5ea8739fe1a64-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
anketyeri.com/personal/css/silvercloud.css
185.106.93.203200 OK 11 kB URL HTTP/1.1 anketyeri.com/personal/css/silvercloud.css
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
Hash 0dd107cf6dc16be560119802d7d192d0
b47a580fb9086e2d173cd73695eb8d995abf6d42
4b43e4d3b21260992a76ee84efb671ec9bee99ccffaf27ab90209a3c2b3e11ac
GET /personal/css/silvercloud.css HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "f824-5ea8739f88c87-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11342
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
anketyeri.com/personal/PatternLibrary/dist/assets/css/app.css
185.106.93.203200 OK 26 kB URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/css/app.css
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 08cdf0fdee5dd58ce388cd1b932e4f14
cf9d0b132c1f14d691560630f20de97afd3b400d
cd995c4146822f703dbf2db5bf9d3ef25d073d25609d73f2a594cbf5d39f6f5e
GET /personal/PatternLibrary/dist/assets/css/app.css HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "2893b-5ea8739fd8dc4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 26286
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/personal-loans-solid.png
185.106.93.203200 OK 693 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/personal-loans-solid.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash c1afbe30c6aac60814929dbe3caa986b
b089e67f4f3646d2df5f257b6589dfe86cbcc6dd
fbd5690d63b54a98c67892401cb22727731bba21ba8de77b068d8dae5dfa395d
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/personal-loans-solid.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "2b5-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 693
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/rates-home-loans-icon.png
185.106.93.203200 OK 339 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/rates-home-loans-icon.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash 13c7a20ae4a53a4b7802983360ba25fe
c267de64d190c079b5dbe75264b43e47864c0ca4
c4cac18c1ea612d59e57c9596c7c79b567c2c5ce67a02827d6cb7db7c639e6c7
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/rates-home-loans-icon.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "153-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 339
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/sdccu-logo.png
185.106.93.203200 OK 3.4 kB URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/sdccu-logo.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 269 x 42, 8-bit colormap, non-interlaced\012- data
Hash 4bb344f6f20e7556e4e2348417dbb055
09e3f57baf12686eedaa3d6b084dc2a01f3a38e4
668de188a2db9107b88dc5af81b182ce1ece04d37fa51bae699975527c149a50
GET /personal/PatternLibrary/dist/assets/img/desktop/sdccu-logo.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "d22-5ea8739fdfb24"
Accept-Ranges: bytes
Content-Length: 3362
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/home-equity-solid.png
185.106.93.203200 OK 528 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/home-equity-solid.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash 05ad1b5a47ac38e6b91247915d93c87e
82ea102516ef83710dadeae94810724861bd7af4
9f31fcd82f0bef902d32e1965379192fa225d7485e15b311ed2b140964372e56
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/home-equity-solid.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "210-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 528
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/savings-icon.png
185.106.93.203200 OK 624 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/savings-icon.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 240bb8a194564f6eb0e422f93734be3d
0e766c33f740a290afb5dc4079a2f9b734673707
c242ea026373ef37440e897ee85fd21d878ec04317b54ddfa79626af7a7af565
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/savings-icon.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "270-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 624
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/checking-icon.png
185.106.93.203200 OK 227 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/checking-icon.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 24 x 24, 4-bit colormap, non-interlaced\012- data
Hash ef664a9c72cbd929aaace9569c027afd
cc4bc3bf5bdc5afeb22a9f95d5f163996ab887fe
0e19f69b5e257ee2318434da73351927582a45130bef374bcf6a1e4f534540f8
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/checking-icon.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "e3-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 227
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/online-and-mobile-icon.png
185.106.93.203200 OK 655 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/online-and-mobile-icon.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 19 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 2deabd8032ec2d090175a7f9ef82f5c3
375877b376a3de65f8e2835ba484212767937bac
5b33fcc19f1458e89816b625b2dbb49ccb6e828ba72c2e16289be3009d9f9f21
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/online-and-mobile-icon.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "28f-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 655
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/auto-loan-icon.png
185.106.93.203200 OK 516 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/auto-loan-icon.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash ea52a6a981c8ecf8aadf7cd9df8f7c2d
b27dcdd7f99fea88975a72c5e94cb3691855354b
8abefabb1d1d96a79a887a45b3bd59a8a8e2118148c4488947a04895ee9cd7a3
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/auto-loan-icon.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "204-5ea8739fdcc44"
Accept-Ranges: bytes
Content-Length: 516
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/loans-icon.png
185.106.93.203200 OK 488 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/loans-icon.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash fd36265a601e7f38bf4f65ab2b39b625
4f041a9cce9c306fb06a11868d783761e81eb9e1
5e48424412eb59c529c262f921be7a25eb72df0553bcf3f3b0d99cff55a5b61e
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/loans-icon.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "1e8-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 488
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/banking-icon.png
185.106.93.203200 OK 454 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/banking-icon.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash d143d34811c66ce9431f8e567e4b442c
d29ab380ce0a154f4dcccc7ed1291fad4e911bc0
838490556788731d547faaa6ebfc6688e180c8cd52791eada5b6b169ec54fffc
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/banking-icon.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "1c6-5ea8739fdcc44"
Accept-Ranges: bytes
Content-Length: 454
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/commercial-real-estate-icon.png
185.106.93.203200 OK 188 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/commercial-real-estate-icon.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 21 x 24, 4-bit colormap, non-interlaced\012- data
Hash 3d5c596768ed324e3d404158a3c8a796
cf7a707625a911f7a8335d6b04fb70fcf424785a
b54fb36131ecf089779642fe2abc0241a2697e65c04f2f2bd3d40b8e69240b7c
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/commercial-real-estate-icon.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "bc-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 188
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/prevent-icon.png
185.106.93.203200 OK 271 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/prevent-icon.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 14 x 24, 8-bit colormap, non-interlaced\012- data
Hash 613b49da24bca7450bf80122353b1c19
548d8a415f9e9eb96b8f622765edb3a48fd44f07
5da2689cc12768f25f170c07a886da65442db3bb72d8ac2ce7ba6c2855e8854c
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/prevent-icon.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "10f-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 271
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/malware-icon.png
185.106.93.203200 OK 615 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/malware-icon.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 21 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d606d1b735f35fb0955846a2e314c86
dced0b2fa434e20a254850a94595abf110a1650b
778b1456a825c4c79e8025d5f3af350b5a27a5bf0f92db2a82ea1d02c9e67853
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/malware-icon.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "267-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 615
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/mobile/sdccu-logo-mobile.png
185.106.93.203200 OK 2.0 kB URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/mobile/sdccu-logo-mobile.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 130 x 21, 8-bit colormap, non-interlaced\012- data
Hash 234cba82ada9ebc62522e9a324d5a756
3afca051ea0a556d6b85752e7b0adb6fa4b1144e
6deac651b7f6b5a308a72ae110e7b9852235ef25b8b7261c74fe6aa084b3b1ed
GET /personal/PatternLibrary/dist/assets/img/mobile/sdccu-logo-mobile.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "7a5-5ea8739fe1a64"
Accept-Ranges: bytes
Content-Length: 1957
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/financial-resources.png
185.106.93.203200 OK 365 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/financial-resources.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash 08bf37c78444f5bf3e8768f1797334c4
9ef3a61d58592fbadb66bf1379ed7fb85b47a493
a8a39ce3f90042654f3f73e11ded24ad56b46fd92b7933d8a50eabd4e8120ddf
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/financial-resources.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "16d-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 365
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/footer-logo.png
185.106.93.203200 OK 2.4 kB URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/footer-logo.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 200 x 32, 8-bit colormap, non-interlaced\012- data
Hash dae891b93b4ef67b6459aa449e1b0dc5
3e754ebb683e4794ecbfb269ac5b5461c684af4f
90b283fd196edc5942290d99c2472bcc2dd550d3d6dce1669fb6605d69df2d30
GET /personal/PatternLibrary/dist/assets/img/desktop/footer-logo.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "965-5ea8739fdcc44"
Accept-Ranges: bytes
Content-Length: 2405
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/mobile/icons/search-close.png
185.106.93.203200 OK 247 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/mobile/icons/search-close.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash d498901afced14066597eced900ce24b
ebb0f33fe3b72ba73c812806c3e0968e7dd5f617
267fb65733e965ed5b11012d9f68fa7b108dfcd671ce95d4c6e2729eb87c38c3
GET /personal/PatternLibrary/dist/assets/img/mobile/icons/search-close.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "f7-5ea8739fe1a64"
Accept-Ranges: bytes
Content-Length: 247
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/mobile/icons/search-icon-mobile.png
185.106.93.203200 OK 368 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/mobile/icons/search-icon-mobile.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash c1b57a616b9069f4b8259b15b35c1b4f
be581b1d4347dbd5424ebb1d8e65d53c8f41b748
7121c5802b9e2c41f4ca0aef4aa40c190e0891cd63418b87a0c8ab13acddfc8f
GET /personal/PatternLibrary/dist/assets/img/mobile/icons/search-icon-mobile.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "170-5ea8739fe1a64"
Accept-Ranges: bytes
Content-Length: 368
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
use.typekit.net/af/1b1b1e/00000000000000000001709e/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
23.36.76.122200 OK 24 kB URL HTTP/2 use.typekit.net/af/1b1b1e/00000000000000000001709e/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 24180, version 1.0\012- data
Hash a077d487ed95691f5343f69eac4417db
a606a40b605563afb9b7ab1452258ae9f9c49d09
9bacad71ca24f6147c4b72a6c0f351b07ba93b70f992082b812681fb3b46d9b6
GET /af/1b1b1e/00000000000000000001709e/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 24180
etag: "f507d4945327bf77fa226b6fef0f1c6a6af3bf09"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/search-close.png
185.106.93.203200 OK 247 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/search-close.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 2824f879120a39257d51e18c8053cd11
07d020c68d15e2c52bd975c9715fb9cdae8e33c0
1481347924559b12bd358aaa181d2bec3eb0d9f0cdceb6d88940c6f76d6f3de6
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/search-close.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/PatternLibrary/dist/assets/css/app.css
Cookie: _gcl_au=1.1.1244006770.1665291428
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "f7-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 247
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/SDCCUWebsite/media/Icons/Search_Icon-50x50.png
185.106.93.203200 OK 4.0 kB URL HTTP/1.1 anketyeri.com/personal/SDCCUWebsite/media/Icons/Search_Icon-50x50.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 50 x 50, 8-bit/color RGB, non-interlaced\012- data
Hash c6dc4b7f7b96aaa9d45385100839b9cb
256e52a5233353a92dd8da10e8559a9a246bd625
310d85ce9f3f0df39f964389ad6a821f69f81b0bacf667a0f76f3aa36f1b74b5
GET /personal/SDCCUWebsite/media/Icons/Search_Icon-50x50.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/CMSPages/cms.blankmasterpage?_templates=25698
Cookie: _gcl_au=1.1.1244006770.1665291428
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "f9c-5ea8739f7ffe8"
Accept-Ranges: bytes
Content-Length: 3996
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
use.typekit.net/af/cafa63/00000000000000000001709a/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
23.36.76.122200 OK 24 kB URL HTTP/2 use.typekit.net/af/cafa63/00000000000000000001709a/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 24272, version 1.0\012- data
Hash 33150f36436b3a686d25d599762d6974
084c5cdedbfa82ce1dba3ae94d35ad1d1ebbe586
5461e0722bbe365dfa0df4652c60a6ced5f83c840d03021c4abd04ae9f9c6980
GET /af/cafa63/00000000000000000001709a/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 24272
etag: "1500587fffa9a4bb64d06e988493ea23a02a484a"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/9369f8/0000000000000000000170a6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3
23.36.76.122200 OK 24 kB URL HTTP/2 use.typekit.net/af/9369f8/0000000000000000000170a6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 23716, version 1.0\012- data
Hash c89cb1fd3201dc6da0e3cd7068da1b61
2b1ad83dfcf825a88bc0df2480e4fb44d90ffdf3
7b8df9af7d8b2ec635a90c3ef9bc9450210c0f22e50f2019dedceeddfce8c894
GET /af/9369f8/0000000000000000000170a6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 23716
etag: "10f8dc6bcb53d962ce1cfb40c179ec4a3ebd74de"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/f72c04/0000000000000000000170a4/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
23.36.76.122200 OK 24 kB URL HTTP/2 use.typekit.net/af/f72c04/0000000000000000000170a4/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 23800, version 1.0\012- data
Hash fcb3fa22f6ae88b76dea93c02ae65d08
5f41dc3c8f1f9a2de18f61747caf56ac07a1a0f9
4b71216ad1235d923c89088c2d19f658fca9201ba5ef94586d8b2fb7c141a744
GET /af/f72c04/0000000000000000000170a4/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 23800
etag: "fc7e3da860610e512a23dbe27296d894582726cd"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/facebook.png
185.106.93.203200 OK 261 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/facebook.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 20 x 20, 8-bit colormap, non-interlaced\012- data
Hash 61593645cec101e7b428369315cdd66c
fddab994ea2ebee3dd0e77c02e7d0851f7859912
63c7c6567d802dc45ae7ffd89b3285afd5bd8909def35352d2cd0d8d910df3ff
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/facebook.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "105-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 261
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/youtube.png
185.106.93.203200 OK 373 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/youtube.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash cc9682ab11629b0238edfb619b83d491
d2e2c5c1c685075599dc5ad3d03c1253a5f13e47
fef9c8db0a9304723235a460bdd15588c3f0d5775da46b1e5b938faebacf48e0
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/youtube.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "175-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 373
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/twitter.png
185.106.93.203200 OK 398 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/twitter.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 234e5e72989f7fed6f70067f26093583
cdc8d4cc7fb47933f8041981cfab7d9e7b53885b
17eb1c73c2dcf18ef1f17d1f7bf7c5f44e121a24cd529a0c62e388a01cbdf989
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/twitter.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "18e-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 398
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/instagram.png
185.106.93.203200 OK 376 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/instagram.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 20 x 20, 8-bit colormap, non-interlaced\012- data
Hash 3959951e44899cc1c4672077e60aa8ab
866ffd0950725d68deb6cd67ca575fbda8094e15
bf2f6a813fe42fe83589a01f6dadbbf889ce3220aa2435c08303026dc34bb641
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/instagram.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "178-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 376
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/visa-solid-24.png
185.106.93.203200 OK 442 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/visa-solid-24.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash b8ea7868798bf6e724569df0b4fe59de
aa3893e3fc5ec9e8c33c68238ad880292930bb5d
a4298d9ce7ebc87a3f06fe3fabad079b4399a5c3b2d6c49a44f76a757640bb75
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/visa-solid-24.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "1ba-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 442
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/SDCCUWebsite/media/Icons/rates-certificates-icon.png
185.106.93.203200 OK 652 B URL HTTP/1.1 anketyeri.com/personal/SDCCUWebsite/media/Icons/rates-certificates-icon.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 058f07d11e02dc7347840d5109523315
da502a0ee347f5412e72d1388ca280c569bf272f
b659d326621217a2e87711ce8515cbb475742c6c7140a6f7292ac1ef6c882657
GET /personal/SDCCUWebsite/media/Icons/rates-certificates-icon.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "28c-5ea8739f7ffe8"
Accept-Ranges: bytes
Content-Length: 652
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/auto-solid-24.png
185.106.93.203200 OK 655 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/auto-solid-24.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash ed9d7824b2c24a78038e3bdd313d2b6e
b5ef1252ac43071ed149f6ffe23ace59eea1dd75
0fbfb121400e9ae7e527f4e93d6c7737a3ee58f54b674b21fcd37350a0d99cc9
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/auto-solid-24.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "28f-5ea8739fdcc44"
Accept-Ranges: bytes
Content-Length: 655
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
use.typekit.net/af/d44976/0000000000000000000170b3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
23.36.76.122200 OK 24 kB URL HTTP/2 use.typekit.net/af/d44976/0000000000000000000170b3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 23992, version 1.0\012- data
Hash 7bb5191a7a4c012abf13d90bdca1a4c5
a4695e59b2b204b9770e66e10022d28454bb657f
22d06493e1f85f6ded787a350bd55fe0d2f44ecc14858fe71b2531f436b0bf4f
GET /af/d44976/0000000000000000000170b3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 23992
etag: "eac94f458d80b5f6c7b335072372cae09deb92f2"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/69e254/0000000000000000000170ac/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n3&v=3
23.36.76.122200 OK 24 kB URL HTTP/2 use.typekit.net/af/69e254/0000000000000000000170ac/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n3&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 24284, version 1.0\012- data
Hash 0ca8b2d977298c329a0cbb8746cc12a4
e59c826f8b2957e569c3c75f9d1bf209372ef043
9ae212753d89edb58e0d62bfcd46240227af239098d946148463d6e6f63ab705
GET /af/69e254/0000000000000000000170ac/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n3&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 24284
etag: "bdaf688efd047a3ef7028f2e0a868526ea9bdeea"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/b9b50c/0000000000000000000170b1/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3
23.36.76.122200 OK 24 kB URL HTTP/2 use.typekit.net/af/b9b50c/0000000000000000000170b1/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 24148, version 1.0\012- data
Hash 7994882503f9c1dd245af6a3b92dff1c
a9bb9cea0c3f7f0102f255f3708af9f14657ba5f
1824d332dd16bde9aa198074b2b05e3273ddcefe9f6cca6ced077e73f852b056
GET /af/b9b50c/0000000000000000000170b1/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 24148
etag: "90c1e1e6f8c9cf423bd026595da847356a79114e"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/a78021/0000000000000000000170ae/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
23.36.76.122200 OK 24 kB URL HTTP/2 use.typekit.net/af/a78021/0000000000000000000170ae/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 24352, version 1.0\012- data
Hash 216f18d788db54ab7fee9faf8b05ecd1
34a99ad5829939eed73af2b51052819318711990
acd1f8beead90bb1e8c81adb3d1757e4d685821de64a68e0b538f5090220eff8
GET /af/a78021/0000000000000000000170ae/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 24352
etag: "fe0a6fc02d4a93533ac63113cfc3c56716c61610"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/c63dde/0000000000000000000170a8/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
23.36.76.122200 OK 24 kB URL HTTP/2 use.typekit.net/af/c63dde/0000000000000000000170a8/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 23764, version 1.0\012- data
Hash 8caad9d31ccb6d1e2798d685cb845730
cb13c455460bd3af9803df07e8144eeac46258e7
6e4d9b90f5b983eaf4472a8fced47af039cad9dd4fe8e5eb5b6fe66fff7355a4
GET /af/c63dde/0000000000000000000170a8/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 23764
etag: "17d9c53b9ed2bf18b0895021e961db919b08eef5"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/2e2357/00000000000000000001709f/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3
23.36.76.122200 OK 25 kB URL HTTP/2 use.typekit.net/af/2e2357/00000000000000000001709f/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 24844, version 1.0\012- data
Hash 5c7839dac3b835362b1b03f00b1279e2
84d5a8db2b72294288ec9860442bef85653eb6f3
cb26418fee39694ae65badb98f1d4217c2956f86676b540c87425178edf803be
GET /af/2e2357/00000000000000000001709f/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 24844
etag: "7210f1b0b97a664f8555608685ebda5b3048b145"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/47529e/0000000000000000000170a2/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n3&v=3
23.36.76.122200 OK 24 kB URL HTTP/2 use.typekit.net/af/47529e/0000000000000000000170a2/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n3&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 23484, version 1.0\012- data
Hash d45e305fc84f02d0466cbce2dca5b3f8
33753e6c1c617ef2845736c5c1bca9fd9d729c46
f893f26683986e755e55c74852297c2ad7cf09c238758da3d522364f8f54f3c3
GET /af/47529e/0000000000000000000170a2/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n3&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 23484
etag: "cac46929d336c64abba6e1d8ef3665244980c166"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/d32e26/00000000000000000001709b/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3
23.36.76.122200 OK 25 kB URL HTTP/2 use.typekit.net/af/d32e26/00000000000000000001709b/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 25016, version 1.0\012- data
Hash f3b01a591c6cdfac684714571fd098c1
0c485f50893ce349c83a06a044f697a8960a310c
6069bebbfc9a535fa8bf81fa81ce8741f6cef9e5fefd807aa1710a365cfed798
GET /af/d32e26/00000000000000000001709b/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 25016
etag: "9689d00c5dfd98cdda07ad0f85b16f1599038e27"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
anketyeri.com/personal/getmedia/2cd2177b-1dfc-420e-bf89-199adad5f1c5/Malware-Prevention-Website_Normal-Hero_1920x302.jpg
185.106.93.203200 OK 286 kB URL HTTP/1.1 anketyeri.com/personal/getmedia/2cd2177b-1dfc-420e-bf89-199adad5f1c5/Malware-Prevention-Website_Normal-Hero_1920x302.jpg
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x302, components 3\012- data
Size 286 kB (285465 bytes)
Hash 390ebfe461b986377c8aced23c4b9636
cae047e413667132131480304af4a8eb729b9522
f0bedae44450a00fa07f8f1202c8411eb7988790e1364cd721367c754cdca1dc
GET /personal/getmedia/2cd2177b-1dfc-420e-bf89-199adad5f1c5/Malware-Prevention-Website_Normal-Hero_1920x302.jpg HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
Cookie: _gcl_au=1.1.1244006770.1665291428
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "45b19-5ea8739fa4206"
Accept-Ranges: bytes
Content-Length: 285465
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
use.typekit.net/af/2b0ae7/00000000000000003b9ad2df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
23.36.76.122200 OK 27 kB URL HTTP/2 use.typekit.net/af/2b0ae7/00000000000000003b9ad2df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 27192, version 1.0\012- data
Hash b69b7fc55d39eac3318361ba42a099bf
45e47580d13f9a9b83b6075cc6ba4578442072a9
e93140f063efad98000db70f82fb0fb29a752ff4bfc4c9250a415d31488b45d4
GET /af/2b0ae7/00000000000000003b9ad2df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 27192
etag: "2635d3cdf237c05f206ec0c108bd32d3f511534c"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/d6baab/00000000000000003b9ad2de/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3
23.36.76.122200 OK 28 kB URL HTTP/2 use.typekit.net/af/d6baab/00000000000000003b9ad2de/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 28404, version 1.0\012- data
Hash 90f0c3cd3f5d26ecb298672c34fe9fb5
a4aebe94a9b50419602f400fc035a05781502708
8d07358781f95a4cd593a2419586b65fa225e5a2e04fbc2b9ef725391a5267df
GET /af/d6baab/00000000000000003b9ad2de/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 28404
etag: "e04122c833c2d59e95bc1aa199180b0e4efba489"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/back-to-top.png
185.106.93.203200 OK 160 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/back-to-top.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 54 x 54, 8-bit grayscale, non-interlaced\012- data
Hash 3ca7fd1ca4d762b5440d290ff873edfd
d6bc15f322a4517251aa4ba3870f0669f8b0cbea
bcccab6a2bd75d13e6cda4ee650bb08998c061d44939b0d7c5f81584b21c44db
GET /personal/PatternLibrary/dist/assets/img/desktop/back-to-top.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "a0-5ea8739fd8dc4"
Accept-Ranges: bytes
Content-Length: 160
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/cmsapi/webanalytics/LogHit
185.106.93.203404 Not Found 196 B URL HTTP/1.1 anketyeri.com/cmsapi/webanalytics/LogHit
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
POST /cmsapi/webanalytics/LogHit HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: application/json
Content-Length: 115
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
Cookie: _gcl_au=1.1.1244006770.1665291428
HTTP/1.1 404 Not Found
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 196
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/bottom-cta-bg.jpg
185.106.93.203200 OK 195 kB URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/bottom-cta-bg.jpg
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1104, components 3\012- data
Size 195 kB (194780 bytes)
Hash ddbaf1ef53417c26c5c44251d2d7a550
c969bdf8cba7b32b29e5ab490df20aac51492614
8237a27c8ee530c6cf88aad952c4c336cf7bec06d41bb1b65f3d923242cf120c
GET /personal/PatternLibrary/dist/assets/img/desktop/bottom-cta-bg.jpg HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/PatternLibrary/dist/assets/css/app.css
Cookie: _gcl_au=1.1.1244006770.1665291428
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "2f8dc-5ea8739fdad04"
Accept-Ranges: bytes
Content-Length: 194780
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
trkn.us/pixel/conv/ppt=11011;g=sitewide;gid=32545;ord=1451992841?gtmcb=525058228
3.230.17.182302 Found 0 B URL HTTP/1.1 trkn.us/pixel/conv/ppt=11011;g=sitewide;gid=32545;ord=1451992841?gtmcb=525058228
IP 3.230.17.182:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/conv/ppt=11011;g=sitewide;gid=32545;ord=1451992841?gtmcb=525058228 HTTP/1.1
Host: trkn.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
Date: Sun, 09 Oct 2022 04:57:07 GMT
Location: /pixel/conv/ppt=11011;g=sitewide;gid=32545;ord=1451992841?gtmcb=525058228;ip=91.90.42.154;cuidchk=1
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Server: Apache
Set-Cookie: barometric[cuid]=cuid_2f71e8ce-106a-48d3-ac08-b980b5e1875a; expires=Mon, 09-Oct-2023 04:57:07 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.trkn.us
X-Content-Type-Options: nosniff
Content-Length: 0
Connection: keep-alive
content-cdn.com/451/dWdnYzovL25heHJnbHJldi5wYnovY3JlZmJhbnkvb2hmdmFyZmYvb2hmdmFyZmYtZXJmYmhlcHJmL3pueWpuZXIv.gif
3.91.119.191301 Moved Permanently 0 B URL HTTP/1.1 content-cdn.com/451/dWdnYzovL25heHJnbHJldi5wYnovY3JlZmJhbnkvb2hmdmFyZmYvb2hmdmFyZmYtZXJmYmhlcHJmL3pueWpuZXIv.gif
IP 3.91.119.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /451/dWdnYzovL25heHJnbHJldi5wYnovY3JlZmJhbnkvb2hmdmFyZmYvb2hmdmFyZmYtZXJmYmhlcHJmL3pueWpuZXIv.gif HTTP/1.1
Host: content-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/
HTTP/1.1 301 Moved Permanently
location: https://content-cdn.com/451/dWdnYzovL25heHJnbHJldi5wYnovY3JlZmJhbnkvb2hmdmFyZmYvb2hmdmFyZmYtZXJmYmhlcHJmL3pueWpuZXIv.gif
vary: Accept-Encoding
date: Sun, 09 Oct 2022 04:57:07 GMT
server: envoy
content-length: 0
use.typekit.net/af/25f703/00000000000000003b9ad2e2/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3
23.36.76.122200 OK 29 kB URL HTTP/2 use.typekit.net/af/25f703/00000000000000003b9ad2e2/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 28764, version 1.0\012- data
Hash d4802d3f800d97401c1d35b7e4eaf70d
808bf36994c52966de2b515c6a1a4ecc1d46e674
8dcc01611d66383e407bd2c84440e50e2d3a108ed5100833f25de9198cd19592
GET /af/25f703/00000000000000003b9ad2e2/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 28764
etag: "94361fb1e5eeca5db3756eec645e8d53e2b1d953"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
anketyeri.com/personal/SDCCUWebsite/media/Icons/loans-line-solid.png
185.106.93.203200 OK 1.2 kB URL HTTP/1.1 anketyeri.com/personal/SDCCUWebsite/media/Icons/loans-line-solid.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash b59888813b59867941e5f9b41b2a4538
592fa5b929801fc0185849722b2ced15c85097c8
5ed1eec3793b2c0f1c3e2c10b74c0929e73b23cb6863c353a4ce186ba10dc7cc
GET /personal/SDCCUWebsite/media/Icons/loans-line-solid.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "4b4-5ea8739f7ffe8"
Accept-Ranges: bytes
Content-Length: 1204
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
use.typekit.net/af/7f0b40/00000000000000003b9ad2e3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
23.36.76.122200 OK 28 kB URL HTTP/2 use.typekit.net/af/7f0b40/00000000000000003b9ad2e3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 27496, version 1.0\012- data
Hash 6388cadf2a1b026fb3abd4e0cb3b6077
c0a292dd878b82aeca31c885ef1b2bf96734e5ff
4c26f677f902dd4b3db0d8bce1e8e25761c4a5bd0285eb8cd8fccc62bacd31d2
GET /af/7f0b40/00000000000000003b9ad2e3/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 27496
etag: "8c7c7771c744cf4acbc52059d481e770cfbc8195"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/modal-close.png
185.106.93.203200 OK 424 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/modal-close.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 17 x 17, 8-bit colormap, non-interlaced\012- data
Hash d12da10c40edb54cd6e3009f536cdf12
d59fa0265cbf1bab3bd10b1959b195c8cdedb5c8
61b5b2d55c9715281ab5cf624d750737c8a22c3283b6ff104082fea450706b1c
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/modal-close.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "1a8-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 424
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/commercial-real-estate-icon-solid.png
185.106.93.203200 OK 196 B URL HTTP/1.1 anketyeri.com/personal/PatternLibrary/dist/assets/img/desktop/icons/commercial-real-estate-icon-solid.png
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type PNG image data, 21 x 24, 4-bit colormap, non-interlaced\012- data
Hash 323ac12ff70e687b642114af32e38b4b
41723321ee428446b59ff0ae94ae7dceec2f835a
26f1b72b36c1ef6dec110d1680fa9f615a21eef6770d079d61636754baa4355c
GET /personal/PatternLibrary/dist/assets/img/desktop/icons/commercial-real-estate-icon-solid.png HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "c4-5ea8739fdeb84"
Accept-Ranges: bytes
Content-Length: 196
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ee96d771e1664e3afe56cf32bfe45eee
3ab9109d6f7a952cf2f7071ecb5ee186f9eebf6a
df7a23267a1a0bddc477d2b3f4c870b6a6ab7b4dca5fc38164d814ccae2b2fdd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 04:57:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
p.typekit.net/p.gif?s=1&k=rez7rhr&ht=tk&h=anketyeri.com&f=6801.6802.6803.6805.6808.6809.6810.6811.6846.6847.6848.6851.27069.27070.27073.27074&a=8598176&js=1.21.0&app=typekit&e=js&_=1665291427897
23.36.76.184200 OK 35 B URL HTTP/2 p.typekit.net/p.gif?s=1&k=rez7rhr&ht=tk&h=anketyeri.com&f=6801.6802.6803.6805.6808.6809.6810.6811.6846.6847.6848.6851.27069.27070.27073.27074&a=8598176&js=1.21.0&app=typekit&e=js&_=1665291427897
IP 23.36.76.184:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 81144d75b3e69e9aa2fa3e9d83a64d03
f0fbc60b50edf5b2a0b76e0aa0537b76bf346ffc
9b9265c69a5cc295d1ab0d04e0273b3677db1a6216ce2ccf4efc8c277ed84b39
GET /p.gif?s=1&k=rez7rhr&ht=tk&h=anketyeri.com&f=6801.6802.6803.6805.6808.6809.6810.6811.6846.6847.6848.6851.27069.27070.27073.27074&a=8598176&js=1.21.0&app=typekit&e=js&_=1665291427897 HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: image/gif
cross-origin-resource-policy: cross-origin
etag: "61c32ad2-23"
last-modified: Wed, 22 Dec 2021 13:40:34 GMT
server: nginx
content-length: 35
unused62: 8096267
date: Sun, 09 Oct 2022 04:57:07 GMT
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.74200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.74:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 09 Oct 2022 04:57:07 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: http://anketyeri.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ee96d771e1664e3afe56cf32bfe45eee
3ab9109d6f7a952cf2f7071ecb5ee186f9eebf6a
df7a23267a1a0bddc477d2b3f4c870b6a6ab7b4dca5fc38164d814ccae2b2fdd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 04:57:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
trkn.us/pixel/conv/ppt=11011;g=sitewide;gid=32545;ord=1451992841?gtmcb=525058228;ip=91.90.42.154;cuidchk=1
3.230.17.182200 OK 42 B URL HTTP/1.1 trkn.us/pixel/conv/ppt=11011;g=sitewide;gid=32545;ord=1451992841?gtmcb=525058228;ip=91.90.42.154;cuidchk=1
IP 3.230.17.182:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b5e8704c89f018cff215cb5ed3e0128
2a9fa3661b326c503e492b89cdd9130d12ead03d
b2c78c910f5ea29e3a9d223dabc203c055c8708b1fe7d83788b490638126db4d
GET /pixel/conv/ppt=11011;g=sitewide;gid=32545;ord=1451992841?gtmcb=525058228;ip=91.90.42.154;cuidchk=1 HTTP/1.1
Host: trkn.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://anketyeri.com/
Connection: keep-alive
HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-Type: image/gif
Date: Sun, 09 Oct 2022 04:57:07 GMT
Expires: Sun, 9 Nov 1980 12:58:00 GMT
Last-Modified: Sun, 9 Nov 1980 12:59:00 GMT
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Pragma: no-cache
Server: Apache
Set-Cookie: barometric[cuid]=cuid_32c2056e-bc5b-40b1-bc0a-a28296bc9fd2; expires=Mon, 09-Oct-2023 04:57:07 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.trkn.us
barometric[idfa]=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; SameSite=None; Secure; domain=.trkn.us
X-Content-Type-Options: nosniff
Content-Length: 42
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 529e4301c91cc026ccc1d939a79a8ee2
f3c50bead493f57288f9351426a9232c2d31a807
3abf9b93c0717e0d0d6fc971874f33c75fa56af014c7f5b95abbbec35c2c777e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3ABF9B93C0717E0D0D6FC971874F33C75FA56AF014C7F5B95ABBBEC35C2C777E"
Last-Modified: Fri, 07 Oct 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5174
Expires: Sun, 09 Oct 2022 06:23:22 GMT
Date: Sun, 09 Oct 2022 04:57:08 GMT
Connection: keep-alive
content-cdn.com/451/dWdnYzovL25heHJnbHJldi5wYnovY3JlZmJhbnkvb2hmdmFyZmYvb2hmdmFyZmYtZXJmYmhlcHJmL3pueWpuZXIv.gif
3.91.119.191200 OK 43 B URL HTTP/2 content-cdn.com/451/dWdnYzovL25heHJnbHJldi5wYnovY3JlZmJhbnkvb2hmdmFyZmYvb2hmdmFyZmYtZXJmYmhlcHJmL3pueWpuZXIv.gif
IP 3.91.119.191:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /451/dWdnYzovL25heHJnbHJldi5wYnovY3JlZmJhbnkvb2hmdmFyZmYvb2hmdmFyZmYtZXJmYmhlcHJmL3pueWpuZXIv.gif HTTP/1.1
Host: content-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://anketyeri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: envoy
date: Sun, 09 Oct 2022 04:57:08 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
x-envoy-upstream-service-time: 2
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.210200 OK 3.1 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.210:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (7751)
Hash 57efbbeb3e1d23c82b677511c67c8b0e
f927ba115ef4be362694c22850ddbdd1c1b054d1
873b38d80c8ff1ffcac23ecdb7fb2d17413ae3c217236d8e1e24574b1c4707c6
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 20:23:36 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=50911
date: Sun, 09 Oct 2022 04:57:08 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2
anketyeri.com/personal/App_Themes/Default/Images/favicon.ico
185.106.93.203200 OK 1.2 kB URL HTTP/1.1 anketyeri.com/personal/App_Themes/Default/Images/favicon.ico
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash cbeebda801a8a2ef0ae7c4dcc7b3866f
948ede5ac9312d88b31b859ff01444003eeb6ee8
415622c43585123132e1e09b7b5a22c33240dddf81e22f6683c0e5cd7eb580cc
GET /personal/App_Themes/Default/Images/favicon.ico HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
Cookie: _gcl_au=1.1.1244006770.1665291428
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:08 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "47e-5ea8739f81f28"
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3ba6d799884a2b1d655b0378f0393eb7
f7c53a1e7d85fb1853bd76132c6dc41603b5763f
d8232f7c46658bce8a78ac0447bcb2e6d7f33cacdb364b7d3f0fac1867ca4788
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2411
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 04:57:08 GMT
Last-Modified: Sun, 09 Oct 2022 04:16:57 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
dev.visualwebsiteoptimizer.com/j.php?a=160088&u=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&r=0.5304260153862731
34.96.102.137301 Moved Permanently 182 B URL HTTP/1.1 dev.visualwebsiteoptimizer.com/j.php?a=160088&u=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&r=0.5304260153862731
IP 34.96.102.137:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9d44ae5ca75a352070be23a6e9c70f6
a3aa893ef50506ec0f1fdf60ccfbf5e48f142e81
e3631af1efa5be63f728619833a5a8a23a1f72ca40d6f6b6c71d80bca51975c0
GET /j.php?a=160088&u=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&r=0.5304260153862731 HTTP/1.1
Host: dev.visualwebsiteoptimizer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/
HTTP/1.1 301 Moved Permanently
Date: Sun, 09 Oct 2022 04:57:08 GMT
Content-Type: text/html
Content-Length: 182
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload;
Location: https://dev.visualwebsiteoptimizer.com/j.php?a=160088&u=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&r=0.5304260153862731
server: gams1
Timing-Allow-Origin: *
Via: 1.1 google
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 09 Oct 2022 04:41:09 GMT
expires: Sun, 09 Oct 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 959
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57443), with no line terminators
Hash 1e9c4d503a9e162d8b549dc3d9c040e2
1fa99d7d7e878cdd45567af4b0c3c65542036c1d
f936c0124c595fe5d0c7858277f3a5f3bd104de39d36ac92557501fa1dec8563
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:19:10 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "d4de8398858246712016031c834bb061+gzip+gzip"
accept-ranges: bytes
date: Sun, 09 Oct 2022 04:57:08 GMT
x-served-by: cache-iad-kcgs7200165-IAD, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15317
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8a2449aeb44e755b2e6897d30993dda0
16cd83b0e0975ebf09e7035c26bbda168af42ac8
fd80527f810be13b70107c447b6f6f226c6145fbcc3b5446f9c834bca2f1597b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 04:57:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/gtm/optimize.js?id=GTM-5GC8V2C
142.250.74.174200 OK 42 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=GTM-5GC8V2C
IP 142.250.74.174:0
File type ASCII text, with very long lines (2039)
Hash 8e7e7dc47f8d649495936213968e60a7
5c81119aa36512d2ef5f1e54e5c19fd91d8f53d8
91493f7fbcf31b798ce8b3efc47fa781b14f3af63ba63cae602b809906e049ee
GET /gtm/optimize.js?id=GTM-5GC8V2C HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 09 Oct 2022 04:57:08 GMT
expires: Sun, 09 Oct 2022 04:57:08 GMT
cache-control: private, max-age=900
last-modified: Sun, 09 Oct 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41677
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash e1327a02d76346c7e23d114e4e508b30
195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: M29ysIg6+Xl3+LvHJqeBbzVxBWGmiv4uwl0bxfpO0astHS6+5EJpCkVq2HJMXfxW6+pQolF/D8ITy7mwsG1X3g==
content-length: 26840
x-fb-trip-id: 1904183273
date: Sun, 09 Oct 2022 04:57:08 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3ba6d799884a2b1d655b0378f0393eb7
f7c53a1e7d85fb1853bd76132c6dc41603b5763f
d8232f7c46658bce8a78ac0447bcb2e6d7f33cacdb364b7d3f0fac1867ca4788
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2411
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 04:57:08 GMT
Last-Modified: Sun, 09 Oct 2022 04:16:57 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
dx.mountain.com/spx?dxver=4.0.0&shaid=31880&tdr=&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=94970768197444600term=value
44.238.33.223301 Moved Permanently 0 B URL HTTP/1.1 dx.mountain.com/spx?dxver=4.0.0&shaid=31880&tdr=&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=94970768197444600term=value
IP 44.238.33.223:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /spx?dxver=4.0.0&shaid=31880&tdr=&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=94970768197444600term=value HTTP/1.1
Host: dx.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/
HTTP/1.1 301 Moved Permanently
Content-length: 0
Location: https://dx.mountain.com/spx?dxver=4.0.0&shaid=31880&tdr=&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=94970768197444600term=value
Connection: close
www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
142.250.74.163200 OK 157 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (539)
Size 157 kB (157166 bytes)
Hash 026df0dfed2314af108e700900288961
51c2a55bca7d65c549ef138d1294cac2aa98dd96
24eefc59f5d298ce40bdd33c8157ad14631984159fca8e5980037366c44c2b34
GET /recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157166
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:48:48 GMT
expires: Thu, 05 Oct 2023 21:48:48 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Sep 2022 00:04:24 GMT
content-type: text/javascript
age: 284900
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9566
Expires: Sun, 09 Oct 2022 07:36:34 GMT
Date: Sun, 09 Oct 2022 04:57:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9566
Expires: Sun, 09 Oct 2022 07:36:34 GMT
Date: Sun, 09 Oct 2022 04:57:08 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8a2449aeb44e755b2e6897d30993dda0
16cd83b0e0975ebf09e7035c26bbda168af42ac8
fd80527f810be13b70107c447b6f6f226c6145fbcc3b5446f9c834bca2f1597b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 04:57:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ffa3736-6f2b-4c59-bad6-50c7e92769c3.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ffa3736-6f2b-4c59-bad6-50c7e92769c3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7cf725004b0229701afbef1523fbdef3
04215585a509ceab13e7c5d19488ac46f47d937a
0b116aec6c8c4267e51c225f42782d6498187ee1b25fd4b3de42c9213ed6a727
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ffa3736-6f2b-4c59-bad6-50c7e92769c3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3844
x-amzn-requestid: d619cdec-b4bb-468c-81db-bec043a60e2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZtHfLE0AIAMFf1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6341ec60-1773520e4cd136b32071a2d0;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 21:32:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RmTNQ0B-9oYOnju7oYZ--kWh2jVv8417eYowfyZN8Cd8snWY2eHxbQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:42:19 GMT
age: 26089
etag: "04215585a509ceab13e7c5d19488ac46f47d937a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e9aa9808428e5fd81ac9d61d6f7c708
3a8d76badce50dd98938885082dcb6e30363ae88
d8f7c48a1cbe04af2f7e0455d1ef7af9b63506b9ae343ebf14ece8689bb06bf6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11800
x-amzn-requestid: 7bfb4e15-ea64-48b6-9e38-5d3e2d553863
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZQObZFveoAMFzpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63365de2-620d4fc015ad475203e906e9;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 03:09:22 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: btYc3mHTigZv3Bzl32D1z777hMKwf-pstyTS7Bp2eGmzbmGI4pIQXA==
via: 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 22:22:09 GMT
age: 23699
etag: "3a8d76badce50dd98938885082dcb6e30363ae88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9566
Expires: Sun, 09 Oct 2022 07:36:34 GMT
Date: Sun, 09 Oct 2022 04:57:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ff8cfe3904cca89e3bdfa8186ae382ba
0b9dce744f5facad9a0a136d81cf24e928211856
a6f0925a9666a43d018c05d717310f57b86316290fb4a7cdd309c35842e557a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7674
x-amzn-requestid: 126f9400-fa43-413b-b496-338908efb777
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZeqScHUVoAMFrRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633c240f-1b7cff3e3415299a4d17e19e;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 12:16:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PGFGAFQp9bXlIYhRdRNE58sRhfrsLE1-qguCEC_FL-JRfGDaIHr2VA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:58:33 GMT
age: 25115
etag: "0b9dce744f5facad9a0a136d81cf24e928211856"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b15495e3e13c06fd0d67523870405ed
3cb8b43735e86c93733affa10818c47693c80fce
f65edddef18295076f79a48e9a6c95d07ed244a2ae618cb4229b6c1bd434cd57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12187
x-amzn-requestid: 9768886f-0e17-4958-bdaf-e17385eb21d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjqJCHyNoAMFmDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e23d3-288e1d28057753a16893d6b5;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 00:39:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Sq19dwfau75VJsl8E2BNddasuiRnVxAuDjNEz0tC_scJSLZZkTayCw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 22:24:03 GMT
age: 23585
etag: "3cb8b43735e86c93733affa10818c47693c80fce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe8b331e-bfda-41c1-ba28-37b8830016ea.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe8b331e-bfda-41c1-ba28-37b8830016ea.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49e54a4a59a61533078f561c32f254e3
6396e8bf68251d60f0c9949cb99b6f3f46b61d34
3dc5081efa3b7456e91eb8b437789246f7cbd4176b2042e6801dcbd5a145e83c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe8b331e-bfda-41c1-ba28-37b8830016ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5282
x-amzn-requestid: 16029133-8119-4249-9447-f1d02ef00f76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zj7n_GNtIAMFUlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e3fcc-6b5982c06383d5182132d5c6;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 02:39:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dc3qlfhgiv1MpP5aox0rAd24KDkiTRkyTjxtrPL01MpbnaVfZ7cmAA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:44:27 GMT
age: 25961
etag: "6396e8bf68251d60f0c9949cb99b6f3f46b61d34"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c89a631-94ee-4b01-8199-fcedcf3d2e08.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c89a631-94ee-4b01-8199-fcedcf3d2e08.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0a5774272835c12c9ffb8b34197a812a
a68aadabdd1ecdc636afa95679d98d9f0784fdde
d059e586d86140ac333569a86401d10d45db36043e754b0cf997d4e03f06737e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c89a631-94ee-4b01-8199-fcedcf3d2e08.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11991
x-amzn-requestid: 6ae7411a-a441-400c-8378-9c1d4667c76f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZQOikFdlIAMFzkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63365e10-2550b4a53f41ddbb747c3050;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 03:10:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ug0JhJF7M0F4qWuuRauW5iVxJzwL26ytGvtNcGURT9cGDWH19AXvEw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:45:21 GMT
age: 25907
etag: "a68aadabdd1ecdc636afa95679d98d9f0784fdde"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 9c64f1ae48e1cffaa2eaa994a48d0dde
e2f792be097764457108e7b72bbf5e15efc606e1
1dc02e687bc13a10322c88669b7360c8e25a39d8d493b5d1928646a0d300b362
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 232
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 04:57:08 GMT
Last-Modified: Sun, 09 Oct 2022 04:53:16 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 314
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 89a17c02cdf926b852220408f32d6ad4
c22fb94c77a74cfc00d6b2cc88643afa0563abbe
2a4d9286d35271838cb99d265e2c8dbb851fa80ac2ca293571125188e684a7e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 04:57:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwE_MUAAAAAKnnEaMLWLwVQ4huUKXcT5krGF6K&co=aHR0cDovL2Fua2V0eWVyaS5jb206ODA.&hl=en&v=g8G8cw32bNQPGUVoDvt680GA&size=normal&cb=jth10qkpscjf
142.250.74.164200 OK 1.1 kB URL HTTP/2 www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwE_MUAAAAAKnnEaMLWLwVQ4huUKXcT5krGF6K&co=aHR0cDovL2Fua2V0eWVyaS5jb206ODA.&hl=en&v=g8G8cw32bNQPGUVoDvt680GA&size=normal&cb=jth10qkpscjf
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (309)
Hash 7c9d52beffca5d1eced0da18ada4f0d6
d0f204390ef61a6f825e1df71e274e4f413dd82b
8a1f4dfac6e58097d88c96dfa45ec7c69dff4a230cc52299e2957ce371830c23
GET /recaptcha/api2/anchor?ar=1&k=6LfwE_MUAAAAAKnnEaMLWLwVQ4huUKXcT5krGF6K&co=aHR0cDovL2Fua2V0eWVyaS5jb206ODA.&hl=en&v=g8G8cw32bNQPGUVoDvt680GA&size=normal&cb=jth10qkpscjf HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-security-policy: script-src 'nonce-qtlG3vxZqrmcVjC4LGGPhQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-type: text/html; charset=utf-8
content-encoding: gzip
date: Sun, 09 Oct 2022 04:57:08 GMT
expires: Sun, 09 Oct 2022 04:57:08 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1053
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dx.steelhousemedia.com/spx?dxver=4.0.0&shaid=31880&tdr=&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=73571668654192500term=value
52.11.37.91301 Moved Permanently 0 B URL HTTP/1.1 dx.steelhousemedia.com/spx?dxver=4.0.0&shaid=31880&tdr=&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=73571668654192500term=value
IP 52.11.37.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /spx?dxver=4.0.0&shaid=31880&tdr=&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=73571668654192500term=value HTTP/1.1
Host: dx.steelhousemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/
HTTP/1.1 301 Moved Permanently
Content-length: 0
Location: https://dx.steelhousemedia.com/spx?dxver=4.0.0&shaid=31880&tdr=&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=73571668654192500term=value
Connection: close
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 8483b3d62974adbe3317d22efd4d5b0d
bcc1905b51f3e99ced86528c38a174b49c88d0bc
ce4e1e7be5f4eb08f8f8dc1ea19622df9fa6a515ddc2e8755bb1389971af5969
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:08 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 08 Oct 2022 15:43:23 GMT
Expires: Sat, 15 Oct 2022 15:43:22 GMT
Etag: "bcc1905b51f3e99ced86528c38a174b49c88d0bc"
Cache-Control: max-age=556573,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 757488a418a3b50c-OSL
t.co/i/adsct?bci=3&eci=2&event_id=1d2fa9c1-bc95-4a20-8b74-8c118d34d699&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=97dca33d-056c-4cef-9bb8-2bd9c927125a&tw_document_href=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nutxl&type=javascript&version=2.3.27
104.244.42.5200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=1d2fa9c1-bc95-4a20-8b74-8c118d34d699&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=97dca33d-056c-4cef-9bb8-2bd9c927125a&tw_document_href=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nutxl&type=javascript&version=2.3.27
IP 104.244.42.5:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=1d2fa9c1-bc95-4a20-8b74-8c118d34d699&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=97dca33d-056c-4cef-9bb8-2bd9c927125a&tw_document_href=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nutxl&type=javascript&version=2.3.27 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:08 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=0fd62915-963e-4372-8585-0ae192a33ad0; Max-Age=63072000; Expires=Tue, 08 Oct 2024 04:57:08 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: e70765ee67c0f2b3
strict-transport-security: max-age=0
x-response-time: 104
x-connection-hash: f4c44bb6b5d420f7b55bce568dfe23b4cfdd3a673859f888fda24751c421f19c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a5bb2ca079b8c15c921933d39c57ae47
7ae6e38c3e12ef05164b04df7f2a65be3a3ec440
336607c0f56b4a97511339d2437520aa8c9d6cb07b5b5ddf535efe65561d2890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 04:57:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lptag.liveperson.net/tag/tag.js?site=83413423
178.249.101.23200 OK 7.6 kB URL HTTP/2 lptag.liveperson.net/tag/tag.js?site=83413423
IP 178.249.101.23:0
File type ASCII text, with very long lines (21652), with no line terminators
Hash 6b675640425ec8551a433e26a377d954
7234f02cce1ccb2a4facf2b34b9185cfcf27299d
8c9716f14d2e964be7c93d3d8c28819cb35c529fce6206a79061cda509e05bfd
GET /tag/tag.js?site=83413423 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:08 GMT
content-type: application/javascript
content-length: 7567
last-modified: Thu, 03 Sep 2020 08:27:49 GMT
etag: "5f50a905-1d8f"
content-encoding: gzip
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
cache-control: public, max-age=630
x-content-type-options: nosniff
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 08 Oct 2022 12:31:58 GMT
expires: Sun, 08 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 59110
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash abd9188bb2b06f38a43961f7f6ba7396
9f1b1f6b5320b0a33b369b4db65b315d8358858b
32aa53963f224119d964bc7b9a3e6143597fe7876c865d2adb604e5c0830b657
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5113
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 04:57:08 GMT
Last-Modified: Sun, 09 Oct 2022 03:31:56 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 313
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0aca7edf23f6d8fb3c0b5a89400d3118
67e4a61460cb43d6882f3378d0455835d323c63f
acf66c6d19fa651d5a9a59b67b3e4c116485a2f60a5dd4d753afa411811019e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 04:57:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-1889767-1&cid=1145992053.1665291428&jid=37891195&gjid=1250241403&_gid=1221461241.1665291428&_u=aGDAiEABRAAAAGAAI~&z=104377043
173.194.73.157200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-1889767-1&cid=1145992053.1665291428&jid=37891195&gjid=1250241403&_gid=1221461241.1665291428&_u=aGDAiEABRAAAAGAAI~&z=104377043
IP 173.194.73.157:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-1889767-1&cid=1145992053.1665291428&jid=37891195&gjid=1250241403&_gid=1221461241.1665291428&_u=aGDAiEABRAAAAGAAI~&z=104377043 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://anketyeri.com
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://anketyeri.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 09 Oct 2022 04:57:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=1122156&time=1665291428345&url=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&tm=gtmv2
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=1122156&time=1665291428345&url=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&tm=gtmv2
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=1122156&time=1665291428345&url=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&tm=gtmv2 HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1122156%26time%3D1665291428345%26url%3Dhttp%253A%252F%252Fanketyeri.com%252Fpersonal%252Fbusiness%252Fbusiness-resources%252Fmalware%252F%26tm%3Dgtmv2%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJwfxvg_CwgMwAAAYO7GqQU7_vufJ-0VYUEh6ecys_RfQAIT-X0-8DpiD5h5vAACuju2QHMQZ5OFw; Max-Age=2592000; Expires=Tue, 08 Nov 2022 04:57:08 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQLIndLmXQK2pAAAAYO7GqQUby7gQc_ye1fZUivH6WRfmq3yhsnpt-LkeV0td-AcHslTyuYzKwALeFogEILTIQ; Max-Age=2592000; Expires=Tue, 08 Nov 2022 04:57:08 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&cc7dc51e-357b-47f1-8f50-17cc527ed5a5"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 09-Oct-2023 04:57:08 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2405:u=1:x=1:i=1665291428:t=1665377828:v=2:sig=AQG8GWzYsatmIoiZqDThrEUOB9NS_JhQ"; Expires=Mon, 10 Oct 2022 04:57:08 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXqkuAQx9qXErLND/kaKA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 700F5D9E4EBB49828E7AD754C0DB61A8 Ref B: OSL30EDGE0406 Ref C: 2022-10-09T04:57:08Z
date: Sun, 09 Oct 2022 04:57:08 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 4c585ea3dac66fab5e55d59955a7cc5f
4198de47b169d2658dcffe7bd9bb7ad0b177b43a
d26e42d6743a619e1b243ebc1d98dceee435dcebf5e0e49c7d51396bb855d9ac
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 09 Oct 2022 04:57:08 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 09 Oct 2022 00:09:52 GMT
Expires: Mon, 10 Oct 2022 00:09:52 GMT
ETag: "4198de47b169d2658dcffe7bd9bb7ad0b177b43a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.starfieldtech.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 11e3275e5aea790b63ba0d524e0f6e04
75dffd2134c9c244a3ac01f43116aa417abe95aa
e59d51ffe6bdee652abfb7ba5da024c5eead0132ccd069bd41fa250be4ce6aac
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 09 Oct 2022 04:57:08 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 09 Oct 2022 00:05:11 GMT
Expires: Mon, 10 Oct 2022 00:05:11 GMT
ETag: "75dffd2134c9c244a3ac01f43116aa417abe95aa"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0aca7edf23f6d8fb3c0b5a89400d3118
67e4a61460cb43d6882f3378d0455835d323c63f
acf66c6d19fa651d5a9a59b67b3e4c116485a2f60a5dd4d753afa411811019e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 04:57:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=1d2fa9c1-bc95-4a20-8b74-8c118d34d699&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=97dca33d-056c-4cef-9bb8-2bd9c927125a&tw_document_href=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nutxl&type=javascript&version=2.3.27
104.244.42.195200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=1d2fa9c1-bc95-4a20-8b74-8c118d34d699&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=97dca33d-056c-4cef-9bb8-2bd9c927125a&tw_document_href=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nutxl&type=javascript&version=2.3.27
IP 104.244.42.195:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=1d2fa9c1-bc95-4a20-8b74-8c118d34d699&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=97dca33d-056c-4cef-9bb8-2bd9c927125a&tw_document_href=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nutxl&type=javascript&version=2.3.27 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:08 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_WsEkxSIGeUfLPMk6f504ZA=="; Max-Age=63072000; Expires=Tue, 08 Oct 2024 04:57:08 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: aae485fa01c5d75f
strict-transport-security: max-age=631138519
x-response-time: 102
x-connection-hash: 507b69f7af0123f909c2fa1649823555b78d7d7bf5fe1b4c063df1d994e50f89
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=236034746596658&ev=PageView&dl=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&rl=&if=false&ts=1665291428858&sw=1280&sh=1024&v=2.9.84&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=28&fbp=fb.1.1665291428857.272950899&it=1665291428435&coo=false&dpo=LDU&dpoco=0&dpost=0&tm=1&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=236034746596658&ev=PageView&dl=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&rl=&if=false&ts=1665291428858&sw=1280&sh=1024&v=2.9.84&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=28&fbp=fb.1.1665291428857.272950899&it=1665291428435&coo=false&dpo=LDU&dpoco=0&dpost=0&tm=1&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=236034746596658&ev=PageView&dl=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&rl=&if=false&ts=1665291428858&sw=1280&sh=1024&v=2.9.84&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=28&fbp=fb.1.1665291428857.272950899&it=1665291428435&coo=false&dpo=LDU&dpoco=0&dpost=0&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Sun, 09 Oct 2022 04:57:09 GMT
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 11e3275e5aea790b63ba0d524e0f6e04
75dffd2134c9c244a3ac01f43116aa417abe95aa
e59d51ffe6bdee652abfb7ba5da024c5eead0132ccd069bd41fa250be4ce6aac
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 09 Oct 2022 04:57:08 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 09 Oct 2022 00:05:11 GMT
Expires: Mon, 10 Oct 2022 00:05:11 GMT
ETag: "75dffd2134c9c244a3ac01f43116aa417abe95aa"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1122156%26time%3D1665291428345%26url%3Dhttp%253A%252F%252Fanketyeri.com%252Fpersonal%252Fbusiness%252Fbusiness-resources%252Fmalware%252F%26tm%3Dgtmv2%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1122156%26time%3D1665291428345%26url%3Dhttp%253A%252F%252Fanketyeri.com%252Fpersonal%252Fbusiness%252Fbusiness-resources%252Fmalware%252F%26tm%3Dgtmv2%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1122156%26time%3D1665291428345%26url%3Dhttp%253A%252F%252Fanketyeri.com%252Fpersonal%252Fbusiness%252Fbusiness-resources%252Fmalware%252F%26tm%3Dgtmv2%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://anketyeri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=1122156&time=1665291428345&url=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&tm=gtmv2&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&5ad75c25-438c-49e6-8c9a-b0efc17bdf6b"; Domain=.linkedin.com; Expires=Mon, 09-Oct-2023 04:57:09 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202210090457092bff5c04-fa92-44ab-84a0-9112df41dbe5AQF0bnXtZLNhfB5dzoHTIOxg0CNSrl1g"; Domain=.www.linkedin.com; Expires=Mon, 09-Oct-2023 04:57:09 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjUyOTE0Mjk7MjswMjFuT+iqUFnYiCkZDPEz9QgbVW7Owcb7AVA/2Tc19+uvQA==; Domain=.linkedin.com; Expires=Fri, 07 Apr 2023 04:57:09 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2405:u=1:x=1:i=1665291429:t=1665377829:v=2:sig=AQERb9rrNbTUQoRB6m89o3wgfghXtO5P"; Expires=Mon, 10 Oct 2022 04:57:09 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXqkuATbSIpniOG27ZLDg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: F9BE8D84BA9E43569CF214E735332B0B Ref B: OSL30EDGE0406 Ref C: 2022-10-09T04:57:08Z
date: Sun, 09 Oct 2022 04:57:08 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 91a28612ec91a8790ec7616da34048e1
be971dbff31f53b2d8e49df9c7f482c06b6bc931
448298aae56f9fcb72686aedabb75304595120b9632ef477d56230b262705eba
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 09 Oct 2022 04:57:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 08 Oct 2022 21:22:11 GMT
Expires: Sun, 09 Oct 2022 21:22:11 GMT
ETag: "be971dbff31f53b2d8e49df9c7f482c06b6bc931"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
px.ads.linkedin.com/collect?v=2&fmt=js&pid=1122156&time=1665291428345&url=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&tm=gtmv2&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=1122156&time=1665291428345&url=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&tm=gtmv2&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=1122156&time=1665291428345&url=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&tm=gtmv2&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://anketyeri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&1f4702ac-3ba2-40a5-81a0-38b1580de679"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 09-Oct-2023 04:57:09 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2357:u=1:x=1:i=1665291429:t=1665377829:v=2:sig=AQGcN9prF96tWYJETdOc88C-FvuZZQYR"; Expires=Mon, 10 Oct 2022 04:57:09 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXqkuAV4U4tnpwRVxNAEQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: EC7A17B5888740068D535D196E146233 Ref B: OSL30EDGE0406 Ref C: 2022-10-09T04:57:09Z
date: Sun, 09 Oct 2022 04:57:09 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a18b2c0bc297d0e82df3010f73979f2f
2dd69cdaad5d6d6bbf4edb7478f69b74aa2afe99
53e8b20cd58b144813ffe81851abccee19d2cb34eca19a058e27adb9d976fa0c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 07 Oct 2022 16:31:54 GMT
Expires: Fri, 14 Oct 2022 16:31:53 GMT
Etag: "2dd69cdaad5d6d6bbf4edb7478f69b74aa2afe99"
Cache-Control: max-age=473083,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 757488a93bebb50c-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a18b2c0bc297d0e82df3010f73979f2f
2dd69cdaad5d6d6bbf4edb7478f69b74aa2afe99
53e8b20cd58b144813ffe81851abccee19d2cb34eca19a058e27adb9d976fa0c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 07 Oct 2022 16:31:54 GMT
Expires: Fri, 14 Oct 2022 16:31:53 GMT
Etag: "2dd69cdaad5d6d6bbf4edb7478f69b74aa2afe99"
Cache-Control: max-age=473083,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 757488a99859b4f7-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a18b2c0bc297d0e82df3010f73979f2f
2dd69cdaad5d6d6bbf4edb7478f69b74aa2afe99
53e8b20cd58b144813ffe81851abccee19d2cb34eca19a058e27adb9d976fa0c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 07 Oct 2022 16:31:54 GMT
Expires: Fri, 14 Oct 2022 16:31:53 GMT
Etag: "2dd69cdaad5d6d6bbf4edb7478f69b74aa2afe99"
Cache-Control: max-age=473083,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 757488a99d080b61-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a18b2c0bc297d0e82df3010f73979f2f
2dd69cdaad5d6d6bbf4edb7478f69b74aa2afe99
53e8b20cd58b144813ffe81851abccee19d2cb34eca19a058e27adb9d976fa0c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 07 Oct 2022 16:31:54 GMT
Expires: Fri, 14 Oct 2022 16:31:53 GMT
Etag: "2dd69cdaad5d6d6bbf4edb7478f69b74aa2afe99"
Cache-Control: max-age=473083,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 757488a99c2cb50c-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a18b2c0bc297d0e82df3010f73979f2f
2dd69cdaad5d6d6bbf4edb7478f69b74aa2afe99
53e8b20cd58b144813ffe81851abccee19d2cb34eca19a058e27adb9d976fa0c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 07 Oct 2022 16:31:54 GMT
Expires: Fri, 14 Oct 2022 16:31:53 GMT
Etag: "2dd69cdaad5d6d6bbf4edb7478f69b74aa2afe99"
Cache-Control: max-age=473083,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 757488a93b0cb4f1-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash c216c1c8a44c29867241fb72adbe16d6
8ad1889829698958c2ba478e10cc9a296aa99dd0
460cb10079e98bc8d6c05d0359fbf1440159ddf964fc2d38ee6a9f64bc192131
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 06 Oct 2022 15:37:48 GMT
Expires: Thu, 13 Oct 2022 15:37:47 GMT
Etag: "8ad1889829698958c2ba478e10cc9a296aa99dd0"
Cache-Control: max-age=383437,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 757488aaacc3b50c-OSL
35.85.84.151/is
35.85.84.151200 OK 32 B IP 35.85.84.151:0
File type ASCII text, with no line terminators
Hash 5ebda6d5abdbbb676171b8997a7f693e
d3ac05467408dd50ae4498faddea720c085f7da6
edcaf763b64b612a4404bb5358d97d79b55b4d01bd4dfe9c929bee04d4c4adf9
GET /is HTTP/1.1
Host: 35.85.84.151
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://anketyeri.com/
Origin: http://anketyeri.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sun, 09 Oct 2022 04:57:09 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: text/plain;charset=utf-8
content-length: 32
x-envoy-upstream-service-time: 0
server: istio-envoy
connection: close
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash ca70feb8e9103c11901018ae6bc43ed1
c8b1620f84c32aec1b098d4f3f6cc54b3516d520
4f19dc7cd9b1d386a148cda53f353897cf9b0ca26480612651a0f756ac51a989
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 07 Oct 2022 11:37:41 GMT
Expires: Fri, 14 Oct 2022 11:37:40 GMT
Etag: "c8b1620f84c32aec1b098d4f3f6cc54b3516d520"
Cache-Control: max-age=455429,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 757488aeef36b50c-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash b419e660ef62cb7dd8d588dfd9e9cdfe
b748a7b5c8aeedce0bf6fa1718a0667d61dd0325
d24dafbb8630c060e5b334e8d1ee674c76a2896f261a2b89d1fdb5586717ba31
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:10 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 07 Oct 2022 01:02:14 GMT
Expires: Fri, 14 Oct 2022 01:02:13 GMT
Etag: "b748a7b5c8aeedce0bf6fa1718a0667d61dd0325"
Cache-Control: max-age=417302,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 757488af2bb5b4f7-OSL
px.mountain.com/st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A8%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=94970768197444600term%3Dvalue&shadditional=googletagmanager%3Dtrue
52.42.124.195301 Moved Permanently 0 B URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A8%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=94970768197444600term%3Dvalue&shadditional=googletagmanager%3Dtrue
IP 52.42.124.195:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A8%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=94970768197444600term%3Dvalue&shadditional=googletagmanager%3Dtrue HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/
HTTP/1.1 301 Moved Permanently
Content-length: 0
Location: https://px.mountain.com/st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A8%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=94970768197444600term%3Dvalue&shadditional=googletagmanager%3Dtrue
Connection: close
px.steelhousemedia.com/st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=73571668654192500term%3Dvalue&shadditional=googletagmanager%3Dtrue
44.237.157.168301 Moved Permanently 0 B URL HTTP/1.1 px.steelhousemedia.com/st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=73571668654192500term%3Dvalue&shadditional=googletagmanager%3Dtrue
IP 44.237.157.168:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=73571668654192500term%3Dvalue&shadditional=googletagmanager%3Dtrue HTTP/1.1
Host: px.steelhousemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/
HTTP/1.1 301 Moved Permanently
Content-length: 0
Location: https://px.steelhousemedia.com/st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=73571668654192500term%3Dvalue&shadditional=googletagmanager%3Dtrue
Connection: close
lpcdn.lpsnmedia.net/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.html?loc=http%3A%2F%2Fanketyeri.com&site=83413423&env=prod
178.249.97.98200 OK 16 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.html?loc=http%3A%2F%2Fanketyeri.com&site=83413423&env=prod
IP 178.249.97.98:0
Hash f642bf903a1771770923d9d0fcde1f15
843f2c4965cbd0ef10129e3b899dd41166b886ae
b5ed4628affd735952d7603a9533d974c9a958254718a4f3d432c22551fcfb30
GET /le_secure_storage/3.18.0.0-release_5078/storage.secure.min.html?loc=http%3A%2F%2Fanketyeri.com&site=83413423&env=prod HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:09 GMT
content-type: text/html
last-modified: Mon, 08 Aug 2022 03:15:58 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Mon, 09 Oct 2023 04:57:09 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.js?loc=http%3A%2F%2Fanketyeri.com&site=83413423&force=1&env=prod
178.249.97.98200 OK 16 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.js?loc=http%3A%2F%2Fanketyeri.com&site=83413423&force=1&env=prod
IP 178.249.97.98:0
File type ASCII text, with very long lines (40665)
Hash f74fe6455e9b611d9754489dc25468be
8ba85f3cceb8ffa5fcfd6f77b33415733e166e15
d3ded514c0855587639b17fa092c388e534e62a969b7d61badfd23cd5a72899c
GET /le_secure_storage/3.18.0.0-release_5078/storage.secure.min.js?loc=http%3A%2F%2Fanketyeri.com&site=83413423&force=1&env=prod HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:09 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 03:15:58 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Mon, 09 Oct 2023 04:57:09 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A8%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=94970768197444600term%3Dvalue&shadditional=googletagmanager%3Dtrue
52.42.124.195200 OK 1.2 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A8%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=94970768197444600term%3Dvalue&shadditional=googletagmanager%3Dtrue
IP 52.42.124.195:0
Hash 4a7e745dbb41a4ec731948800913107b
4b19bcda244ebeeb05fa37341845f7d5714c785f
fa5d392bcafc0025efc28ef953cba59a46a8a1d7ba672b5ceb4832d8aa41687c
GET /st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A8%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=94970768197444600term%3Dvalue&shadditional=googletagmanager%3Dtrue HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://anketyeri.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sun, 09 Oct 2022 04:57:11 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=d575f955-478e-11ed-aa5d-4b5e944dc84f;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close
px.steelhousemedia.com/st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&shadditional=googletagmanager%3Dtrue&cb=1665291431362125&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1665291431752
44.237.157.168301 Moved Permanently 0 B URL HTTP/1.1 px.steelhousemedia.com/st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&shadditional=googletagmanager%3Dtrue&cb=1665291431362125&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1665291431752
IP 44.237.157.168:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&shadditional=googletagmanager%3Dtrue&cb=1665291431362125&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1665291431752 HTTP/1.1
Host: px.steelhousemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/
HTTP/1.1 301 Moved Permanently
Content-length: 0
Location: https://px.steelhousemedia.com/st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&shadditional=googletagmanager%3Dtrue&cb=1665291431362125&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1665291431752
Connection: close
accdn.lpsnmedia.net/api/account/83413423/configuration/setting/accountproperties/?cb=accountSettingsCB
178.249.101.99200 OK 61 kB URL HTTP/2 accdn.lpsnmedia.net/api/account/83413423/configuration/setting/accountproperties/?cb=accountSettingsCB
IP 178.249.101.99:0
File type ASCII text, with very long lines (6906)
Hash 1580d591216c45a14b7e1e9a98d3cfbb
63708c9cfc613726118300c4d7f42816183d3834
d1bdd91cb1d1390791109b5bcd3ee2faa0ac7aa943d3bb6e54286c943825ddd7
GET /api/account/83413423/configuration/setting/accountproperties/?cb=accountSettingsCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:09 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:21|g:495dd27a-2586-4da6-948a-a8089eb254d0; Max-Age=30; Expires=Sun, 09-Oct-2022 04:57:39 GMT; Path=/
ADRUM_BTa=R:21|g:495dd27a-2586-4da6-948a-a8089eb254d0|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Sun, 09-Oct-2022 04:57:39 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Sun, 09-Oct-2022 04:57:39 GMT; Path=/; Secure
ADRUM_BT1=R:21|i:2241585; Max-Age=30; Expires=Sun, 09-Oct-2022 04:57:39 GMT; Path=/
ADRUM_BT1=R:21|i:2241585|e:6; Max-Age=30; Expires=Sun, 09-Oct-2022 04:57:39 GMT; Path=/
vary: Accept
expires: Sun, 09 Oct 2022 04:58:09 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
match.adsrvr.org/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=d575f955-478e-11ed-aa5d-4b5e944dc84f&gdpr=&gdpr_consent=
35.71.131.137301 Moved Permanently 134 B URL HTTP/1.1 match.adsrvr.org/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=d575f955-478e-11ed-aa5d-4b5e944dc84f&gdpr=&gdpr_consent=
IP 35.71.131.137:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=d575f955-478e-11ed-aa5d-4b5e944dc84f&gdpr=&gdpr_consent= HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/
HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Sun, 09 Oct 2022 04:57:12 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://match.adsrvr.org:443/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=d575f955-478e-11ed-aa5d-4b5e944dc84f&gdpr=&gdpr_consent=
insight.adsrvr.org/track/evnt/?adv=893n8f8&ct=0:nng5j0j&fmt=3
15.197.193.217301 Moved Permanently 134 B URL HTTP/1.1 insight.adsrvr.org/track/evnt/?adv=893n8f8&ct=0:nng5j0j&fmt=3
IP 15.197.193.217:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /track/evnt/?adv=893n8f8&ct=0:nng5j0j&fmt=3 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/
HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Sun, 09 Oct 2022 04:57:12 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://insight.adsrvr.org:443/track/evnt/?adv=893n8f8&ct=0:nng5j0j&fmt=3
lpcdn.lpsnmedia.net/le_unified_window/10.22.0.0-release_5548/surveylogicinstance.min.js?version=10.22.0.0-release_5548
178.249.97.98200 OK 4.1 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.22.0.0-release_5548/surveylogicinstance.min.js?version=10.22.0.0-release_5548
IP 178.249.97.98:0
Hash ca56a568d680faa5e10098ac79229db7
fd2adab5d2e74079709c7f0e27aa82edf0f0d929
811c609d87f62f6110dd28e156260090fd44d80e291e4e5e6a4135d68728a664
GET /le_unified_window/10.22.0.0-release_5548/surveylogicinstance.min.js?version=10.22.0.0-release_5548 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:09 GMT
content-type: application/javascript
last-modified: Sat, 01 Oct 2022 02:35:41 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Mon, 09 Oct 2023 04:57:09 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/83413423/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
178.249.101.99200 OK 8.9 kB URL HTTP/2 accdn.lpsnmedia.net/api/account/83413423/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
IP 178.249.101.99:0
Hash 7b4062c5571a68d9286aa95e062442db
f46b0784b507d4d5d91cd086004d470b21ecef81
c5f27fe73f50c346608558a1f7579f0ba754a1118cecae1c64d0df5edd7f3d50
GET /api/account/83413423/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:09 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:21|g:35b96d39-ae09-4c1c-a0fe-4078fdd41560; Max-Age=30; Expires=Sun, 09-Oct-2022 04:57:39 GMT; Path=/
ADRUM_BTa=R:21|g:35b96d39-ae09-4c1c-a0fe-4078fdd41560|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Sun, 09-Oct-2022 04:57:39 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Sun, 09-Oct-2022 04:57:39 GMT; Path=/; Secure
ADRUM_BT1=R:21|i:2241585; Max-Age=30; Expires=Sun, 09-Oct-2022 04:57:39 GMT; Path=/
ADRUM_BT1=R:21|i:2241585|e:11; Max-Age=30; Expires=Sun, 09-Oct-2022 04:57:39 GMT; Path=/
vary: Accept
expires: Sun, 09 Oct 2022 04:58:09 GMT
x-envoy-upstream-service-time: 2
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
match.adsrvr.org/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=d575f955-478e-11ed-aa5d-4b5e944dc84f&gdpr=&gdpr_consent=
35.71.131.137200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=d575f955-478e-11ed-aa5d-4b5e944dc84f&gdpr=&gdpr_consent=
IP 35.71.131.137:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=d575f955-478e-11ed-aa5d-4b5e944dc84f&gdpr=&gdpr_consent= HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://anketyeri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:13 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
px.steelhousemedia.com/st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&shadditional=googletagmanager%3Dtrue&cb=1665291431362125&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1665291431752
44.237.157.168200 OK 1.3 kB URL HTTP/1.1 px.steelhousemedia.com/st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&shadditional=googletagmanager%3Dtrue&cb=1665291431362125&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1665291431752
IP 44.237.157.168:0
Hash 63fa3f39a1f32b490c5bdafcf2b575ee
a238adfaf80d7862967a18b8eb408d95982563f5
2efe51d6c8fdbbdf927ade56655fb7064a5bd91c4efa81693981270d9fb0aa1f
GET /st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A7%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&shadditional=googletagmanager%3Dtrue&cb=1665291431362125&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1665291431752 HTTP/1.1
Host: px.steelhousemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://anketyeri.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sun, 09 Oct 2022 04:57:12 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: rt="MzAyMDg6MTY2MzEwMDU4NCwzMjEzMDoxNjYyNzg0NzIzLDMyMTMxOjE2NjI2MDU2MzksMjExMjQ6MTY2MzY5NTE0MywzMDIxNDoxNjY0Mjk3MzUzLDMxODgwOjE2NjM2MTA2ODIsMjEyNTk6MTY2MzY3NDc5MiwzMTI0NDoxNjYyNjY2NTI5LDMwNzMyOjE2NjI3NTg5MzcsMzIxNDA6MTY2MzM0MTU1MSwzMTYyODoxNjYzNjc4MjYxLDMxNjMxOjE2NjMwODczNjEsMzA0ODE6MTY2MjY4NDI5MSwzMDczODoxNjYyOTc0NTg3LDMxNTA2OjE2NjUwODA0MjAsOTQ5MjoxNjYyNzI2MDQxLDMyMTQ4OjE2NjI5MzA1NTksMzIxNTA6MTY2MjgxMjM3MCwzMTM4NzoxNjYyODk4NzcyLDMwNjE5OjE2NjUxMDE2MjQsMzAyNDA6MTY2MjU5MjM3MSwzMDQ5ODoxNjYzMDk0ODgwLDMxNzc5OjE2NjUxMTQxMDAsMzEwMTI6MTY2MzAyMjg3MCwzMjE3MDoxNjYzMDA4ODkyLDMwMzc5OjE2NjI2Mzk1MTMsMzE3ODg6MTY2NDI5NzYwNSwzMjA0NToxNjYzNjc4MzQ1LDEyNTkwOjE2NjMwODU4NzAsMzE1MzY6MTY2NDQyNjcxOCwzMTQwOToxNjYzMDM0NjMxLDMxNDEzOjE2NjMwNzE2NjUsMzE0MTQ6MTY2MjY1NDcxMywzMTU0MjoxNjYyNjY2NTQ5LDMwMzkzOjE2NjI2NTMzMjcsMzA5MDg6MTY2MzE3NDc0OCwzMTgwNToxNjYzMDA4MTU3LDMyMDYyOjE2NjI5OTM1MjAsMzE0MjM6MTY2Mjc1MTE2OCwzMTMwMDoxNjYzOTM1NjM4LDMwNDA0OjE2NjQyNzU4NTYsMzA5MTg6MTY2MzM0MzcxMiwzMTgxNDoxNjYzOTM1NjM0LDMxMTc3OjE2NjM1Njc3ODAsMzIwNzc6MTY2Mjc4NjQyNSwzMTQzNzoxNjY1MTQ1MjMxLDMxNjk0OjE2NjI1ODg3NzksMzE5NTA6MTY2NTA4OTUyNiwzMDc5OToxNjYyNTgzODMzLDMxNzAzOjE2NjMwMjEwMjQsMzEzMTk6MTY2MzAyNTI5NiwzMTU3NzoxNjYyNTg5MDM1LDMxODM2OjE2NjI2NTc1MjcsMzE0NTI6MTY2MzY3NjM4NCwzMDY4NDoxNjYzODUwNjEyLDMxODQxOjE2NjI4OTg2ODEsMzA4MTc6MTY2NTA2MjU2NCwzMTMzMToxNjYyNjg3MjgyLDMxODQzOjE2NjM5MzY4MzEsMzAxODM6MTY2MzY5MDk1MiwzMDU3MToxNjYzNTAzNjMwLDMyMTA4OjE2NjUxMTY4MTAsMzA5NTc6MTY2MzE5MjQyNCwzMTA4NjoxNjY1MDAyNTYzLDMxODU1OjE2NjI3NjYzNTcsMzA0NDc6MTY2MzE4MzkyNywzMTA4ODoxNjYyNjY4MDkzLDMzMTM5OjE2NjI1NDIzMDgsMzE2MDM6MTY2MzAwODg5MiwzMTYwNToxNjYyNjY4MDkzLDMxMzQ5OjE2NjMzMzYxMjUsMzA0NTQ6MTY2MzY5MDk1MSwzMTQ4MDoxNjYzNTk3OTQ4LDMxNjEyOjE2NjI1ODk2MjAsMzE4Njk6MTY2MzAxODkxNSwzMTEwMToxNjYzMTU3OTU2LDMwNTg5OjE2NjM2Mjk2MTksMzIxMjc6MTY2MjY2NTY2MA==";Domain=steelhousemedia.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=35b0bce9-d250-329d-b012-c0426f88d0bd;Domain=steelhousemedia.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close
match.adsrvr.org/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=35b0bce9-d250-329d-b012-c0426f88d0bd&gdpr=&gdpr_consent=
35.71.131.137200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=35b0bce9-d250-329d-b012-c0426f88d0bd&gdpr=&gdpr_consent=
IP 35.71.131.137:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=35b0bce9-d250-329d-b012-c0426f88d0bd&gdpr=&gdpr_consent= HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://anketyeri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:13 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.22.0.0-release_5548/resources/js/desktopEmbeddedStyle.js?version=10.22.0.0-release_5548
178.249.97.98200 OK 318 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.22.0.0-release_5548/resources/js/desktopEmbeddedStyle.js?version=10.22.0.0-release_5548
IP 178.249.97.98:0
Size 318 kB (317899 bytes)
Hash c4f434a7b94d571689414d001485e8dd
be6f884dff1a9f78ba676ab0288fb56085e73a6f
4efdd7ca471e91d4b685fa90c6f41faa6208ca2305b7d5f44a3ee322939ad0ac
GET /le_unified_window/10.22.0.0-release_5548/resources/js/desktopEmbeddedStyle.js?version=10.22.0.0-release_5548 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:09 GMT
content-type: application/javascript
last-modified: Sat, 01 Oct 2022 02:35:46 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Mon, 09 Oct 2023 04:57:09 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A8%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&shadditional=googletagmanager%3Dtrue&cb=1665291431056186&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1665291431752
52.42.124.195200 OK 0 B URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A8%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&shadditional=googletagmanager%3Dtrue&cb=1665291431056186&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1665291431752
IP 52.42.124.195:0
GET /st?ga_tracking_id=UA-1889767-1&ga_client_id=1145992053.1665291428&shpt=Business%20Resources&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-1889767-1%22%2C%22ga_client_id%22%3A%221145992053.1665291428%22%2C%22shpt%22%3A%22Business%20Resources%22%2C%22dcm_cid%22%3A%221145992053.1665291428%22%2C%22dcm_gid%22%3A%221221461241.1665291428%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A8%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1145992053.1665291428&dcm_gid=1221461241.1665291428&dxver=4.0.0&shaid=31880&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&shadditional=googletagmanager%3Dtrue&cb=1665291431056186&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1665291431752 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://anketyeri.com/
Connection: keep-alive
Cookie: guid=d575f955-478e-11ed-aa5d-4b5e944dc84f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sun, 09 Oct 2022 04:57:12 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: tt="H4sIAAAAAAAAAKtW8guKNza0sDCINzK3NFayMtBBErEwtgCLlClZGekoIQsampmZGlkamhgbmVsY1QIAb1jN+EYAAAA=";Domain=px.mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
rt="MzE4ODA6MTY2NTI5MTQzMg==";Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=d575f955-478e-11ed-aa5d-4b5e944dc84f;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close
anketyeri.com/personal/ScriptResource.axd?d=qph9tUZ6hGPLbkznkRkqTRHDI0RwpDd_LfRxYXc6hjwB15pcWEAovyHr-Mdf8xPHoQqlVEYpSONLgQ3Z14bqV2ZP9HUnz1VKH8x7a2yLfL3il4Qm0&t=7c776dc1
185.106.93.203200 OK 0 B URL HTTP/1.1 anketyeri.com/personal/ScriptResource.axd?d=qph9tUZ6hGPLbkznkRkqTRHDI0RwpDd_LfRxYXc6hjwB15pcWEAovyHr-Mdf8xPHoQqlVEYpSONLgQ3Z14bqV2ZP9HUnz1VKH8x7a2yLfL3il4Qm0&t=7c776dc1
IP 185.106.93.203:0
ASN #50113 NTX Technologies s.r.o.
GET /personal/ScriptResource.axd?d=qph9tUZ6hGPLbkznkRkqTRHDI0RwpDd_LfRxYXc6hjwB15pcWEAovyHr-Mdf8xPHoQqlVEYpSONLgQ3Z14bqV2ZP9HUnz1VKH8x7a2yLfL3il4Qm0&t=7c776dc1 HTTP/1.1
Host: anketyeri.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://anketyeri.com/personal/business/business-resources/malware/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 04:57:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 08 Oct 2022 15:03:17 GMT
ETag: "15d2f-5ea8739f7ffe8"
Accept-Ranges: bytes
Content-Length: 89391
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
lpcdn.lpsnmedia.net/le_unified_window/10.22.0.0-release_5548/lpChatV3.min.js?version=10.22.0.0-release_5548
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.22.0.0-release_5548/lpChatV3.min.js?version=10.22.0.0-release_5548
IP 178.249.97.98:0
GET /le_unified_window/10.22.0.0-release_5548/lpChatV3.min.js?version=10.22.0.0-release_5548 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:09 GMT
content-type: application/javascript
last-modified: Sat, 01 Oct 2022 02:35:39 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Mon, 09 Oct 2023 04:57:09 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.22.0.0-release_5548/UMSClientAPI.min.js?version=10.22.0.0-release_5548
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.22.0.0-release_5548/UMSClientAPI.min.js?version=10.22.0.0-release_5548
IP 178.249.97.98:0
GET /le_unified_window/10.22.0.0-release_5548/UMSClientAPI.min.js?version=10.22.0.0-release_5548 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:09 GMT
content-type: application/javascript
last-modified: Sat, 01 Oct 2022 02:35:39 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Mon, 09 Oct 2023 04:57:09 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.22.0.0-release_5548/ui-framework.js?version=10.22.0.0-release_5548
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.22.0.0-release_5548/ui-framework.js?version=10.22.0.0-release_5548
IP 178.249.97.98:0
GET /le_unified_window/10.22.0.0-release_5548/ui-framework.js?version=10.22.0.0-release_5548 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:09 GMT
content-type: application/javascript
last-modified: Sat, 01 Oct 2022 02:35:40 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Mon, 09 Oct 2023 04:57:09 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
insight.adsrvr.org/track/evnt/?adv=893n8f8&ct=0:nng5j0j&fmt=3
35.71.131.137200 OK 0 B URL HTTP/2 insight.adsrvr.org/track/evnt/?adv=893n8f8&ct=0:nng5j0j&fmt=3
IP 35.71.131.137:0
GET /track/evnt/?adv=893n8f8&ct=0:nng5j0j&fmt=3 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://anketyeri.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:13 GMT
content-type: image/gif
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.22.0.0-release_5548/desktopEmbedded.js?version=10.22.0.0-release_5548
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.22.0.0-release_5548/desktopEmbedded.js?version=10.22.0.0-release_5548
IP 178.249.97.98:0
GET /le_unified_window/10.22.0.0-release_5548/desktopEmbedded.js?version=10.22.0.0-release_5548 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:09 GMT
content-type: application/javascript
last-modified: Sat, 01 Oct 2022 02:35:39 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Mon, 09 Oct 2023 04:57:09 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
lptag.liveperson.net/lptag/api/account/83413423/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
178.249.101.23200 OK 0 B URL HTTP/2 lptag.liveperson.net/lptag/api/account/83413423/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
IP 178.249.101.23:0
GET /lptag/api/account/83413423/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://anketyeri.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:09 GMT
content-type: application/x-javascript
cache-control: public, max-age=630
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: MISS
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
dx.mountain.com/spx?dxver=4.0.0&shaid=31880&tdr=&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=94970768197444600term=value
44.238.33.223200 0 B URL HTTP/1.1 dx.mountain.com/spx?dxver=4.0.0&shaid=31880&tdr=&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=94970768197444600term=value
IP 44.238.33.223:0
GET /spx?dxver=4.0.0&shaid=31880&tdr=&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=94970768197444600term=value HTTP/1.1
Host: dx.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://anketyeri.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Sun, 09 Oct 2022 04:57:09 GMT
connection: close
dev.visualwebsiteoptimizer.com/j.php?a=160088&u=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&r=0.5304260153862731
34.96.102.137200 OK 0 B URL HTTP/2 dev.visualwebsiteoptimizer.com/j.php?a=160088&u=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&r=0.5304260153862731
IP 34.96.102.137:0
GET /j.php?a=160088&u=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&r=0.5304260153862731 HTTP/1.1
Host: dev.visualwebsiteoptimizer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://anketyeri.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 09 Oct 2022 04:57:08 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
cache-control: public, max-age=0, no-cache, must-revalidate
server: gams1
timing-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dx.steelhousemedia.com/spx?dxver=4.0.0&shaid=31880&tdr=&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=73571668654192500term=value
52.11.37.91200 0 B URL HTTP/1.1 dx.steelhousemedia.com/spx?dxver=4.0.0&shaid=31880&tdr=&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=73571668654192500term=value
IP 52.11.37.91:0
GET /spx?dxver=4.0.0&shaid=31880&tdr=&plh=http%3A%2F%2Fanketyeri.com%2Fpersonal%2Fbusiness%2Fbusiness-resources%2Fmalware%2F&cb=73571668654192500term=value HTTP/1.1
Host: dx.steelhousemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://anketyeri.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Sun, 09 Oct 2022 04:57:09 GMT
connection: close