firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 11 Sep 2022 20:48:35 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uMtSVI0CxEhI2-rqwCqKw3nRwYjN-vz0Q4MbXtMk9eOTP8GborTi3w==
Age: 1703
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8389
Expires: Sun, 11 Sep 2022 23:36:47 GMT
Date: Sun, 11 Sep 2022 21:16:58 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 11 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: z8t6v2zbhJskl9mak0eVSJRKD0igddDQ9Uf7Mrn6Mpey_2VHiNJoQw==
age: 50386
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 21:16:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 11 Sep 2022 20:56:07 GMT
Expires: Sun, 11 Sep 2022 21:30:08 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: RDmH7oL83YR450PjfD1lZBXQ6IsjkA_esJZEfFE8fGxcxFMIs4T-6w==
Age: 1252
hashbook.bg/
79.124.55.165200 OK 39 kB IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26336)
Hash 2bed438ae5d762c51529a220fb134474
c8e17eb563833b376b30f29bf72447a893189250
0e4688d057042c731fcd99bff107e80c82ae925769bc408188d471608dd78deb
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:01 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Link: <http://hashbook.bg/index.php?rest_route=/>; rel="https://api.w.org/", <http://hashbook.bg/index.php?rest_route=/wp/v2/pages/47779>; rel="alternate"; type="application/json", <http://hashbook.bg/>; rel=shortlink
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
hashbook.bg/wp-content/plugins/official-mailerlite-sign-up-forms/assets/css/mailerlite_forms.css
79.124.55.165200 OK 265 B URL HTTP/1.1 hashbook.bg/wp-content/plugins/official-mailerlite-sign-up-forms/assets/css/mailerlite_forms.css
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
Hash 001dc9ea9e34f0f142dbd1e75e1f19c2
250fc7c5cee870f06c030313daf3f2ceb27716af
832c2660dab4db3eb483ba0dd3323236a1098deec36fe8996b6a6ee9f1ecd914
GET /wp-content/plugins/official-mailerlite-sign-up-forms/assets/css/mailerlite_forms.css HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Mon, 15 Aug 2022 12:12:45 GMT
ETag: "2cb-5e6468ca9837b-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 265
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 26e829ba5f754918e20cbd316dc4348e
ba198501da0812dd11ca3b38a51325b5de6cfa60
4352c25d4af7637a8435b0df6d042fc606d37a348e966b99fecce8a853b8ebc0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3022
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:16:59 GMT
Last-Modified: Sun, 11 Sep 2022 20:26:37 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
hashbook.bg/wp-content/et-cache/47779/et-divi-dynamic-47779.css
79.124.55.165200 OK 9.7 kB URL HTTP/1.1 hashbook.bg/wp-content/et-cache/47779/et-divi-dynamic-47779.css
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type ASCII text, with very long lines (36981)
Hash b03bee1d2c16114d6514bcacbfa235f9
04aea77512d71b88491c4b342d45a97ba3ff191c
177e625567b9406cfdcff98363ecc5dc0ef75a93da27f9199c99708078f0f476
GET /wp-content/et-cache/47779/et-divi-dynamic-47779.css HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 22 Aug 2022 01:58:24 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 9727
Keep-Alive: timeout=5, max=100
Content-Type: text/css
hashbook.bg/wp-content/et-cache/47779/et-core-unified-deferred-47779.min.css?ver=1661133505
79.124.55.165200 OK 2.3 kB URL HTTP/1.1 hashbook.bg/wp-content/et-cache/47779/et-core-unified-deferred-47779.min.css?ver=1661133505
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type ASCII text, with very long lines (15617), with no line terminators
Hash 38338224e207a76147b7280dc3799b82
e47b7e57b291ce964735d8855520954be818033a
7035d3e7d2ef3abea6e25078c303b013b49844a0aedf3276bc23c946ea666229
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/et-cache/47779/et-core-unified-deferred-47779.min.css?ver=1661133505 HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 22 Aug 2022 01:58:25 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 2251
Keep-Alive: timeout=5, max=100
Content-Type: text/css
hashbook.bg/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
79.124.55.165200 OK 2.6 kB URL HTTP/1.1 hashbook.bg/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type ASCII text, with very long lines (11256), with no line terminators
Hash 583529ff412cb2b255fa606024d1133e
8db4b0a0be402cc5e38488528791b73b0c7369d0
6fdf0933a8faf229b277740f401600834c00d0b204f7ed38293cd4abcdb3ea20
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 14 Mar 2022 16:54:43 GMT
ETag: "2bf8-5da3089768906-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 2592
Keep-Alive: timeout=5, max=100
Content-Type: text/css
hashbook.bg/wp-includes/js/mediaelement/wp-mediaelement.min.css
79.124.55.165200 OK 1.2 kB URL HTTP/1.1 hashbook.bg/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type ASCII text, with very long lines (4186), with no line terminators
Hash 30d57d7aa11190e44974cce8621f22c7
59f516369877009cce06ca45b1c296944bb674a4
094ae87a3d4cee4a1ddc5cada149c2deacabd4cf2e377b97fe4ca641142258ee
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 16:54:43 GMT
ETag: "105a-5da3089765256-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1156
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
hashbook.bg/wp-content/plugins/ultimate-social-media-icons/css/sfsi-style.css
79.124.55.165200 OK 12 kB URL HTTP/1.1 hashbook.bg/wp-content/plugins/ultimate-social-media-icons/css/sfsi-style.css
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type ASCII text, with CRLF line terminators
Hash cbc6f2219122d5380a32504d4019a19b
d1294ce580cf24595ba2222418cdfcddfb063c20
59dbb29b36276f5df1f7b72f04206a7e0390db2b7363a9f49935e67cd0469b0e
GET /wp-content/plugins/ultimate-social-media-icons/css/sfsi-style.css HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 14 Aug 2022 10:43:09 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 12356
Keep-Alive: timeout=5, max=100
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 70560f70faf5d7f703be640e9e193905
85eac07e0db45b1b8e1b0d7ed51ee52315a7e9a5
98714ee63b31d2ecca74231cb301afc9b6362159a024d806fd1ccc418b2c6ef8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3144
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:16:59 GMT
Last-Modified: Sun, 11 Sep 2022 20:24:35 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280
hashbook.bg/wp-includes/js/jquery/jquery-migrate.min.js
79.124.55.165200 OK 4.2 kB URL HTTP/1.1 hashbook.bg/wp-includes/js/jquery/jquery-migrate.min.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 16:54:42 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 4169
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript
hashbook.bg/wp-content/plugins/instashow-lite/assets/instashow-lite/dist/jquery.instashow-lite.packaged.js
79.124.55.165200 OK 32 kB URL HTTP/1.1 hashbook.bg/wp-content/plugins/instashow-lite/assets/instashow-lite/dist/jquery.instashow-lite.packaged.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type ASCII text, with very long lines (49006)
Hash 025c7f2b7992269e43243963150217c3
bf57cda552a4c125510ed6bba3adb1cb278af41c
43a100ed203af7441d0773e3b9bed3842764ea3813968b7d91515ce828fdf01a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/instashow-lite/assets/instashow-lite/dist/jquery.instashow-lite.packaged.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 14 Aug 2022 10:43:10 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 31465
Keep-Alive: timeout=5, max=100
Content-Type: application/x-javascript
hashbook.bg/wp-includes/js/jquery/ui/core.min.js
79.124.55.165200 OK 6.9 kB URL HTTP/1.1 hashbook.bg/wp-includes/js/jquery/ui/core.min.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 7e2b78a6e8a9b90385330755ee1cf3e5
684c325f39d45e42ae44a9e42f5e9fe4fb0b909c
43f124dabb4bc663cc1cc8d3161c1e6365cf8445d873ed5d69bbfdb507cf24a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 12:53:58 GMT
ETag: "50eb-5e60ac68c6983-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 6914
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript
hashbook.bg/wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js
79.124.55.165200 OK 1.5 kB URL HTTP/1.1 hashbook.bg/wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type HTML document, ASCII text, with very long lines (2861), with CRLF, CR line terminators
Hash edf96e5937a2b3489a3ed85a749496fe
84a97d9063c8ed070ed33818f4dabca758c84041
3a8528fe60cec3dbfa0f5e2a7683b2f3ca44fd532359e29a37d93fdc475732c0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/modernizr.custom.min.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Sun, 14 Aug 2022 10:43:09 GMT
ETag: "c11-5e6312e5ff11f-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1495
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
hashbook.bg/wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js
79.124.55.165200 OK 4.1 kB URL HTTP/1.1 hashbook.bg/wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type ASCII text, with very long lines (11484), with no line terminators
Hash 4837bf53b7c7ab3fd703017a2f3b717f
26d9cc71e7fdc17e4a3527d543b167fe64f3d1f4
f9b01103ba55946e9fd40c03e26d2ecca66e4a57191d284a533d4f27de0515b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/jquery.shuffle.min.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Sun, 14 Aug 2022 10:43:09 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 4127
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript
hashbook.bg/wp-includes/js/jquery/jquery.min.js
79.124.55.165200 OK 31 kB URL HTTP/1.1 hashbook.bg/wp-includes/js/jquery/jquery.min.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 16:54:42 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 30908
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript
hashbook.bg/wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js
79.124.55.165200 OK 697 B URL HTTP/1.1 hashbook.bg/wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type ASCII text, with very long lines (1472), with no line terminators
Hash c70c4639aa4137958f14f0e737fca12a
5cd2f746a4d799e5748e1fff720706bd9e092689
5474c08cf4933aa755055e15e16fbc675adf04975b9265b5f8bf878ca9bcc4b8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-social-media-icons/js/shuffle/random-shuffle-min.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Sun, 14 Aug 2022 10:43:09 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 697
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
hashbook.bg/wp-content/plugins/ultimate-social-media-icons/js/custom.js
79.124.55.165200 OK 6.1 kB URL HTTP/1.1 hashbook.bg/wp-content/plugins/ultimate-social-media-icons/js/custom.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type Unicode text, UTF-8 text, with very long lines (827), with CRLF line terminators
Hash 0aad406d265ba6e3fc19e5261fcdbedf
7468b659eafb5703e4a69f724babee3071feaab6
3b1c6a84d0e2ae85d9a6c54a191b215b775307c17ee30f9ac55f08d146e6dc09
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-social-media-icons/js/custom.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Sun, 14 Aug 2022 10:43:09 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 6062
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/x-javascript
hashbook.bg/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js
79.124.55.165200 OK 1.3 kB URL HTTP/1.1 hashbook.bg/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type HTML document, ASCII text
Hash 1ac5fd0d746d90e81bb4663d18a6d4c8
4566f66fbfc4cd3881967b31c39ba9299c5f4e6a
9e76b39ba632c5e8d0e3e91427ba4498cb4343394efbfb60fcc58dd0e8a09d3f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Mon, 15 Aug 2022 12:32:11 GMT
ETag: "d15-5e646d22574f1-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 1341
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/x-javascript
hashbook.bg/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/magnific-popup.js
79.124.55.165200 OK 8.6 kB URL HTTP/1.1 hashbook.bg/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/magnific-popup.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type ASCII text, with very long lines (21184)
Hash 8eb62cd35649502b13afdf59c1aedbe7
c950b4a851fc711e43d34b2e9ac1afc64ffbda86
6813e1a24d6a427f4e722f39f67da82e690fe475b5b086592afe71b44e7349aa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/magnific-popup.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Mon, 15 Aug 2022 12:32:11 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 8569
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
hashbook.bg/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js
79.124.55.165200 OK 3.1 kB URL HTTP/1.1 hashbook.bg/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
Hash 7406ade9a9146b2dc07aa61b09322f8a
b34eabcff49affa7f58d5a780c5bfcf0d35ff65d
7b2c96e32dc476b187952ddb54912351c789ba6b41935b60c818278b92e64e4f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Mon, 15 Aug 2022 12:32:11 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 3118
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
hashbook.bg/wp-content/plugins/official-mailerlite-sign-up-forms/assets/js/jquery.validate.min.js
79.124.55.165200 OK 6.8 kB URL HTTP/1.1 hashbook.bg/wp-content/plugins/official-mailerlite-sign-up-forms/assets/js/jquery.validate.min.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type Unicode text, UTF-8 text, with very long lines (21388)
Hash 4588443f4a3f7ada8106b122916d6a73
65996fcd15f06f78edef7d8e6bd4be7c9c17adfb
c6c70223c4217455df4285cdc68f487d50223afbb43058f74bcea9d7dde72713
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/official-mailerlite-sign-up-forms/assets/js/jquery.validate.min.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Mon, 15 Aug 2022 12:12:45 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 6761
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
hashbook.bg/wp-content/themes/Divi/core/admin/js/common.js
79.124.55.165200 OK 566 B URL HTTP/1.1 hashbook.bg/wp-content/themes/Divi/core/admin/js/common.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
Hash c24ce4d2c7d7512601a6db3b24242297
ed36ea05d2e96b5706a803067c84206a8f7c3202
ce9cccfd1fbc822ac820d3ad47f5a3adabb312ac517a8c6473568bd2d2f98fb4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/js/common.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Mon, 15 Aug 2022 12:32:12 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 566
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
hashbook.bg/wp-includes/js/mediaelement/mediaelement-migrate.min.js
79.124.55.165200 OK 540 B URL HTTP/1.1 hashbook.bg/wp-includes/js/mediaelement/mediaelement-migrate.min.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type ASCII text, with very long lines (1191), with no line terminators
Hash 2029090ac267ecfc20a3c0b884202de9
0ad1d2ea2030ad3c98315a8342168cb0e2c2fca1
a5f0b6001e19c189db4a985f7be8577804f4620edfc4e0812483cf571618607d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 12:53:58 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 540
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
hashbook.bg/wp-includes/js/mediaelement/mediaelement-and-player.min.js
79.124.55.165200 OK 39 kB URL HTTP/1.1 hashbook.bg/wp-includes/js/mediaelement/mediaelement-and-player.min.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type ASCII text, with very long lines (65266)
Hash 4cdaad83ca56a59ee7352b981c2f6db5
4cba1a66bde2345f35c94cacc40749e7aaa30d79
e1aab11a4a9f355af8664139d9151aaf59a6a7d58791aeceda7e611eb049b215
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 16:54:43 GMT
ETag: "267aa-5da30897690d6-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 38657
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/x-javascript
hashbook.bg/wp-includes/js/mediaelement/wp-mediaelement.min.js
79.124.55.165200 OK 475 B URL HTTP/1.1 hashbook.bg/wp-includes/js/mediaelement/wp-mediaelement.min.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash c7aa8936938be0b65781455878aa2085
0066e0c5ed75b3ccd5bb01db5f373d995c217a29
a764eb4204428f671190ad2bc84bcbd86cd9a6bfd05a7ded46bceb651503c508
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Mon, 14 Mar 2022 16:54:43 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 475
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:16:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:16:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.80.131.74101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.80.131.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mwc615kQoXoTKG4lh59phA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AR9UvU3xw3C89wOv3/dnEO/NX9I=
hashbook.bg/wp-content/themes/Divi/js/scripts.min.js
79.124.55.165200 OK 70 kB URL HTTP/1.1 hashbook.bg/wp-content/themes/Divi/js/scripts.min.js
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type ASCII text, with very long lines (65467)
Hash 909e82b6ce48b66aeaebd126f0bf984a
62055a5eb3d0ea100e1e0506e8396b6001fdb4ca
6ebb894987d5f388abc209aaebc6f7b865094133a84d6acacc6378878997cbd3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/js/scripts.min.js HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Mon, 15 Aug 2022 12:32:12 GMT
ETag: "42e58-5e646d23cc5bf-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/x-javascript
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM70w7.woff2
142.250.74.163200 OK 40 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM70w7.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 40236, version 1.0\012- data
Hash 5c283c768487bbacab2a3e33e3e39e3c
e4233b9d0137355f9522d7c5bf99d9c688617c6b
356e58889a7cf422acc2c715a26996890c929b9b3b8a0e124a9cf4a795734732
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM70w7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hashbook.bg
Connection: keep-alive
Referer: http://hashbook.bg/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 06:37:36 GMT
expires: Fri, 08 Sep 2023 06:37:36 GMT
cache-control: public, max-age=31536000
age: 311963
last-modified: Mon, 11 Jul 2022 19:01:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1y4i.woff2
142.250.74.163200 OK 56 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1y4i.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 56336, version 1.0\012- data
Hash ef3ace47eb239b775be05de1de1af268
988135ecaacc456e803d9609b28e5e68c4d694d9
0240d31750dece0d5a709e6eb5cbfded2f15b37b5a4d752c3c636cdd03bd12f8
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1y4i.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hashbook.bg
Connection: keep-alive
Referer: http://hashbook.bg/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 56336
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 18:53:50 GMT
expires: Tue, 05 Sep 2023 18:53:50 GMT
cache-control: public, max-age=31536000
age: 526989
last-modified: Mon, 15 Aug 2022 18:12:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1y4i.woff2
142.250.74.163200 OK 55 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1y4i.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 54576, version 1.0\012- data
Hash 85cb2c73cbeffb7cb359827c68b20e91
a89fb47d4a581c6e2e3cc622f3410d0d9fe9d6a4
bba8d203d019c6f11367d6279cdeb0efbc5895b75dfa68a008686d22194e8d67
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1y4i.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hashbook.bg
Connection: keep-alive
Referer: http://hashbook.bg/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 54576
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 18:53:50 GMT
expires: Tue, 05 Sep 2023 18:53:50 GMT
cache-control: public, max-age=31536000
age: 526989
last-modified: Mon, 15 Aug 2022 18:16:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:16:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:16:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq5Z9aXo.woff2
142.250.74.163200 OK 41 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq5Z9aXo.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 40796, version 1.0\012- data
Hash 2e54109eee5c4281c57a0c6874789622
f150f22b72fc68e26b36fedc894bdb31027a8a21
6c2a38f63e1b3b6ea1dc34b988466bcfbf3743a70f4f01e24b8df99847396cf2
GET /s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq5Z9aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hashbook.bg
Connection: keep-alive
Referer: http://hashbook.bg/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 02:30:13 GMT
expires: Tue, 05 Sep 2023 02:30:13 GMT
cache-control: public, max-age=31536000
age: 586006
last-modified: Mon, 11 Jul 2022 19:02:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Ew7.woff2
142.250.74.163200 OK 40 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Ew7.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 39864, version 1.0\012- data
Hash d82dd34007d719fb5af66fde9d92386b
f372dd8b6dfa08240d7ef8a9bb92233902a2e1ad
e0ab422e5b625fc05f96887b13d684026fce01130b3e4c01a928259f973b8b14
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Ew7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hashbook.bg
Connection: keep-alive
Referer: http://hashbook.bg/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39864
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 16:40:20 GMT
expires: Fri, 08 Sep 2023 16:40:20 GMT
cache-control: public, max-age=31536000
age: 275799
last-modified: Mon, 11 Jul 2022 18:56:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Ew7.woff2
142.250.74.163200 OK 40 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Ew7.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 40076, version 1.0\012- data
Hash 92d6477a2a7ef808586f3164e364ac86
566d14c121263de2ad3d6d32c738d178e3a85522
60a9cb6c3588b3674d7019bdd3ff5ce664f1ccc64c0abf722eb383976ff808d1
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Ew7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hashbook.bg
Connection: keep-alive
Referer: http://hashbook.bg/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40076
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 16:47:51 GMT
expires: Fri, 08 Sep 2023 16:47:51 GMT
cache-control: public, max-age=31536000
age: 275348
last-modified: Mon, 11 Jul 2022 18:56:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
hashbook.bg/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
79.124.55.165200 OK 37 kB URL HTTP/1.1 hashbook.bg/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data
Hash d383ce01d8ba4337d4bd99f7b89d6e31
bfaba81d075b92dc6ecd9f71652be0a16ecffbfe
8b2540670f845cd7fa3d8d7860fa1cabd7162486dd4a58786c0dd6bde25cdc8a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Mon, 15 Aug 2022 12:32:12 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 37445
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/x-font-ttf
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu170w7.woff2
142.250.74.163200 OK 40 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu170w7.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 39956, version 1.0\012- data
Hash afc099b271ff9df5bdda33beea60a772
9c56903effc03eb5b91b7552961a168a6d3db5f8
e58b260ced203e2ffce7aa502b51ebadb6ffee21b6d5cf72fc4c43b0e835d1bf
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu170w7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hashbook.bg
Connection: keep-alive
Referer: http://hashbook.bg/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39956
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 17:01:39 GMT
expires: Fri, 08 Sep 2023 17:01:39 GMT
cache-control: public, max-age=31536000
age: 274521
last-modified: Mon, 11 Jul 2022 18:56:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:17:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hashbook.bg/wp-content/themes/Divi/images/logo.png
79.124.55.165200 OK 1.7 kB URL HTTP/1.1 hashbook.bg/wp-content/themes/Divi/images/logo.png
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type PNG image data, 93 x 43, 8-bit/color RGBA, non-interlaced\012- data
Hash e2daf4c3723952752b6fe6285f353ea2
29b2b4b27bbcb73490b7db78de2f74a34d011de9
cf520886e248a0fad2dffd2e44bd9ba546d0d8f5e750f182397be7d16680b20f
GET /wp-content/themes/Divi/images/logo.png HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Mon, 15 Aug 2022 12:32:13 GMT
ETag: "6cc-5e646d23f1f50"
Accept-Ranges: bytes
Content-Length: 1740
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
hashbook.bg/wp-content/uploads/2019/04/%D0%B8%D0%B7%D1%82%D0%B5%D0%B3%D0%BB%D0%B5%D0%BD-%D1%84%D0%B0%D0%B9%D0%BB.png
79.124.55.165200 OK 3.2 kB URL HTTP/1.1 hashbook.bg/wp-content/uploads/2019/04/%D0%B8%D0%B7%D1%82%D0%B5%D0%B3%D0%BB%D0%B5%D0%BD-%D1%84%D0%B0%D0%B9%D0%BB.png
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type PNG image data, 225 x 225, 8-bit colormap, non-interlaced\012- data
Hash 890a7212a3a87a4e633c31a0835b1e95
e36e5c2ddb897c15859ef0e398c76ea48cb756a3
91626bf397f92bb9f14534f3d7b9d035ba8d1c246fd0455d0c89e246c401db3c
GET /wp-content/uploads/2019/04/%D0%B8%D0%B7%D1%82%D0%B5%D0%B3%D0%BB%D0%B5%D0%BD-%D1%84%D0%B0%D0%B9%D0%BB.png HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Sun, 14 Aug 2022 10:43:27 GMT
ETag: "c61-5e6312f76768e"
Accept-Ranges: bytes
Content-Length: 3169
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0C4i.woff2
142.250.74.163200 OK 56 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0C4i.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 56348, version 1.0\012- data
Hash 441a81103fda7f9c3b41cffd77d8c65c
3a2d883b3fc09a347376088e206f5e0fd17aab72
52a27a6a1c1821efdf20d91ece59d5f29ba3ba28cc8480e2f73f3007216e7729
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0C4i.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hashbook.bg
Connection: keep-alive
Referer: http://hashbook.bg/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 56348
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 18:53:50 GMT
expires: Tue, 05 Sep 2023 18:53:50 GMT
cache-control: public, max-age=31536000
age: 526990
last-modified: Mon, 15 Aug 2022 18:12:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:17:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hashbook.bg/wp-content/uploads/2018/03/business-13.jpg
79.124.55.165200 OK 134 kB URL HTTP/1.1 hashbook.bg/wp-content/uploads/2018/03/business-13.jpg
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1282, components 3\012- data
Size 134 kB (133701 bytes)
Hash d73b39c96a8257db4d4fb3eeb42061fc
390e066d6176d204771a44bf533ec311eb534aac
6e0c68ad9af5591ddd88c80b0d4bfd84a561a154c7416f3a109ec5ad54f1db08
GET /wp-content/uploads/2018/03/business-13.jpg HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Sun, 14 Aug 2022 10:43:30 GMT
ETag: "20a45-5e6312f9fa1b6"
Accept-Ranges: bytes
Content-Length: 133701
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
hashbook.bg/wp-content/plugins/ultimate-social-media-icons/images/icons_theme/transparent/transparent_facebook.png
79.124.55.165200 OK 3.3 kB URL HTTP/1.1 hashbook.bg/wp-content/plugins/ultimate-social-media-icons/images/icons_theme/transparent/transparent_facebook.png
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type PNG image data, 100 x 99, 8-bit colormap, non-interlaced\012- data
Hash e74155532981d5114326bad0d4fa9aa9
06fbb80915ad8423d7e51a884a82f0bd0764b2d5
3e2dfb30130f004c90611958d175561016a73fbac402f2d4ab7aed02fa5b96a5
GET /wp-content/plugins/ultimate-social-media-icons/images/icons_theme/transparent/transparent_facebook.png HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:03 GMT
Server: Apache
Last-Modified: Sun, 14 Aug 2022 10:43:08 GMT
ETag: "cfa-5e6312e539120"
Accept-Ranges: bytes
Content-Length: 3322
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:03 GMT
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
hashbook.bg/wp-content/plugins/ultimate-social-media-icons/images/icons_theme/transparent/transparent_instagram.png
79.124.55.165200 OK 1.7 kB URL HTTP/1.1 hashbook.bg/wp-content/plugins/ultimate-social-media-icons/images/icons_theme/transparent/transparent_instagram.png
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 2519d4a4127cdfa0dce0e3b0d6545ca3
2ba3dfa5db3459cb632770c77492c1ed51fd17a7
2afc42bf8509cc7d2236ee903cb3b761b195c5ca3817fd900cb8a8a49af867b8
GET /wp-content/plugins/ultimate-social-media-icons/images/icons_theme/transparent/transparent_instagram.png HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:03 GMT
Server: Apache
Last-Modified: Sun, 14 Aug 2022 10:43:09 GMT
ETag: "685-5e6312e661f2b"
Accept-Ranges: bytes
Content-Length: 1669
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:03 GMT
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
static.mailerlite.com/js/universal.js?166293
172.64.153.150200 OK 110 kB URL HTTP/2 static.mailerlite.com/js/universal.js?166293
IP 172.64.153.150:0
File type ASCII text, with very long lines (16459), with no line terminators
Size 110 kB (109780 bytes)
Hash 094f6fd38bd32569ae5fbed1c3babc4a
a3a4a6d578bb00c7274b2c663f20db0446b2b857
178aba510e2f8a9552e64ceeaa726f260768d2ced82b9d3463c9fd771e461b39
GET /js/universal.js?166293 HTTP/1.1
Host: static.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hashbook.bg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:16:59 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 10:22:11 GMT
vary: Accept-Encoding
etag: W/"6319c253-404b"
strict-transport-security: max-age=63072000
via: 1.1 google
cf-cache-status: HIT
age: 1018
expires: Fri, 16 Sep 2022 21:16:59 GMT
cache-control: public, max-age=432000
server: cloudflare
cf-ray: 74936d7969dab4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
hashbook.bg/wp-content/uploads/2018/04/rosi-vasileva.jpg
79.124.55.165200 OK 46 kB URL HTTP/1.1 hashbook.bg/wp-content/uploads/2018/04/rosi-vasileva.jpg
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type JPEG image data, progressive, precision 8, 750x744, components 3\012- data
Hash 33548f38fafb2b2ea39967be4d378f44
298f7e60f4ba1f9c1a34b1bd0eb1e20a8f7943df
3f4304f7c0a5453bd2985c4618e830963cfa358f7a515cbbc37ae614cd4b96ee
GET /wp-content/uploads/2018/04/rosi-vasileva.jpg HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:03 GMT
Server: Apache
Last-Modified: Sun, 14 Aug 2022 10:43:28 GMT
ETag: "b4a7-5e6312f830d3d"
Accept-Ranges: bytes
Content-Length: 46247
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:03 GMT
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
hashbook.bg/wp-content/uploads/2018/04/Svetlana-Stoilkova.jpg
79.124.55.165200 OK 57 kB URL HTTP/1.1 hashbook.bg/wp-content/uploads/2018/04/Svetlana-Stoilkova.jpg
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 958x960, components 3\012- data
Hash a62546b90fe8cf61de75a3fc1410ad10
7d4c24fb458dbd47f9576414a00431fe3975b31f
a3c707536a10e79c1cc655536d9d9fb211bd53bc156e66196f79603ac3a26068
GET /wp-content/uploads/2018/04/Svetlana-Stoilkova.jpg HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:03 GMT
Server: Apache
Last-Modified: Sun, 14 Aug 2022 10:43:28 GMT
ETag: "de01-5e6312f83fb86"
Accept-Ranges: bytes
Content-Length: 56833
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:03 GMT
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
hashbook.bg/wp-includes/css/dist/block-library/style.min.css
79.124.55.165200 OK 12 kB URL HTTP/1.1 hashbook.bg/wp-includes/css/dist/block-library/style.min.css
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:03 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 12:53:59 GMT
Accept-Ranges: none
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 11681
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
hashbook.bg/wp-content/uploads/2018/04/hashbook.1-1.png
79.124.55.165200 OK 368 kB URL HTTP/1.1 hashbook.bg/wp-content/uploads/2018/04/hashbook.1-1.png
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data
Size 368 kB (367970 bytes)
Hash 0aa994dc44c2d48250a4648335666415
f90873b01d654084d92faca4c6990cfa2d8c7e84
6f3755f5eccf654713b216683447fa7164478cb598f8494eddbc5ce677c11442
GET /wp-content/uploads/2018/04/hashbook.1-1.png HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Sun, 14 Aug 2022 10:43:28 GMT
ETag: "59d62-5e6312f8226c5"
Accept-Ranges: bytes
Content-Length: 367970
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
hashbook.bg/wp-content/uploads/2018/04/desi.jpg
79.124.55.165200 OK 38 kB URL HTTP/1.1 hashbook.bg/wp-content/uploads/2018/04/desi.jpg
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type JPEG image data, progressive, precision 8, 552x690, components 3\012- data
Hash c6544d15dffebb065c3abef1a27719ac
266962b5bee1c14344e99b2093deab2091cb3026
1f37b41652f1cd8d88b748a76ca72ad3bac80a6148ace5a61e80130c89089dd9
GET /wp-content/uploads/2018/04/desi.jpg HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:03 GMT
Server: Apache
Last-Modified: Sun, 14 Aug 2022 10:43:29 GMT
ETag: "9262-5e6312f94b8b8"
Accept-Ranges: bytes
Content-Length: 37474
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:03 GMT
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
hashbook.bg/wp-content/uploads/2018/03/background-split-03.jpg
79.124.55.165200 OK 88 kB URL HTTP/1.1 hashbook.bg/wp-content/uploads/2018/03/background-split-03.jpg
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1042, components 3\012- data
Hash 1ca81909ce0e977f4e627293e9c7d2cb
a1184be3e5077c04c85484d02cbc85f96ed8782e
7b2ec892d3ecca549bedc8aef97116d317f8c4f3b36f08edcbfded248c0081c1
GET /wp-content/uploads/2018/03/background-split-03.jpg HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/wp-content/et-cache/47779/et-core-unified-deferred-47779.min.css?ver=1661133505
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:03 GMT
Server: Apache
Last-Modified: Sun, 14 Aug 2022 10:43:30 GMT
ETag: "15649-5e6312f9afe34"
Accept-Ranges: bytes
Content-Length: 87625
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:03 GMT
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
hashbook.bg/wp-content/uploads/2018/03/hashbook.digital.marketing.12.jpeg
79.124.55.165200 OK 3.1 MB URL HTTP/1.1 hashbook.bg/wp-content/uploads/2018/03/hashbook.digital.marketing.12.jpeg
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, description=OLYMPUS DIGITAL CAMERA , manufacturer=OLYMPUS CORPORATION , model=E-M10MarkII , orientation=upper-left, xresolution=208, yresolution=216, resolutionunit=2, software=Photos 3.0, datetime=2018:01:11 03:40:45], baseline, precision 8, 3456x4608, components 3\012- data
Size 3.1 MB (3064334 bytes)
Hash 291864af6580c1268cbeaa6a9b29e837
9d42e1c2afdbc08d7c5d61e1103ff80df10a03bd
1750ad98c08ec1cbdd05d7df4699f894afcd0eb973d2e6573a5fbf372ed6d6c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2018/03/hashbook.digital.marketing.12.jpeg HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Sun, 14 Aug 2022 10:43:30 GMT
ETag: "2ec20e-5e6312f9f9216"
Accept-Ranges: bytes
Content-Length: 3064334
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
connect.facebook.net/en_US/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/en_US/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1961)
Hash 2242164582712d5265781faa5a564205
f0c8ff86d4df34e84e59da481c27ad5145a69ef9
b5dfcb5acbde2918a8b848ca62272bda78ec0343ad423b51e9f845f94252d8b4
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hashbook.bg/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 41a1b4cd245d84813c15fe4198bd14a1
ETag: "9c5d8a8b6338f520a245760ea5612128"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Sun, 11 Sep 2022 21:21:53 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: IkIWRYJxLVJleB+qWlZCBQ==
X-FB-Debug: zyOYg9uLTwWt8bZiDiokm839/BRCEmX+w13Knf77aIH2IWfcvT/TyE3wBftswWXn1/sBlLxujMcP2g/HiptCzA==
X-FB-TRIP-ID: 1679558926
Date: Sun, 11 Sep 2022 21:17:00 GMT
Alt-Svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
Connection: keep-alive
Content-Length: 1686
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js
104.17.25.14200 OK 6.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (20831)
Hash 368c425fc94c424e1688caadefbed981
13d24c22c199ef6668d758434819f44307a65094
ed9c7a83e1c1300a93ecd08807a736ebe7b87ab8262a40bc7e3859d00a46a102
GET /ajax/libs/popper.js/1.14.7/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://static.mailerlite.com
Connection: keep-alive
Referer: https://static.mailerlite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:17:00 GMT
content-type: application/javascript; charset=utf-8
content-length: 6646
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-520c"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 2782273
expires: Fri, 01 Sep 2023 21:17:00 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sU4OJXsrpBTSwK3ywQzihmoowlmPb4iJLCr2t%2F9A%2FMwkAbOOPsVas%2BBfO2IUwwuxmdv%2BKwwFCtW%2BsTF35l8v9xf7KoiBUB3l59KDE7BbgxT5vsPt%2FxfBlTTrSrkO0vvch%2F53baIQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74936d7d9b08b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hashbook.bg/wp-content/uploads/2018/04/cropped-Hashbook_logotype-32x32.png
79.124.55.165200 OK 1.0 kB URL HTTP/1.1 hashbook.bg/wp-content/uploads/2018/04/cropped-Hashbook_logotype-32x32.png
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 535e824439c6a2ef1f43deed1fe6e2d2
f83180a32462ad780eeb32960006cdae659c77e6
3c18ecd36b46a61c7fc2ad4bf439ed9fce282f5546d1d39e19c6f004973a882b
GET /wp-content/uploads/2018/04/cropped-Hashbook_logotype-32x32.png HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hashbook.bg/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:17:03 GMT
Server: Apache
Last-Modified: Sun, 14 Aug 2022 10:43:28 GMT
ETag: "40d-5e6312f838a3e"
Accept-Ranges: bytes
Content-Length: 1037
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:03 GMT
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c52f00dc203483501330b93da8673ea
bb58935fa272c810572d3290a9835e1390a8ef35
4cbe66c98fdaa1bdce29769a8dda769b7b46e14a8bdab5c61bba9e171ec925f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4146
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:17:00 GMT
Last-Modified: Sun, 11 Sep 2022 20:07:54 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
cdn.remotecompany.com/ml/bootstrap/js/bootstrap-4.3.1.min.js
104.21.75.72200 OK 104 kB URL HTTP/2 cdn.remotecompany.com/ml/bootstrap/js/bootstrap-4.3.1.min.js
IP 104.21.75.72:0
File type ASCII text, with very long lines (57791)
Size 104 kB (103965 bytes)
Hash 2bbdb9ed3aa015f6cab85a6ed8a2e0f9
9974e6e2a15844d537ce169d0a87eebf0d7d64be
2ce77036af841bbcb851b1929e8d467799528784a9c9b87a710cb119bca149de
GET /ml/bootstrap/js/bootstrap-4.3.1.min.js HTTP/1.1
Host: cdn.remotecompany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mailerlite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:17:00 GMT
content-type: text/javascript
cf-ray: 74936d7d9fd70b41-OSL
access-control-allow-origin: *
age: 11002
cache-control: public, max-age=14400
last-modified: Sun, 11 Sep 2022 18:13:38 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: HEAD,GET,OPTIONS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GXtkm80ABbzokpsCdyhWQ1E3TZ6xJLaRWJGePI92O8T%2BVqlsYxugpHqnzr77h3UyPBKygHCMP5HTVcxX%2B3qQb1iQer7RbxTGXCEvlp9Iv%2FJsjw7kQEjuAZGsQdczLMDNQoqMqla4qOI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.mailerlite.com/fonts/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
172.64.153.150200 OK 16 kB URL HTTP/2 fonts.mailerlite.com/fonts/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 172.64.153.150:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /fonts/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://static.mailerlite.com
Connection: keep-alive
Referer: https://fonts.mailerlite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:17:00 GMT
content-type: font/woff2
content-length: 15744
cf-ray: 74936d7e789eb4e8-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 2959069
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 21:17:00 GMT
last-modified: Wed, 11 May 2022 19:24:48 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
fonts.mailerlite.com/fonts/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
172.64.153.150200 OK 7.8 kB URL HTTP/2 fonts.mailerlite.com/fonts/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 172.64.153.150:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /fonts/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://static.mailerlite.com
Connection: keep-alive
Referer: https://fonts.mailerlite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:17:00 GMT
content-type: font/woff2
content-length: 7816
cf-ray: 74936d7e98b0b4e8-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 2959138
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 21:17:00 GMT
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
cdn.mailerlite.com/ajax/libs/jquery/1.8.3/jquery.min.js
172.64.153.150200 OK 42 kB URL HTTP/2 cdn.mailerlite.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP 172.64.153.150:0
File type ASCII text, with very long lines (65483)
Hash 65fa1f5dae54395c9ec3aff710da6daa
a82cb881324788860981a0e76c7505afc9e8541e
8a1c3f1c1cc8a0c6e870775bc6462c668530a5036bfc90187d47d0fd66d69637
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: cdn.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mailerlite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:17:00 GMT
content-type: application/javascript
last-modified: Thu, 31 Mar 2022 13:37:35 GMT
etag: W/"6245ae9f-16dc4"
access-control-allow-origin: *
access-control-allow-methods: GET
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 305
expires: Fri, 16 Sep 2022 21:17:00 GMT
cache-control: public, max-age=432000
vary: Accept-Encoding
server: cloudflare
cf-ray: 74936d7e3818b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.mailerlite.com/fonts/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
172.64.153.150200 OK 16 kB URL HTTP/2 fonts.mailerlite.com/fonts/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 172.64.153.150:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /fonts/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://static.mailerlite.com
Connection: keep-alive
Referer: https://fonts.mailerlite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:17:00 GMT
content-type: font/woff2
content-length: 15860
cf-ray: 74936d7e98b3b4e8-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 2959069
cache-control: public, max-age=31536000
expires: Mon, 11 Sep 2023 21:17:00 GMT
last-modified: Wed, 11 May 2022 19:24:42 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8146
Expires: Sun, 11 Sep 2022 23:32:47 GMT
Date: Sun, 11 Sep 2022 21:17:01 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8146
Expires: Sun, 11 Sep 2022 23:32:47 GMT
Date: Sun, 11 Sep 2022 21:17:01 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8146
Expires: Sun, 11 Sep 2022 23:32:47 GMT
Date: Sun, 11 Sep 2022 21:17:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8625e0707046e7a3715a8dbb40b1cae2
0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78
abc4c12561be08897341d9c8104c30a289357c0907e55c46895f7fb6afb2f75d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13568
x-amzn-requestid: ad06f499-3e04-414a-8a3f-6daa9e0124ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3yN1F2BIAMFoqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312fd8b-3a17f11440d2f37b23ac7f6a;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 07:08:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iNRnq8nMhoTo9oY379Ynb6uPW0vNyf3dNufU_HpXNfzxvhrAEKEzJQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 14:06:07 GMT
age: 25854
etag: "0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e82f3ab-3fe6-43bc-932c-936ec582e5cf.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e82f3ab-3fe6-43bc-932c-936ec582e5cf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fea5dfc4a6a5093fd81899ee4a79d446
c893d7475856809a59486e0bcebd6d662d1fc56f
915fb97690be97d97cb298fc60ceb4cf7c3ed8fb437836beb2d590a8e238363c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e82f3ab-3fe6-43bc-932c-936ec582e5cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7017
x-amzn-requestid: df5e57d7-e54c-4b5a-aa1b-a9aee889842e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_Et0oAMFSjQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-50d15bba03579a935342e22f;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YRgmbTGaMvU9Kf47U90cPYhgpXaYgoNVA8ut6LOUStK4UfWahpSqVA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:41:08 GMT
age: 84953
etag: "c893d7475856809a59486e0bcebd6d662d1fc56f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79f019c6-c6f0-4468-b319-ffe5379d4a42.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79f019c6-c6f0-4468-b319-ffe5379d4a42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b290c3f75a769f5cb0f36b5c84436c9b
22e386713ccb95ca1cf9aa367a5ad02bd1664954
e311757ae3bc5b821a9c1d4d654250b1ac936228eb4a600aa1e5b391d25adaaf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79f019c6-c6f0-4468-b319-ffe5379d4a42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10611
x-amzn-requestid: f034fbd9-c83e-4a29-84ff-674629759818
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3yN3E8PoAMFwfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312fd8b-63dd86ec10dbc2fb7dc0e5de;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 07:08:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -Fht5R4_rLcLWqglaPldh1846mPs_JS6_L3G_mi5G2iQbmkCPopvuQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 07:27:02 GMT
age: 49799
etag: "22e386713ccb95ca1cf9aa367a5ad02bd1664954"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc91b46a1-040b-46aa-a7a1-af67f0058b83.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc91b46a1-040b-46aa-a7a1-af67f0058b83.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bb1a86dcf94db0a29a6ebe21866766d4
b3491a6f12c97c8e1848a206a185fae29213c1e5
d05619e519fed6c0b6c0616cf540908006a68f127b25e38fb9d041dfe2546df4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc91b46a1-040b-46aa-a7a1-af67f0058b83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7519
x-amzn-requestid: bef8445b-1f8b-4c00-a9ad-b32fdefe3d13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3zXoHOhIAMFfNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312ff63-1a6c3ef64362a4d052a761ae;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 07:16:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Pzv2DSpqnXB0UP3C5EF-YUzRmveFwmal_8YyRfEuHuhZ1FcUWgHocg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 10:22:00 GMT
age: 39301
etag: "b3491a6f12c97c8e1848a206a185fae29213c1e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66c0f84d-aba2-4ce6-9e03-ee51e1c347be.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66c0f84d-aba2-4ce6-9e03-ee51e1c347be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57d797a1c3f6589746a1135bdb19f54f
7aa14fcd982a5cee38d58fc3c89edc4a8daf4c97
ff8855ca951f53ed5f3886cc81a7f28384d41288edeca4fdc621250e4d01c6fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66c0f84d-aba2-4ce6-9e03-ee51e1c347be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6889
x-amzn-requestid: c82ac543-90cd-4aeb-a65b-7e1bbbacc407
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2UEE-3IAMFYBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d0419-427a29067c9c92ec0db6567f;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:39:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BPWrjstB3xKeYzHK9eQoJL8ORgRFsqjmNxu0j10epBANBtZCRU-m2g==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:43:06 GMT
age: 84835
etag: "7aa14fcd982a5cee38d58fc3c89edc4a8daf4c97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e407da4d97d497925b1ab523fd416787
166741631fb93d109b18dde6d316b3fa3276aa8f
707460c02438da6114e35e0b6569d42c0f3fb747f8cb51002f4d52bedbcffa61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8485
x-amzn-requestid: a56c9282-2786-4ae7-9fc2-0468bcc820a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FM1oAMFZ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-753cc4f121c9b77d22bb82b5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mfmj40aUc8l5RPk56M-pbqTwhde_HzYcmN5MDrfv-WFPhbpoShWYNw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:57:28 GMT
age: 83973
etag: "166741631fb93d109b18dde6d316b3fa3276aa8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.mailerlite.com/js/w/webforms.min.js?v0c75f831c56857441820dcec3163967c
172.64.153.150200 OK 0 B URL HTTP/2 static.mailerlite.com/js/w/webforms.min.js?v0c75f831c56857441820dcec3163967c
IP 172.64.153.150:0
GET /js/w/webforms.min.js?v0c75f831c56857441820dcec3163967c HTTP/1.1
Host: static.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mailerlite.com/data/a/3857/3857012/webforms/q4l9e6/5570/5570183/page.html?v=1662931008
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:17:00 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 10:22:21 GMT
vary: Accept-Encoding
etag: W/"6319c25d-26ca"
strict-transport-security: max-age=63072000
via: 1.1 google
cf-cache-status: HIT
age: 7076
expires: Fri, 16 Sep 2022 21:17:00 GMT
cache-control: public, max-age=432000
server: cloudflare
cf-ray: 74936d7d5ee0b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.mailerlite.com/data/a/3857/3857012/webforms/q4l9e6/5570/5570183/page.html?v=1662931008
172.64.153.150200 OK 0 B URL HTTP/2 static.mailerlite.com/data/a/3857/3857012/webforms/q4l9e6/5570/5570183/page.html?v=1662931008
IP 172.64.153.150:0
GET /data/a/3857/3857012/webforms/q4l9e6/5570/5570183/page.html?v=1662931008 HTTP/1.1
Host: static.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hashbook.bg/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:17:00 GMT
content-type: text/html
last-modified: Mon, 14 Mar 2022 17:45:22 GMT
vary: Accept-Encoding
etag: W/"622f7f32-716a"
strict-transport-security: max-age=63072000
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74936d7c4d93b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.mailerlite.com/css/universal.css?v4
172.64.153.150200 OK 0 B URL HTTP/2 static.mailerlite.com/css/universal.css?v4
IP 172.64.153.150:0
GET /css/universal.css?v4 HTTP/1.1
Host: static.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hashbook.bg/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:17:00 GMT
content-type: text/css
last-modified: Thu, 08 Sep 2022 10:22:05 GMT
vary: Accept-Encoding
etag: W/"6319c24d-30e"
strict-transport-security: max-age=63072000
via: 1.1 google
cf-cache-status: HIT
age: 2979
expires: Fri, 16 Sep 2022 21:17:00 GMT
cache-control: public, max-age=432000
server: cloudflare
cf-ray: 74936d7b1bd6b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.mailerlite.com/assets/plugins/groot/modules/includes/groot_fonts/import.css?version=1646848
172.64.153.150200 OK 0 B URL HTTP/2 static.mailerlite.com/assets/plugins/groot/modules/includes/groot_fonts/import.css?version=1646848
IP 172.64.153.150:0
GET /assets/plugins/groot/modules/includes/groot_fonts/import.css?version=1646848 HTTP/1.1
Host: static.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mailerlite.com/data/a/3857/3857012/webforms/q4l9e6/5570/5570183/page.html?v=1662931008
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:17:00 GMT
content-type: text/css
last-modified: Thu, 08 Sep 2022 10:21:40 GMT
vary: Accept-Encoding
etag: W/"6319c234-406"
strict-transport-security: max-age=63072000
via: 1.1 google
cf-cache-status: HIT
age: 1514
expires: Fri, 16 Sep 2022 21:17:00 GMT
cache-control: public, max-age=432000
server: cloudflare
cf-ray: 74936d7d5ee2b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.mailerlite.com/data/a/3857/3857012/universal/b7l5q9m2j2_popups.js?v=1662931008
172.64.153.150200 OK 0 B URL HTTP/2 static.mailerlite.com/data/a/3857/3857012/universal/b7l5q9m2j2_popups.js?v=1662931008
IP 172.64.153.150:0
GET /data/a/3857/3857012/universal/b7l5q9m2j2_popups.js?v=1662931008 HTTP/1.1
Host: static.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hashbook.bg/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:17:00 GMT
content-type: application/javascript
last-modified: Sat, 13 Aug 2022 16:34:28 GMT
vary: Accept-Encoding
etag: W/"62f7d294-165e"
strict-transport-security: max-age=63072000
via: 1.1 google
cf-cache-status: MISS
expires: Fri, 16 Sep 2022 21:17:00 GMT
cache-control: public, max-age=432000
server: cloudflare
cf-ray: 74936d7b1bd8b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
hashbook.bg/wp-content/uploads/2018/04/hashbook.video_.site_.mp4
79.124.55.165206 Partial Content 0 B URL HTTP/1.1 hashbook.bg/wp-content/uploads/2018/04/hashbook.video_.site_.mp4
IP 79.124.55.165:0
ASN #201200 SuperHosting.BG Ltd.
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2018/04/hashbook.video_.site_.mp4 HTTP/1.1
Host: hashbook.bg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: http://hashbook.bg/
Range: bytes=0-
Connection: keep-alive
HTTP/1.1 206 Partial Content
Date: Sun, 11 Sep 2022 21:17:02 GMT
Server: Apache
Last-Modified: Sun, 14 Aug 2022 10:43:29 GMT
ETag: "45ff4a-5e6312f943fa0"
Accept-Ranges: bytes
Content-Length: 4587338
Cache-Control: max-age=31536000
Expires: Mon, 11 Sep 2023 21:17:02 GMT
Access-Control-Allow-Origin: *
Referrer-Policy: no-referrer-when-downgrade
Content-Range: bytes 0-4587337/4587338
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: video/mp4
static.mailerlite.com/js/w/ml_jQuery.inputmask.bundle.min.js?v3.3.1
172.64.153.150200 OK 0 B URL HTTP/2 static.mailerlite.com/js/w/ml_jQuery.inputmask.bundle.min.js?v3.3.1
IP 172.64.153.150:0
GET /js/w/ml_jQuery.inputmask.bundle.min.js?v3.3.1 HTTP/1.1
Host: static.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mailerlite.com/data/a/3857/3857012/webforms/q4l9e6/5570/5570183/page.html?v=1662931008
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:17:00 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 10:22:23 GMT
vary: Accept-Encoding
etag: W/"6319c25f-1153a"
strict-transport-security: max-age=63072000
via: 1.1 google
cf-cache-status: HIT
age: 6046
expires: Fri, 16 Sep 2022 21:17:00 GMT
cache-control: public, max-age=432000
server: cloudflare
cf-ray: 74936d7eb8dab4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.remotecompany.com/ml/jquery/jquery-3.3.1.slim.min.js
104.21.75.72200 OK 0 B URL HTTP/2 cdn.remotecompany.com/ml/jquery/jquery-3.3.1.slim.min.js
IP 104.21.75.72:0
GET /ml/jquery/jquery-3.3.1.slim.min.js HTTP/1.1
Host: cdn.remotecompany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mailerlite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:17:00 GMT
content-type: text/javascript
cf-ray: 74936d7d9fdb0b41-OSL
access-control-allow-origin: *
age: 9687
cache-control: public, max-age=14400
last-modified: Sun, 11 Sep 2022 18:35:33 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: HEAD,GET,OPTIONS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qmapD7pIUU5kVLGy6J3HnZr2AT6H7Ll9y%2BLebu%2F6G0gmv2tBwrVRCLOywLC5tJO9OWFX4n5VugNLzAJwQWIoIamX8bq0II5Jn12CCnRH43WanpbayWifgV93H6k%2BZ3Og%2BVihOxh7zQQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.mailerlite.com/css?family=Roboto:400,400i,700,700i|Merriweather:400,900i,900,700i,700,300,300i,400i|Lato:400,400i,700,700i|Montserrat:400,400i,700,700i|Montserrat+Alternates:400,400i,700,700i|Open+Sans:400,400i,700,700i|PT+Sans:400,400i,700,700i|Source+Sans+Pro:400,400i,700,700i|Roboto+Slab:400,700|Ubuntu:400,400i,700,700i|Titillium+Web:400,400i,700,700i|Nunito:400,400i,700,700i|Cabin:400,400i,700,700i|Oswald:400,700|Work+Sans:400,700|Exo:400,400i,700,700i|Comfortaa:400,700|Raleway:400,400i,700,700i|Oxygen:400,700|Poppins:400,400i,700,700i|Playfair+Display:400,400i,700,700i|Shadows+Into+Light+Two|PT+Serif:400,400italic,700,700italic|Josefin+Slab:400,400italic,700,700italic|Arvo:400,700,700italic,400italic|Vollkorn:400,400italic,700,700italic|Karla:400,400italic,700,700italic|Noto+Sans:400,400italic,700,700italic|Barlow+Condensed:400,400italic,700,700italic|Anton|Inter:400,700|Abril+Fatface|Yeseva+One|Poiret+One|Marck+Script|Pacifico|Fira+Sans|Rubik&subset=cyrillic,cyrillic-ext,latin-ext
172.64.153.150200 OK 0 B URL HTTP/2 fonts.mailerlite.com/css?family=Roboto:400,400i,700,700i|Merriweather:400,900i,900,700i,700,300,300i,400i|Lato:400,400i,700,700i|Montserrat:400,400i,700,700i|Montserrat+Alternates:400,400i,700,700i|Open+Sans:400,400i,700,700i|PT+Sans:400,400i,700,700i|Source+Sans+Pro:400,400i,700,700i|Roboto+Slab:400,700|Ubuntu:400,400i,700,700i|Titillium+Web:400,400i,700,700i|Nunito:400,400i,700,700i|Cabin:400,400i,700,700i|Oswald:400,700|Work+Sans:400,700|Exo:400,400i,700,700i|Comfortaa:400,700|Raleway:400,400i,700,700i|Oxygen:400,700|Poppins:400,400i,700,700i|Playfair+Display:400,400i,700,700i|Shadows+Into+Light+Two|PT+Serif:400,400italic,700,700italic|Josefin+Slab:400,400italic,700,700italic|Arvo:400,700,700italic,400italic|Vollkorn:400,400italic,700,700italic|Karla:400,400italic,700,700italic|Noto+Sans:400,400italic,700,700italic|Barlow+Condensed:400,400italic,700,700italic|Anton|Inter:400,700|Abril+Fatface|Yeseva+One|Poiret+One|Marck+Script|Pacifico|Fira+Sans|Rubik&subset=cyrillic,cyrillic-ext,latin-ext
IP 172.64.153.150:0
GET /css?family=Roboto:400,400i,700,700i|Merriweather:400,900i,900,700i,700,300,300i,400i|Lato:400,400i,700,700i|Montserrat:400,400i,700,700i|Montserrat+Alternates:400,400i,700,700i|Open+Sans:400,400i,700,700i|PT+Sans:400,400i,700,700i|Source+Sans+Pro:400,400i,700,700i|Roboto+Slab:400,700|Ubuntu:400,400i,700,700i|Titillium+Web:400,400i,700,700i|Nunito:400,400i,700,700i|Cabin:400,400i,700,700i|Oswald:400,700|Work+Sans:400,700|Exo:400,400i,700,700i|Comfortaa:400,700|Raleway:400,400i,700,700i|Oxygen:400,700|Poppins:400,400i,700,700i|Playfair+Display:400,400i,700,700i|Shadows+Into+Light+Two|PT+Serif:400,400italic,700,700italic|Josefin+Slab:400,400italic,700,700italic|Arvo:400,700,700italic,400italic|Vollkorn:400,400italic,700,700italic|Karla:400,400italic,700,700italic|Noto+Sans:400,400italic,700,700italic|Barlow+Condensed:400,400italic,700,700italic|Anton|Inter:400,700|Abril+Fatface|Yeseva+One|Poiret+One|Marck+Script|Pacifico|Fira+Sans|Rubik&subset=cyrillic,cyrillic-ext,latin-ext HTTP/1.1
Host: fonts.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mailerlite.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:17:00 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: private, max-age=86400, stale-while-revalidate=604800
vary: Accept-Encoding
server: cloudflare
cf-ray: 74936d7d9f3ab4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
track.mailerlite.com/webforms/o/5570183/q4l9e6?v1662931014
172.64.153.150200 OK 0 B URL HTTP/2 track.mailerlite.com/webforms/o/5570183/q4l9e6?v1662931014
IP 172.64.153.150:0
GET /webforms/o/5570183/q4l9e6?v1662931014 HTTP/1.1
Host: track.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hashbook.bg/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:17:05 GMT
content-type: image/gif
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74936d9b9e60b4e8-OSL
X-Firefox-Spdy: h2