r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11427
Expires: Sun, 26 Mar 2023 03:07:30 GMT
Date: Sat, 25 Mar 2023 23:57:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfd491ebe7381221b3674c2c8bf9e566
d2ac5badf17f348c28a52e9db10e6eb80e5a231a
34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11735
Expires: Sun, 26 Mar 2023 03:12:39 GMT
Date: Sat, 25 Mar 2023 23:57:04 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 23:15:30 GMT
content-type: application/json
age: 2494
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9bb70197d53617b5e6889b890dd2ae26
f3e9b8a743de494529baf2d078a622539f965307
a094a13905b7f1cd89475f9c83f9245580d4c3c7228d51d5c16622aec3c6aa45
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A094A13905B7F1CD89475F9C83F9245580D4C3C7228D51D5C16622AEC3C6AA45"
Last-Modified: Sat, 25 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3382
Expires: Sun, 26 Mar 2023 00:53:26 GMT
Date: Sat, 25 Mar 2023 23:57:04 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 5CI5hCv7iLrjRp1joWTkWd716vn5NKDh/CMtSEIlIMds9IIH99c2haNYE831C6HEO9/sHraNSz4=
x-amz-request-id: 5ST9447P26RBG7R9
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 23:00:58 GMT
age: 3366
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
creative-media.devmngt.com/
198.54.115.248301 Moved Permanently 707 B URL HTTP/1.1 creative-media.devmngt.com/
IP 198.54.115.248:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sat, 25 Mar 2023 23:57:04 GMT
server: LiteSpeed
location: https://creative-media.devmngt.com/
x-turbo-charged-by: LiteSpeed
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 23:57:04 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 23:17:24 GMT
age: 2380
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 5fe13519e038058f4283a016daa33a8d
3a78e292d794dde6128bd598790e141d680e68dc
3cee61e4003e15e64ebc0df894c20593b29d2db4ae11a9bf008483f49a737efc
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:57:04 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 24 Mar 2023 02:17:38 GMT
Expires: Fri, 31 Mar 2023 02:17:37 GMT
Etag: "3a78e292d794dde6128bd598790e141d680e68dc"
Cache-Control: max-age=439832,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7adb18172eb4b4f4-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 717ebcc65cb1390c2509851bac7b5878
1e04e3058329f3809bc01022d441172dcacc1aaa
3c8d41efe14dc75e001ce50aae65e133d90bcb2e2f86b2426cefe7abe4c7b588
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C8D41EFE14DC75E001CE50AAE65E133D90BCB2E2F86B2426CEFE7ABE4C7B588"
Last-Modified: Fri, 24 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3011
Expires: Sun, 26 Mar 2023 00:47:15 GMT
Date: Sat, 25 Mar 2023 23:57:04 GMT
Connection: keep-alive
creative-media.devmngt.com/
198.54.115.248200 OK 6.0 kB URL HTTP/2 creative-media.devmngt.com/
IP 198.54.115.248:0
File type Zip archive data, at least v6.0 to extract, compression method=[0x7463]\012- data
Hash bd40b161ecdac031d6c5953cd86fc6cd
2909e8ddff607d169453562b4aa330dc04129cec
6fb2ce610f407aab1154fc05ef1b1f430b70975d7d9cd37886ff49c3cfdd078a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/8.1.16
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; expires=Sun, 26 Mar 2023 01:57:04 GMT; Max-Age=7200; path=/; samesite=lax; secure
laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D; expires=Sun, 26 Mar 2023 01:57:04 GMT; Max-Age=7200; path=/; httponly; samesite=lax; secure
content-length: 5962
content-encoding: br
vary: Accept-Encoding
date: Sat, 25 Mar 2023 23:57:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css
104.17.25.14200 OK 14 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (65345)
Hash 642445b86596bdeaa98e92faa2064fc6
6c5539660bf533d34e37b917973c941d1c963374
4a5a39e9f325c5578dccd880c1d516eae190ee39f7539f4a6c6c52d2eee4cbdf
GET /ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 23:57:04 GMT
content-type: text/css; charset=utf-8
content-length: 14374
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61498362-3826"
last-modified: Tue, 21 Sep 2021 07:01:54 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 20668542
expires: Thu, 14 Mar 2024 23:57:04 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VnDZmFICy8FT3G35YbxtDFDe2hwV9TuKMPca8bk5v8mMakiOB2MqjX1RNll83rsyT8clvJeAhDVulgZfYIePu5uAXxN1apmS1cwDvbz5ggqwpsMp0xjfdH%2BjSMbHzK16qwDE93Fx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7adb1819ce7e069b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/gsap/3.9.1/ScrollTrigger.min.js
104.17.25.14200 OK 9.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/gsap/3.9.1/ScrollTrigger.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (24222)
Hash 8f9f46ccadd5ea57789e80302c4c8c30
d0083642cd9a88ccabf7910cc77d02d2e7fcf401
145ea55c04d9ef0618f9a5bae55db2423811bac1ca586875d18d2e9a19420c67
GET /ajax/libs/gsap/3.9.1/ScrollTrigger.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 23:57:04 GMT
content-type: application/javascript; charset=utf-8
content-length: 9607
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61c68a7c-2587"
last-modified: Sat, 25 Dec 2021 03:05:32 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1389571
expires: Thu, 14 Mar 2024 23:57:04 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IK1gXk2fPOATBBzjOGyBU6iIiSH%2FwEV18pxloTfE5G%2B4WLAJAfvv5Ses2Ol32eW71ZP6BdHn5Mt9V35K2CYgUZwY90LgxpAc8ioynzYduDrNsaZPz01rAHvCD6w9OqXiFSQtqWEk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7adb1819de85069b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/gsap/3.9.1/gsap.min.js
104.17.25.14200 OK 23 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/gsap/3.9.1/gsap.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (63851)
Hash 54f1891cb82fd16d04d8133f13079a5b
6582233e611f99b744e271aa71198ae245df9e3a
4ebe73a5c9b58dedbc529078b52c203a036bb2d32082de4535d21ab1c5cc308d
GET /ajax/libs/gsap/3.9.1/gsap.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 23:57:04 GMT
content-type: application/javascript; charset=utf-8
content-length: 22890
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61c68a7c-596a"
last-modified: Sat, 25 Dec 2021 03:05:32 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 265492
expires: Thu, 14 Mar 2024 23:57:04 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RrEEAryxAOM4WImwNkazbEmzqwTXrC9ensVDWIstDd8iPFGDSXV7V3kKbZTFycNQVCbSa%2FiEzBmnJ0gPVlc02GfWoUPCon%2F2OoxR2rbKif1DTe%2BUuwcjaoFc1AP2rGDKC7J%2FGG5G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7adb1819de86069b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.187.206.80101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.206.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: d5C8NjA4MOwY0ihWFF7C1A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VClf7c9meJYrWFl7gP+/8aPVZ6w=
cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/js/bootstrap.bundle.min.js
151.101.1.229200 OK 24 kB URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/js/bootstrap.bundle.min.js
IP 151.101.1.229:0
File type ASCII text, with very long lines (65299)
Hash 5cd004512f2cbef484f3a6975d94b87b
0ca8f25e31f4ee834084b9fac3e4ae0ffb6230b7
24a1bc33c9bbe49a13020cb8d209d51dbda4d7d8394f85f8abf3766c4e6104eb
GET /npm/bootstrap@4.6.1/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative-media.devmngt.com
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.6.1
x-jsd-version-type: version
etag: W/"14535-A2PLWLentg73+/gri862MFIyUBo"
content-encoding: br
accept-ranges: bytes
date: Sat, 25 Mar 2023 23:57:04 GMT
age: 903440
x-served-by: cache-fra-eddf8230130-FRA, cache-bma1662-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23650
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 63ca8c4e17e0b692d1829cd62b9af3af
d0bbecbe0b93ea21026898dbd13edee5fc071cb2
1208545ecf01edb7bcef0b3c288d9edd34d2034c7404ba68a64c2ef251cb42f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 23:57:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/css/bootstrap.min.css
151.101.1.229200 OK 162 kB URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap@4.6.1/dist/css/bootstrap.min.css
IP 151.101.1.229:0
File type ASCII text, with very long lines (65326)
Size 162 kB (162017 bytes)
Hash d44328cee87c2b405213893ba35eaf78
1fb83fc595cf28bf9362d87610eadfa3b7bbbe59
0c5ed985fdbddc027124d4e6879ce1a1860832cda85e2b517c18d8fbd2fffc06
GET /npm/bootstrap@4.6.1/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative-media.devmngt.com
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.6.1
x-jsd-version-type: version
etag: W/"278e1-H7g/xZXPKL+TYth2EOrfo7e7vlk"
accept-ranges: bytes
date: Sat, 25 Mar 2023 23:57:05 GMT
age: 903441
x-served-by: cache-fra-eddf8230108-FRA, cache-bma1662-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 162017
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/jquery@3.5.1/dist/jquery.slim.min.js
151.101.1.229200 OK 26 kB URL HTTP/2 cdn.jsdelivr.net/npm/jquery@3.5.1/dist/jquery.slim.min.js
IP 151.101.1.229:0
File type ASCII text, with very long lines (65245)
Hash 5ee2c599aee29b308610d836f4130958
4c8af497b2874bb19135711dc27cdf1fddbf217c
00469193910e968b4e890b95617bdd8c6d3770537cd9ff39d1fdde6c6b5549f4
GET /npm/jquery@3.5.1/dist/jquery.slim.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://creative-media.devmngt.com
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.5.1
x-jsd-version-type: version
etag: W/"11abc-z42YIVUtUbtQzlcuaWq6EwkGWAA"
content-encoding: br
accept-ranges: bytes
date: Sat, 25 Mar 2023 23:57:05 GMT
age: 903440
x-served-by: cache-fra-eddf8230022-FRA, cache-bma1662-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26139
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 63ca8c4e17e0b692d1829cd62b9af3af
d0bbecbe0b93ea21026898dbd13edee5fc071cb2
1208545ecf01edb7bcef0b3c288d9edd34d2034c7404ba68a64c2ef251cb42f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 23:57:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.20.226:0
Hash d6b8a5dd6c1cad3410f8097b7b57ec67
6f0ec9f8cae9f3b74a8003eb6b935e6da2b0f587
1ed0829915d7b7268c38cfd33cb6718a5ebc03e021ad94157b8d2561b0e91c39
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:57:05 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "90DD938D657468F80057F0D4CFB9C1C50B04ABC6"
Expires: Sun, 26 Mar 2023 11:00:00 GMT
Last-Modified: Sat, 25 Mar 2023 23:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1739
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7adb181a7ba9b521-OSL
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
216.58.211.10200 OK 31 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP 216.58.211.10:0
File type ASCII text, with very long lines (65451)
Hash 903bc7a7e510f87aa5d0201eb59a0832
ac9aa4dd94cde1bcba9037e94087138b127e41fc
41a7ac8150cc9f38421451d5143c1ffec7a1f1fafbf7a7fc0f51b98ad699cf8f
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Mar 2023 11:24:26 GMT
expires: Fri, 22 Mar 2024 11:24:26 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 217959
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/css/fonts/stylesheet.css
198.54.115.248200 OK 164 B URL HTTP/2 creative-media.devmngt.com/front-assets/css/fonts/stylesheet.css
IP 198.54.115.248:0
Hash 946c9468b384f846a9abc19bad44cb2e
b71f80a7c2baa4edc63409463decdf2d11511eba
f7d8d3f5613443fd9d95c6f4abaa1c562fbd13651985def970a23c5163ba4cca
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/css/fonts/stylesheet.css HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:04 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 164
date: Sat, 25 Mar 2023 23:57:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/css/owl.theme.default.min.css
198.54.115.248200 OK 375 B URL HTTP/2 creative-media.devmngt.com/front-assets/css/owl.theme.default.min.css
IP 198.54.115.248:0
File type ASCII text, with very long lines (846)
Hash efa70e65806085ba368ee8b5c605f14e
dce9bd99bef13484807ad1f738fe4dabcb5f5538
9532724b2017ae923698c648666c256804e7756c046fb887380c8fbdda7933be
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/css/owl.theme.default.min.css HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:04 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 375
date: Sat, 25 Mar 2023 23:57:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/css/owl.carousel.min.css
198.54.115.248200 OK 915 B URL HTTP/2 creative-media.devmngt.com/front-assets/css/owl.carousel.min.css
IP 198.54.115.248:0
File type ASCII text, with very long lines (3184)
Hash 6a92a9ec6c4f2b4d1e1528d0a6a33d88
5af68f48530fdb2bac19b2cd0eb3ebe183f90f47
d0673931f5a3f471ea23b2ed4816304b70ed9008c5382ae2954bae941a34d252
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/css/owl.carousel.min.css HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:04 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 915
date: Sat, 25 Mar 2023 23:57:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/css/responsive.css
198.54.115.248200 OK 986 B URL HTTP/2 creative-media.devmngt.com/front-assets/css/responsive.css
IP 198.54.115.248:0
Hash 569864841bcf9e1de85d8a4c7a603c47
58e49f22ea36f3127d9179f02c91aed5e1819583
03e9298c1ba96e6c577874053ba2aa7ce80858aefa0fde032409ea20e4584694
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/css/responsive.css HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:04 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 986
date: Sat, 25 Mar 2023 23:57:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/css/style.css
198.54.115.248200 OK 4.5 kB URL HTTP/2 creative-media.devmngt.com/front-assets/css/style.css
IP 198.54.115.248:0
Hash 94843e145a3073d255cad0b01d2847c2
e181ab8a75526a8456a0f8692fb70d87545390ba
a57557d156076ad75820baea35e6937b0d33d4ab5f5df0bd101f8eb2485b8b9d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/css/style.css HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:04 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4524
date: Sat, 25 Mar 2023 23:57:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 63ca8c4e17e0b692d1829cd62b9af3af
d0bbecbe0b93ea21026898dbd13edee5fc071cb2
1208545ecf01edb7bcef0b3c288d9edd34d2034c7404ba68a64c2ef251cb42f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 23:57:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 63ca8c4e17e0b692d1829cd62b9af3af
d0bbecbe0b93ea21026898dbd13edee5fc071cb2
1208545ecf01edb7bcef0b3c288d9edd34d2034c7404ba68a64c2ef251cb42f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 23:57:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
creative-media.devmngt.com/front-assets/img/logo.png
198.54.115.248200 OK 17 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/logo.png
IP 198.54.115.248:0
File type PNG image data, 328 x 103, 8-bit/color RGBA, non-interlaced\012- data
Hash 76527ecb0c9f9308c59b18c64edc6363
efcb99b1213cb7d9943d006bccf15533d566b779
b53f41ffbe780c17c4c1d30176a1cdc86611d90f8d226f192346e73829b52598
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/logo.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:04 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 17193
date: Sat, 25 Mar 2023 23:57:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/icons/about2.png
198.54.115.248200 OK 5.4 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/icons/about2.png
IP 198.54.115.248:0
File type PNG image data, 61 x 61, 8-bit/color RGBA, non-interlaced\012- data
Hash 64505f2f27762f4354c4c6697ee3d3b8
78c9f42438645f1427227a17d43c94fa2e805fd6
dd400496415c48ba72d49faa8e4760ce2af6c9471bc8ce98b7cd91561212034a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/icons/about2.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:04 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 5410
date: Sat, 25 Mar 2023 23:57:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/icons/about1.png
198.54.115.248200 OK 4.2 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/icons/about1.png
IP 198.54.115.248:0
File type PNG image data, 55 x 55, 8-bit/color RGBA, non-interlaced\012- data
Hash 2ca89768de4a9f235b56ceb873461661
0d5a70b96cb119c9174f906230d79f33cfc4208d
a62ea945269322b95ab3de79db637e8df371dae50f3ae54b994a04316f5be51d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/icons/about1.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:04 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 4182
date: Sat, 25 Mar 2023 23:57:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/icons/s1.png
198.54.115.248200 OK 4.3 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/icons/s1.png
IP 198.54.115.248:0
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash b3f7a94bc7c3321bae19f91ba7cfc352
aeda69f64ecd5a9908c0249e33b6d94afcab814e
c1b05bea7767b6a4567464dbe631c3cfe7e4651cf6d417eded779a71bec9a37a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/icons/s1.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 4292
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/icons/s3Ornge.png
198.54.115.248200 OK 6.1 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/icons/s3Ornge.png
IP 198.54.115.248:0
File type PNG image data, 83 x 83, 8-bit/color RGBA, non-interlaced\012- data
Hash 29421d79c14c00da0a7227aadaf0d21a
bbb7b6b33e83d29b1f8fcdba812fe78b59309216
509002d4792cda7d26f6985421cf86d8da2101d62e09b3cc28fba142584b94c8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/icons/s3Ornge.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 6062
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/icons/s2.png
198.54.115.248200 OK 3.4 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/icons/s2.png
IP 198.54.115.248:0
File type PNG image data, 76 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 8074fa2eaaae4e83c45a5cd8aa8853cb
ec7f35de57957b65a1c24ee13a7d8ac58ee30c65
c24362f6e9b34f9ed2d0f70bbf4dd8ce2cd7197f5e50e83be0e39964474d21a8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/icons/s2.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 3371
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/icons/wcu2.png
198.54.115.248200 OK 4.5 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/icons/wcu2.png
IP 198.54.115.248:0
File type PNG image data, 95 x 95, 8-bit/color RGBA, non-interlaced\012- data
Hash d8d500817a508c1797d4e4372175e44f
2ddfa00f05b70724b23e06a2a2a937aabd6ea363
cda79421b719d73133b0f808ec40e957db1578ffd05ef8394eacb47c4ce394f1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/icons/wcu2.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 4450
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/icons/wcu3.png
198.54.115.248200 OK 5.0 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/icons/wcu3.png
IP 198.54.115.248:0
File type PNG image data, 94 x 94, 8-bit/color RGBA, non-interlaced\012- data
Hash d9340f9df73388e580a3586901ee6a39
2c99daac71cf291a4158fec50da014eae8f59287
8cefd0d8576caf897b7bf82c295671ff4eb98569ed35a73451cc0d48206a7541
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/icons/wcu3.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 5010
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/icons/wcu1.png
198.54.115.248200 OK 2.7 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/icons/wcu1.png
IP 198.54.115.248:0
File type PNG image data, 77 x 77, 8-bit/color RGBA, non-interlaced\012- data
Hash 0ab4b7d94eaec56d057e4768343d1c88
8ade001efa96561e67d2539b6f3617a46d2eb790
e02dc9c06b1b4f5cc5c6c752f898a8e4e073088df3412e1db63f448561376afd
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/icons/wcu1.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 2704
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/icons/wcu4.png
198.54.115.248200 OK 7.2 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/icons/wcu4.png
IP 198.54.115.248:0
File type PNG image data, 97 x 97, 8-bit/color RGBA, non-interlaced\012- data
Hash f4397f1c621bd5118a73fdfb97df7c93
9cc5e5546ea53fce5dbfd83bf9c27a171dd5c13d
19d691668a7c6ef9eead05ab6853bde1044e2b1195edbe3a0262307ad686e265
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/icons/wcu4.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 7159
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/icons/s3.png
198.54.115.248200 OK 4.1 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/icons/s3.png
IP 198.54.115.248:0
File type PNG image data, 83 x 83, 8-bit/color RGBA, non-interlaced\012- data
Hash 232534fe725caa2afeb089c17635bf80
e7d5b866446908bec0b7e06c1144a054c3a84aef
fe6fdb5a871aac785bd0a2a0f092010a8542a1f0fcb6a46448461c197fd88bb2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/icons/s3.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 4127
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/clients/3.png
198.54.115.248200 OK 2.6 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/clients/3.png
IP 198.54.115.248:0
File type PNG image data, 127 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 19b4e5e5b8630e564f65e80c685c283f
09d142e453f2536c897702bc7534cbc4fd2cac4a
18b5526355af033c2d846f0fee1497e72cbccf095d2edb46411454ad731d193c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/clients/3.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 2631
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/clients/1.png
198.54.115.248200 OK 2.2 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/clients/1.png
IP 198.54.115.248:0
File type PNG image data, 130 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash c16777675be278cecbda14d56517b9e9
ace1986fd7402d9b73fa39168b7e1732f9725ca7
fa62936aac6ae4b31fb625243375475efe73f09dce5b56ff07f0ecaef8609fac
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/clients/1.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 2165
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/clients/2.png
198.54.115.248200 OK 1.9 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/clients/2.png
IP 198.54.115.248:0
File type PNG image data, 141 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 658c5a1bc38e5570ced6bfd614100659
c5a9dfabc63fe715d5db0d2c8854fc0bdfe95c1c
6fce1ee5479569c545f8ff4321dc0ac5a2dad28626f990d1f5fbc08463bd0c3d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/clients/2.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 1867
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/clients/5.png
198.54.115.248200 OK 3.1 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/clients/5.png
IP 198.54.115.248:0
File type PNG image data, 178 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 3289bdea5c884f865232f8e5b3a484f0
f1e844e20cc0e1be2a2a01c2670afd33707a6246
b576809b2954fb36169714db0611698fedc1bc4e5feeda1806bfb8a3da6bc9f8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/clients/5.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 3083
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/clients/4.png
198.54.115.248200 OK 2.3 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/clients/4.png
IP 198.54.115.248:0
File type PNG image data, 145 x 41, 8-bit/color RGBA, non-interlaced\012- data
Hash 6222082ef822e5e8f63ca959daeb6e79
74367e17e71ca084581ceadcf25efb4f2dcbcb71
615084273652f0003a27acc056a10ffc55423e6b637543ee19af4eee7a0701e7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/clients/4.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 2341
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/logo-footer.png
198.54.115.248200 OK 14 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/logo-footer.png
IP 198.54.115.248:0
File type PNG image data, 172 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash d03cae86c44a124a32ab8f19ebcea0f5
559d2ae51158fee4dc240ced5e7e4f7b31b791de
cebb1e8d6293f8c12b9c429507041fe1b87cd6b89c57cf2432ba909afad2d506
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/logo-footer.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 14015
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3201
Expires: Sun, 26 Mar 2023 00:50:27 GMT
Date: Sat, 25 Mar 2023 23:57:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3201
Expires: Sun, 26 Mar 2023 00:50:27 GMT
Date: Sat, 25 Mar 2023 23:57:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3201
Expires: Sun, 26 Mar 2023 00:50:27 GMT
Date: Sat, 25 Mar 2023 23:57:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ff4405f-78db-4a79-9e55-e4fc35844c68.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ff4405f-78db-4a79-9e55-e4fc35844c68.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffef80630953d486de654abbb5d40ccd
06323c322ac667e3388bba406222121607eb804a
b853a741069e96d8430d766bb1422e50488622729bd069e29b8839ddc5743822
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ff4405f-78db-4a79-9e55-e4fc35844c68.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6566
x-amzn-requestid: 0a9abca1-24c3-4adf-8509-f8ebcab1c24d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1smEZFIAMFyFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6983-6ce8a53e779d724a11af3531;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:07 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: ibxm5Q-obzgZHNavKjqxgcgY9ePeF9PTC8wPzjE8fERmyVxaxnahKQ==
via: 1.1 0a166b53605851fe961f5a2952e5a748.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:50:36 GMT
etag: "06323c322ac667e3388bba406222121607eb804a"
content-type: image/jpeg
age: 7590
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1ec08d4bd079a92161fc80f41281b5a9
bf61369962342cce85de8f48942b4b150fd2721e
8a8ed12c31d89d71c3cb88f0813ded83939529206461e917dcb0b8bc11abdda4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3589
x-amzn-requestid: 9c09af43-79e8-4734-b28b-4194e0bb1e4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1uyE2joAMF50g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6991-7607d33f6301182b591c56e8;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:21 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Olik0rOopNpu03_GQWvvGeuS0D579nAdtuk9RGWUQSopMavKHDn1cQ==
via: 1.1 46673955829b59a6da0ab071e0b7fbea.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:53:15 GMT
age: 7431
etag: "bf61369962342cce85de8f48942b4b150fd2721e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a195fab-643a-48cc-8f4e-51e27511b474.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a195fab-643a-48cc-8f4e-51e27511b474.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8a2437b3c9ab01cd0e2327d4be5c61a
33573e5a6b6c1912702040c6d880c362baf0c3db
2556646c122f89bfce8467d13bf05e68f735373c8c18a33f7258f37f602673cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a195fab-643a-48cc-8f4e-51e27511b474.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5424
x-amzn-requestid: b03169ca-0cc0-49f5-b785-5e29d70048cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1kWGCnIAMFf7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f694e-679415d416cf3b666ec128be;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:36:14 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: HJYBgmjUNbjdPrncK3FAPRUykhg3R25vwcbN6jA4K23HPwRUVDCdpA==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:51:29 GMT
age: 7537
etag: "33573e5a6b6c1912702040c6d880c362baf0c3db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9fb4561-4e9a-4728-817a-dc7935921c78.gif
34.120.237.76200 OK 31 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9fb4561-4e9a-4728-817a-dc7935921c78.gif
IP 34.120.237.76:0
File type GIF image data, version 89a, 296 x 148\012- data
Hash cb02719790621d275340a9f1302ad716
49d537f5017c791f5cf1757a99dffad2aedfb111
4d7be52572d52cd74432b3e32fd1b6e2975a0f7b7090d7f26f46c724647bf099
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9fb4561-4e9a-4728-817a-dc7935921c78.gif HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 30715
x-amzn-requestid: 0c3fb7fe-a3a6-4cff-9bdf-e3d45a9d5ff1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CRi6YHaOoAMF8zQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641d4b75-15abd6411d64661b3e73de78;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 07:04:21 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 25CsOOg-_AbYfjvxIQYCY6MKopENFhVy14qhLfUHmnE0oes8yFroXA==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 07:19:33 GMT
age: 59853
etag: "49d537f5017c791f5cf1757a99dffad2aedfb111"
content-type: image/gif
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Ncagzm12kJaHQtYhhjUUhcfXVfbwMdonoNYqpK-QXEmLfyyENgFnFA==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 08:51:06 GMT
age: 54360
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fcbc03b-3146-4d3b-898e-c53b92f7b7a6.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fcbc03b-3146-4d3b-898e-c53b92f7b7a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 908bd7a6c220345e72fa664f871424c4
61a5d3f11e85d5fd77192701c305cb8651aa6395
9531f5b25cab1030aa579aa9f3b369ecb9daf0b929573897c6516520c06084a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fcbc03b-3146-4d3b-898e-c53b92f7b7a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11100
x-amzn-requestid: 3021b51a-674d-45d7-9939-9257330c0dbc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1hQFs1oAMFb0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f693a-0200a29207f6a3f5074c3cf1;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:35:54 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: jlErPpMe9fQqKvMYIXUDGkEXT-hFUt6veP7Gj8byX1ktNmxSRD_Ozg==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:50:36 GMT
age: 7590
etag: "61a5d3f11e85d5fd77192701c305cb8651aa6395"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/js/owl.carousel.min.js
198.54.115.248200 OK 11 kB URL HTTP/2 creative-media.devmngt.com/front-assets/js/owl.carousel.min.js
IP 198.54.115.248:0
File type ASCII text, with very long lines (31997)
Hash 3cb10c6c01ef15e7d2c5ef33c6f06ee5
561a0008fd649a946ff6cdba379547c998cb4582
2107b826f18f7f10f78a38641124da03dad389704816a86136488123a0f01f3d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/js/owl.carousel.min.js HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: application/javascript
last-modified: Wed, 16 Nov 2022 17:36:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11139
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
unpkg.com/aos@3.0.0-beta.6/dist/aos.css
104.16.122.175200 OK 3.9 kB URL HTTP/2 unpkg.com/aos@3.0.0-beta.6/dist/aos.css
IP 104.16.122.175:0
File type ASCII text, with very long lines (28765), with no line terminators
Hash ded600cf44fa80d7220fa4fb1bcea5be
359f93dc57769588730e8b78f232d26bba96f40b
e7ca1b5c3c8cc5e1dd7c6c91036f1ae4a2062906033d191382c33784036167a6
GET /aos@3.0.0-beta.6/dist/aos.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative-media.devmngt.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 23:57:05 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"705d-miajSdIaS4cfRd/RJKQ/raT5S5g"
via: 1.1 fly.io
fly-request-id: 01F529PAQ8FBT7QKGWC0ES5DBR
cf-cache-status: HIT
age: 27898932
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7adb181a3af90afe-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b644abd1d83faa6f0327486dae33b18d
cb745aa55db6976159ef31ff8835e2b26fd32109
784e1b0a41a50629890a6fd6f58beb9f3a6eb5ba56aa35c671e5217d839aeeac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 23:57:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/jost/v14/92zatBhPNqw73oTd4g.woff2
142.250.74.35200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/jost/v14/92zatBhPNqw73oTd4g.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 26304, version 1.0\012- data
Hash 29404b5009a74d47f2a7923da5741fd5
c8c7a68af3f7e4f92d932203efda0c38e4d170ab
0b7e3af1cb23f3b1cc2c3418f3c31ab3bbadeaa2ba5e72f3cb818e4b44c420f4
GET /s/jost/v14/92zatBhPNqw73oTd4g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://creative-media.devmngt.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26304
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:27:14 GMT
expires: Sat, 23 Mar 2024 10:27:14 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:29:30 GMT
content-type: font/woff2
age: 134992
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b644abd1d83faa6f0327486dae33b18d
cb745aa55db6976159ef31ff8835e2b26fd32109
784e1b0a41a50629890a6fd6f58beb9f3a6eb5ba56aa35c671e5217d839aeeac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 23:57:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
creative-media.devmngt.com/front-assets/img/banner/rectOrng.png
198.54.115.248200 OK 1.5 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/banner/rectOrng.png
IP 198.54.115.248:0
File type PNG image data, 71 x 71, 8-bit/color RGBA, non-interlaced\012- data
Hash a854278e53c648da59272804535498c2
ce58d9fddd55b3dbadc72a6755b3b42563b26ae5
7cf75530a32c3307496c89b8a705bca292f7ad798238fa47f23a0ec6e0108f70
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/banner/rectOrng.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/front-assets/css/style.css
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:06 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 1464
date: Sat, 25 Mar 2023 23:57:06 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/about2.png
198.54.115.248200 OK 509 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/about2.png
IP 198.54.115.248:0
File type PNG image data, 834 x 865, 8-bit/color RGBA, non-interlaced\012- data
Size 509 kB (509113 bytes)
Hash d8bd836bb1d5a99338d92fff0ff6ae35
748bed7f29acfb538fe10916beaa441aef5ac49d
21e8bfc7f77459e7a1fa05c1b3c4fd8841933cf63cb7e0476ad367d33a7e81ee
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/about2.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:04 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 509113
date: Sat, 25 Mar 2023 23:57:04 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/bannerText.png
198.54.115.248200 OK 56 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/bannerText.png
IP 198.54.115.248:0
File type PNG image data, 1918 x 212, 8-bit/color RGBA, non-interlaced\012- data
Hash f1b5e875c3089edb300788796f1874df
f3a0d723f0420b8fcc0e875ee39e3b6c9de29791
2b6c64109b84057ee2376a8f4905da5b72f0778aa8286a55e44c018291b7e214
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/bannerText.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/front-assets/css/style.css
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:06 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 56512
date: Sat, 25 Mar 2023 23:57:06 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/blog/b1.png
198.54.115.248200 OK 431 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/blog/b1.png
IP 198.54.115.248:0
File type PNG image data, 512 x 423, 8-bit/color RGBA, non-interlaced\012- data
Size 431 kB (431137 bytes)
Hash 4c6fec1e255c36a195ff5d501240765b
b3230db85584bcd91507ac5e9c1370c7b36e02fd
c31482a78dd4e3d9cb8e797cac1aced3c96b35d7dc8b914464efbef879d6b014
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/blog/b1.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 431137
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/banner/gear.png
198.54.115.248200 OK 47 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/banner/gear.png
IP 198.54.115.248:0
File type PNG image data, 576 x 663, 8-bit/color RGBA, non-interlaced\012- data
Hash 597a1289c6331a992953d5c67cfd40b4
401d1480d7191ad01e2af37306a8476898d8dda2
79eb062d17358fb367c773f33f8b30374fbb43d151dc87b9ff9e12f55d6d81f7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/banner/gear.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/front-assets/css/style.css
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:06 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 46879
date: Sat, 25 Mar 2023 23:57:06 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/services/s3.png
198.54.115.248200 OK 492 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/services/s3.png
IP 198.54.115.248:0
File type PNG image data, 536 x 607, 8-bit/color RGBA, non-interlaced\012- data
Size 492 kB (491941 bytes)
Hash c2bce65de24966504ef9aff7a8ed18ab
2fe46b73c44d0002cc48d8cad00412d2024cc7cf
5e761cda1e92be3b930d645e0f3f8d706a07f98765dee4fdefbd0a84a03145e3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/services/s3.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:05 GMT
accept-ranges: bytes
content-length: 491941
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/icons/bottomTxt2.png
198.54.115.248200 OK 50 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/icons/bottomTxt2.png
IP 198.54.115.248:0
File type PNG image data, 2435 x 176, 8-bit/color RGBA, non-interlaced\012- data
Hash 31dd80144cc56a984e7893084ea96131
343ccb008cbd78802ca90fc870d754a6d7a5a775
e026523a2722f18ee3d0ec8309e09e2c6604444b2476ccbde350ad6da69be14c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/icons/bottomTxt2.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/front-assets/css/style.css
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:06 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 49959
date: Sat, 25 Mar 2023 23:57:06 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/css/fonts/SharpSans-Bold.woff2
198.54.115.248200 OK 29 kB URL HTTP/2 creative-media.devmngt.com/front-assets/css/fonts/SharpSans-Bold.woff2
IP 198.54.115.248:0
File type Web Open Font Format (Version 2), TrueType, length 28888, version 1.0\012- data
Hash 99c8d92df79a151d9deac2c26873b329
cc58cda0d57ef280b96909a169e86abda41cbbf2
133211444226df38a7f1ad2b86483d5436ad1dc88569ad3687e68545fc9c16ec
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/css/fonts/SharpSans-Bold.woff2 HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://creative-media.devmngt.com/front-assets/css/fonts/stylesheet.css
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:06 GMT
content-type: font/woff2
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 28888
date: Sat, 25 Mar 2023 23:57:06 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/services/s2.png
198.54.115.248200 OK 602 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/services/s2.png
IP 198.54.115.248:0
File type PNG image data, 536 x 607, 8-bit/color RGBA, non-interlaced\012- data
Size 602 kB (601881 bytes)
Hash f0cbbbfe6cc1e206dd9edd93e555d0fd
c053de3612ac6b6dacc513bc9ee18d947c4538bf
6465eb75a6be8bd0f9472a71b81136423c4cd489b18233240350228d28f69d50
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/services/s2.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 601881
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/services/s1.png
198.54.115.248200 OK 607 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/services/s1.png
IP 198.54.115.248:0
File type PNG image data, 536 x 607, 8-bit/color RGBA, non-interlaced\012- data
Size 607 kB (606910 bytes)
Hash c2527c2e50f10e7a5b4582466d1cbd80
074776a2eade77802746081ac1499ca6b23743c7
9e8636e15d8f45730a698d1f7981e3bb0c78a0ff624a61ce5b6a976af84bd186
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/services/s1.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 606910
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/wcu2.png
198.54.115.248200 OK 217 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/wcu2.png
IP 198.54.115.248:0
File type PNG image data, 1509 x 458, 8-bit/color RGBA, non-interlaced\012- data
Size 217 kB (216935 bytes)
Hash b602df3136e8faee36c36cd5e466dfe3
9a5b69a1760ddd4172039f49690d3f7d73be4e53
450f669c7540ddc729429f0ce29b24f40a840176afaa174f81339f39b11e9808
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/wcu2.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/front-assets/css/style.css
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:06 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:05 GMT
accept-ranges: bytes
content-length: 216935
date: Sat, 25 Mar 2023 23:57:06 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/icons/white-splash.png
198.54.115.248200 OK 214 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/icons/white-splash.png
IP 198.54.115.248:0
File type PNG image data, 658 x 670, 8-bit/color RGBA, non-interlaced\012- data
Size 214 kB (214148 bytes)
Hash df6305c70a1535e88154995c8d79a4f2
5b151ddcf1ced4b5858a55fdf8030ae336decac4
38c50dd349eae84c85624023b44a805cbecbf47738a0a2804e9ec804065f8abe
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/icons/white-splash.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/front-assets/css/style.css
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:06 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 214148
date: Sat, 25 Mar 2023 23:57:06 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/icons/orange-splash.png
198.54.115.248200 OK 333 kB URL HTTP/2 creative-media.devmngt.com/front-assets/img/icons/orange-splash.png
IP 198.54.115.248:0
File type PNG image data, 658 x 670, 8-bit/color RGBA, non-interlaced\012- data
Size 333 kB (332651 bytes)
Hash 7e4fc19284ce2d0945ec1298ea88b0f6
ea6c8a9b8e56ea501fec0281a408524a3153dcaa
732dff11aad1b2fde42ff1b0b998d12a8eca35e41e8401e86e8c58514d998767
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/icons/orange-splash.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/front-assets/css/style.css
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:06 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 332651
date: Sat, 25 Mar 2023 23:57:06 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/loginLeft.png
198.54.115.248200 OK 1.3 MB URL HTTP/2 creative-media.devmngt.com/front-assets/img/loginLeft.png
IP 198.54.115.248:0
File type PNG image data, 812 x 794, 8-bit/color RGBA, non-interlaced\012- data
Size 1.3 MB (1251850 bytes)
Hash 2d4c331318953dc6fb71dc2ce29d3cb4
8a29e8b49e1e902c60ccfcb098a188b69671b7d5
7fb6969c8181bbc0796aae03087874ae09d2c35478c4f0b09c0aa841e6e144c6
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/loginLeft.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:05 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 1251850
date: Sat, 25 Mar 2023 23:57:05 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/chooseUs.png
198.54.115.248200 OK 1.2 MB URL HTTP/2 creative-media.devmngt.com/front-assets/img/chooseUs.png
IP 198.54.115.248:0
File type PNG image data, 1920 x 716, 8-bit/color RGBA, non-interlaced\012- data
Size 1.2 MB (1154150 bytes)
Hash a7ecf307caa704c28b0dd3fed43d660f
d3ba2887bcab52eab4a0027710ac29787994fa49
5b3a8ed00334348b7b58f028cbab05e7e047c7733ef1158784c580a781522ab5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/chooseUs.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/front-assets/css/style.css
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:06 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 1154150
date: Sat, 25 Mar 2023 23:57:06 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/front-assets/img/banner/banner.png
198.54.115.248200 OK 3.1 MB URL HTTP/2 creative-media.devmngt.com/front-assets/img/banner/banner.png
IP 198.54.115.248:0
File type PNG image data, 1925 x 1106, 8-bit/color RGBA, non-interlaced\012- data
Size 3.1 MB (3078481 bytes)
Hash 510e6f9b244eaf28945c35c760219932
d4bd7d22f3a6715c68a011bd62e3871c319fad7d
a07e3938c98cda7bdbb45ecafbb4ddf2f54fbd13671069bd894928b5d8c86643
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /front-assets/img/banner/banner.png HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/front-assets/css/style.css
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:06 GMT
content-type: image/png
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 3078481
date: Sat, 25 Mar 2023 23:57:06 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
creative-media.devmngt.com/favicon.ico
198.54.115.248200 OK 0 B URL HTTP/2 creative-media.devmngt.com/favicon.ico
IP 198.54.115.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: creative-media.devmngt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Cookie: XSRF-TOKEN=eyJpdiI6Impyb2JjWW1nNTBVOWl4bGNWRXBWVnc9PSIsInZhbHVlIjoiMjZ3Kzh6bmlXYzNBK2dyMGcrditmdmllTjJVaGxOWDljWWVVZ1h6TTVRM3oremVQUEVoS2E1bHIydy9oa2xmWUpSUnhDUGxDZEtRWkdjdDI4b0JIMmZ0T0hrd1NIbXc1RnBMR09BSlAvR1FQNU90M3Y5a3F0Mm1hQkZlU1JncTgiLCJtYWMiOiJkYzk2MWVhODJmMDJhZmQzYTFjMWI4MTA2MDc5NDdjODM0NzBlZjc2NzMyZmNjZjZjZDRkMmEzOTA2MjgyMTI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Imo2SFJxZEN4SmVKWlBKeE9xcndyaGc9PSIsInZhbHVlIjoidVB5a01EdWFPcVYrTHVjRlRlc3RzUWljTFplRXhIR0dUZG1UUHRGOXEvRTRTaUZjcHhHMUJXMVN6NHJXTktyaEtlNEdJcWRDYmNmM2N0czMvdzFPcTZoMnE5ZE9BTUd4ZXVseVNTTEdvOXRsTUJtMUY3TnhlQTVWWWxOR1BLZU4iLCJtYWMiOiIyMDM1YmM5MjU1MDg4MjkwYTE4Y2ZhNWIzNDY2ZmU0ZWY1YjE2ZGNkMGJmN2RmM2QyZWE3NTYxYjZlNGY3ZWY1IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 23:57:08 GMT
content-type: image/x-icon
last-modified: Wed, 16 Nov 2022 17:36:04 GMT
accept-ranges: bytes
content-length: 0
date: Sat, 25 Mar 2023 23:57:08 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbfc8880-7788-4d8c-a59c-c048b787b772.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbfc8880-7788-4d8c-a59c-c048b787b772.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9b21b2c60279839939b60afd83d047fa
544c243fe2d69156f50eec156a62de127128a028
091a59214cfc0af90b4cb820bb521577ae63e862ec10160b8f64c9a9e593630d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbfc8880-7788-4d8c-a59c-c048b787b772.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7823
x-amzn-requestid: c528eae7-69b4-4669-8c15-2b306586b84b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1kWHx5IAMFlEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f694e-340c77491ea4440b340e3822;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:36:14 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: L_VF003IBR5rwk7Dkcc5BLDFTR4sUCzXvgD3mcLML1bzNatBZjW-Cg==
via: 1.1 e39f48cc8f516dc1072afdb086c71f32.cloudfront.net (CloudFront), 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:49:34 GMT
age: 7659
etag: "544c243fe2d69156f50eec156a62de127128a028"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
unpkg.com/axios@1.3.4/dist/axios.min.js
104.16.122.175200 OK 0 B URL HTTP/2 unpkg.com/axios@1.3.4/dist/axios.min.js
IP 104.16.122.175:0
GET /axios@1.3.4/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative-media.devmngt.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 23:57:05 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"7b6b-klAOkX2xUwYgvQjwva/+jvZTWJ8"
via: 1.1 fly.io
fly-request-id: 01GSXFKVN7XPGV27JZ46PGZMKM-fra
cf-cache-status: HIT
age: 2688180
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7adb181a3afa0afe-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Jost:wght@100;200;300;400;500;600;700;800;900&display=swap
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Jost:wght@100;200;300;400;500;600;700;800;900&display=swap
IP 216.58.207.202:0
GET /css2?family=Jost:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 25 Mar 2023 23:57:05 GMT
date: Sat, 25 Mar 2023 23:57:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
unpkg.com/aos@next/dist/aos.css
104.16.122.175302 Found 0 B URL HTTP/2 unpkg.com/aos@next/dist/aos.css
IP 104.16.122.175:0
GET /aos@next/dist/aos.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 25 Mar 2023 23:57:04 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /aos@3.0.0-beta.6/dist/aos.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GWDK2M41GRH3VZ4JXXGZZJRW-ams
cf-cache-status: HIT
age: 195
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7adb1819dab60afe-OSL
X-Firefox-Spdy: h2
unpkg.com/axios/dist/axios.min.js
104.16.122.175302 Found 0 B URL HTTP/2 unpkg.com/axios/dist/axios.min.js
IP 104.16.122.175:0
GET /axios/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 25 Mar 2023 23:57:04 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /axios@1.3.4/dist/axios.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GWDJWQ8F45TKNYAC1XJHXMZN-ams
cf-cache-status: HIT
age: 388
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7adb1819dab70afe-OSL
X-Firefox-Spdy: h2
unpkg.com/aos@next/dist/aos.js
104.16.122.175302 Found 0 B URL HTTP/2 unpkg.com/aos@next/dist/aos.js
IP 104.16.122.175:0
GET /aos@next/dist/aos.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creative-media.devmngt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 25 Mar 2023 23:57:04 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /aos@3.0.0-beta.6/dist/aos.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GWDK5VAZHSAVRT4KXKH0F7A1-ams
cf-cache-status: HIT
age: 89
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7adb1819dab80afe-OSL
X-Firefox-Spdy: h2
unpkg.com/aos@3.0.0-beta.6/dist/aos.js
104.16.122.175200 OK 0 B URL HTTP/2 unpkg.com/aos@3.0.0-beta.6/dist/aos.js
IP 104.16.122.175:0
GET /aos@3.0.0-beta.6/dist/aos.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creative-media.devmngt.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 23:57:05 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"35e8-44lQwbzmXp8EjjBbNWf/kKDJI+M"
via: 1.1 fly.io
fly-request-id: 01G4XPMRK60WFNVK2QWFYNAZ5A-fra
cf-cache-status: HIT
age: 25229489
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7adb181a3afb0afe-OSL
content-encoding: br
X-Firefox-Spdy: h2