r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 30c30d01178fc74ac5266ee64c3ee85b
c0c2af8a864c00aa85a8775d55f85ab107150a3b
c15644f69fbfeb99074c7e9711dfc9452ee164fa78eb981b6bae4fb7e3585f2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C15644F69FBFEB99074C7E9711DFC9452EE164FA78EB981B6BAE4FB7E3585F2A"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14448
Expires: Fri, 18 Nov 2022 10:02:05 GMT
Date: Fri, 18 Nov 2022 06:01:17 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash be1be806b5dca7facbb45a6c3db44652
7ae9380a2f3eca959fe6ff6b3832a17cffd12cf4
1f3338058f8e9cae5c9fdd733c74564312726b01c6efdcd628d851d0c99876b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5523
Cache-Control: max-age=108129
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:01:17 GMT
Etag: "63760d7b-1d7"
Expires: Sat, 19 Nov 2022 12:03:26 GMT
Last-Modified: Thu, 17 Nov 2022 10:31:23 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 05:44:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 991
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18150
Expires: Fri, 18 Nov 2022 11:03:47 GMT
Date: Fri, 18 Nov 2022 06:01:17 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: iuV3/0etou7A35YyfupZPSWo9KuKLaESK+dC3x4D7ILI8b0eEKO+N5wznP87vjLxO7WeyylSxPw=
x-amz-request-id: P1VEWKYSGQX2T3E6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 05:52:46 GMT
age: 511
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 06:01:17 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
powerfultantrikbaba.com/
103.21.58.181200 OK 9.2 kB IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1441), with CRLF line terminators
Hash fa1677fdee93cbf28ad9ec33dc60d8b8
d95148f48d0f4b853527a0d5eaab9aa30edcac53
6263009eba6705be0d4452d256f82ee04b767ac0a6ab52dd5a54ff8e63771396
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:17 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 29 May 2022 07:52:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9233
Keep-Alive: timeout=5, max=75
Content-Type: text/html
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.25.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:01:17 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 568386
expires: Wed, 08 Nov 2023 06:01:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LT1zQ0WaL4qKaD0kSDYkT10hVL1O8AJO2F%2FXx6TMrDpCuFDh%2B8lEuBpQAXirszQ0t6M%2Fj9n4pQJ%2Fdfj%2BVGC0DeGj60dRxXTGBLuSaQHuiiSguES747lScDzP5keBY8dO27u29idR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76be7d9bfcedb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 57b9e0599773fd299a5c5463f4bbe6fa
0fff26639537e962b88553c63d319bf8aa911290
300f35f512d2654631928d7e4432f37187272a6cf9443fd929d87600f7737e63
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4048
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:01:17 GMT
Last-Modified: Fri, 18 Nov 2022 04:53:50 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ff6e1100d35befa57c16d34bb69a6844
008150cacc81fc343d0c6de9de83ebf8ac7623ee
2d3f47ed6082b282dfb6639a711da50be67b52f1802747a31ecc3fdbdc669711
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6008
Cache-Control: max-age=98540
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:01:17 GMT
Etag: "6375e621-1d7"
Expires: Sat, 19 Nov 2022 09:23:37 GMT
Last-Modified: Thu, 17 Nov 2022 07:43:29 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 57b9e0599773fd299a5c5463f4bbe6fa
0fff26639537e962b88553c63d319bf8aa911290
300f35f512d2654631928d7e4432f37187272a6cf9443fd929d87600f7737e63
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6292
Cache-Control: max-age=96296
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:01:17 GMT
Etag: "6375dc41-116"
Expires: Sat, 19 Nov 2022 08:46:13 GMT
Last-Modified: Thu, 17 Nov 2022 07:01:21 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:01:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 57b9e0599773fd299a5c5463f4bbe6fa
0fff26639537e962b88553c63d319bf8aa911290
300f35f512d2654631928d7e4432f37187272a6cf9443fd929d87600f7737e63
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4048
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:01:17 GMT
Last-Modified: Fri, 18 Nov 2022 04:53:50 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
142.250.74.10200 OK 31 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP 142.250.74.10:0
File type ASCII text, with very long lines (65451)
Hash 903bc7a7e510f87aa5d0201eb59a0832
ac9aa4dd94cde1bcba9037e94087138b127e41fc
41a7ac8150cc9f38421451d5143c1ffec7a1f1fafbf7a7fc0f51b98ad699cf8f
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:13:03 GMT
expires: Thu, 16 Nov 2023 19:13:03 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
age: 125294
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:01:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
powerfultantrikbaba.com/css/style.css
103.21.58.181200 OK 8.7 kB URL HTTP/1.1 powerfultantrikbaba.com/css/style.css
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 0dac595f86ca10127bac515a30fce656
db676fd60223d1c942633d6cd594c84cf039ef45
602d3862e1be8c3c1fe6a0beb4757216b89cec6fd5cdf9f9181e6e5c4c9d9948
GET /css/style.css HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:17 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 28 May 2022 17:05:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8742
Keep-Alive: timeout=5, max=75
Content-Type: text/css
powerfultantrikbaba.com/ajax/libs/font-awesome/5-13-1/css/all.min.html
103.21.58.181404 Not Found 355 B URL HTTP/1.1 powerfultantrikbaba.com/ajax/libs/font-awesome/5-13-1/css/all.min.html
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash cb50b952a1a41c3358018129e081d511
9b3ce22f173597240fd0c22ff649f3ffb9c6ea99
791b5cb893932898c350d1ec9888ee9c2feaea002431d12e9a1ba29331813be0
Analyzer Verdict Alert fortinet Malware
GET /ajax/libs/font-awesome/5-13-1/css/all.min.html HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 404 Not Found
Date: Fri, 18 Nov 2022 06:01:17 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2021 15:51:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 355
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 05:25:01 GMT
cache-control: public,max-age=3600
age: 2176
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
kit.fontawesome.com/a076d05399.js
104.18.23.52403 Forbidden 22 B URL HTTP/2 kit.fontawesome.com/a076d05399.js
IP 104.18.23.52:0
File type ASCII text, with no line terminators
Hash fd97e4f669829c0ab67c2203a6840a09
3cf1ecf50b3c929fb32a43896505db3ff9602275
6ee8906b2c990cc0ccd14c16ed0482a5b6dcacf438908ff2d8a98a4c4d5a35e3
GET /a076d05399.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://powerfultantrikbaba.com
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Fri, 18 Nov 2022 06:01:17 GMT
content-type: text/plain; charset=utf-8
content-length: 22
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; preload
x-request-id: FyiYchWtSl6MNBAyICah
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 76be7d9c4ba7b512-OSL
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
104.17.25.14200 OK 77 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 104.17.25.14:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://powerfultantrikbaba.com
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:01:17 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 128762
expires: Wed, 08 Nov 2023 06:01:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZFWzA2zDxo2ZuuvwPU2t9DOMELK1%2F5Ct%2BCQ%2FY0MB1ReDdp8qF%2FRxnqR1tifIcBP4Irq04aiVmQIRd4LKmvkkl%2F70inivQKBKjNx0E84Jfiep6UHuJAWzcnWxtRo%2Bag0ssX%2FFBWzW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76be7d9e4a560b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:01:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:01:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://powerfultantrikbaba.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:34:08 GMT
expires: Thu, 16 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 124029
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sofia/v14/8QIHdirahM3j_su5uI0.woff2
216.58.207.195200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/sofia/v14/8QIHdirahM3j_su5uI0.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 11524, version 1.0\012- data
Hash f4a7adcf8a6ed18bfd2535024b1650f7
96c6b1fedf4a5a13e2ccd0efcd057b8dac6bfb88
e3ac38d3450e1b34fc06a525f31cd6b99203b646292c6c393a3c588ffe46018f
GET /s/sofia/v14/8QIHdirahM3j_su5uI0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://powerfultantrikbaba.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 06:48:09 GMT
expires: Fri, 17 Nov 2023 06:48:09 GMT
cache-control: public, max-age=31536000
age: 83588
last-modified: Wed, 27 Apr 2022 16:01:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c10055ce87434f700ff8b20e3be1f919
477b3c9f1da0c464282bb54572737e76b6e346da
4d78eb296876122e5ff40fcd7667adf1bf8a4b1ee4c8203c88a63ce8d7910a57
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1649
Cache-Control: max-age=99187
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:01:17 GMT
Etag: "6375f9af-1d7"
Expires: Sat, 19 Nov 2022 09:34:24 GMT
Last-Modified: Thu, 17 Nov 2022 09:06:55 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
powerfultantrikbaba.com/img1.wsimg.com/tcc/tcc_l.combined.1.0.6.min.html
103.21.58.181404 Not Found 355 B URL HTTP/1.1 powerfultantrikbaba.com/img1.wsimg.com/tcc/tcc_l.combined.1.0.6.min.html
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash cb50b952a1a41c3358018129e081d511
9b3ce22f173597240fd0c22ff649f3ffb9c6ea99
791b5cb893932898c350d1ec9888ee9c2feaea002431d12e9a1ba29331813be0
Analyzer Verdict Alert fortinet Malware
GET /img1.wsimg.com/tcc/tcc_l.combined.1.0.6.min.html HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 404 Not Found
Date: Fri, 18 Nov 2022 06:01:17 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2021 15:51:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 355
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:01:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
powerfultantrikbaba.com/ajax/libs/font-awesome/5-13-1/css/all.min.html
103.21.58.181404 Not Found 355 B URL HTTP/1.1 powerfultantrikbaba.com/ajax/libs/font-awesome/5-13-1/css/all.min.html
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash cb50b952a1a41c3358018129e081d511
9b3ce22f173597240fd0c22ff649f3ffb9c6ea99
791b5cb893932898c350d1ec9888ee9c2feaea002431d12e9a1ba29331813be0
Analyzer Verdict Alert fortinet Malware
GET /ajax/libs/font-awesome/5-13-1/css/all.min.html HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 404 Not Found
Date: Fri, 18 Nov 2022 06:01:18 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2021 15:51:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 355
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html
push.services.mozilla.com/
35.160.97.225101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.97.225:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Ie+gXvj4am4HBo/zhhKfPg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ExUvhl3XecSR1u/ahEn5ZwjJzAk=
powerfultantrikbaba.com/images/testi1.jpg
103.21.58.181200 OK 6.3 kB URL HTTP/1.1 powerfultantrikbaba.com/images/testi1.jpg
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 77d520dcac85eb997f32e477bf89e8f3
366bcc1952e6c558e63343f7dc26ad0b37f41c4d
548d19b319c91df966a1350bb7a416983e0bd9fc5a961348fed091480f8147ac
GET /images/testi1.jpg HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:18 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 22 Feb 2022 08:42:16 GMT
Accept-Ranges: bytes
Content-Length: 6268
Keep-Alive: timeout=5, max=75
Content-Type: image/jpeg
powerfultantrikbaba.com/images/testi3.jpg
103.21.58.181200 OK 7.5 kB URL HTTP/1.1 powerfultantrikbaba.com/images/testi3.jpg
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 727a908280b7624394735c4ded3b5191
ee6d3b00b86231113c12377b6a91f06f59ae3e35
17f3204bda57b3cf33dcd9a1463cc61286f10f74c1d308272430d7c4ba70c35a
GET /images/testi3.jpg HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:18 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 22 Feb 2022 08:42:14 GMT
Accept-Ranges: bytes
Content-Length: 7492
Keep-Alive: timeout=5, max=75
Content-Type: image/jpeg
powerfultantrikbaba.com/images/best6.png
103.21.58.181200 OK 67 kB URL HTTP/1.1 powerfultantrikbaba.com/images/best6.png
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data
Hash 438519ccb7c52c3199b16f94adb502f4
20a35a7d50388b3e3be1f6ab8e04fd6698d6d9b2
f37f9f46c10453537e95fbbf890f59295b548e6b0000cbcf34a8555cd201808a
GET /images/best6.png HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:17 GMT
Server: Apache
Last-Modified: Tue, 22 Feb 2022 08:42:32 GMT
Accept-Ranges: bytes
Content-Length: 66859
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png
powerfultantrikbaba.com/images/best2.png
103.21.58.181200 OK 54 kB URL HTTP/1.1 powerfultantrikbaba.com/images/best2.png
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data
Hash 7784b1db2f86be5c607fa4f7f96acebb
64d8416ba85ac8cf219f09fee518839bcb46f597
8271a4cbd0eb6f3a3e85c509cc2558f7a63904e77d96bd800b2566db622705da
GET /images/best2.png HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:17 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 22 Feb 2022 08:42:34 GMT
Accept-Ranges: bytes
Content-Length: 53539
Keep-Alive: timeout=5, max=75
Content-Type: image/png
powerfultantrikbaba.com/img1.wsimg.com/tcc/tcc_l.combined.1.0.6.min.html
103.21.58.181404 Not Found 355 B URL HTTP/1.1 powerfultantrikbaba.com/img1.wsimg.com/tcc/tcc_l.combined.1.0.6.min.html
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash cb50b952a1a41c3358018129e081d511
9b3ce22f173597240fd0c22ff649f3ffb9c6ea99
791b5cb893932898c350d1ec9888ee9c2feaea002431d12e9a1ba29331813be0
Analyzer Verdict Alert fortinet Malware
GET /img1.wsimg.com/tcc/tcc_l.combined.1.0.6.min.html HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 404 Not Found
Date: Fri, 18 Nov 2022 06:01:18 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 15 Jul 2021 15:51:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 355
Keep-Alive: timeout=5, max=75
Content-Type: text/html
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17437
Expires: Fri, 18 Nov 2022 10:51:56 GMT
Date: Fri, 18 Nov 2022 06:01:19 GMT
Connection: keep-alive
powerfultantrikbaba.com/images/banner1.jpg
103.21.58.181200 OK 295 kB URL HTTP/1.1 powerfultantrikbaba.com/images/banner1.jpg
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 2256x1282, components 3\012- data
Size 295 kB (294866 bytes)
Hash 75a809f1b1a40d5b0e596a3c3105c88c
bba7c3557ae0369fbeda9fd9ebc6b9f909289c0d
89228e4fccc89b269334e56115931bc0494f92e89a6753ac7bcc6d121c7a5483
GET /images/banner1.jpg HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:18 GMT
Server: Apache
Last-Modified: Sat, 28 May 2022 16:28:10 GMT
Accept-Ranges: bytes
Content-Length: 294866
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/jpeg
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17437
Expires: Fri, 18 Nov 2022 10:51:56 GMT
Date: Fri, 18 Nov 2022 06:01:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17437
Expires: Fri, 18 Nov 2022 10:51:56 GMT
Date: Fri, 18 Nov 2022 06:01:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17437
Expires: Fri, 18 Nov 2022 10:51:56 GMT
Date: Fri, 18 Nov 2022 06:01:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17437
Expires: Fri, 18 Nov 2022 10:51:56 GMT
Date: Fri, 18 Nov 2022 06:01:19 GMT
Connection: keep-alive
powerfultantrikbaba.com/images/o1.png
103.21.58.181200 OK 50 kB URL HTTP/1.1 powerfultantrikbaba.com/images/o1.png
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 300 x 300, 8-bit colormap, non-interlaced\012- data
Hash bd0d310624b730442b16f504f1b043d1
95c42a6eba64d6f7a02b913e23b97e73885562a8
3c59f9be3f3a53309505fe514ffefc7aff311ddecdc0f2910bfd40c09b0fdff0
GET /images/o1.png HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:18 GMT
Server: Apache
Last-Modified: Sat, 28 May 2022 17:02:30 GMT
Accept-Ranges: bytes
Content-Length: 49565
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: X3SUo1LP97TxraRav0ftskBhzWkTJInHaS44PW26yloF-dgD-bHBuA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 00:26:57 GMT
age: 20062
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d0b6106f00f9fd8b89c2d484a559a1a
399ac393209dcdac7d2188d7aa8d95f04570ef7c
5d8151c9eb558f4a2b8bd2952c6845606ddb0c27e36f6e49aca7e60908cd9fe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3759
x-amzn-requestid: 8c91ac59-89dc-4218-b69f-0cebb29f301b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-wJHgxoAMF-hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab33-4dac305614a92bc52c038222;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mb2-PTjNmt06Wd5jOjQ5WoLY-0NgI80CKPXtwgzBt4n5km8Pu_WN0Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:08:54 GMT
age: 28345
etag: "399ac393209dcdac7d2188d7aa8d95f04570ef7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4998f097d23ee5f19cae27d5b938e5fc
4369c8ebe61b9944e639bb2731feb51c5a758fe7
5691c66766c9578e9c4aa71240608653821162c668abc63ee40e553ede2450e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6339
x-amzn-requestid: 0be5dee5-272d-4577-ba55-5cdb7935ea60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-MCExBoAMFz6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa4c-15fd613336aa6fcb165d0b26;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NYs-Nf0PzWqhXP5nkvanTjhJ6vfwRIU--YD06RFIGPEuwDCu6fvEPg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:01:30 GMT
age: 28789
etag: "4369c8ebe61b9944e639bb2731feb51c5a758fe7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F484ffe7b-1073-4220-bf53-ccbfc7e9654e.webp
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F484ffe7b-1073-4220-bf53-ccbfc7e9654e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14649d486602810c1b218b96b27b2cc4
96c6cbfe31e7247c64dfa8c3759967627f8c6286
80f5d7573fd2bf4e6a6038ebf1335d159ad37c391ee539918455963d6ee88654
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F484ffe7b-1073-4220-bf53-ccbfc7e9654e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8884
x-amzn-requestid: 3739b8f5-bb0c-4798-a931-e955dd6df81d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-MiGFxoAMFlxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa50-74c24a2f737634b655a5b47c;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:32 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: d_bLYyZzi1phYwQ2e5uvUmzO0GuvNu9Ubi2PQ0ChilQJegKr3uUiRw==
via: 1.1 79880188a81becf1687ba18c0e064230.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:08:13 GMT
age: 28386
etag: "96c6cbfe31e7247c64dfa8c3759967627f8c6286"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4724f84-de93-48d7-8d33-1427f27e15a0.webp
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4724f84-de93-48d7-8d33-1427f27e15a0.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 55801be30fc7e7d24ba2418d00ce4ca2
31935f7d11269f0f4177a48d2c166e09fec1f377
05e58892cab261aca3abe7e29ff482b51f5f7e4261b8579e7b9f85487f53eeda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4724f84-de93-48d7-8d33-1427f27e15a0.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7539
x-amzn-requestid: 96d0ad29-0b25-4e4b-93ea-da9fde83aa8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9V5E2boAMFbiA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8f2-33f7f4592f8574486987e233;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: r1X3PUyrso5VkyphYHqBQdYo6lmmIvTQdA_kPA5I-lds8qn9RtEIpw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:05:52 GMT
etag: "31935f7d11269f0f4177a48d2c166e09fec1f377"
content-type: image/jpeg
age: 28527
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 93b326374b3808d0af42e295643cdc14
dd691328acf190c745465208f18a41a75878df18
224ac3995e2e78ee5fcc6c5c3d5fb1f4b0ceca1c42b7a1a493c756aa199bf75f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5198
x-amzn-requestid: ba4e00c8-a996-41f3-b15a-1e304907ca2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9UpH1ioAMF6ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8ea-2f9f794c4de03f8b212e072f;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LPflGHjoeNg1X5EszKAaziaZsKFf5hT6LeNPpZQriZ5H1z7Zhh86Ow==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:55:57 GMT
age: 29122
etag: "dd691328acf190c745465208f18a41a75878df18"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
powerfultantrikbaba.com/images/logo.png
103.21.58.181200 OK 282 kB URL HTTP/1.1 powerfultantrikbaba.com/images/logo.png
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 1903 x 609, 8-bit/color RGBA, non-interlaced\012- data
Size 282 kB (282088 bytes)
Hash 800f8dca8b2b3c71bf4e8aaf763febb4
3e1a0c14d185c0755acb58edab1154492fef809e
6374dc1a919a121f07133aaf4ff20e345342a9c62981cfed250273ddc174cc7c
GET /images/logo.png HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:18 GMT
Server: Apache
Last-Modified: Sat, 28 May 2022 16:47:26 GMT
Accept-Ranges: bytes
Content-Length: 282088
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png
powerfultantrikbaba.com/images/image-asset.gif
103.21.58.181200 OK 472 kB URL HTTP/1.1 powerfultantrikbaba.com/images/image-asset.gif
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type GIF image data, version 89a, 500 x 500\012- data
Size 472 kB (471835 bytes)
Hash ed9f2c14799830b867b318b62db804d6
86296ba00ed88930b4993211b54a80a24a0e8919
7af7e831e2d3802fe7fcf198439e265d20f8c786a5c4a72f2bbe1dc9abed721c
GET /images/image-asset.gif HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/css/style.css
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:18 GMT
Server: Apache
Last-Modified: Tue, 22 Feb 2022 08:42:22 GMT
Accept-Ranges: bytes
Content-Length: 471835
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/gif
powerfultantrikbaba.com/images/o2.png
103.21.58.181200 OK 46 kB URL HTTP/1.1 powerfultantrikbaba.com/images/o2.png
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 300 x 300, 8-bit colormap, non-interlaced\012- data
Hash 324e8b3ac1f6afc57e5eb9fb10638ee0
dcbfe108bffd9013dd5dda182da6a27b17af8241
049f8171370053426307891aadb153e1708f9a9a411afde95908e73b1e7e7b23
GET /images/o2.png HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:19 GMT
Server: Apache
Last-Modified: Sat, 28 May 2022 17:02:34 GMT
Accept-Ranges: bytes
Content-Length: 46205
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png
powerfultantrikbaba.com/images/o3.png
103.21.58.181200 OK 49 kB URL HTTP/1.1 powerfultantrikbaba.com/images/o3.png
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 300 x 300, 8-bit colormap, non-interlaced\012- data
Hash 8cce6cc4624a17e2f67387e62218294a
995e23cd494901122444c8f50a3fe503c9cf667f
1f96a689f8b60dd1fde907ffaa2ffc20a08743db13be15d8f0d166245c1ebd79
GET /images/o3.png HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:19 GMT
Server: Apache
Last-Modified: Sat, 28 May 2022 17:02:36 GMT
Accept-Ranges: bytes
Content-Length: 48740
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png
powerfultantrikbaba.com/images/o4.png
103.21.58.181200 OK 57 kB URL HTTP/1.1 powerfultantrikbaba.com/images/o4.png
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 300 x 300, 8-bit colormap, non-interlaced\012- data
Hash 333def4a2f8f6ff3daf333fc61df6e51
0b2f0a945f238979af925fbeb9395a8493dad54e
fa025810e9daae0930ce757376e8e75b67ec6ac77e4f4ab01263d0cb88a9c5f6
GET /images/o4.png HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:19 GMT
Server: Apache
Last-Modified: Sat, 28 May 2022 17:02:40 GMT
Accept-Ranges: bytes
Content-Length: 57164
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png
powerfultantrikbaba.com/images/o5.png
103.21.58.181200 OK 55 kB URL HTTP/1.1 powerfultantrikbaba.com/images/o5.png
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 300 x 300, 8-bit colormap, non-interlaced\012- data
Hash 9047de6c162445f8fbd6605170d2ecdb
fe46da562700b89217b639344098b52ac08b0a93
7583337c75079ce2e4861c0efcfd137f35918bc54464f349a29d59b57c90372c
GET /images/o5.png HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:19 GMT
Server: Apache
Last-Modified: Sat, 28 May 2022 17:02:44 GMT
Accept-Ranges: bytes
Content-Length: 54869
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/png
powerfultantrikbaba.com/images/o6.png
103.21.58.181200 OK 52 kB URL HTTP/1.1 powerfultantrikbaba.com/images/o6.png
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 300 x 300, 8-bit colormap, non-interlaced\012- data
Hash 6187e53c4e5d0889d1cea8f03567a52b
1c291781cbe17a12cf6c46588ba0e8c87b526f46
92dd48d26c58efd526b05ee48387ac1bd53b003e0a0cc133665d26e6f9a2e20c
GET /images/o6.png HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:19 GMT
Server: Apache
Last-Modified: Sat, 28 May 2022 17:02:48 GMT
Accept-Ranges: bytes
Content-Length: 51736
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png
powerfultantrikbaba.com/images/best5.png
103.21.58.181200 OK 60 kB URL HTTP/1.1 powerfultantrikbaba.com/images/best5.png
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data
Hash 5c44558567ec631d728c2346a7f83a31
2733256e25a5568a3e4011bafe386e5dd2b0b3f1
000f0e2198e1c71b385700731c80bd89546e7bcc2c9cecce0ff7ddd6bcd06fa0
GET /images/best5.png HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:18 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 22 Feb 2022 08:42:32 GMT
Accept-Ranges: bytes
Content-Length: 60441
Keep-Alive: timeout=5, max=75
Content-Type: image/png
powerfultantrikbaba.com/images/best1.png
103.21.58.181200 OK 72 kB URL HTTP/1.1 powerfultantrikbaba.com/images/best1.png
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data
Hash fe7efc2fd66785c4b0f408cf1604d78b
64f31c173b1bc92cf85441a206bdb4f8ce9dbb33
ba7ea9bca2cda4e04d7ea5d3048f6804cfb6656b83d930d7074033b5087e78d3
GET /images/best1.png HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:20 GMT
Server: Apache
Last-Modified: Tue, 22 Feb 2022 08:42:40 GMT
Accept-Ranges: bytes
Content-Length: 72277
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/png
powerfultantrikbaba.com/images/banner3.jpg
103.21.58.181200 OK 416 kB URL HTTP/1.1 powerfultantrikbaba.com/images/banner3.jpg
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 2256x1282, components 3\012- data
Size 416 kB (415821 bytes)
Hash 84c5f319024d00cc5411a9baf03c0930
17341745dcaecef193d3de82bbddee206e05b2db
f619fcaccb431b9969161e041e85b9cbdab06a8849ac825a28150c324b688e06
GET /images/banner3.jpg HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:19 GMT
Server: Apache
Last-Modified: Sat, 28 May 2022 16:30:02 GMT
Accept-Ranges: bytes
Content-Length: 415821
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/jpeg
powerfultantrikbaba.com/images/best7.png
103.21.58.181200 OK 86 kB URL HTTP/1.1 powerfultantrikbaba.com/images/best7.png
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data
Hash a59bed429fe331b322634be9e5dd1b41
bc5d6f04be4e5f29b6863129c139f5feffb6002b
53196b6e8e422fc1f77a807965e81aba9d0df0d3202b849eacf8fd24a799d68f
GET /images/best7.png HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:20 GMT
Server: Apache
Last-Modified: Tue, 22 Feb 2022 08:42:30 GMT
Accept-Ranges: bytes
Content-Length: 85711
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/png
powerfultantrikbaba.com/images/best8.png
103.21.58.181200 OK 104 kB URL HTTP/1.1 powerfultantrikbaba.com/images/best8.png
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data
Size 104 kB (103994 bytes)
Hash 1042716e6666940710d38aa1f014dd5e
17d9848f50eb82c62f7ba85e4cb2eb93a4e06b76
38401e979090d3b29866b83a01f990522ad4755a795fb9c56209a25c76e32866
GET /images/best8.png HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:20 GMT
Server: Apache
Last-Modified: Tue, 22 Feb 2022 08:42:30 GMT
Accept-Ranges: bytes
Content-Length: 103994
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/png
powerfultantrikbaba.com/images/contact.png
103.21.58.181409 Conflict 83 B URL HTTP/1.1 powerfultantrikbaba.com/images/contact.png
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /images/contact.png HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 409 Conflict
Date: Fri, 18 Nov 2022 06:01:18 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
powerfultantrikbaba.com/images/best3.png
103.21.58.181200 OK 89 kB URL HTTP/1.1 powerfultantrikbaba.com/images/best3.png
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data
Hash fad6c62e7ce64f5e584353fccc4adf30
3e5435a06416bddc2b3f7e4f3e5dd016f9c9d49b
15de0433dd2d6aa7b98c7293c0d21176c7299e382e3e14674e12c7feaab036fe
GET /images/best3.png HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:20 GMT
Server: Apache
Last-Modified: Tue, 22 Feb 2022 08:42:34 GMT
Accept-Ranges: bytes
Content-Length: 88635
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/png
powerfultantrikbaba.com/images/testi2.jpg
103.21.58.181200 OK 4.4 kB URL HTTP/1.1 powerfultantrikbaba.com/images/testi2.jpg
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3\012- data
Hash 2aa44f5c6dcfbea46d23d9e947a9258c
30443154b4379ab93e376f9ebdcacc812a61168d
c0b24b152a90c6b275797c62186b76aca8ac3b72b805b52c50df41f91bc1591d
GET /images/testi2.jpg HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:20 GMT
Server: Apache
Last-Modified: Tue, 22 Feb 2022 08:42:16 GMT
Accept-Ranges: bytes
Content-Length: 4437
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/jpeg
powerfultantrikbaba.com/images/banner5.jpg
103.21.58.181200 OK 356 kB URL HTTP/1.1 powerfultantrikbaba.com/images/banner5.jpg
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 2256x987, components 3\012- data
Size 356 kB (355780 bytes)
Hash e46f738549720d24ffff9ef2b5b40e15
7e07bf23cc5e180d7af8adeef8e5ddb8fbeb603e
9e2d05812f7d17f9ab8f378caa17da3fd854eb0f1e3f6fe22916f267c4368b4b
GET /images/banner5.jpg HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:20 GMT
Server: Apache
Last-Modified: Sat, 28 May 2022 16:33:02 GMT
Accept-Ranges: bytes
Content-Length: 355780
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/jpeg
powerfultantrikbaba.com/images/banner4.jpg
103.21.58.181200 OK 475 kB URL HTTP/1.1 powerfultantrikbaba.com/images/banner4.jpg
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 2256x1282, components 3\012- data
Size 475 kB (475180 bytes)
Hash ae7f51d0c9b79373422867eb58f85206
a9ad9d1e3f8cc019845d2714e52c9f3fb0ef83b5
e8548b81690db6fe9628a90ae0b39b67cc4ff3f2cb288e50960169caa33febc0
GET /images/banner4.jpg HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:19 GMT
Server: Apache
Last-Modified: Sat, 28 May 2022 16:30:34 GMT
Accept-Ranges: bytes
Content-Length: 475180
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/jpeg
powerfultantrikbaba.com/favicon.ico
103.21.58.181404 Not Found 355 B URL HTTP/1.1 powerfultantrikbaba.com/favicon.ico
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash cb50b952a1a41c3358018129e081d511
9b3ce22f173597240fd0c22ff649f3ffb9c6ea99
791b5cb893932898c350d1ec9888ee9c2feaea002431d12e9a1ba29331813be0
GET /favicon.ico HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 404 Not Found
Date: Fri, 18 Nov 2022 06:01:21 GMT
Server: Apache
Last-Modified: Thu, 15 Jul 2021 15:51:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 355
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html
powerfultantrikbaba.com/images/best4.png
103.21.58.181200 OK 74 kB URL HTTP/1.1 powerfultantrikbaba.com/images/best4.png
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data
Hash a4f80d897a57199690095bcb4111aa68
fa28d93ef58067f5748a00aa06634bf75c54818d
dd1539e7def5d2513160232bc93f7bf47a44adb999dc1aa9c032e0e86159a6bb
GET /images/best4.png HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:20 GMT
Server: Apache
Last-Modified: Tue, 22 Feb 2022 08:42:34 GMT
Accept-Ranges: bytes
Content-Length: 73578
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png
powerfultantrikbaba.com/images/banner2.jpg
103.21.58.181200 OK 378 kB URL HTTP/1.1 powerfultantrikbaba.com/images/banner2.jpg
IP 103.21.58.181:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 2256x1282, components 3\012- data
Size 378 kB (378264 bytes)
Hash 248bcbf4de6e78230d5fc0c3dc8ba109
b16219c7aeeb2242e8801ae677739b380d097dc7
3349e3b46089c454769bf10651682a60ead9de651d2e1ec4a07807b4b3e8f6e3
GET /images/banner2.jpg HTTP/1.1
Host: powerfultantrikbaba.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:01:20 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 28 May 2022 16:28:50 GMT
Accept-Ranges: bytes
Content-Length: 378264
Keep-Alive: timeout=5, max=75
Content-Type: image/jpeg
maxcdn.bootstrapcdn.com/bootstrap/3.4.1/css/bootstrap.min.css
104.18.11.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.4.1/css/bootstrap.min.css
IP 104.18.11.207:0
GET /bootstrap/3.4.1/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:01:17 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 632, 617
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 2021-03-10 20:26:25
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 61d285a2b452357d1d833ab142fef512
cdn-cache: HIT
cf-cache-status: HIT
age: 18062054
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76be7d9c3e2eb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.4.1/js/bootstrap.min.js
104.18.11.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.4.1/js/bootstrap.min.js
IP 104.18.11.207:0
GET /bootstrap/3.4.1/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://powerfultantrikbaba.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:01:17 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 2021-08-01 19:19:12
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 6923066369371d6997c92d232b1a01f3
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 4372811
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76be7d9c6e48b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2