r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ade0f92f30e7d68787598ca2b5fd30c7
fc7065ecb41bdfc5cbf0d8d568d335426c57f02f
1aac1c0926e545793d2040b114d2e064b175592a131ba27ff820fcd4aff4b4e3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1AAC1C0926E545793D2040B114D2E064B175592A131BA27FF820FCD4AFF4B4E3"
Last-Modified: Wed, 16 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4770
Expires: Wed, 16 Nov 2022 19:44:21 GMT
Date: Wed, 16 Nov 2022 18:24:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c88bc06741ab9fb81c2544acfcc34aa2
362cab19cff5aba27f472cc00071d5dfa38192e4
314ba27975f458e13917b2be91c9d5989a3e57c9e94b5a84dd52d0e21d27ae7f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "314BA27975F458E13917B2BE91C9D5989A3E57C9E94B5A84DD52D0E21D27AE7F"
Last-Modified: Mon, 14 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4287
Expires: Wed, 16 Nov 2022 19:36:18 GMT
Date: Wed, 16 Nov 2022 18:24:51 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9b4e6c72233070ef185ff980135e9555
2f14523a3f6f9532df3b872984fd23e156d2c465
5040e340e60b331b1569d52d66afcd5649a4121e2841d38cca0974e2a4c0af75
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2731
Cache-Control: max-age=147117
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:51 GMT
Etag: "6374bbf5-1d7"
Expires: Fri, 18 Nov 2022 11:16:48 GMT
Last-Modified: Wed, 16 Nov 2022 10:31:17 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xhS4/BqcEovKKORUQJq1eNiJFSnuY5MxJertwzBXA4IS9VvFC0zvP4H5NyAEuxLvP9EGa6+yfIQ=
x-amz-request-id: 1SR1D2B01G54YRHZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 16 Nov 2022 17:52:07 GMT
age: 1964
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 16 Nov 2022 17:44:35 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2416
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 18:24:51 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Retry-After, ETag, Alert, Expires, Backoff, Content-Type, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 16 Nov 2022 17:44:49 GMT
cache-control: public,max-age=3600
age: 2403
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8345d8a2ca46c3b181a81d8626d0425f
5d9d088c5dca072bbc9ad23a15450e7af7829400
663b0e6c239177f35b5b48d4203ce95aabc0e5bab7911f5b1d9fb7624cac2e25
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4548
Cache-Control: max-age=143883
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:52 GMT
Etag: "6374a83b-1d7"
Expires: Fri, 18 Nov 2022 10:22:55 GMT
Last-Modified: Wed, 16 Nov 2022 09:07:07 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.161.6.128101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.6.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: C0XuTN2PMTf6sJhrDs2Qwg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Dgms8kDSrFKkvHidcbAetVDG9J0=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3536
Expires: Wed, 16 Nov 2022 19:23:48 GMT
Date: Wed, 16 Nov 2022 18:24:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3536
Expires: Wed, 16 Nov 2022 19:23:48 GMT
Date: Wed, 16 Nov 2022 18:24:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3536
Expires: Wed, 16 Nov 2022 19:23:48 GMT
Date: Wed, 16 Nov 2022 18:24:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZLWa-RphwZqiAmeqffmEE8Mmfsfs9ZYz0bmANBEc5Ru1--VKDL4Fsw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 22:17:19 GMT
age: 72453
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667acc-25d7-4d63-8fab-1711f6b4988c.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667acc-25d7-4d63-8fab-1711f6b4988c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 98802857df59f8eacd9211811cc59ae6
87e277a627c1085cad5c6e38bdd5100aa0a9ecee
102e73f690a972da6d3ab609ffab5f29884185d85c4230a19ec74d74c7320cf1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667acc-25d7-4d63-8fab-1711f6b4988c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8235
x-amzn-requestid: e8a91ec0-fa93-45b6-8dc8-a405c00242fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqY4_HANoAMFSvw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63740839-3ebbd38b0e3e774923ad019e;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:44:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QoxGYkibw1jcAuQl98jD4TlKooUlL6ojdOVzQ7khiF0pMwY4_0IO9Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:48:37 GMT
age: 74175
etag: "87e277a627c1085cad5c6e38bdd5100aa0a9ecee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30efee28-35ab-4b55-b685-02cbd4c5c8c8.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30efee28-35ab-4b55-b685-02cbd4c5c8c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b31091803f98744f4da3b311467300a7
d829c5d23a494bc901d925dd02b84c470a0de479
c1cb88b82d8b5a82019da970f812cd31e13086c2da8498a21a57e7238aa34fe8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30efee28-35ab-4b55-b685-02cbd4c5c8c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8971
x-amzn-requestid: b5dd68c5-7146-4d31-a7fd-4ac4c474119a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bnb6bGeyoAMFV9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6372d9dc-2ca4003e65d69039389bc676;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 00:14:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8TqIvhJUq_yG_iMFds_btqtYsrNzoaZeIQgOP0-Kc60yuQFOPYEXRA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 16 Nov 2022 09:04:35 GMT
age: 33617
etag: "d829c5d23a494bc901d925dd02b84c470a0de479"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b00960f-2d08-4518-83c0-1d7f0f3c973c.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b00960f-2d08-4518-83c0-1d7f0f3c973c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 53d2d9380ba28ed0656b54c22bc56766
757f8e6306effbab70d99757c5672564cfc9f623
6d6c41527ae28cdce016470ec1eb87e0ed384f3ef721838724f29845f3bd8dac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b00960f-2d08-4518-83c0-1d7f0f3c973c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8990
x-amzn-requestid: cb142f4b-787e-4b3c-9d75-72579105db60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYFOHi8IAMFpDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406ee-504a14105d2be58b1ce71c18;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:54 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: K-Js3sppuhzF03KF0M0wVw5GCSaq5VfHDbzU2DyEwjiARRDsccGYbQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:54:54 GMT
etag: "757f8e6306effbab70d99757c5672564cfc9f623"
content-type: image/jpeg
age: 73798
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e399ef-c649-4728-84e9-6fea03ea9b5a.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e399ef-c649-4728-84e9-6fea03ea9b5a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae0ab55e0e77a4265808a6689f25cbc3
187e6b340b43eb1aa0c724b749db7c20a486706a
3881e5ad44b9b2fae82510794af43d14e304ce624f26f66523f85d58fea063dc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e399ef-c649-4728-84e9-6fea03ea9b5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9625
x-amzn-requestid: 9bd72b4a-2ac0-423f-b0e2-73fd51e02e97
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYEBHTjIAMFvOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406e6-57f5412d5eca6d640a0f590d;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qWuPuzaXg4Cfowj2mJuTEUIH3UVCely6rXVpbiNGxIDgBAt38UOBxw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:54:50 GMT
etag: "187e6b340b43eb1aa0c724b749db7c20a486706a"
content-type: image/jpeg
age: 73802
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0be1985-4e6e-4cc3-9b6e-2fc0d94bc02b.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0be1985-4e6e-4cc3-9b6e-2fc0d94bc02b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 96b4478c098865b0d19738098db61d64
0e18a8c51596c8a4d84a142a57ffe376294833cc
9c9e433cf8f2167e4cfc3cff247eee85ebb9977e338e6e144acaea830db17c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0be1985-4e6e-4cc3-9b6e-2fc0d94bc02b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5749
x-amzn-requestid: ee63924c-be5c-4f48-9fe0-cc2ba3f93ab8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bX5qxHgWoAMFiZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ca311-32c6916d41247a9b563c952f;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 07:06:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5hBm4pVThVud5Nr3ReI8uRgqhR3MVsqS4qGEcE5Wrs3pqzyMgH2CRg==
via: 1.1 33d72803ad26b392c1b578a2b1276580.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 16 Nov 2022 05:57:01 GMT
age: 44871
etag: "0e18a8c51596c8a4d84a142a57ffe376294833cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
manomav.com/12/TrdngAnlzr479932.exe
92.42.110.125301 Moved Permanently 0 B URL HTTP/1.1 manomav.com/12/TrdngAnlzr479932.exe
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /12/TrdngAnlzr479932.exe HTTP/1.1
Host: manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Location: http://www.manomav.com
Content-Length: 0
Date: Wed, 16 Nov 2022 18:24:53 GMT
www.manomav.com/
92.42.110.125301 Moved Permanently 0 B IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
X-Redirect-By: WordPress
Location: https://www.manomav.com/
Content-Length: 0
Date: Wed, 16 Nov 2022 18:24:54 GMT
www.manomav.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
92.42.110.125200 OK 10 kB URL HTTP/2 www.manomav.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (39791)
Hash 3cc7696f4c8caa2b1c7acab0c2ae1515
2df12fe5d820c9c8129c9276e2bb94f9df860331
5ec052aed0f32fed1fc31c9be24e1cd03a7bcdede8ae098af3d1997fdfb51a6a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:19:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10549
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
92.42.110.125200 OK 848 B URL HTTP/2 www.manomav.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
92.42.110.125200 OK 791 B URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash 70803413c9597ee8c0d1014c24614132
ebcf83176e785a74666e9a6f6237509f11e6dcca
fd2994ae20595548eaaf7b3071ced4b3ed29db6d87940a6a1c9672a10ae399e6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 791
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.3.24
92.42.110.125200 OK 1.7 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.3.24
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (6794)
Hash 9bb930afefcd08578e40d87e6cf74366
c2a096ebbc4a5e7400bb4d4294d5c011eb975a27
5c85203c7d95fbc0a76522a933408c07fe6e362c8094e514ec3c0bcb9e6bbd34
GET /wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.3.24 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1660
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5
92.42.110.125200 OK 3.8 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (42839), with no line terminators
Hash 0f2a1830a2eb3452fe698134828443d4
4d04d53d82c38785c13e1aa7cf012cb9dbf3db28
a037316b9cce9cab96056fd1797693e625fda9cfcd5337f5412b9aa8b6aae3ad
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3806
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3
92.42.110.125200 OK 6.8 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (45348), with no line terminators
Hash ac86c46c81a26a9b2dddfaff693e20ed
bcab73993780f26ad845347f3930b629cccbdfc2
cdc2f8852d087adb339f2813bb8663c5ef58722ac581ee64b5ea6751a74612b4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6791
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/related-youtube-videos/css/themes.css?ver=5.9.5
92.42.110.125200 OK 299 B URL HTTP/2 www.manomav.com/wp-content/plugins/related-youtube-videos/css/themes.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash b4b641c8dd35d1a192ac30e5b99e4fed
061d040bb66758a4cc0d23ae1961e1863c02cddc
533d451b0804ee878b1fe48fc359d6e5a6c126f7535453ac3e84ba92bdddfe35
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/related-youtube-videos/css/themes.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 299
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/service-box/assets/css/font-awesome/css/font-awesome.min.css?ver=5.9.5
92.42.110.125200 OK 6.7 kB URL HTTP/2 www.manomav.com/wp-content/plugins/service-box/assets/css/font-awesome/css/font-awesome.min.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (30837)
Hash 5dbbe85d6a3308dceb97d91b740b0f11
3f70abf9963371962665167f98ba52365481496d
751d4fdd16bd33cc9c93bcaadcd316922ca9bbd74cb6a9e1705c8bef4330dabf
GET /wp-content/plugins/service-box/assets/css/font-awesome/css/font-awesome.min.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6657
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/service-box/assets/css/bootstrap-front.css?ver=5.9.5
92.42.110.125200 OK 1.5 kB URL HTTP/2 www.manomav.com/wp-content/plugins/service-box/assets/css/bootstrap-front.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type assembler source, ASCII text, with very long lines (780)
Hash 2450779d95988cbe3c194d0f237670a8
e4af4b0e996b3697247d61f69d22f2273bd2b502
f1d88e4d468177db9f7fee176aa747ff09b992e73c4646cac2f3ef1afb584de9
GET /wp-content/plugins/service-box/assets/css/bootstrap-front.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1513
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/service-box/assets/css/owl.carousel.min.css?ver=5.9.5
92.42.110.125200 OK 1.2 kB URL HTTP/2 www.manomav.com/wp-content/plugins/service-box/assets/css/owl.carousel.min.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash ed801a1ee20bd6fd608be655cb07414e
6d6e3bdcd175b935d5344fb88e81a179a950f0c8
70edd720e30cc3723648f94458c7f0a990ddb8736c2400a201f03bc969a0dce1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/service-box/assets/css/owl.carousel.min.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1219
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widget.css?ver=5.9.5
92.42.110.125200 OK 2.1 kB URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widget.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (1332), with CRLF line terminators
Hash f0638c8e827007a1f336d2d6a0322b86
5302f4e9c29b18011f6dc53d15386676c55fad8c
84a8a5ed9f1590af4e0377b5003ab886cb049c639c45b24b9bde37fd2f2863de
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widget.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:15:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2060
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Style/richwebicons.css?ver=5.9.5
92.42.110.125200 OK 6.6 kB URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Style/richwebicons.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (412), with CRLF line terminators
Hash 30d7ed83122fd22771242fe54d4d8d5a
2cda87a11934256a1c1d83f6d1a668204a8f87b8
307b245e22943e5e4d6e105a69d3babd867a89f08cad2f94ccd7dd12c58697cc
GET /wp-content/plugins/slider-images/Style/richwebicons.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:15:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6633
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/recent-facebook-posts/assets/css/default.min.css?ver=2.0.13
92.42.110.125200 OK 627 B URL HTTP/2 www.manomav.com/wp-content/plugins/recent-facebook-posts/assets/css/default.min.css?ver=2.0.13
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (2339), with no line terminators
Hash 1a1871d6af0a277a4d7639e3e300fd9e
650e0b90196359669cf8590659b0f7c205375d12
4ad1e09185368fe44a670a5770d413b8665150b0ba206d05c17f93feca54cdce
GET /wp-content/plugins/recent-facebook-posts/assets/css/default.min.css?ver=2.0.13 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 627
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/genericons/genericons.css?ver=3.2
92.42.110.125200 OK 16 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/genericons/genericons.css?ver=3.2
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (19226), with CRLF line terminators
Hash 20f23c9697d6cc3fe3bee8fb8c0a8a68
08f4902584fd5a3048108387833104418e220cd0
5ee3fbfe65bb5c9cea06a44a3962ff4241b33fffa6a8d63ba6abc8b32f9af5dc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/genericons/genericons.css?ver=3.2 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16120
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/style.css?ver=5.9.5
92.42.110.125200 OK 575 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav/style.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (403)
Hash ac2e554d3dbf718e78606ede087cc049
01665beced7abf0e74306ffc4988657a98160997
93b8c3c40df3c91b35ab315213170cd3539922538f662b7645281831b0e3ba3c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/style.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 575
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.1
92.42.110.125200 OK 467 B URL HTTP/2 www.manomav.com/wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (3439), with no line terminators
Hash 04772b9a0d585dfb3c5761d2d3e8fd1a
1e5bd07f0138eafe870044ed503ac4e70970dd47
86c487538e95f949bc90d27f9db5fbfd5ea625fd8ad54e5972b87be7500c4f32
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:12:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 467
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.1
92.42.110.125200 OK 308 B URL HTTP/2 www.manomav.com/wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash 2475dc1856a51066526df1559de3dc3f
5a8f5901fd85da4e9dbdebfd6414b4ee5d251945
9461e6eb400fba6ff730e74e1e64bcd071e7a23fe123bf1c116cf95e5e6578f9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:12:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 308
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
92.42.110.125200 OK 30 kB URL HTTP/2 www.manomav.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (65447)
Hash 34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
92.42.110.125200 OK 4.0 kB URL HTTP/2 www.manomav.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.3.24
92.42.110.125200 OK 7.4 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.3.24
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (1518)
Hash 7d2b4b55e04a6146c2b720c9d0a13d67
383c540478a21bc16b9a2c717a2ed28037fc3434
5f54b010dad731bceeeaa543a4767f3ca865cdb705c9d645068d35214e49970a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.3.24 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7419
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
92.42.110.125200 OK 8.8 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (25075)
Hash 1bc242a2555501251f4581a861d273b5
8182ba41622cb62f0b476c7f0f93aa835c6c9ec2
1834970e62778a993bf85b79b67c3e9687a2721f187722bdc1dc5f45605119b4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8752
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5
92.42.110.125200 OK 12 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (32001)
Hash e37dc9214e778f86c6dd07ca57bfe23d
2e1092d6634e370f97d3f7682e540f024fe9d80c
0c0f613b62e2faf3bdb93c389f666914323e163f757e4fed41bd9754602a7555
GET /wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12358
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0
92.42.110.125200 OK 2.0 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (5661)
Hash 02411584ba4f45db9c42a9944b4387f6
6536a6c1bd50cec302906246bfcb26796cee78c8
900005aa2f419bb5d3232695ab1fb3fd350586937dedc1ade84aeb40be6cdbff
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2017
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.3
92.42.110.125200 OK 31 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.3
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash 954aad693c0471a47f7a5438eabaf004
744c122858868545722250cbedf4a20c4e8ab07b
ded172a5737b0a1ed127c10d69f43be4087f2dbceaf851807c403863db7268d0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.3 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 31363
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/service-box/assets/js/owl.carousel.min.js?ver=1
92.42.110.125200 OK 11 kB URL HTTP/2 www.manomav.com/wp-content/plugins/service-box/assets/js/owl.carousel.min.js?ver=1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (31997)
Hash 3cb10c6c01ef15e7d2c5ef33c6f06ee5
561a0008fd649a946ff6cdba379547c998cb4582
2107b826f18f7f10f78a38641124da03dad389704816a86136488123a0f01f3d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/service-box/assets/js/owl.carousel.min.js?ver=1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11139
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
92.42.110.125200 OK 6.6 kB URL HTTP/2 www.manomav.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 4186472f300b89625cba0a93ba482c2c
19053e54644720b5dcfd71e24381347da7bc7cc9
a411ccc7d565d73b533d894b9972460cc5ea81743da6c2c7ee0877050ed8005d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:19:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6599
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Widget.js?ver=5.9.5
92.42.110.125200 OK 0 B URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Widget.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Widget.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-length: 0
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.easing.1.2.js?ver=5.9.5
92.42.110.125200 OK 837 B URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.easing.1.2.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (408)
Hash 24979d6f0439bd29a296a15a0af37440
d3936e7582eed7085442653449ed2f5bf991eeae
62b83c18b7f291559532f0061d9562d7a941198fe82b851c20fa135f96160cb3
GET /wp-content/plugins/slider-images/Scripts/jquery.easing.1.2.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 837
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 15b877e3c04a13242f1e8d068e8cb9ed
f1a1a051ce4b6f820bb1e54d6e526a7a07e84117
dacb6aa3a7588b55169efba42082deb1576d69e60ea564826300b404087969e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.anythingslider.min.js?ver=5.9.5
92.42.110.125200 OK 188 B URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.anythingslider.min.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash ab146f4e02cf2813634d311b1d9141ba
47fa96bd2c56803cb6b6d0a85442d8cf927fcc0b
fe2f780b72df154bac9018fe4baa456963cefb7249f0c1a4ec111fe1b8368fde
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/slider-images/Scripts/jquery.anythingslider.min.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-length: 188
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.colorbox-min.js?ver=5.9.5
92.42.110.125200 OK 4.1 kB URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.colorbox-min.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (9604)
Hash b3adc1a7f7dd023c2494e3834421bc89
3cb62b9faa35f4a7dba45a984406fb3f1bd75190
d26ac67d779d67d2ff53113c5972807ee79c76f47a810b5bbb6140b137ec476b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/slider-images/Scripts/jquery.colorbox-min.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4103
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/grid.css
92.42.110.125200 OK 1.3 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/grid.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash ac2c35e1b949f8154133fb4468d3d5cf
5374c530e8a62f448e826f3677b3bbfc9f727c09
f22d52ff425aef56c61abd727de012968c449a36de2f0a238f83c2f1dd264289
GET /wp-content/themes/manomav/css/grid.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1329
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/style.css
92.42.110.125200 OK 5.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/style.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash c9d6de9b3da4e1bd1f8b601269de456f
151d0eb4f001c63314709d57c596303ee47d9bd9
b1d971443f8f1db1f34b1a14c6ac1e21bff7987bd37c4e856398d93cce5c111d
GET /wp-content/themes/manomav/css/style.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5588
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/search.css
92.42.110.125200 OK 1.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/search.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 7355ef7b9168aae08f682ae45afc5941
75e8172962f7a2a7dfad2d96f2c8d7ec65ec7006
7037ec382a90222c29992ee657592996b500e88ec2aa3be15efd4d40851ee48e
GET /wp-content/themes/manomav/css/search.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1569
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/camera.css
92.42.110.125200 OK 1.2 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/camera.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash 75f4f7c39dad79e31a958f1c7eded89d
d08426e2b95ecfab3892710be8202e8a9f1865f8
768ea26c96921cb2f931879b5fc661c6f69e589772e0b5eb0476b2fa2d35517f
GET /wp-content/themes/manomav/css/camera.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1159
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/jquery.fancybox.css
92.42.110.125200 OK 1.3 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/jquery.fancybox.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 37110acaee335e72e0712f7152823006
1beabc4c70adca4de893be66c147fe435cb00b55
4bc71a992d1743fc76b0307fe1c4b625705fbf9af9efa31803bba81e7c049dce
GET /wp-content/themes/manomav/css/jquery.fancybox.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1282
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/google-map.css
92.42.110.125200 OK 174 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/google-map.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash d269908f072f380ea45b133c503b2ce0
b2f9f143c16a858df0afed0316487d15ee8e1553
2d1cca22aadb4f3e063e370cb31a8dfa475b387be75552271dfb659f9cdc7072
GET /wp-content/themes/manomav/css/google-map.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 174
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/contact-form.css
92.42.110.125200 OK 3.1 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/contact-form.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (2096)
Hash 511bef2a86c236383f0c58811367e697
df18f686b763cf2d353d689ad8efe8375e3adfa2
4d3fb8684f0b3f6559d3b564f755921c16c27d3bade8fc75965f751c3996241b
GET /wp-content/themes/manomav/css/contact-form.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3099
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/js/device.min.js
92.42.110.125200 OK 868 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav/js/device.min.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (645), with CRLF line terminators
Hash 5090a07e86b65c91c0f8523dbd961ab3
defbd6761de94fe1efcfecd36b4084300885ad12
82ae7f744c08401d562664f09e436403446aa40b3c81b5e1f7219c0eb359bca4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/js/device.min.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 868
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/facilitateHome.jpg
92.42.110.125200 OK 43 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/facilitateHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash 8c0c6954d4cb5f5775528bd9bc4beb3a
006fb61c3c2ea0752e91099348c73dcb46772d47
b6a06abb2cf96835290b072f31b4bf3cc0ccb2a88d208b3d5aaef0ee67661055
GET /wp-content/uploads/photo-gallery/facilitateHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 42688
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 9d96ce61547f9d3184b571ec26c13f61
9607a743ed3f0c67ffd8aa22fdc76070c00b18fc
ce83e5b84417ac34b261442b70b71cec63124f57e8baa8acee68dc22c38763c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com//wp-content/uploads/page-1_img06.png
92.42.110.125200 OK 1.0 kB URL HTTP/2 www.manomav.com//wp-content/uploads/page-1_img06.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 75 x 74, 8-bit colormap, non-interlaced\012- data
Hash 0936d25b5f0c880c758f834f5ff657af
665fb53da09cc0305e4af9f9d618b8ef95a45e31
b3241198cf470de3ecf19c7e5d6d5c1611504eed1faa54c723d75075a38a907d
GET //wp-content/uploads/page-1_img06.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 1041
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/constructions-analysis.jpg
92.42.110.125200 OK 17 kB URL HTTP/2 www.manomav.com//wp-content/uploads/constructions-analysis.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 370x247, components 3\012- data
Hash dace8485e254d259575929c33e9edbfd
637a6995a59734474006907df651352c6774a894
b150508454d6d1b33b6bc0dd99f3b38cb725bb949e546984425426eb88509ce1
GET //wp-content/uploads/constructions-analysis.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 16757
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/page-1_img05.png
92.42.110.125200 OK 837 B URL HTTP/2 www.manomav.com//wp-content/uploads/page-1_img05.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 75 x 74, 8-bit colormap, non-interlaced\012- data
Hash 496303110421a9ba99d696965b1af3ec
c7a660708c506099abb8d2b4dac5851aac8df6f3
b60b9e8dd0a9172871cb8f9c0e628b6ccd13d79d6dff1b3c16441eda70428aa5
GET //wp-content/uploads/page-1_img05.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 837
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/TECHNOLOGY-ADVANCE.jpg
92.42.110.125200 OK 14 kB URL HTTP/2 www.manomav.com//wp-content/uploads/TECHNOLOGY-ADVANCE.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 370x245, components 3\012- data
Hash 77df0a6308453dd3f8c3128a534815ba
21b7f5979e84ba135638dc1eb01b94eb8ebee067
ff57a4151e0d4d5413b21122dc6f4fbde486df5b02e0c3d31d7960ceadaeda5e
GET //wp-content/uploads/TECHNOLOGY-ADVANCE.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 13523
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/page-1_img04.png
92.42.110.125200 OK 976 B URL HTTP/2 www.manomav.com//wp-content/uploads/page-1_img04.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 75 x 74, 8-bit colormap, non-interlaced\012- data
Hash b16a8668230f6f41b82bc03669b39bf1
2457c8a555d93e88d70c0f7c809719a1851a5ec5
56410a1989ec35d1575ded12f1f6b1954c416b8f3c851647b9dae5b77679254d
GET //wp-content/uploads/page-1_img04.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 976
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/Knowledge-Sharing-1.jpg
92.42.110.125200 OK 21 kB URL HTTP/2 www.manomav.com//wp-content/uploads/Knowledge-Sharing-1.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 370x246, components 3\012- data
Hash 06cc248bfe6d3fd9f92ed1015102f9b7
f996ea896de5e30b393fec41b7b5c9ac54d3b8ea
8cabfa97d5842afd288e5c2726ee2768ab472a42901d754b1a91e7677593a23f
GET //wp-content/uploads/Knowledge-Sharing-1.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 20878
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/data-tables-generator-by-supsystic/app/assets/js/dtgsnonce.js?ver=0.01
92.42.110.125200 OK 41 B URL HTTP/2 www.manomav.com/wp-content/plugins/data-tables-generator-by-supsystic/app/assets/js/dtgsnonce.js?ver=0.01
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 29a98c4f5edd4ec8249f165ffcfbfd37
20c6a355a13d953617d6e7c50c91432a03917d43
2e599dfaffe056d6e6f7f19cd3e1d47169ac4468bd9fb2f9f4033940f7fc7584
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/data-tables-generator-by-supsystic/app/assets/js/dtgsnonce.js?ver=0.01 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:13:09 GMT
accept-ranges: bytes
content-length: 41
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/images/page-1_img08.png
92.42.110.125200 OK 2.0 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/page-1_img08.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 80 x 61, 8-bit/color RGBA, non-interlaced\012- data
Hash ceb41965553f18f73f8409c3030ea8cc
a6cf9929f2bc85f9ddeb3188eb15279407bde432
d9dff2f6cc6ceb2bead6dd1b2f488be068ecf5608c93410b339cba16b8a29e41
GET /wp-content/themes/manomav/images/page-1_img08.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 2034
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
92.42.110.125200 OK 2.3 kB URL HTTP/2 www.manomav.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (6494), with no line terminators
Hash d36aa71a696fa330e746e020f51706c1
d562000b49ba8a70ae9a0f7cfff1b879fcf978b0
fb18eb2f616d3ccb9f8d8ce3d01f4ada3f0a269eab413b7bd7ad38ebfe8d781a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2330
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
92.42.110.125200 OK 6.8 kB URL HTTP/2 www.manomav.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (19111)
Hash d626306dffd33f5fe5c26a7f3eb31e11
c6a49756a49e4e3b65834485e4755b021cff392c
f96d9b10de2d4256189f9e282c2f400cb8d59e23d7a6845b62e4c8aa820cea84
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6810
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
92.42.110.125200 OK 3.1 kB URL HTTP/2 www.manomav.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (9720), with no line terminators
Hash 7b3d5adb95a380672e7d5da68b57b3c0
58db2566c56407e29d4557d912663b36ec328b14
aaa8914b936896ede7bb53ba3a4273d63bf82ed918efe0cfac6f2b3f4641a423
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3050
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.15
92.42.110.125200 OK 287 B URL HTTP/2 www.manomav.com/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.15
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash b549377103ff5923af6a2bda22756d18
a4c00dace4932f712d63f67f2af4c5ea9d97d823
5518b4e3dc40d0172dab6d1c8e5babda33e6a59bb600677ab2c314ce3a9cb1e5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.15 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:13:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 287
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
92.42.110.125200 OK 8.6 kB URL HTTP/2 www.manomav.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (24733), with no line terminators
Hash 68595c6cc0dcbfdacf99bc94ff77ad86
2b2719f3d55566841af05dacf068dc2d3c10dcce
5ce4baf7eead42a8568d54a21c089360bb8667b592908350c1d8cb454844e2ce
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:13:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8563
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6
92.42.110.125200 OK 439 B URL HTTP/2 www.manomav.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (999), with no line terminators
Hash 941c9d44f1c480a37006540de948ef9a
29bc99b84660341fc37d60774b3083025a19147c
d297692ee1e68d1e2499576903508be06859340a25eded15b2565631a592851e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 439
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/js/jquery.js
92.42.110.125200 OK 32 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/js/jquery.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (32086), with CRLF line terminators
Hash 06a2b2c3ee18a2c3846e756c2e2b2cb4
5088db61206ef8a341da7e358bc182c2d28a4c75
f3b18f58b0161082f9f2d1441cd1c969efd18c4826c29c6525de52ee4af61b03
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/js/jquery.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32304
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/js/jquery-migrate-1.2.1.js
92.42.110.125200 OK 5.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/js/jquery-migrate-1.2.1.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 04c400ba07fddcda3018399d7181fff4
5215c06557983bb8897812522eefb300f3be9b14
cd2799411ea3af1cb3f953b06c15da3cc4054a0faa8e6ae0f59d26a48a7f0618
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/js/jquery-migrate-1.2.1.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5559
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/js/script.js
92.42.110.125200 OK 2.4 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/js/script.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text
Hash 5fcb47dadd3297ac861a4fe8656cc30c
7e00652626d70125b3cb5743a11c00885162ab4d
14dc1ef50af74df54ff7b59fa69ed99b6f83381596d68da4943f8b7ffbba2730
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/js/script.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2374
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
92.42.110.125200 OK 4.5 kB URL HTTP/2 www.manomav.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (15224)
Hash 3c05cdbb96f694e86b05c7a3e5c6703f
615a7094f3210830bd5e6f08f845c101be2eefeb
371bb131cc739b177f4c90f67535f020d0bbee092e2ff1bad6ac38e978da3092
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: application/javascript
last-modified: Tue, 08 Jun 2021 22:15:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4539
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LeU98IfAAAAAD2zMRBHKynflTKmFsNAw_XYzNxE&ver=3.0
142.250.74.164200 OK 585 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LeU98IfAAAAAD2zMRBHKynflTKmFsNAw_XYzNxE&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash a3b1e437e96b5f729b739140c7f7fe29
b2abf0b7580b1d27b47dd033bda18cd5e0ea9dc6
3e984d0c47bbb3031b64ada925922937d43dcdf9bec12be8a4e63d588b765bf7
GET /recaptcha/api.js?render=6LeU98IfAAAAAD2zMRBHKynflTKmFsNAw_XYzNxE&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 16 Nov 2022 18:24:57 GMT
date: Wed, 16 Nov 2022 18:24:57 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/animate.css
92.42.110.125200 OK 4.4 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/animate.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 09ea38bbdd5d82125e69048cbb9067ae
17e771fd58069275493a18dc80bf14b4ab191a56
9c0f6b7c3f54797bf48d128737920cd2c5d705edea21ed68370cbf54ed053524
GET /wp-content/themes/manomav/css/animate.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4425
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/font-awesome/4.3.0/css/font-awesome.min.css
92.42.110.125200 OK 5.1 kB URL HTTP/2 www.manomav.com/font-awesome/4.3.0/css/font-awesome.min.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (23502)
Hash 7826f5087340a4cd319f2f3789cdd95a
cdcc88c38b1ce8fe1dda21dfdcd3b8b29aa47b6c
04a0fef17dabf0233d639fb47758824276bafb3286a63b888ea363f75a1339c0
GET /font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5089
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 15b877e3c04a13242f1e8d068e8cb9ed
f1a1a051ce4b6f820bb1e54d6e526a7a07e84117
dacb6aa3a7588b55169efba42082deb1576d69e60ea564826300b404087969e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 1b43631817b375ad10d08b6fd9ff9249
ca2988f207b07f60e4204c701e127f84a69a5446
d61ac811e9c087f7fe5a9baeaf3065ac313c1e777f169cf91516ef4b83304f1f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash abdbaa56ac358c53c5dc3723c7671381
48c0e50792e786d83b35f0a36efb55f4c94c694d
6e9cb55f14b8219b7495ed4cd17bae3f0ca6127735ed01d3c1979601ffeb7b1c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/themes/manomav//js/jquery.cookie.js
92.42.110.125200 OK 1.3 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.cookie.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash b8922e4804dbd0e23f774988a1c23d4f
5385ed7ddb2e70318b1630948c67979bc64b0ab3
09b27d742e6b54386eb3c93d6526d6742a5759ff8cc14c2445bf0deb24650fdf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.cookie.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1340
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.easing.1.3.js
92.42.110.125200 OK 1.9 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.easing.1.3.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 2caffc7a73cc9190fe3b124cc781a42e
46ad6641d1ebf8e091bde798a73d175d4c9facab
3e40e775308d772a7b0312d951db5db75105184d893cb92acf6e8ba1e338104d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.easing.1.3.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1903
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:300|Roboto:400,500,300,300italic,900,900italic,700|Cutive
142.250.74.10200 OK 1.7 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:300|Roboto:400,500,300,300italic,900,900italic,700|Cutive
IP 142.250.74.10:0
Hash d44bb5695678441509eb7a980422c7c7
f1957c068c2a451ceea592f5a47839346ad73dad
4bd42a9cd153c42372ebf56d9bc585f4e0bd37d1c4eeb234962a4acc0125d3d4
GET /css?family=Lato:300|Roboto:400,500,300,300italic,900,900italic,700|Cutive HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 16 Nov 2022 18:24:57 GMT
date: Wed, 16 Nov 2022 18:24:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/images/page-1_img07.png
92.42.110.125200 OK 59 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/page-1_img07.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 523 x 279, 8-bit/color RGBA, non-interlaced\012- data
Hash b17b9c5d84e23303a9e4192a2dfe13a3
b8c9f0f7526204ad8a4e6f5e58b2621b148c5846
874f9ca80a4b8d85470b9d70e7afdd6f05c4db1183bc116402525f9eff185580
GET /wp-content/themes/manomav/images/page-1_img07.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 58983
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/images/ajax_loader.png
92.42.110.125200 OK 10 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/images/ajax_loader.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 87b180d6f33ba5c4a931c2877484c5c3
76c99bb0eef2610b0b0c7a30fa3b20ab9c6dce59
5b13155d5e5495ecbd27b9fabc7b64d08cf8eaee2a83cb790d7c376fb1fc84a7
GET /wp-content/plugins/photo-gallery/images/ajax_loader.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: image/png
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-length: 10388
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-N27W84R
142.250.74.168200 OK 63 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-N27W84R
IP 142.250.74.168:0
File type ASCII text, with very long lines (3702)
Hash 3d6f9bfe1cf802632c74d6bc4dc8471b
20a8a8d296472f9eda9483ab7b84fcdc740f1487
f28e8d19cc917b2f14543f9e77cad9465c85717932a406be6d2dc4c0048a9ebe
GET /gtm.js?id=GTM-N27W84R HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Nov 2022 18:24:57 GMT
expires: Wed, 16 Nov 2022 18:24:57 GMT
cache-control: private, max-age=900
last-modified: Wed, 16 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 62965
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/images/blank.gif
92.42.110.125200 OK 43 B URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/images/blank.gif
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /wp-content/plugins/photo-gallery/images/blank.gif HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: image/gif
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-length: 43
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff
92.42.110.125200 OK 57 kB URL HTTP/2 www.manomav.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
Analyzer Verdict Alert fortinet Malware
GET /font-awesome/4.3.0/fonts/fontawesome-webfont.woff HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.manomav.com/font-awesome/4.3.0/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: font/woff
last-modified: Wed, 30 Mar 2022 15:49:32 GMT
accept-ranges: bytes
content-length: 56780
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts/bwg.ttf?qy18kk
92.42.110.125200 OK 7.5 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts/bwg.ttf?qy18kk
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, bwg \012- data
Hash dae2130d98859247658e1e20ee533365
11f728cc64d77fb4fa61450e836c3c32f11958bf
97c83c5dacfb91b48c48b6ac0989f58eb8183d2a12f41e5f0d7553a0ff3bd467
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts/bwg.ttf?qy18kk HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: font/ttf
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7544
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.ui.totop.js
92.42.110.125200 OK 521 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.ui.totop.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text, with CRLF line terminators
Hash 61f8dcda919aab860cfb126c145390b0
82356eb7d64c90583fd975c1c82a203ec49534dc
61177932bfa875a6ad4cb6ef709b97821d610d45d9d77233864b7ffb3360566c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.ui.totop.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 521
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/superfish.js
92.42.110.125200 OK 2.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/superfish.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash d5a50923fec57fc00cf76026094d6e20
645422233ad47b65e96d2f0dd8ccf46f76eb6084
2a892227b0f6b165380e8365222ca51e48725b963763d183f60d4133ff5b69a3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/superfish.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2604
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f65bbeba59ba5e31638a17325798582f
4e544597bb0593697cec412fb97217899add2d96
adc5670dce70829fcd1edfa5c47f3bf14ee0ee7eb1e090a62818e679b91585d6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/themes/manomav//js/jquery.rd-navbar.js
92.42.110.125200 OK 1.5 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.rd-navbar.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash ba84d20a0e659888094b4fd6af4e3c7d
04ea110dca487ee4b61795abcd0266fc7cfa62c4
25c05adf736a47e42c84ce9ae73eaea98e09a056d5a839705c7bb392faf63574
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.rd-navbar.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1488
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/images/primary-bg.jpg
92.42.110.125200 OK 2.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/primary-bg.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash 2fd30581ab54d111e16cfed38983162f
7a5f473ca305b14177415829aa17176ad79a0bcd
3b902ea2e5ade7cd8c3742fc7acf92d823e743cf2134ddbda0ef555e1b5aef0c
GET /wp-content/themes/manomav/images/primary-bg.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 104067
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f65bbeba59ba5e31638a17325798582f
4e544597bb0593697cec412fb97217899add2d96
adc5670dce70829fcd1edfa5c47f3bf14ee0ee7eb1e090a62818e679b91585d6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox.js
92.42.110.125200 OK 14 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF, CR line terminators
Hash 47b8b47f3065d7c1a7e41b8284656b67
fb5128734e13dc3a2dbe06604f4583d3dd72b7d9
28f74b55d6c059b9cb2fe7d9df4d5a51f6ae92a28721fecc709b1386327eeef3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.fancybox.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13997
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 19:34:08 GMT
expires: Thu, 09 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 600649
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-media.js
92.42.110.125200 OK 1.9 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-media.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 6e0eb49957743e04b5fbcb713068b239
3914094ae05d176832ec2f594ccedb2b9330d0b4
202c4298ebfc56b14e6a4e929c175683f241f2f758c16617138b8ba1b635974a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.fancybox-media.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1881
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2
216.58.207.195200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17508, version 1.0\012- data
Hash 7fbdfaab6bd8b191496ffe1ef1b9e748
e9e592f8498d489d8000f3a4cfb1bb447f251edd
bb8007225d94a099cddbade7ea904667c0dd0b68d5e30778e5c6257589ab94d1
GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17508
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 19:44:32 GMT
expires: Thu, 09 Nov 2023 19:44:32 GMT
cache-control: public, max-age=31536000
age: 600025
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-buttons.js
92.42.110.125200 OK 994 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-buttons.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (411), with CRLF line terminators
Hash a3732175d4e9b44383f144d5ef77ca52
002cc74393490c7d8ff12d689082987f36c3f9ad
c9e6d91b7df0781566516f9c2ef9f3c7db9cff41521eb3a96f9f9b7f99400c8d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.fancybox-buttons.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 994
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f65bbeba59ba5e31638a17325798582f
4e544597bb0593697cec412fb97217899add2d96
adc5670dce70829fcd1edfa5c47f3bf14ee0ee7eb1e090a62818e679b91585d6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash abdbaa56ac358c53c5dc3723c7671381
48c0e50792e786d83b35f0a36efb55f4c94c694d
6e9cb55f14b8219b7495ed4cd17bae3f0ca6127735ed01d3c1979601ffeb7b1c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f65bbeba59ba5e31638a17325798582f
4e544597bb0593697cec412fb97217899add2d96
adc5670dce70829fcd1edfa5c47f3bf14ee0ee7eb1e090a62818e679b91585d6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/cutive/v17/NaPZcZ_fHOhV3IpLSPJC.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/cutive/v17/NaPZcZ_fHOhV3IpLSPJC.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23176, version 1.0\012- data
Hash 1a46e43cdc6a2aa4db72a144956d324b
a262bb0c7203a615e67005881cb863062de96db6
c8e606c88b52a4176eaf5d9612001876d15d15a0c8aa1f436e86ca5681d62b36
GET /s/cutive/v17/NaPZcZ_fHOhV3IpLSPJC.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23176
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Nov 2022 04:16:07 GMT
expires: Sat, 11 Nov 2023 04:16:07 GMT
cache-control: public, max-age=31536000
age: 482930
last-modified: Thu, 21 Apr 2022 16:50:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 19:34:21 GMT
expires: Thu, 09 Nov 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 600636
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 19:40:23 GMT
expires: Thu, 09 Nov 2023 19:40:23 GMT
cache-control: public, max-age=31536000
age: 600274
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 30f67afe3b2d7f92f650a884d9a3afad
d45dd01e312eb0baae49a54fd44379c764b8a390
f0c5b8630d373cc548fbb03f8378c5b316c9f5d8dd00802223cd0b0757b78081
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 16 Nov 2022 18:24:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 15 Nov 2022 07:31:19 GMT
Expires: Tue, 22 Nov 2022 07:31:18 GMT
Etag: "d45dd01e312eb0baae49a54fd44379c764b8a390"
Cache-Control: max-age=478580,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76b244362de2fab8-OSL
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 14:07:32 GMT
expires: Thu, 16 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 15445
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 18:53:49 GMT
expires: Thu, 09 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 603068
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
load.sumo.com/
194.242.11.186200 OK 1.6 kB IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (2192), with no line terminators
Hash e16c5d622b865f6c6dee3d60c814d4ae
73be3d45c16931f9cdea56000efb1edd8d559305
4d04db749f826f5d92c5865df7708502c04264838ab36d21f5a0a722a1e11de0
GET / HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 16 Nov 2022 18:24:57 GMT
content-type: text/javascript
vary: Accept-Encoding
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=600
etag: W/"415c9608bc47ee8a16b3a2f2c0aee7b0"
last-modified: Wed, 05 Oct 2022 16:50:13 GMT
x-amz-id-2: yWwpYjuVMUCRycTod3A8/6vZcH3rcKsHfa5zJ7LX12WcHiXnoQ7ORq4B2BUmD5heklcYFhcOKoY=
x-amz-request-id: WS2CDS9DCKR7RTS8
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2022 17:52:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 0845d6891b7cf3667bca54bd70297de7
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 8f69270501ab9db87293d702ce920198
56fff336cbae9601613470a96b470f677ca63fdb
00159fa0d3a7a8d9bd203a80c02dcd295e04ad152f4f05230222a9d71c1773b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/themes/manomav/images/favicon.ico
92.42.110.125200 OK 792 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/favicon.ico
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel\012- data
Hash 05dbaf79f2750d67b786fa7c63dc3696
c03e52114aea6599a0a0725e8f683ed71a13ae0a
c6fc47ed2b5113496ffe4d76b081be7b464f2bfcd28cb196d0284a2b0fe032ff
GET /wp-content/themes/manomav/images/favicon.ico HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: image/x-icon
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 792
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/pmcHome.jpg
92.42.110.125200 OK 45 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/pmcHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash 31c25d4abf593439281ec7d1901d2e37
11ae8ec356a433d00bca1b503e1f0b97de26f271
54c692448b2292ddbddfb689e1e96a3c215fc9a553a3158c627f4bf367ee8970
GET /wp-content/uploads/photo-gallery/pmcHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: image/jpeg
last-modified: Sat, 19 Aug 2017 10:40:55 GMT
accept-ranges: bytes
content-length: 45232
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/qsHome.jpg
92.42.110.125200 OK 35 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/qsHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash f4dbe5e0f58442c89ea6e2a24a35154c
2fefb02e6afa44e11bd6338c2df40237e0a5491a
75f568ae74d726b3c18d85f78fd17c0e077c27c68fc0cc103985996c3a34ba49
GET /wp-content/uploads/photo-gallery/qsHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: image/jpeg
last-modified: Sat, 19 Aug 2017 10:40:56 GMT
accept-ranges: bytes
content-length: 34551
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/bbsHome.jpg
92.42.110.125200 OK 80 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/bbsHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash 320b350237ff8de359326619d852ac17
768f352ef58f9d4aa8283e0cd893bed18f370b6d
cf8ff002d0dc615c8e8c2c4614ac442428e0407b5d006c411dc7177f98ef253a
GET /wp-content/uploads/photo-gallery/bbsHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: image/jpeg
last-modified: Sat, 19 Aug 2017 10:40:30 GMT
accept-ranges: bytes
content-length: 80516
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US®ion=in&callback=onApiLoad
142.250.74.138200 OK 56 kB URL HTTP/2 maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US®ion=in&callback=onApiLoad
IP 142.250.74.138:0
File type ASCII text, with very long lines (2585)
Hash 15ab14fc7d1de9f8ed39e2d3ebaa1588
2821292bcf5fd2fdc7ad4c843d9b7a417503ca0f
f8969af2de9f62286f55fda95f153a9f82830a104af49b5af6bd8fc15eb8ce8b
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US®ion=in&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 56293
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=17
date: Wed, 16 Nov 2022 18:09:41 GMT
expires: Wed, 16 Nov 2022 18:39:41 GMT
cache-control: public, max-age=1800
content-type: text/javascript; charset=UTF-8
age: 916
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/bimHome.jpg
92.42.110.125200 OK 54 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/bimHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash d1b55265a9c929812723f8ba7c386ec4
6e7c65ef9a961d44dd598caa64c23ba10b67e521
f9e0106f4c433d265f5b88b807c221c6380e85068337e1fb1823c7f4a66aa13e
GET /wp-content/uploads/photo-gallery/bimHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:57 GMT
content-type: image/jpeg
last-modified: Sat, 19 Aug 2017 10:40:54 GMT
accept-ranges: bytes
content-length: 53571
date: Wed, 16 Nov 2022 18:24:57 GMT
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js
142.250.74.163200 OK 409 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (668)
Size 409 kB (408610 bytes)
Hash 5e4857e008de71aa0e33e9cd123d008e
307c748fabe2497c790a20dcacde300ff7e20749
fdfeba02862c96c6d6fa5c6ecc5db0b1f9c04b93941ffa0dd47b23e66a7f9e8f
GET /recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 408610
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 14 Nov 2022 23:36:34 GMT
expires: Tue, 14 Nov 2023 23:36:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 07 Nov 2022 23:32:29 GMT
content-type: text/javascript
age: 154103
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 8f69270501ab9db87293d702ce920198
56fff336cbae9601613470a96b470f677ca63fdb
00159fa0d3a7a8d9bd203a80c02dcd295e04ad152f4f05230222a9d71c1773b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c37604a6880f4afb12af019efeadc20e
9197dfad083403cc25e1a16f5c4953727e97f14e
a03a41326606ebf074cfa18fd8f8311bd78c3292afd1817f6bbd98f99e102e8f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5688
Cache-Control: max-age=145010
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:57 GMT
Etag: "6374a833-1d7"
Expires: Fri, 18 Nov 2022 10:41:47 GMT
Last-Modified: Wed, 16 Nov 2022 09:06:59 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 16 Nov 2022 16:41:09 GMT
expires: Wed, 16 Nov 2022 18:41:09 GMT
cache-control: public, max-age=7200
age: 6228
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 74c07a15d0960c36c1d1160344b946da
9b0d25cc445c83d1eae53deb84a2a74b152af6d4
ba99f5ae2d779e578700195798bb71dd43f11195ef6a982e0eaac735e26b5a85
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: hBMDtxrs/fE6+PPgCK10sv0PxF1y0swXLIvp2bFgzGMBT/Ea7VP8HOkpptain/hsZE0zaZLZHbbJ8HP4HN5jrA==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1904183273
date: Wed, 16 Nov 2022 18:24:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c37604a6880f4afb12af019efeadc20e
9197dfad083403cc25e1a16f5c4953727e97f14e
a03a41326606ebf074cfa18fd8f8311bd78c3292afd1817f6bbd98f99e102e8f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5688
Cache-Control: max-age=145010
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:57 GMT
Etag: "6374a833-1d7"
Expires: Fri, 18 Nov 2022 10:41:47 GMT
Last-Modified: Wed, 16 Nov 2022 09:06:59 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
googleads.g.doubleclick.net/pagead/viewthroughconversion/961138791/?random=1668623096966&cv=11&fst=1668623096966&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&rfmt=3&fmt=4
142.250.74.130200 OK 902 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/961138791/?random=1668623096966&cv=11&fst=1668623096966&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (1981), with no line terminators
Hash 295a126ba4798dbfca0bfeb70c48cfad
b7bd085aa02ceb9d9b57e34ef329ae7afaab7f58
792968ccb920f8150b69f5a8beabc09cd748e9300a33a2b6457f8ed400f68b47
GET /pagead/viewthroughconversion/961138791/?random=1668623096966&cv=11&fst=1668623096966&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 16 Nov 2022 18:24:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 902
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 16-Nov-2022 18:39:57 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 74c07a15d0960c36c1d1160344b946da
9b0d25cc445c83d1eae53deb84a2a74b152af6d4
ba99f5ae2d779e578700195798bb71dd43f11195ef6a982e0eaac735e26b5a85
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 3a8b96c62fae67d3ceb2c01bd8547672
7b0733eff3bb8b2cc82fb8aa9cf2564a8ae513a0
a2b00a73a28754bfd65937c1f414c1de4eee09735dc0958f919f41f73a4cbecc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
load.sumo.com/72.0a035390359aab65eb82.js
142.250.74.35200 OK 44 kB URL HTTP/2 load.sumo.com/72.0a035390359aab65eb82.js
IP 142.250.74.35:0
Hash 39628260d788194ccce1956bc42f7a17
e63c3b685e8e170953f180396fc955cff8316ab6
d41272956ac76f7f715999eb681297a8fab813b4c1342f6b71019250ebe18a9b
GET /72.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 16 Nov 2022 18:24:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 3a8b96c62fae67d3ceb2c01bd8547672
7b0733eff3bb8b2cc82fb8aa9cf2564a8ae513a0
a2b00a73a28754bfd65937c1f414c1de4eee09735dc0958f919f41f73a4cbecc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52837639-2&cid=1164561615.1668623097&jid=1281888034&gjid=738606013&_gid=1352831431.1668623097&_u=YEBAAEAAAAAAACAAI~&z=758194046
142.251.1.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52837639-2&cid=1164561615.1668623097&jid=1281888034&gjid=738606013&_gid=1352831431.1668623097&_u=YEBAAEAAAAAAACAAI~&z=758194046
IP 142.251.1.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52837639-2&cid=1164561615.1668623097&jid=1281888034&gjid=738606013&_gid=1352831431.1668623097&_u=YEBAAEAAAAAAACAAI~&z=758194046 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.manomav.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 16 Nov 2022 18:24:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 53317aec9cafbd68ce439e1bdd7d4252
6827fa0a399c5be70f05aaeb5b44cc8071026f65
04a81d99b7b214fbd8a19882d71daedc13b5cd8fca333e6d075a017b2521a555
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:24:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Nov 2022 12:31:58 GMT
expires: Sun, 12 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 366780
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 21:46:16 GMT
expires: Fri, 10 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 506322
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 18:53:49 GMT
expires: Thu, 09 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
age: 603069
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sumo.com/api/load/
52.38.14.212200 OK 921 B IP 52.38.14.212:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (920), with no line terminators
Hash 90c0e49aeee1dce79eeaa76d71f86314
6cd41a192d9a965193738d660920977c50b17b72
da7a8c1f29110e2f21f71bc21740e28aae7ba40f0bc4bd8df7be4a64c09b7c15
POST /api/load/ HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 210
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 18:24:59 GMT
content-type: application/json; charset=utf-8
content-length: 921
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://www.manomav.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
set-cookie: __smSessionId=s%3A4vqjCU1IKLq1niMBYEcqVhGk.GKotmk3%2FhTE6bkVHLR%2FTrsiD1klXmjQ5KdZfYxw%2BMRU; Path=/; Expires=Thu, 17 Nov 2022 03:10:35 GMT; HttpOnly
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
sumo.com/services
52.38.14.212204 No Content 0 B IP 52.38.14.212:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /services HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-sumo-auth
Referer: https://www.manomav.com/
Origin: https://www.manomav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 16 Nov 2022 18:24:59 GMT
access-control-allow-origin: https://www.manomav.com
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE
access-control-allow-headers: pragma, x-requested-with, accept, x-sumo-auth, x-sumo-token, content-type
access-control-max-age: 2592000
X-Firefox-Spdy: h2
sumo.com/services
52.38.14.212200 OK 68 kB IP 52.38.14.212:0
Hash 673819b909754cbf0fbad143fea0592f
2aa9ba5efc56535222b389f0fbd42f36496119c7
a34160fb8c317b2c867b879ebf91555255ac9dc3094e0a8c043a291f12d4456b
POST /services HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Sumo-Auth: 4vqjCU1IKLq1niMBYEcqVhGk
Content-Length: 748
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 18:24:59 GMT
content-type: application/json; charset=utf-8
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://www.manomav.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-encoding: gzip
set-cookie: __smSessionId=s%3A5DIlAVsnHn6l2AJMNfU2Igkk.jrYp1uhyYsG6O%2BuV%2Fm5aKGr2N1upDFmHnv9jmSUnMEg; Path=/; Expires=Thu, 17 Nov 2022 03:10:35 GMT; HttpOnly
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
X-Firefox-Spdy: h2
load.sumo.com/64.0a035390359aab65eb82.js
194.242.11.186200 OK 102 kB URL HTTP/2 load.sumo.com/64.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (1305), with no line terminators
Size 102 kB (102158 bytes)
Hash db2eba7d409a1c50a7b1b3c90797bafc
23b84778116204369149376bbf34c32400abea48
eb91dd26188c48f554b2ea638f8271bbc242ee330ab0e01134cf75f5959c9007
GET /64.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 18:24:59 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"d200986501135078d1fbd7f480e7bb08"
last-modified: Mon, 01 Aug 2022 17:37:08 GMT
x-amz-id-2: uTd0fGAmQ/qQbQFNMxmbYzUtke4eY1PS5zTkBBciiv0Es0UchPt0PddZ9dyhRU9ZzowZafmJsoY=
x-amz-request-id: V8EXEYCRRPW7PD51
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/09/2022 20:15:03
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 5f77a44d218d609b8f416293f93a13a9
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/2.0a035390359aab65eb82.js
194.242.11.186200 OK 19 kB URL HTTP/2 load.sumo.com/2.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (1643)
Hash f8608a9a92d33c935efe534712394b40
db40d4062893b2ab64ecd05122df058c66f43044
f505ebd222a53310db8cd98dee720536f915dc514740f80a809e0c0a413ed1a6
GET /2.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 18:24:59 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"6bfdf1ae8492f107706ac037915be663"
last-modified: Wed, 25 May 2022 21:04:43 GMT
x-amz-id-2: 6PNzoY2bwq8TRd6kG87xsdwwZVMkvJf0/efDm8ajElAv34gPJUvYgkBjwDQSvVR2KKmGNxwg/Gk=
x-amz-request-id: 4NT63S72ZR8KN5DF
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/16/2022 07:42:52
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 6777fcdf201c37aa62f85f73b973937b
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 1b43631817b375ad10d08b6fd9ff9249
ca2988f207b07f60e4204c701e127f84a69a5446
d61ac811e9c087f7fe5a9baeaf3065ac313c1e777f169cf91516ef4b83304f1f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:25:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 1b43631817b375ad10d08b6fd9ff9249
ca2988f207b07f60e4204c701e127f84a69a5446
d61ac811e9c087f7fe5a9baeaf3065ac313c1e777f169cf91516ef4b83304f1f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 18:25:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
load.sumo.com/1.0a035390359aab65eb82.js
194.242.11.186200 OK 2.6 kB URL HTTP/2 load.sumo.com/1.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (1445), with no line terminators
Hash 2734b037237a847a5160c44b7d4facfe
7fc058a2b14a02d17282943a4aacc50055abeaa2
cd31c51537a215786ea8e882c14c6de71a2844769c9e9079af651be5569eed38
GET /1.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 18:24:59 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"f9b0aedd5a94b36e30a06214fcc0644f"
last-modified: Wed, 05 Oct 2022 16:48:56 GMT
x-amz-id-2: kYjxMICNjIpfcrk+0sBswoBXXdyomsw/A+XRF8mnzmsMgwpqKn4Krx5Zp5fhphYpTkqDBPBXv8Y=
x-amz-request-id: N7T6N3EBKCF3QKH5
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2022 17:52:26
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: f47ee1507b726b8c4e0bca73d2da35bc
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
sumo.com/apps/share/facebook/queue
52.38.14.212200 OK 16 B URL HTTP/2 sumo.com/apps/share/facebook/queue
IP 52.38.14.212:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST /apps/share/facebook/queue HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 109
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 18:25:00 GMT
content-type: application/json; charset=utf-8
content-length: 16
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://www.manomav.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
X-Firefox-Spdy: h2
sumo.com/apps/share/facebook/queue
52.38.14.212200 OK 16 B URL HTTP/2 sumo.com/apps/share/facebook/queue
IP 52.38.14.212:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST /apps/share/facebook/queue HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 109
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 18:25:00 GMT
content-type: application/json; charset=utf-8
content-length: 16
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://www.manomav.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
X-Firefox-Spdy: h2
load.sumo.com/11.0a035390359aab65eb82.js
194.242.11.186200 OK 131 kB URL HTTP/2 load.sumo.com/11.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size 131 kB (131425 bytes)
Hash d8d1e76e051dabd91092abded823078d
b85aa731c600aeaa3a8939a2f87090d758a90f56
b0ee9a36c3ab116f1734034568289e63882a64e78a70025f69449959f71d773c
GET /11.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 18:24:59 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"4624ceb9029a934a36424d836cf4cc37"
last-modified: Mon, 01 Aug 2022 17:36:16 GMT
x-amz-id-2: CcmL6MncxIAyT0N/YitjMpmZg7j5aaXl2gp/qA9kiMdUqmbflyP98FSkIMY7aWIHllWpKWIbCVA=
x-amz-request-id: 7009GYMXNRGD2HNX
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/03/2022 12:08:27
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 6bfaf241dda818952500bbcc62f8a79a
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext
IP 142.250.74.10:0
GET /css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 16 Nov 2022 18:24:57 GMT
date: Wed, 16 Nov 2022 18:24:57 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
load.sumo.com/4.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/4.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /4.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 18:24:59 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"a39d043b7c7bba70750cf288ee5ef71a"
last-modified: Wed, 05 Oct 2022 16:49:25 GMT
x-amz-id-2: 4fcmsSo4UqJwhOqjF2RabwAMenMTkrbZaYqouwX9hgXNAhvFAfHRrltlEFVyyBl16ZbGgXMNzVw=
x-amz-request-id: 3ZW0ENMS0W1WHH93
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2022 17:52:23
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 10009ca3b1cbf54a915806b0cd2e64eb
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.manomav.com/
92.42.110.125200 OK 0 B IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://www.manomav.com/wp-json/>; rel="https://api.w.org/", <https://www.manomav.com/wp-json/wp/v2/pages/27>; rel="alternate"; type="application/json", <https://www.manomav.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Nov 2022 18:24:56 GMT
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/images/mepl.png
92.42.110.125200 OK 0 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/mepl.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
GET /wp-content/themes/manomav/images/mepl.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 18:24:56 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 6859
date: Wed, 16 Nov 2022 18:24:56 GMT
X-Firefox-Spdy: h2
load.sumo.com/10.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/10.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /10.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 18:24:59 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"fc263e7087822a0b00ff93677d6df4ea"
last-modified: Mon, 01 Aug 2022 17:36:09 GMT
x-amz-id-2: 2kF2L6GATDS/sHhd4gngOW1Rx7Yq2vmR0s/p/GkToAVBNdoukWzSUGmtutFH9geKnl8Ggp42Yps=
x-amz-request-id: Z6QZPQPN1V71YR3C
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/03/2022 12:08:26
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c470a6802e09be5f9064a82705762759
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/23.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/23.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /23.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 18:24:59 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"be0b945be6cafa91f6fd4efdfc8268f8"
last-modified: Wed, 05 Oct 2022 16:49:12 GMT
x-amz-id-2: fZ89+7KF1xOysm3DW2wmctYjGGcEkc5ujUbQRz38wDJ8OeaWLrXwnNGLI5SWOB5Np+dxRRMIbiY=
x-amz-request-id: N7T17F0N6AS9ENSA
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2022 17:52:26
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 27887fd8b1d730adc8f5a80ecfacad85
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2