Report - www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/

Report Overview

Submitted URL
www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
IP
77.244.145.250
ASN
#42713 Intercom Ltd
Submitted
2022-09-02 09:57:31
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
30

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
www.gmit.tj	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	17 kB	2.8 MB	77.244.145.250
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	43 kB	142.250.74.72
s01.flagcounter.com	192638	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	477 B	9.8 kB	66.154.110.210
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.77.32
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	34.212.13.96
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	213 kB	142.250.74.163
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.115
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	404 B	1.5 kB	216.58.211.10
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	81 kB	34.120.237.76
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	355 B	21 kB	142.250.74.174
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	662 B	1.4 kB	142.250.74.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-02	medium	www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/	Phishing
2022-09-02	medium	www.gmit.tj/wp-content/plugins/wp-smart-editor/css/jquery.qtip.css?ver=e0c44eafe9e876851a44a2d74be5a169	Phishing
2022-09-02	medium	www.gmit.tj/wp-content/plugins/wp-smart-editor/css/customstyles/custom_styles.css?ver=e0c44eafe9e876851a44a2d74be5a169	Phishing
2022-09-02	medium	www.gmit.tj/wp-content/themes/education-hub/third-party/font-awesome/css/font-awesome.min.css?ver=4.7.0	Phishing
2022-09-02	medium	www.gmit.tj/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	Phishing
2022-09-02	medium	www.gmit.tj/wp-content/plugins/wp-smart-editor/js/frontend_tooltip.js?ver=e0c44eafe9e876851a44a2d74be5a169	Phishing
2022-09-02	medium	www.gmit.tj/wp-content/plugins/wp-smart-editor/css/front_styles.css?ver=e0c44eafe9e876851a44a2d74be5a169	Phishing
2022-09-02	medium	www.gmit.tj/wp-content/themes/education-hub/js/skip-link-focus-fix.min.js?ver=20130115	Phishing
2022-09-02	medium	www.gmit.tj/wp-content/themes/education-hub/js/custom.min.js?ver=1.0	Phishing
2022-09-02	medium	www.gmit.tj/wp-includes/css/dashicons.min.css?ver=e0c44eafe9e876851a44a2d74be5a169	Phishing
2022-09-02	medium	www.gmit.tj/wp-content/themes/education-hub/js/navigation.min.js?ver=20120206	Phishing
2022-09-02	medium	www.gmit.tj/wp-includes/js/wp-embed.min.js?ver=e0c44eafe9e876851a44a2d74be5a169	Phishing
2022-09-02	medium	www.gmit.tj/wp-includes/js/jquery/jquery.js?ver=1.12.4	Phishing
2022-09-02	medium	www.gmit.tj/wp-content/themes/education-hub/third-party/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0	Phishing
2022-09-02	medium	www.gmit.tj/%d0%bc%d1%83%d0%bb%d0%be%d2%9b%d0%be%d1%82%d0%b8-%d1%81%d1%83%d0%b4%d0%bc%d0%b0%d0%bd%d0%b4-%d0%b1%d0%b0%d2%b3%d1%80%d0%b8-%d1%84%d0%b0%d1%80%d0%b4%d0%be%d0%b8-%d0%b1%d0%b5%d2%b3%d1%82%d0%b0%d1%80/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	www.gmit.tj/wp-includes/js/wp-emoji-release.min.js?ver=e0c44eafe9e876851a44a2d74be5a169	12 kB	2023-03-07	2024-05-10
Pretty URL www.gmit.tj/wp-includes/js/wp-emoji-release.min.js?ver=e0c44eafe9e876851a44a2d74be5a169 IP 77.244.145.250 ASN #42713 Intercom Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:03 Last Seen2024-05-10 12:17:20 Times Seen763 Hash a7c259ac67b3b4002dc8ac4a09765b9d 95a56d0d0fa8b38105324ddeae45afb36d19f1b9 3d8e94fed6cc8ea56ee5ec6174efb68cb7197d2e729149cb43e85505bf175779 Loading...

	www.gmit.tj/wp-includes/js/jquery/jquery.js?ver=1.12.4	97 kB	2023-03-07	2024-05-10
Pretty URL www.gmit.tj/wp-includes/js/jquery/jquery.js?ver=1.12.4 IP 77.244.145.250 ASN #42713 Intercom Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:38:38 Last Seen2024-05-10 21:12:42 Times Seen5111 Hash 8610f03fe77640dee8c4cc924e060f12 076524186dbbdd4c41afbbd6b260d9e46a095811 fc48d1d80ece71a79a7b39877f4104d49d3da6c3665cf6dc203000fb7df4447e Loading...

	www.gmit.tj/wp-content/themes/education-hub/js/skip-link-focus-fix.min.js?ver=20130115	557 B	2023-03-07	2024-04-25
Pretty URL www.gmit.tj/wp-content/themes/education-hub/js/skip-link-focus-fix.min.js?ver=20130115 IP 77.244.145.250 ASN #42713 Intercom Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:05 Last Seen2024-04-25 20:11:40 Times Seen238 Hash dea2d1887d3a260af2791c5e97b8ba43 a13dc5c638242f2117cdde2121bbaed9fd538566 818266fe4b7bbf0fe187b6190933c99af05829f70c2d6023acab03f8af5a59b0 Loading...

	www.gmit.tj/wp-content/themes/education-hub/js/navigation.min.js?ver=20120206	919 B	2023-03-07	2024-03-28
Pretty URL www.gmit.tj/wp-content/themes/education-hub/js/navigation.min.js?ver=20120206 IP 77.244.145.250 ASN #42713 Intercom Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:08 Last Seen2024-03-28 20:23:44 Times Seen78 Hash b83979f43a97faf4d3d8a7d10e9d58c9 483235f005e4211e6e9ef12646f022c5a18760dc 2d7f71d029ae078ddd664e92761a90f35cb5cb596f50c208b79c100bed5645c9 Loading...

	www.gmit.tj/wp-includes/js/wp-embed.min.js?ver=e0c44eafe9e876851a44a2d74be5a169	1.4 kB	2023-03-07	2024-05-10
Pretty URL www.gmit.tj/wp-includes/js/wp-embed.min.js?ver=e0c44eafe9e876851a44a2d74be5a169 IP 77.244.145.250 ASN #42713 Intercom Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:47 Last Seen2024-05-10 21:12:42 Times Seen4245 Hash 5a03f97cc479b9f5d7efdaccec31bc17 54518be91b7c5d4b139e032d23ffae568cc7e9fd dcb5e540e62fc85857254a1066afb6a7e8999279c6d4c583eef855d39f9289c0 Loading...

	www.googletagmanager.com/gtag/js?id=UA-123725942-1	108 kB	2023-03-07	2024-02-07
Pretty URL www.googletagmanager.com/gtag/js?id=UA-123725942-1 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:08 Last Seen2024-02-07 05:57:51 Times Seen1 Hash 676a5c47c069407f9048ec9b97797598 2fbf869a2a4a9862d8d50abc3945ae864f65a5c3 eda465c4e028f195f472fcf095f5de65c9bc95d8c7acf1fc9514f30330865dbe Loading...

	www.gmit.tj/wp-content/plugins/wp-smart-editor/js/frontend_tooltip.js?ver=e0c44eafe9e876851a44a2d74be5a169	456 B	2023-03-07	2024-03-01
Pretty URL www.gmit.tj/wp-content/plugins/wp-smart-editor/js/frontend_tooltip.js?ver=e0c44eafe9e876851a44a2d74be5a169 IP 77.244.145.250 ASN #42713 Intercom Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:08 Last Seen2024-03-01 19:53:36 Times Seen14 Hash 5e2f5325d57306e2968bda9537e32f6f f5c5072f77ab47b7c45315ad936ef91218f16f87 945b108034cd2fa87c418374b199d4d39e59d589a195065f0ff6cedac533029e Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-05-09
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-09 09:39:13 Times Seen854 Hash d40531c5e99a6f84e42535859476fe35 a901817d77b2fe5259c298c91bc65c54d7f8a1a9 a1925038db769477ab74b4df34350c35688a795bb718727b0f4292a4a78a6210 Loading...

	www.gmit.tj/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	10 kB	2023-03-07	2024-05-11
Pretty URL www.gmit.tj/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 IP 77.244.145.250 ASN #42713 Intercom Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-05-11 01:26:02 Times Seen37742 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	www.gmit.tj/wp-content/themes/education-hub/third-party/cycle2/js/jquery.cycle2.min.js?ver=2.1.6	23 kB	2023-03-07	2024-05-10
Pretty URL www.gmit.tj/wp-content/themes/education-hub/third-party/cycle2/js/jquery.cycle2.min.js?ver=2.1.6 IP 77.244.145.250 ASN #42713 Intercom Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:01 Last Seen2024-05-10 18:37:40 Times Seen350 Hash b9bef20cec2d668923eb248733b3955e 8bbbca8502749ad9d770717c8dc39cf2892ea730 87a1a7e65f6ceed57d27b07cac22836a7682617932fc9d4376887b0ae1754a35 Loading...

	www.gmit.tj/wp-content/plugins/wp-smart-editor/js/jquery.qtip.min.js?ver=e0c44eafe9e876851a44a2d74be5a169	44 kB	2023-03-07	2024-03-01
Pretty URL www.gmit.tj/wp-content/plugins/wp-smart-editor/js/jquery.qtip.min.js?ver=e0c44eafe9e876851a44a2d74be5a169 IP 77.244.145.250 ASN #42713 Intercom Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:08 Last Seen2024-03-01 19:53:37 Times Seen15 Hash 5616043426f9b840e5d1b5906e146817 b2f204ce6e4941539dda37a0e8cadb67d19e5b6c a484ad7b8b80b0acc3e9776a599f21a2055294210fe96c5621f3b2d44fff3aae Loading...

	www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/	165 B	2023-03-07	2024-02-07
Pretty URL www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/ IP 77.244.145.250 ASN #42713 Intercom Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:08 Last Seen2024-02-07 05:57:51 Times Seen1 Hash 3d9ea6418f9ce6524a24d8bed6e66470 1823c6f777ad7d0960f8fec05300fed6170da055 abcd5ddbf8776617f31a778021769b4915000a704e60d1aed85d0bb9a0f9fed3 Loading...

	www.gmit.tj/wp-content/themes/education-hub/js/custom.min.js?ver=1.0	294 B	2023-03-07	2024-03-28
Pretty URL www.gmit.tj/wp-content/themes/education-hub/js/custom.min.js?ver=1.0 IP 77.244.145.250 ASN #42713 Intercom Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:08 Last Seen2024-03-28 20:23:44 Times Seen79 Hash 6be541af7935a0a406fe9a1be5b85f7f d083d6cd4b949b867bc25fca49e9d42db38c9c5d 883bca3a81759dc969a33c1b4f68eb9f43f96d88474d49d3f589ce6314091cd5 Loading...

	www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/	213 B	2023-03-07	2024-04-25
Pretty URL www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/ IP 77.244.145.250 ASN #42713 Intercom Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:08 Last Seen2024-04-25 20:11:39 Times Seen84 Hash d6131585d515bae3cadfaaa1671c6948 46d6899d838e0a54c4a41cac9dad100fda8a6d5b 8ee3ed9602e3a19bf541019b6e4d422c1340a84531abd67de92325446176e77d Loading...

	www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/	2.1 kB	2023-03-07	2024-02-07
Pretty URL www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/ IP 77.244.145.250 ASN #42713 Intercom Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:08 Last Seen2024-02-07 05:57:51 Times Seen1 Hash ffeb499ab6b7db87409183b9ac92e194 af6dbdd20ceca884db3efebf7432d03ac56b7e65 de20f222e4ddab6a33ec504a529a971b5cfd7cdcd170cda2c97db39dbd7f9361 Loading...

HTTP Transactions (62)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 02 Sep 2022 09:41:43 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: po_odzM_5zqcENbtXx--qHAsZ-q6QVT0odDR1JbpY804ULyQ8BHVsw==
Age: 937

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4871
Expires: Fri, 02 Sep 2022 11:18:31 GMT
Date: Fri, 02 Sep 2022 09:57:20 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 02 Sep 2022 01:15:17 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SRsRvwdWjTMVuP4IOSwcWKDYvfEno9bJbRtdVJhcotMhbXTocZPTiw==
age: 31323
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 09:57:20 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 02 Sep 2022 09:38:16 GMT
Cache-Control: max-age=3600
Expires: Fri, 02 Sep 2022 10:11:41 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JnV66GycN821iPKHnfKfadhRvRz4uJLGzoPJXFRoJ6KY88Y5yPO7_g==
Age: 1144

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
21daf45cdda2eb462873226bb5c1f0fb
4d4621bbf1461f35f7e536c1dbd9de71978ffa23
8164c742d013bdc2836cac1167acfe482547347ab6a1daefa15475f694dae057

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3105
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 09:57:21 GMT
Last-Modified: Fri, 02 Sep 2022 09:05:36 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

34.212.13.96

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.212.13.96:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8OU4KyQizA/5t0P/ZINplg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Tmsy6VGm2MvQDHsuoGCxCe8Vy0E=

www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/

77.244.145.250

200 OK

16 kB

URL HTTP/1.1
www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1787)
Size
16 kB (16058 bytes)
Hash
83c37baad92c3d511c239e72ff2c9dbb
217af32849cf989da2f1e08869bfacc124e965cb
def7f3cb34646679b3c41ae520db76f470b36d18c0fd437b6a00d64963d3636d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/ HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:02 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 16058
Connection: keep-alive
Keep-Alive: timeout=60
X-Powered-By: PHP/5.4.45-0+deb7u11
Set-Cookie: pll_language=tg; expires=Sat, 02-Sep-2023 10:01:02 GMT; path=/
Link: <http://www.gmit.tj/wp-json/>; rel="https://api.w.org/", <http://www.gmit.tj/?p=12674>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip

fonts.googleapis.com/css?family=Open+Sans%3A600%2C400%2C400italic%2C300%2C100%2C700%7CMerriweather+Sans%3A400%2C700&ver=e0c44eafe9e876851a44a2d74be5a169

216.58.211.10

200 OK

962 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Open+Sans%3A600%2C400%2C400italic%2C300%2C100%2C700%7CMerriweather+Sans%3A400%2C700&ver=e0c44eafe9e876851a44a2d74be5a169
IP
216.58.211.10:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
962 B (962 bytes)
Hash
9ee83cb33869cf645e5362fa9efca840
6be80ef9db2b429b80672c85dba008522c12a7b0
3f173ea3635422562a9719824c0035ef936d3d5a9e6a35f20073526877b28b6a

HTTP Headers

GET /css?family=Open+Sans%3A600%2C400%2C400italic%2C300%2C100%2C700%7CMerriweather+Sans%3A400%2C700&ver=e0c44eafe9e876851a44a2d74be5a169 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 02 Sep 2022 09:57:21 GMT
Date: Fri, 02 Sep 2022 09:57:21 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7040539fecb815b0cc84c15e3e2e99df
761de2d6da86cb1df6bb1fdd85ad71f75a825bb4
b1edf3547f6db4798d46a116924942acc48ad56da1fd61f9951acf93053a6578

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 09:57:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-123725942-1

142.250.74.72

200 OK

42 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-123725942-1
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1615)
Size
42 kB (41914 bytes)
Hash
7fd3bada4d2cef356c40c50a0a2bd6ad
b08ae05a90f25cb8a2e98aaf706590558167554d
844bb9a42c4189b827a57877a03218ebb0c2dd15e5efb443f896fdf44c913781

HTTP Headers

GET /gtag/js?id=UA-123725942-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gmit.tj/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Sep 2022 09:57:21 GMT
expires: Fri, 02 Sep 2022 09:57:21 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41914
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gmit.tj/wp-includes/js/wp-emoji-release.min.js?ver=e0c44eafe9e876851a44a2d74be5a169

77.244.145.250

200 OK

12 kB

URL HTTP/1.1
www.gmit.tj/wp-includes/js/wp-emoji-release.min.js?ver=e0c44eafe9e876851a44a2d74be5a169
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
ASCII text, with very long lines (8813)
Size
12 kB (11721 bytes)
Hash
a7c259ac67b3b4002dc8ac4a09765b9d
95a56d0d0fa8b38105324ddeae45afb36d19f1b9
3d8e94fed6cc8ea56ee5ec6174efb68cb7197d2e729149cb43e85505bf175779

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=e0c44eafe9e876851a44a2d74be5a169 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:02 GMT
Content-Type: application/javascript
Content-Length: 11721
Last-Modified: Fri, 21 Sep 2018 14:37:06 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5ba50212-2dc9"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7040539fecb815b0cc84c15e3e2e99df
761de2d6da86cb1df6bb1fdd85ad71f75a825bb4
b1edf3547f6db4798d46a116924942acc48ad56da1fd61f9951acf93053a6578

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 09:57:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gmit.tj/wp-content/plugins/wp-smart-editor/css/jquery.qtip.css?ver=e0c44eafe9e876851a44a2d74be5a169

77.244.145.250

200 OK

2.9 kB

URL HTTP/1.1
www.gmit.tj/wp-content/plugins/wp-smart-editor/css/jquery.qtip.css?ver=e0c44eafe9e876851a44a2d74be5a169
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
ASCII text
Size
2.9 kB (2864 bytes)
Hash
1dd6f3fa74c0a816f115aaabff5219ec
320dea2d2acf1e5ec6df7f60476eea630188f859
c3ec7a01746e0ab3c82955db76b06f83cd7671dcfd70407b430805885bdcabc2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wp-smart-editor/css/jquery.qtip.css?ver=e0c44eafe9e876851a44a2d74be5a169 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:02 GMT
Content-Type: text/css
Last-Modified: Tue, 25 Sep 2018 12:51:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
ETag: W/"5baa2f4a-2925"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

www.gmit.tj/wp-content/plugins/wp-smart-editor/css/customstyles/custom_styles.css?ver=e0c44eafe9e876851a44a2d74be5a169

77.244.145.250

200 OK

369 B

URL HTTP/1.1
www.gmit.tj/wp-content/plugins/wp-smart-editor/css/customstyles/custom_styles.css?ver=e0c44eafe9e876851a44a2d74be5a169
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
ASCII text
Size
369 B (369 bytes)
Hash
7b4c9a628ff203b34b0c24597bef4835
117c8b6ef837fb2f959bb9721e36c4e332bf9a89
32eed6125a5d0a2b17dcf9edb664f713c9ae6f56e6852922ccbd4099ff64bbc2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wp-smart-editor/css/customstyles/custom_styles.css?ver=e0c44eafe9e876851a44a2d74be5a169 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:02 GMT
Content-Type: text/css
Last-Modified: Tue, 25 Sep 2018 12:51:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
ETag: W/"5baa2f4e-627"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

www.gmit.tj/wp-content/themes/education-hub/style.css?ver=1.9.7

77.244.145.250

200 OK

12 kB

URL HTTP/1.1
www.gmit.tj/wp-content/themes/education-hub/style.css?ver=1.9.7
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
ASCII text, with very long lines (757)
Size
12 kB (12073 bytes)
Hash
c9dcc0f2b924cadda65de6609d8923f8
1382abb35f98bcd78af170a0e9a3afa0eef1bace
9b0928e3cb4be58689f56466f21a34fabfc01150b4abd612b09f9f837048411d

HTTP Headers

GET /wp-content/themes/education-hub/style.css?ver=1.9.7 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:02 GMT
Content-Type: text/css
Last-Modified: Thu, 03 Dec 2020 06:55:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
ETag: W/"5fc88bdc-fead"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

www.gmit.tj/wp-content/themes/education-hub/third-party/font-awesome/css/font-awesome.min.css?ver=4.7.0

77.244.145.250

200 OK

6.9 kB

URL HTTP/1.1
www.gmit.tj/wp-content/themes/education-hub/third-party/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
ASCII text, with very long lines (30837)
Size
6.9 kB (6930 bytes)
Hash
904652f8e8e016281dca68e5b9abc8fc
13e1893d05d63ce16c15cff638fa706bd79ae2e7
4f6c01c6da54e17e88c9cc29eb4e88e35f73ae6d356c05f3558693a1b2681adf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/education-hub/third-party/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: text/css
Last-Modified: Fri, 21 Sep 2018 10:47:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
ETag: W/"5ba4cc3c-7918"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

www.gmit.tj/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

77.244.145.250

200 OK

10 kB

URL HTTP/1.1
www.gmit.tj/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
ASCII text, with very long lines (9959)
Size
10 kB (10056 bytes)
Hash
7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: application/javascript
Content-Length: 10056
Last-Modified: Fri, 21 Sep 2018 14:38:28 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5ba50264-2748"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

www.gmit.tj/wp-content/plugins/wp-smart-editor/js/frontend_tooltip.js?ver=e0c44eafe9e876851a44a2d74be5a169

77.244.145.250

200 OK

456 B

URL HTTP/1.1
www.gmit.tj/wp-content/plugins/wp-smart-editor/js/frontend_tooltip.js?ver=e0c44eafe9e876851a44a2d74be5a169
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
ASCII text
Size
456 B (456 bytes)
Hash
5e2f5325d57306e2968bda9537e32f6f
f5c5072f77ab47b7c45315ad936ef91218f16f87
945b108034cd2fa87c418374b199d4d39e59d589a195065f0ff6cedac533029e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wp-smart-editor/js/frontend_tooltip.js?ver=e0c44eafe9e876851a44a2d74be5a169 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: application/javascript
Content-Length: 456
Last-Modified: Tue, 25 Sep 2018 14:18:22 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5baa43ae-1c8"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

www.gmit.tj/wp-content/plugins/wp-smart-editor/css/front_styles.css?ver=e0c44eafe9e876851a44a2d74be5a169

77.244.145.250

200 OK

746 B

URL HTTP/1.1
www.gmit.tj/wp-content/plugins/wp-smart-editor/css/front_styles.css?ver=e0c44eafe9e876851a44a2d74be5a169
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
ASCII text
Size
746 B (746 bytes)
Hash
0c409f6ff29a16c53d8554e75d251826
5c04dcdb52b7c87934dbb20bca9b8a696e5bd732
3c42bb7678512ab1477f1d5d967724c8b0eda3574ee49012392d06d0d1aecf8a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wp-smart-editor/css/front_styles.css?ver=e0c44eafe9e876851a44a2d74be5a169 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: text/css
Last-Modified: Tue, 25 Sep 2018 12:51:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
ETag: W/"5baa2f49-958"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

www.gmit.tj/wp-content/themes/education-hub/js/skip-link-focus-fix.min.js?ver=20130115

77.244.145.250

200 OK

557 B

URL HTTP/1.1
www.gmit.tj/wp-content/themes/education-hub/js/skip-link-focus-fix.min.js?ver=20130115
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
ASCII text, with very long lines (557), with no line terminators
Size
557 B (557 bytes)
Hash
dea2d1887d3a260af2791c5e97b8ba43
a13dc5c638242f2117cdde2121bbaed9fd538566
818266fe4b7bbf0fe187b6190933c99af05829f70c2d6023acab03f8af5a59b0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/education-hub/js/skip-link-focus-fix.min.js?ver=20130115 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: application/javascript
Content-Length: 557
Last-Modified: Sun, 23 Sep 2018 11:37:16 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5ba77aec-22d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
081fb7dc302f9463d6a99d382a6f8b6c
a69643a10009ae36a25e498ff72dcc7785118cde
3c9e9656cdd94950f1f2158eca5caf7db356e233b4b1ee6eeae708884627bf46

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C9E9656CDD94950F1F2158ECA5CAF7DB356E233B4B1EE6EEAE708884627BF46"
Last-Modified: Thu, 01 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13411
Expires: Fri, 02 Sep 2022 13:40:53 GMT
Date: Fri, 02 Sep 2022 09:57:22 GMT
Connection: keep-alive

www.gmit.tj/wp-content/themes/education-hub/js/custom.min.js?ver=1.0

77.244.145.250

200 OK

294 B

URL HTTP/1.1
www.gmit.tj/wp-content/themes/education-hub/js/custom.min.js?ver=1.0
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
ASCII text, with no line terminators
Size
294 B (294 bytes)
Hash
6be541af7935a0a406fe9a1be5b85f7f
d083d6cd4b949b867bc25fca49e9d42db38c9c5d
883bca3a81759dc969a33c1b4f68eb9f43f96d88474d49d3f589ce6314091cd5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/education-hub/js/custom.min.js?ver=1.0 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: application/javascript
Content-Length: 294
Last-Modified: Sun, 23 Sep 2018 11:37:16 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5ba77aec-126"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

www.gmit.tj/wp-includes/css/dashicons.min.css?ver=e0c44eafe9e876851a44a2d74be5a169

77.244.145.250

200 OK

29 kB

URL HTTP/1.1
www.gmit.tj/wp-includes/css/dashicons.min.css?ver=e0c44eafe9e876851a44a2d74be5a169
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
ASCII text, with very long lines (46325)
Size
29 kB (28616 bytes)
Hash
a666a4c54775b1ee6b12089d1027d868
23d9aef2727d0445d7fea5730ef3f99c585c178b
dd24bcdfdd4747a39b5072bd8a82561cc11e3ebf183fb673f24af799cb75ffce

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dashicons.min.css?ver=e0c44eafe9e876851a44a2d74be5a169 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: text/css
Last-Modified: Fri, 21 Sep 2018 14:36:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
ETag: W/"5ba501e9-b518"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

www.gmit.tj/wp-content/themes/education-hub/js/navigation.min.js?ver=20120206

77.244.145.250

200 OK

919 B

URL HTTP/1.1
www.gmit.tj/wp-content/themes/education-hub/js/navigation.min.js?ver=20120206
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
ASCII text, with very long lines (919), with no line terminators
Size
919 B (919 bytes)
Hash
b83979f43a97faf4d3d8a7d10e9d58c9
483235f005e4211e6e9ef12646f022c5a18760dc
2d7f71d029ae078ddd664e92761a90f35cb5cb596f50c208b79c100bed5645c9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/education-hub/js/navigation.min.js?ver=20120206 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: application/javascript
Content-Length: 919
Last-Modified: Sun, 23 Sep 2018 11:37:16 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5ba77aec-397"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

www.gmit.tj/wp-includes/js/wp-embed.min.js?ver=e0c44eafe9e876851a44a2d74be5a169

77.244.145.250

200 OK

1.4 kB

URL HTTP/1.1
www.gmit.tj/wp-includes/js/wp-embed.min.js?ver=e0c44eafe9e876851a44a2d74be5a169
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
ASCII text, with very long lines (1398), with no line terminators
Size
1.4 kB (1398 bytes)
Hash
5a03f97cc479b9f5d7efdaccec31bc17
54518be91b7c5d4b139e032d23ffae568cc7e9fd
dcb5e540e62fc85857254a1066afb6a7e8999279c6d4c583eef855d39f9289c0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=e0c44eafe9e876851a44a2d74be5a169 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: application/javascript
Content-Length: 1398
Last-Modified: Fri, 21 Sep 2018 14:37:06 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5ba50212-576"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

www.gmit.tj/wp-content/themes/education-hub/third-party/cycle2/js/jquery.cycle2.min.js?ver=2.1.6

77.244.145.250

200 OK

23 kB

URL HTTP/1.1
www.gmit.tj/wp-content/themes/education-hub/third-party/cycle2/js/jquery.cycle2.min.js?ver=2.1.6
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
ASCII text, with very long lines (10280)
Size
23 kB (22940 bytes)
Hash
b9bef20cec2d668923eb248733b3955e
8bbbca8502749ad9d770717c8dc39cf2892ea730
87a1a7e65f6ceed57d27b07cac22836a7682617932fc9d4376887b0ae1754a35

HTTP Headers

GET /wp-content/themes/education-hub/third-party/cycle2/js/jquery.cycle2.min.js?ver=2.1.6 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: application/javascript
Content-Length: 22940
Last-Modified: Mon, 24 Sep 2018 08:34:20 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5ba8a18c-599c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

www.gmit.tj/wp-content/plugins/wp-smart-editor/js/jquery.qtip.min.js?ver=e0c44eafe9e876851a44a2d74be5a169

77.244.145.250

200 OK

44 kB

URL HTTP/1.1
www.gmit.tj/wp-content/plugins/wp-smart-editor/js/jquery.qtip.min.js?ver=e0c44eafe9e876851a44a2d74be5a169
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
ASCII text, with very long lines (32120)
Size
44 kB (44253 bytes)
Hash
5616043426f9b840e5d1b5906e146817
b2f204ce6e4941539dda37a0e8cadb67d19e5b6c
a484ad7b8b80b0acc3e9776a599f21a2055294210fe96c5621f3b2d44fff3aae

HTTP Headers

GET /wp-content/plugins/wp-smart-editor/js/jquery.qtip.min.js?ver=e0c44eafe9e876851a44a2d74be5a169 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: application/javascript
Content-Length: 44253
Last-Modified: Tue, 25 Sep 2018 14:18:23 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5baa43af-acdd"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12113
Expires: Fri, 02 Sep 2022 13:19:15 GMT
Date: Fri, 02 Sep 2022 09:57:22 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12113
Expires: Fri, 02 Sep 2022 13:19:15 GMT
Date: Fri, 02 Sep 2022 09:57:22 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12113
Expires: Fri, 02 Sep 2022 13:19:15 GMT
Date: Fri, 02 Sep 2022 09:57:22 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdec8409-e401-4b73-bbb3-47aa626edd42.jpeg

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdec8409-e401-4b73-bbb3-47aa626edd42.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9200 bytes)
Hash
37fee36d8fd409ea63dd4a26dee39510
6b00992edf40eb957e6900d592ebcb0c5e611944
a36b1bf6a3bedcb0d842b29538ce966ebb37e5c371d5dca74ee1634f29799065

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdec8409-e401-4b73-bbb3-47aa626edd42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9200
x-amzn-requestid: 5a10ba85-af61-4f8d-a293-38d8c028fb9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XnTWaEzIIAMF_zQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c65c2-17f7c0552179175c3400a90d;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 07:07:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Bj242vaxQJa4JwOdMcIsAEpSVR4fZP8dfg4zvGkPnFnqHEu2jGOH9A==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:56:35 GMT
etag: "6b00992edf40eb957e6900d592ebcb0c5e611944"
content-type: image/jpeg
age: 39647
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9252 bytes)
Hash
5ba50b2fd1814c5ffc95aef40c69ce8c
cbb4546228115cccc122b16209e70171bef5c1f2
de822c8549508b28a07d29b203ae3ef356470df906cba727fc765f1bd14bb866

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9252
x-amzn-requestid: 7feebba8-f6b9-4b79-9726-5a7534da277e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyVG5DoAMF_Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112675-3123158f3dcfbd476537ca3c;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BOa5zGQyJS9q9bHmtKzlNtyS9ToGPZJkDFo2uY2lzz8Lnd3cZLQEaA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:01:10 GMT
age: 42972
etag: "cbb4546228115cccc122b16209e70171bef5c1f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6196 bytes)
Hash
5e05660322f0368dd2bf8067d7e4554d
ec65cb47d86488f734c945a210d5f636a40fea2c
98875230ec45766102191bdc4180742fa3b8f3ad5ad1a128d12437105f86247e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6196
x-amzn-requestid: a7d6ce70-06d7-498c-8024-80185a3fc3e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyLFmVIAMFkcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112674-3fad622927177e9236d7c50a;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wLezqM4_yKqtOR7D43beBqm8TAD5y8eQ7xHOxjDJdHchCpyusuzMuQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:55:46 GMT
etag: "ec65cb47d86488f734c945a210d5f636a40fea2c"
content-type: image/jpeg
age: 43296
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10435 bytes)
Hash
955f2a35bd6b3802670e7fa8a7cda833
4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c
2fb517039f0704d2f6fe2fa78eae47c71c645add1c2276f8726248184ae45760

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: n6DJbsUGTdXT42cNLTDq6Uz28H2SDhwq6drdKP4axAHsBz471X7r_g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
age: 44396
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d8dbbab-ec34-41df-989d-0ce5bf4afcef.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9374 bytes)
Hash
e52650d274a413fd0853e5b04af980b3
83eb3c6116a797c56cc4c655a475bcb8b53625fd
9f22b314e92c0ca2f60b1c3623d7c952ffa8b2a262d315deef69027f3607a3c7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d8dbbab-ec34-41df-989d-0ce5bf4afcef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9374
x-amzn-requestid: 48f34c33-6378-440c-ae5b-1d517329281a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzMDKHV8IAMFhEQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631126e0-4effc8d62d5a3cf3260b3113;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:40:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: zFbASeQwWi3BlARhHAgMCWjm9eHlldXE0nvJ3kS5kXeVdmMuiwmzQA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:57:36 GMT
age: 43186
etag: "83eb3c6116a797c56cc4c655a475bcb8b53625fd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

17 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
17 kB (16818 bytes)
Hash
12756903aaa74164feb5f8525398ca36
9fef9b071daea6793cbbdfe391254ac4326b1aa2
6d474a6d96aebfed43a4f6812f18a1be8d100c590f75eb0fbf4ec7277dd0c442

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 16818
x-amzn-requestid: fa921878-2054-453b-b313-681cdd9c9068
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj-Z_HUNIAMFltg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b110c-053ce81943fea70c2de7daa0;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 06:54:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 69fDjN-ZeYA8RVO_WGTY1KQHZ1t3PNdWIwq3ax1e1wKmuPODyGCMcQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 14:46:29 GMT
age: 69053
etag: "9fef9b071daea6793cbbdfe391254ac4326b1aa2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.gmit.tj/wp-includes/js/jquery/jquery.js?ver=1.12.4

77.244.145.250

200 OK

97 kB

URL HTTP/1.1
www.gmit.tj/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
ASCII text, with very long lines (32077)
Size
97 kB (97184 bytes)
Hash
8610f03fe77640dee8c4cc924e060f12
076524186dbbdd4c41afbbd6b260d9e46a095811
fc48d1d80ece71a79a7b39877f4104d49d3da6c3665cf6dc203000fb7df4447e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: application/javascript
Content-Length: 97184
Last-Modified: Fri, 21 Sep 2018 14:38:29 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5ba50265-17ba0"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

fonts.gstatic.com/s/merriweathersans/v22/2-c99IRs1JiJN1FRAMjTN5zd9vgsFHX1QjU.woff2

142.250.74.163

200 OK

36 kB

URL HTTP/1.1
fonts.gstatic.com/s/merriweathersans/v22/2-c99IRs1JiJN1FRAMjTN5zd9vgsFHX1QjU.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 35520, version 1.0\012- data
Size
36 kB (35520 bytes)
Hash
51c700f108bd3a8639d845abc5a02462
6d467d623871d39830bca94bc9130d61059c35f3
e33e10b8be04e75dfa2658726e85189bf01b986172c16d10b4c0a74332804f58

HTTP Headers

GET /s/merriweathersans/v22/2-c99IRs1JiJN1FRAMjTN5zd9vgsFHX1QjU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gmit.tj
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 35520
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 29 Aug 2022 05:32:38 GMT
Expires: Tue, 29 Aug 2023 05:32:38 GMT
Cache-Control: public, max-age=31536000
Age: 361484
Last-Modified: Mon, 11 Jul 2022 19:03:36 GMT
Content-Type: font/woff2

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2

142.250.74.163

200 OK

26 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 26240, version 1.0\012- data
Size
26 kB (26240 bytes)
Hash
4a90976686fcbd8296c7d7fccc04c273
bcb82e93ac7ad1fa2af6a37009a200f79f4cb4e5
59bd288e64c57e034672999e33ebda6eb5ad1575945eb563dbfb5b44f226e1e1

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gmit.tj
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 26240
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 29 Aug 2022 23:29:27 GMT
Expires: Tue, 29 Aug 2023 23:29:27 GMT
Cache-Control: public, max-age=31536000
Age: 296875
Last-Modified: Mon, 15 Aug 2022 18:14:37 GMT
Content-Type: font/woff2

fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2

142.250.74.163

200 OK

18 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17820, version 1.0\012- data
Size
18 kB (17820 bytes)
Hash
3d5107abaf7bf4df5478bd04625c0929
b04d394caabf6ea3e500b74781dc2bfd54f3c18d
9ad0a22b0c58240a7a92b4c01aa31f39a5918dea6a8fdfa77e63042abc4fca31

HTTP Headers

GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gmit.tj
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 17820
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 30 Aug 2022 01:28:55 GMT
Expires: Wed, 30 Aug 2023 01:28:55 GMT
Cache-Control: public, max-age=31536000
Age: 289707
Last-Modified: Mon, 15 Aug 2022 18:13:12 GMT
Content-Type: font/woff2

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.163

200 OK

45 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gmit.tj
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 29 Aug 2022 21:39:19 GMT
Expires: Tue, 29 Aug 2023 21:39:19 GMT
Cache-Control: public, max-age=31536000
Age: 303483
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2

fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVQewJER.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVQewJER.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 12248, version 1.0\012- data
Size
12 kB (12248 bytes)
Hash
e2ba25c1f2f512c84e06d1fa05d21991
7bc000ac9fc581519fbf4588d26ecbcf00d3f5bd
aee321b108eeeac25bcfe9ee9f53f0a62c57b1e14a9da05b0974a42454bf22a1

HTTP Headers

GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVQewJER.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gmit.tj
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 12248
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 30 Aug 2022 04:11:31 GMT
Expires: Wed, 30 Aug 2023 04:11:31 GMT
Cache-Control: public, max-age=31536000
Age: 279951
Last-Modified: Mon, 15 Aug 2022 18:13:23 GMT
Content-Type: font/woff2

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSKmu1aB.woff2

142.250.74.163

200 OK

49 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSKmu1aB.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 49116, version 1.0\012- data
Size
49 kB (49116 bytes)
Hash
11404ec4a9f0289f2e01719a5f161f14
61d036a0378e03d98a19f2e9f89d37317108fb3e
7608d58af9b388dd3736f6f3c0004e0c5a9278eacf320e17d5e787c70c28c218

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSKmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gmit.tj
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 49116
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 30 Aug 2022 07:46:33 GMT
Expires: Wed, 30 Aug 2023 07:46:33 GMT
Cache-Control: public, max-age=31536000
Age: 267049
Last-Modified: Mon, 15 Aug 2022 18:14:56 GMT
Content-Type: font/woff2

fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWV0ewJER.woff2

142.250.74.163

200 OK

19 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWV0ewJER.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 18828, version 1.0\012- data
Size
19 kB (18828 bytes)
Hash
8bda115f6f40d169e31becc024b4d5a5
4916e38004be5b57fbbeb61b2606c7a094d014bc
b3aa8a0be0a0b4e09941abff7ed454f9b20667eb41e7c964cfd3f28e6285b7ea

HTTP Headers

GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWV0ewJER.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gmit.tj
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 18828
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 30 Aug 2022 08:33:24 GMT
Expires: Wed, 30 Aug 2023 08:33:24 GMT
Cache-Control: public, max-age=31536000
Age: 264238
Last-Modified: Mon, 15 Aug 2022 18:14:25 GMT
Content-Type: font/woff2

s01.flagcounter.com/count2/aFl3/bg_294A70/txt_FFFFFF/border_FFAB1F/columns_2/maxflags_12/viewers_3/labels_0/pageviews_0/flags_0/percent_0/

66.154.110.210

200 OK

9.6 kB

URL HTTP/1.1
s01.flagcounter.com/count2/aFl3/bg_294A70/txt_FFFFFF/border_FFAB1F/columns_2/maxflags_12/viewers_3/labels_0/pageviews_0/flags_0/percent_0/
IP
66.154.110.210:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 162 x 137, 8-bit/color RGB, non-interlaced\012- data
Size
9.6 kB (9554 bytes)
Hash
682e3348ce499601750530201b56608e
d0c4cf865852c54e8eda255a2573228822bc1e54
6cf1a6cbab7b160a56cee54456ea18e47b380f17345c849551c97df31d3a9934

HTTP Headers

GET /count2/aFl3/bg_294A70/txt_FFFFFF/border_FFAB1F/columns_2/maxflags_12/viewers_3/labels_0/pageviews_0/flags_0/percent_0/ HTTP/1.1
Host: s01.flagcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gmit.tj/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 09:57:24 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Pragma: no-cache
Cache-control: no-cache
Connection: close
Transfer-Encoding: chunked
Content-Type: image/png

fonts.gstatic.com/s/merriweathersans/v22/2-c99IRs1JiJN1FRAMjTN5zd9vgsFHX4QjX78w.woff2

142.250.74.163

200 OK

2.1 kB

URL HTTP/1.1
fonts.gstatic.com/s/merriweathersans/v22/2-c99IRs1JiJN1FRAMjTN5zd9vgsFHX4QjX78w.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 2108, version 1.0\012- data
Size
2.1 kB (2108 bytes)
Hash
9acebeed78c65f50ca290893225a9c68
ef88251c0258e9f03e15fbe5f94cacf99da66a94
e80e233abffbcb8dc6e186e82b19440dedc7598c537cde81ffe513aa65fd3412

HTTP Headers

GET /s/merriweathersans/v22/2-c99IRs1JiJN1FRAMjTN5zd9vgsFHX4QjX78w.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.gmit.tj
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: font/woff2
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 2108
Date: Fri, 02 Sep 2022 09:57:22 GMT
Expires: Sat, 02 Sep 2023 09:57:22 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 11 Jul 2022 18:55:14 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0

www.gmit.tj/wp-content/uploads/2021/10/%D0%A0%D0%9E%D0%A1%D0%A1%D0%98%D0%AF-768x576.jpg

77.244.145.250

200 OK

61 kB

URL HTTP/1.1
www.gmit.tj/wp-content/uploads/2021/10/%D0%A0%D0%9E%D0%A1%D0%A1%D0%98%D0%AF-768x576.jpg
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 768x576, components 3\012- data
Size
61 kB (61374 bytes)
Hash
d9e8c533ae9e0bc201700929e8b99038
d29b4c1107812f0a6a79239624ba616880821a84
4213db42a42b241e3f88120b96fd7d6e4d2de26a2143ee1d7f62c17a21650979

HTTP Headers

GET /wp-content/uploads/2021/10/%D0%A0%D0%9E%D0%A1%D0%A1%D0%98%D0%AF-768x576.jpg HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: image/jpeg
Content-Length: 61374
Last-Modified: Fri, 22 Oct 2021 04:50:42 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "61724322-efbe"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

www.gmit.tj/wp-content/uploads/2021/10/%D0%92%D0%90%D0%A0%D0%9D%D0%90%D0%9D%D0%931-768x576.jpg

77.244.145.250

200 OK

76 kB

URL HTTP/1.1
www.gmit.tj/wp-content/uploads/2021/10/%D0%92%D0%90%D0%A0%D0%9D%D0%90%D0%9D%D0%931-768x576.jpg
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 768x576, components 3\012- data
Size
76 kB (75537 bytes)
Hash
909519a57f4babc9bfb63094ceabc579
4eb8774e9ef2da2a987984572a9318b7ba71c83e
6341f10f0427f4d57107b521bb6fef1f53f252d9f3f3797a925abae36e916485

HTTP Headers

GET /wp-content/uploads/2021/10/%D0%92%D0%90%D0%A0%D0%9D%D0%90%D0%9D%D0%931-768x576.jpg HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: image/jpeg
Content-Length: 75537
Last-Modified: Fri, 22 Oct 2021 04:51:26 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6172434e-12711"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

www.gmit.tj/wp-content/themes/education-hub/third-party/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0

77.244.145.250

200 OK

77 kB

URL HTTP/1.1
www.gmit.tj/wp-content/themes/education-hub/third-party/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/education-hub/third-party/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.gmit.tj/wp-content/themes/education-hub/third-party/font-awesome/css/font-awesome.min.css?ver=4.7.0
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Length: 77160
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 21 Sep 2018 10:47:23 GMT
ETag: "1922294-12d68-5765f5d4f44c0"
Accept-Ranges: bytes

www.gmit.tj/wp-content/uploads/2018/12/%D0%9F%D0%B0%D1%91%D0%BC.jpg

77.244.145.250

200 OK

98 kB

URL HTTP/1.1
www.gmit.tj/wp-content/uploads/2018/12/%D0%9F%D0%B0%D1%91%D0%BC.jpg
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 124x124, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, software=Microsoft Office], baseline, precision 8, 1024x399, components 3\012- data
Size
98 kB (98540 bytes)
Hash
276302813e26ae50c93e60170e572ecc
1808059e6faeee6b00fde3629d697269f140f708
dc48217f7df83f50d8ae467f03d59ec4014513bd2d8454ae25324bd139d9b586

HTTP Headers

GET /wp-content/uploads/2018/12/%D0%9F%D0%B0%D1%91%D0%BC.jpg HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: image/jpeg
Content-Length: 98540
Last-Modified: Sat, 29 Dec 2018 06:48:08 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5c2718a8-180ec"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

www.gmit.tj/wp-content/uploads/2021/10/%D0%9F%D0%90%D0%A0%D0%9A%D0%98-%D0%A2%D0%95%D0%A5%D0%9D%D0%9E%D0%9B%D0%9E%D0%93%D0%98-768x576.jpg

77.244.145.250

200 OK

60 kB

URL HTTP/1.1
www.gmit.tj/wp-content/uploads/2021/10/%D0%9F%D0%90%D0%A0%D0%9A%D0%98-%D0%A2%D0%95%D0%A5%D0%9D%D0%9E%D0%9B%D0%9E%D0%93%D0%98-768x576.jpg
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 768x576, components 3\012- data
Size
60 kB (59609 bytes)
Hash
f2b32b2bca5ef713047af7dac806a55f
da327a539c8d7cdfd6fa82ed7f6354d22b6b44d7
16123f0ac876a0d8cc2328e8b8d980cdeece59c736dd53c283ad93562c87f43e

HTTP Headers

GET /wp-content/uploads/2021/10/%D0%9F%D0%90%D0%A0%D0%9A%D0%98-%D0%A2%D0%95%D0%A5%D0%9D%D0%9E%D0%9B%D0%9E%D0%93%D0%98-768x576.jpg HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: image/jpeg
Content-Length: 59609
Last-Modified: Fri, 22 Oct 2021 04:51:09 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6172433d-e8d9"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

www.gmit.tj/wp-content/uploads/2018/09/88888888888888-300x126.jpg

77.244.145.250

200 OK

16 kB

URL HTTP/1.1
www.gmit.tj/wp-content/uploads/2018/09/88888888888888-300x126.jpg
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x126, components 3\012- data
Size
16 kB (15707 bytes)
Hash
dbf330606a2ed4484473a03338d3bb83
da4745bb5d719b7134d906dfd014827a48fb4864
a85601f6dd522406c18ccec05057567dddce95120c77f2b1387ccffd80960f31

HTTP Headers

GET /wp-content/uploads/2018/09/88888888888888-300x126.jpg HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:04 GMT
Content-Type: image/jpeg
Content-Length: 15707
Last-Modified: Mon, 13 May 2019 11:15:47 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5cd951e3-3d5b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

www.gmit.tj/wp-content/uploads/2018/09/%D0%A0%D0%B8%D1%81%D1%83%D0%BD%D0%BE%D0%BA2-300x179.png

77.244.145.250

200 OK

46 kB

URL HTTP/1.1
www.gmit.tj/wp-content/uploads/2018/09/%D0%A0%D0%B8%D1%81%D1%83%D0%BD%D0%BE%D0%BA2-300x179.png
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
PNG image data, 300 x 179, 8-bit/color RGBA, non-interlaced\012- data
Size
46 kB (46276 bytes)
Hash
53c8e5f514b591c9037ac8630fdb3d2b
e6f3aa51a7d2239ea963af893b81f161510dec67
2abc613a6715000d7d99cf5574eda5447ca2472af8b4919a6a5f92daa99351e1

HTTP Headers

GET /wp-content/uploads/2018/09/%D0%A0%D0%B8%D1%81%D1%83%D0%BD%D0%BE%D0%BA2-300x179.png HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:04 GMT
Content-Type: image/png
Content-Length: 46276
Last-Modified: Fri, 22 Jan 2021 06:54:21 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "600a769d-b4c4"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

www.gmit.tj/wp-content/uploads/2018/08/1-2-1-e1533789925252.jpg

77.244.145.250

200 OK

157 kB

URL HTTP/1.1
www.gmit.tj/wp-content/uploads/2018/08/1-2-1-e1533789925252.jpg
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11], baseline, precision 8, 1400x542, components 3\012- data
Size
157 kB (156955 bytes)
Hash
8389a4c862751a2a5d04dfff3e738eb9
ae91462319e3f6f2fdfa2bbd95c3e441113931d2
e6286a4d0f3f7b3c3eb006c93fffe8e3c6210326a8de20354a56a36aea311bba

HTTP Headers

GET /wp-content/uploads/2018/08/1-2-1-e1533789925252.jpg HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: image/jpeg
Content-Length: 156955
Last-Modified: Fri, 21 Sep 2018 10:48:39 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5ba4cc87-2651b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

www.gmit.tj/wp-content/uploads/2018/09/cropped-Gmit-logo.png

77.244.145.250

200 OK

248 kB

URL HTTP/1.1
www.gmit.tj/wp-content/uploads/2018/09/cropped-Gmit-logo.png
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
PNG image data, 984 x 984, 8-bit/color RGBA, non-interlaced\012- data
Size
248 kB (248489 bytes)
Hash
c95441a3c0814c681050918c7a7d8654
ebe02168cc080e917385ed028f07c13797c19adb
726e1f6cc455cc254571a1781c15ab983ccc4c4e74f43aa47a0244b5081cf665

HTTP Headers

GET /wp-content/uploads/2018/09/cropped-Gmit-logo.png HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:04 GMT
Content-Type: image/png
Content-Length: 248489
Last-Modified: Sat, 09 Jan 2021 09:51:17 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5ff97c95-3caa9"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20006 bytes)
Hash
56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gmit.tj/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Fri, 02 Sep 2022 08:41:12 GMT
expires: Fri, 02 Sep 2022 10:41:12 GMT
cache-control: public, max-age=7200
age: 4571
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gmit.tj/wp-content/uploads/2018/07/1-1.png

77.244.145.250

200 OK

24 kB

URL HTTP/1.1
www.gmit.tj/wp-content/uploads/2018/07/1-1.png
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
PNG image data, 113 x 113, 8-bit/color RGBA, interlaced\012- data
Size
24 kB (23642 bytes)
Hash
22f148473798f6ced4415feb7ec9c75e
5280198c8213451e44764b4660f77f54cf6aced9
3781a440cf4c8e4e48306e02ab806a7f94a3ec5e528793725d946911c6ecc0b8

HTTP Headers

GET /wp-content/uploads/2018/07/1-1.png HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:04 GMT
Content-Type: image/png
Content-Length: 23642
Last-Modified: Fri, 21 Sep 2018 10:47:52 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5ba4cc58-5c5a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

www.gmit.tj/wp-content/uploads/2021/05/555555555555555555555555555555555555-1.jpg

77.244.145.250

200 OK

743 kB

URL HTTP/1.1
www.gmit.tj/wp-content/uploads/2021/05/555555555555555555555555555555555555-1.jpg
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 2853x1448, components 3\012- data
Size
743 kB (743336 bytes)
Hash
e1d27ec85d82e15efba1a28ae82ee0e6
504153a35a812ebffca8d026f8a6fda065a67cdd
721b00d9a799f9ccaabd54f05b3e0e40ccdd445a391f3845d33430941c9e6fd4

HTTP Headers

GET /wp-content/uploads/2021/05/555555555555555555555555555555555555-1.jpg HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:03 GMT
Content-Type: image/jpeg
Content-Length: 743336
Last-Modified: Thu, 06 May 2021 06:01:42 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "60938646-b57a8"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

www.gmit.tj/wp-content/uploads/2018/08/MG_5592-e1533805963420.jpg

77.244.145.250

200 OK

926 kB

URL HTTP/1.1
www.gmit.tj/wp-content/uploads/2018/08/MG_5592-e1533805963420.jpg
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 3447x1339, components 3\012- data
Size
926 kB (925617 bytes)
Hash
04170dbcadbdcd4759348734adb35f56
f3bd91401d7a18bcde3c4c81052c824a7f6184e8
2c63650331dc4122a15a68a175ee197f9d4c5307b7296046236fdb4d8438a3ac

HTTP Headers

GET /wp-content/uploads/2018/08/MG_5592-e1533805963420.jpg HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:04 GMT
Content-Type: image/jpeg
Content-Length: 925617
Last-Modified: Fri, 21 Sep 2018 10:48:36 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5ba4cc84-e1fb1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9de9889-f1f6-417e-954b-af2056b62982.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12204 bytes)
Hash
e10519422b7ff91c72bcf2234cea36cf
63cff2232383d9d7f2371d1f60cf7923b629fc82
71a4bfc0031e0f6152c441f4bf413c6e953f38a587a95900f3a6c63beecafb4b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9de9889-f1f6-417e-954b-af2056b62982.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 12204
x-amzn-requestid: 5293c66e-68d3-472a-a6d2-69f161262f26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzMLDGK6oAMFTzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112713-66d01d9c2d12d55c465c5108;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:41:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6b6K6qPPzI8g3_MADZH84JtcPaDP00roz3A-6QEpbUY3boLIPOatjg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:49:06 GMT
age: 43703
etag: "63cff2232383d9d7f2371d1f60cf7923b629fc82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.gmit.tj/%d0%bc%d1%83%d0%bb%d0%be%d2%9b%d0%be%d1%82%d0%b8-%d1%81%d1%83%d0%b4%d0%bc%d0%b0%d0%bd%d0%b4-%d0%b1%d0%b0%d2%b3%d1%80%d0%b8-%d1%84%d0%b0%d1%80%d0%b4%d0%be%d0%b8-%d0%b1%d0%b5%d2%b3%d1%82%d0%b0%d1%80/

77.244.145.250

200 OK

0 B

URL HTTP/1.1
www.gmit.tj/%d0%bc%d1%83%d0%bb%d0%be%d2%9b%d0%be%d1%82%d0%b8-%d1%81%d1%83%d0%b4%d0%bc%d0%b0%d0%bd%d0%b4-%d0%b1%d0%b0%d2%b3%d1%80%d0%b8-%d1%84%d0%b0%d1%80%d0%b4%d0%be%d0%b8-%d0%b1%d0%b5%d2%b3%d1%82%d0%b0%d1%80/
IP
77.244.145.250:0
ASN
#42713 Intercom Ltd

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /%d0%bc%d1%83%d0%bb%d0%be%d2%9b%d0%be%d1%82%d0%b8-%d1%81%d1%83%d0%b4%d0%bc%d0%b0%d0%bd%d0%b4-%d0%b1%d0%b0%d2%b3%d1%80%d0%b8-%d1%84%d0%b0%d1%80%d0%b4%d0%be%d0%b8-%d0%b1%d0%b5%d2%b3%d1%82%d0%b0%d1%80/ HTTP/1.1
Host: www.gmit.tj
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Moz: prefetch
Connection: keep-alive
Referer: http://www.gmit.tj/%D1%82%D0%B0%D1%88%D1%80%D0%B8%D1%84%D0%B8-%D0%BC%D1%83%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8-%D0%B2%D0%B0%D0%B7%D0%B8%D1%80%D0%B8-%D1%81%D0%B0%D0%BD%D0%BE%D0%B0%D1%82-%D0%B2%D0%B0-%D1%82%D0%B5%D1%85%D0%BD/
Cookie: pll_language=tg; _ga=GA1.2.653656648.1662112643; _gid=GA1.2.1465740519.1662112643; _gat_gtag_UA_123725942_1=1

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Sep 2022 10:01:10 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 15742
Connection: keep-alive
Keep-Alive: timeout=60
X-Powered-By: PHP/5.4.45-0+deb7u11
Link: <http://www.gmit.tj/wp-json/>; rel="https://api.w.org/", <http://www.gmit.tj/?p=12676>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations