r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4c9ec202b798d350b6582220b7bb8457
d16ca24cd60b349231ad06fa5db32f54a3bc9e09
df036d315a613ac6396b77afb0a4ea5f793091786be0cbf3f3a0d043bc1d1d3c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF036D315A613AC6396B77AFB0A4EA5F793091786BE0CBF3F3A0D043BC1D1D3C"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6295
Expires: Wed, 26 Oct 2022 19:19:45 GMT
Date: Wed, 26 Oct 2022 17:34:50 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 45bfdf3b823cd24564c8ac296a8b5b19
b0c442eb4f87556b3beb18ca8039dd4399b73f16
32113c679dda1f710ba67e537fdd0d435ccc186a238e3b14e48deb7b0700c693
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4512
Cache-Control: max-age=148284
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:50 GMT
Etag: "6358fe56-1d7"
Expires: Fri, 28 Oct 2022 10:46:14 GMT
Last-Modified: Wed, 26 Oct 2022 09:31:02 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 45bfdf3b823cd24564c8ac296a8b5b19
b0c442eb4f87556b3beb18ca8039dd4399b73f16
32113c679dda1f710ba67e537fdd0d435ccc186a238e3b14e48deb7b0700c693
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2124
Cache-Control: max-age=145896
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:50 GMT
Etag: "6358fe56-1d7"
Expires: Fri, 28 Oct 2022 10:06:26 GMT
Last-Modified: Wed, 26 Oct 2022 09:31:02 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
Alt-Used: 0
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 26 Oct 2022 16:41:35 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3195
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a39eea1096852891690eaee02a64383e
c273000f799fc3676e8e3ef3617611a31252cffc
d9d95319013d64bc2ef6d9870f4adba902ee970b6f9e96279c9ed86f556e0001
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9D95319013D64BC2EF6D9870F4ADBA902EE970B6F9E96279C9ED86F556E0001"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9286
Expires: Wed, 26 Oct 2022 20:09:37 GMT
Date: Wed, 26 Oct 2022 17:34:51 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: dvhnsRqc7UaXkviz22O47cbXp/xry8JB+7j1duotX+IGK3bew58WsBwcfyLEsu9j8xSKnI78fCU=
x-amz-request-id: C8EYQ17BCVKS8JT0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 26 Oct 2022 17:09:27 GMT
age: 1524
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 17:34:51 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dd283dfc036535bdeb8a8be1310ef930
d3b1c300dd75d7af630e0f3112e49d7492d66c17
578f9256faa188facb3f2d68b02b0c7fb2e30e02e2e74234d015429563cba7aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5920
Cache-Control: max-age=144636
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:51 GMT
Etag: "6358ea97-1d7"
Expires: Fri, 28 Oct 2022 09:45:27 GMT
Last-Modified: Wed, 26 Oct 2022 08:06:47 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.39.126.109101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.126.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GgoS6YXL9N1/8fZ1UdWoXA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: B3+fr3kRVVHVUvrBFaT9Z4MgG3I=
manomav.com/12/TrdngAnlzr472032.exe
92.42.110.125301 Moved Permanently 0 B URL HTTP/1.1 manomav.com/12/TrdngAnlzr472032.exe
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /12/TrdngAnlzr472032.exe HTTP/1.1
Host: manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Location: http://www.manomav.com
Content-Length: 0
Date: Wed, 26 Oct 2022 17:34:52 GMT
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4147
Expires: Wed, 26 Oct 2022 18:43:59 GMT
Date: Wed, 26 Oct 2022 17:34:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4147
Expires: Wed, 26 Oct 2022 18:43:59 GMT
Date: Wed, 26 Oct 2022 17:34:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4147
Expires: Wed, 26 Oct 2022 18:43:59 GMT
Date: Wed, 26 Oct 2022 17:34:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91ee720c15dc69de45080d0c951353af
5292b31a99d90bcb7071f327b93d52034bdf9dcb
7fbe9f0f6db08fd539f2e8d4ac22e3b4d5ca14f7cde69f8424cce8b361d026e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4524
x-amzn-requestid: a493efe7-11c7-4032-b36b-7f838f8180bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aljicH_6IAMFqpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63587fa9-0f15eae7680ea7b15e5e47ec;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 00:30:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OV7g4Y4fcQGijljebzHQtnpKdcPKw6LTxqORxxBJL2lFPYQLLoyNuQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 00:34:40 GMT
age: 61212
etag: "5292b31a99d90bcb7071f327b93d52034bdf9dcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db946866312c734e0c5f91ca76255b2f
e8b8236baab9106a426a415eb01494cc4cc91ad1
a695e7bc87da2c6d9f5669c09e662fe22982e69cb139466efa5093429fe19866
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8439
x-amzn-requestid: e0eed725-0725-4f5a-9c91-fec13ad0ebe5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ajKYQGWhIAMFdhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63578a9b-2a0115120e75f5271cea992f;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 07:04:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: WVz4PqWqT9Pk1juQ95Xzi-7HcEDBqKb5VAncjXxOYFfKTnjRbmodoA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 04:44:59 GMT
age: 46193
etag: "e8b8236baab9106a426a415eb01494cc4cc91ad1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac38eda-2bed-4703-8560-7d07ad90dabc.webp
34.120.237.76200 OK 3.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac38eda-2bed-4703-8560-7d07ad90dabc.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 494a826ce7609ee5cc8157ea5de5f4f7
3d28f2daeef33f37c91bd26cb527793288635103
09f702f40e29e6b0c27abc5c7bb4605e504453b543c92805ba4045bd3d65c4d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac38eda-2bed-4703-8560-7d07ad90dabc.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3337
x-amzn-requestid: 5a06b710-2b88-435e-8863-3e0e58742e6d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ21FjooAMFp8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585691-2adc1ac2375e087b20ad0e32;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:13 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: iVIdtyyk_ph8AiTsWdQgDfWFHVIMh2pw4yrkufwogd3rsZFXwslwkg==
via: 1.1 a8e5d5aeee6eacca5c379e5059b1f68c.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:46:52 GMT
age: 71280
etag: "3d28f2daeef33f37c91bd26cb527793288635103"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5da11cdb-c8be-46f4-95b0-792c49d930a7.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5da11cdb-c8be-46f4-95b0-792c49d930a7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5987bcd44ab0db5313aa4f409a8a212f
691a36cde98a9fe1660745dd811e0be2ae67036c
e47ce3587c647b52669f675dc7e84e21555f82138091fb04febc951b4c06ba30
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5da11cdb-c8be-46f4-95b0-792c49d930a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8553
x-amzn-requestid: 69931a9c-027e-428e-a88d-61c5fac64daa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2iEnzoAMFZAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585690-12c78c5157fb3fa41a13548c;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: E4t7XezEVl1x_4sbidtDPjCuZoCh7N01y7ZeYZWlAL1w8ut4Qx95TA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:46:50 GMT
age: 71282
etag: "691a36cde98a9fe1660745dd811e0be2ae67036c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda327ff0-bd82-4034-a53b-e04d5c486276.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda327ff0-bd82-4034-a53b-e04d5c486276.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 531f350512ac7712d932234803aa4602
2fb4599ad3d513a160c1f29fefda27b45852c381
7a4da3420f736c098806676359b8ff80578a2e1e98fc0e20e45e2d6192e1d566
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda327ff0-bd82-4034-a53b-e04d5c486276.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8090
x-amzn-requestid: a84a2888-e0eb-40d3-8377-9c1ea2af733c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aVb2oH2uoAMFueA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63520cf7-204870ee3f63ced427033eb5;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 03:07:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fUBXr7SKYdvhryoB8p9to-Eo8twjspRYnHO2xf9TtvLJIIyOwe3W1w==
via: 1.1 1de1880e08f1cae7d1aca174a29a5c1e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 05:07:50 GMT
age: 44822
etag: "2fb4599ad3d513a160c1f29fefda27b45852c381"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fe27cf2-33a8-42cc-a8cd-f5e804e60e26.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fe27cf2-33a8-42cc-a8cd-f5e804e60e26.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c3ae78510434fd68063fc144bf614382
3bb87ca5274ce9f6d81da60ab940d23ccd12843b
f42d89328435cb37cba1111903a6bd5e900857d0942e1506ea2115b4e6301541
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fe27cf2-33a8-42cc-a8cd-f5e804e60e26.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7929
x-amzn-requestid: 6324abd6-8e27-4903-8bfc-a0fc6a8625be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alK9LEeoIAMF5mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585854-2900343b1ae208a903fe58fd;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:42:44 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5MR4UzoW6rVsSpEyPAWrcFb2LCRICaG-toy3JflaXRrzZwcgMs48VQ==
via: 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:49:35 GMT
age: 71117
etag: "3bb87ca5274ce9f6d81da60ab940d23ccd12843b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.manomav.com/
92.42.110.125301 Moved Permanently 0 B IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
X-Redirect-By: WordPress
Location: https://www.manomav.com/
Content-Length: 0
Date: Wed, 26 Oct 2022 17:34:54 GMT
www.manomav.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
92.42.110.125200 OK 10 kB URL HTTP/2 www.manomav.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (39791)
Hash 3cc7696f4c8caa2b1c7acab0c2ae1515
2df12fe5d820c9c8129c9276e2bb94f9df860331
5ec052aed0f32fed1fc31c9be24e1cd03a7bcdede8ae098af3d1997fdfb51a6a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:19:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10549
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
92.42.110.125200 OK 848 B URL HTTP/2 www.manomav.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
92.42.110.125200 OK 791 B URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash 70803413c9597ee8c0d1014c24614132
ebcf83176e785a74666e9a6f6237509f11e6dcca
fd2994ae20595548eaaf7b3071ced4b3ed29db6d87940a6a1c9672a10ae399e6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 791
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.3.24
92.42.110.125200 OK 1.7 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.3.24
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (6794)
Hash 9bb930afefcd08578e40d87e6cf74366
c2a096ebbc4a5e7400bb4d4294d5c011eb975a27
5c85203c7d95fbc0a76522a933408c07fe6e362c8094e514ec3c0bcb9e6bbd34
GET /wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.3.24 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1660
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5
92.42.110.125200 OK 3.8 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (42839), with no line terminators
Hash 0f2a1830a2eb3452fe698134828443d4
4d04d53d82c38785c13e1aa7cf012cb9dbf3db28
a037316b9cce9cab96056fd1797693e625fda9cfcd5337f5412b9aa8b6aae3ad
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3806
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3
92.42.110.125200 OK 6.8 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (45348), with no line terminators
Hash ac86c46c81a26a9b2dddfaff693e20ed
bcab73993780f26ad845347f3930b629cccbdfc2
cdc2f8852d087adb339f2813bb8663c5ef58722ac581ee64b5ea6751a74612b4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6791
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/related-youtube-videos/css/themes.css?ver=5.9.5
92.42.110.125200 OK 299 B URL HTTP/2 www.manomav.com/wp-content/plugins/related-youtube-videos/css/themes.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash b4b641c8dd35d1a192ac30e5b99e4fed
061d040bb66758a4cc0d23ae1961e1863c02cddc
533d451b0804ee878b1fe48fc359d6e5a6c126f7535453ac3e84ba92bdddfe35
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/related-youtube-videos/css/themes.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 299
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/service-box/assets/css/font-awesome/css/font-awesome.min.css?ver=5.9.5
92.42.110.125200 OK 6.7 kB URL HTTP/2 www.manomav.com/wp-content/plugins/service-box/assets/css/font-awesome/css/font-awesome.min.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (30837)
Hash 5dbbe85d6a3308dceb97d91b740b0f11
3f70abf9963371962665167f98ba52365481496d
751d4fdd16bd33cc9c93bcaadcd316922ca9bbd74cb6a9e1705c8bef4330dabf
GET /wp-content/plugins/service-box/assets/css/font-awesome/css/font-awesome.min.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6657
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/service-box/assets/css/bootstrap-front.css?ver=5.9.5
92.42.110.125200 OK 1.5 kB URL HTTP/2 www.manomav.com/wp-content/plugins/service-box/assets/css/bootstrap-front.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type assembler source, ASCII text, with very long lines (780)
Hash 2450779d95988cbe3c194d0f237670a8
e4af4b0e996b3697247d61f69d22f2273bd2b502
f1d88e4d468177db9f7fee176aa747ff09b992e73c4646cac2f3ef1afb584de9
GET /wp-content/plugins/service-box/assets/css/bootstrap-front.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1513
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/service-box/assets/css/owl.carousel.min.css?ver=5.9.5
92.42.110.125200 OK 1.2 kB URL HTTP/2 www.manomav.com/wp-content/plugins/service-box/assets/css/owl.carousel.min.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash ed801a1ee20bd6fd608be655cb07414e
6d6e3bdcd175b935d5344fb88e81a179a950f0c8
70edd720e30cc3723648f94458c7f0a990ddb8736c2400a201f03bc969a0dce1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/service-box/assets/css/owl.carousel.min.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1219
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widget.css?ver=5.9.5
92.42.110.125200 OK 2.1 kB URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widget.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (1332), with CRLF line terminators
Hash f0638c8e827007a1f336d2d6a0322b86
5302f4e9c29b18011f6dc53d15386676c55fad8c
84a8a5ed9f1590af4e0377b5003ab886cb049c639c45b24b9bde37fd2f2863de
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widget.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:15:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2060
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Style/richwebicons.css?ver=5.9.5
92.42.110.125200 OK 6.6 kB URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Style/richwebicons.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (412), with CRLF line terminators
Hash 30d7ed83122fd22771242fe54d4d8d5a
2cda87a11934256a1c1d83f6d1a668204a8f87b8
307b245e22943e5e4d6e105a69d3babd867a89f08cad2f94ccd7dd12c58697cc
GET /wp-content/plugins/slider-images/Style/richwebicons.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:15:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6633
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/recent-facebook-posts/assets/css/default.min.css?ver=2.0.13
92.42.110.125200 OK 627 B URL HTTP/2 www.manomav.com/wp-content/plugins/recent-facebook-posts/assets/css/default.min.css?ver=2.0.13
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (2339), with no line terminators
Hash 1a1871d6af0a277a4d7639e3e300fd9e
650e0b90196359669cf8590659b0f7c205375d12
4ad1e09185368fe44a670a5770d413b8665150b0ba206d05c17f93feca54cdce
GET /wp-content/plugins/recent-facebook-posts/assets/css/default.min.css?ver=2.0.13 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 627
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/genericons/genericons.css?ver=3.2
92.42.110.125200 OK 16 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/genericons/genericons.css?ver=3.2
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (19226), with CRLF line terminators
Hash 20f23c9697d6cc3fe3bee8fb8c0a8a68
08f4902584fd5a3048108387833104418e220cd0
5ee3fbfe65bb5c9cea06a44a3962ff4241b33fffa6a8d63ba6abc8b32f9af5dc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/genericons/genericons.css?ver=3.2 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16120
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/style.css?ver=5.9.5
92.42.110.125200 OK 575 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav/style.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (403)
Hash ac2e554d3dbf718e78606ede087cc049
01665beced7abf0e74306ffc4988657a98160997
93b8c3c40df3c91b35ab315213170cd3539922538f662b7645281831b0e3ba3c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/style.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 575
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.1
92.42.110.125200 OK 467 B URL HTTP/2 www.manomav.com/wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (3439), with no line terminators
Hash 04772b9a0d585dfb3c5761d2d3e8fd1a
1e5bd07f0138eafe870044ed503ac4e70970dd47
86c487538e95f949bc90d27f9db5fbfd5ea625fd8ad54e5972b87be7500c4f32
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:12:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 467
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.1
92.42.110.125200 OK 308 B URL HTTP/2 www.manomav.com/wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash 2475dc1856a51066526df1559de3dc3f
5a8f5901fd85da4e9dbdebfd6414b4ee5d251945
9461e6eb400fba6ff730e74e1e64bcd071e7a23fe123bf1c116cf95e5e6578f9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:12:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 308
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
92.42.110.125200 OK 30 kB URL HTTP/2 www.manomav.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (65447)
Hash 34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
92.42.110.125200 OK 4.0 kB URL HTTP/2 www.manomav.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.3.24
92.42.110.125200 OK 7.4 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.3.24
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (1518)
Hash 7d2b4b55e04a6146c2b720c9d0a13d67
383c540478a21bc16b9a2c717a2ed28037fc3434
5f54b010dad731bceeeaa543a4767f3ca865cdb705c9d645068d35214e49970a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.3.24 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7419
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
92.42.110.125200 OK 8.8 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (25075)
Hash 1bc242a2555501251f4581a861d273b5
8182ba41622cb62f0b476c7f0f93aa835c6c9ec2
1834970e62778a993bf85b79b67c3e9687a2721f187722bdc1dc5f45605119b4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8752
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0
92.42.110.125200 OK 2.0 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (5661)
Hash 02411584ba4f45db9c42a9944b4387f6
6536a6c1bd50cec302906246bfcb26796cee78c8
900005aa2f419bb5d3232695ab1fb3fd350586937dedc1ade84aeb40be6cdbff
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2017
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.3
92.42.110.125200 OK 31 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.3
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash 954aad693c0471a47f7a5438eabaf004
744c122858868545722250cbedf4a20c4e8ab07b
ded172a5737b0a1ed127c10d69f43be4087f2dbceaf851807c403863db7268d0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.3 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 31363
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/service-box/assets/js/owl.carousel.min.js?ver=1
92.42.110.125200 OK 11 kB URL HTTP/2 www.manomav.com/wp-content/plugins/service-box/assets/js/owl.carousel.min.js?ver=1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (31997)
Hash 3cb10c6c01ef15e7d2c5ef33c6f06ee5
561a0008fd649a946ff6cdba379547c998cb4582
2107b826f18f7f10f78a38641124da03dad389704816a86136488123a0f01f3d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/service-box/assets/js/owl.carousel.min.js?ver=1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11139
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
92.42.110.125200 OK 6.6 kB URL HTTP/2 www.manomav.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 4186472f300b89625cba0a93ba482c2c
19053e54644720b5dcfd71e24381347da7bc7cc9
a411ccc7d565d73b533d894b9972460cc5ea81743da6c2c7ee0877050ed8005d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:19:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6599
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Widget.js?ver=5.9.5
92.42.110.125200 OK 0 B URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Widget.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Widget.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-length: 0
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.easing.1.2.js?ver=5.9.5
92.42.110.125200 OK 837 B URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.easing.1.2.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (408)
Hash 24979d6f0439bd29a296a15a0af37440
d3936e7582eed7085442653449ed2f5bf991eeae
62b83c18b7f291559532f0061d9562d7a941198fe82b851c20fa135f96160cb3
GET /wp-content/plugins/slider-images/Scripts/jquery.easing.1.2.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 837
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.anythingslider.min.js?ver=5.9.5
92.42.110.125200 OK 188 B URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.anythingslider.min.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash ab146f4e02cf2813634d311b1d9141ba
47fa96bd2c56803cb6b6d0a85442d8cf927fcc0b
fe2f780b72df154bac9018fe4baa456963cefb7249f0c1a4ec111fe1b8368fde
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/slider-images/Scripts/jquery.anythingslider.min.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-length: 188
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.colorbox-min.js?ver=5.9.5
92.42.110.125200 OK 4.1 kB URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.colorbox-min.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (9604)
Hash b3adc1a7f7dd023c2494e3834421bc89
3cb62b9faa35f4a7dba45a984406fb3f1bd75190
d26ac67d779d67d2ff53113c5972807ee79c76f47a810b5bbb6140b137ec476b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/slider-images/Scripts/jquery.colorbox-min.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4103
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/style.css
92.42.110.125200 OK 5.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/style.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash c9d6de9b3da4e1bd1f8b601269de456f
151d0eb4f001c63314709d57c596303ee47d9bd9
b1d971443f8f1db1f34b1a14c6ac1e21bff7987bd37c4e856398d93cce5c111d
GET /wp-content/themes/manomav/css/style.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5588
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/themes/manomav/css/search.css
92.42.110.125200 OK 1.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/search.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 7355ef7b9168aae08f682ae45afc5941
75e8172962f7a2a7dfad2d96f2c8d7ec65ec7006
7037ec382a90222c29992ee657592996b500e88ec2aa3be15efd4d40851ee48e
GET /wp-content/themes/manomav/css/search.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1569
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/camera.css
92.42.110.125200 OK 1.2 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/camera.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash 75f4f7c39dad79e31a958f1c7eded89d
d08426e2b95ecfab3892710be8202e8a9f1865f8
768ea26c96921cb2f931879b5fc661c6f69e589772e0b5eb0476b2fa2d35517f
GET /wp-content/themes/manomav/css/camera.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1159
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/jquery.fancybox.css
92.42.110.125200 OK 1.3 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/jquery.fancybox.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 37110acaee335e72e0712f7152823006
1beabc4c70adca4de893be66c147fe435cb00b55
4bc71a992d1743fc76b0307fe1c4b625705fbf9af9efa31803bba81e7c049dce
GET /wp-content/themes/manomav/css/jquery.fancybox.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1282
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/google-map.css
92.42.110.125200 OK 174 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/google-map.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash d269908f072f380ea45b133c503b2ce0
b2f9f143c16a858df0afed0316487d15ee8e1553
2d1cca22aadb4f3e063e370cb31a8dfa475b387be75552271dfb659f9cdc7072
GET /wp-content/themes/manomav/css/google-map.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 174
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/contact-form.css
92.42.110.125200 OK 3.1 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/contact-form.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (2096)
Hash 511bef2a86c236383f0c58811367e697
df18f686b763cf2d353d689ad8efe8375e3adfa2
4d3fb8684f0b3f6559d3b564f755921c16c27d3bade8fc75965f751c3996241b
GET /wp-content/themes/manomav/css/contact-form.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3099
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/js/device.min.js
92.42.110.125200 OK 868 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav/js/device.min.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (645), with CRLF line terminators
Hash 5090a07e86b65c91c0f8523dbd961ab3
defbd6761de94fe1efcfecd36b4084300885ad12
82ae7f744c08401d562664f09e436403446aa40b3c81b5e1f7219c0eb359bca4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/js/device.min.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 868
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/images/mepl.png
92.42.110.125200 OK 6.9 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/mepl.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 286 x 284, 8-bit/color RGB, non-interlaced\012- data
Hash abe4ddf571667a910a00df0e92f67c19
c60d14f2e841073caf32c084a54af1837fad443c
b8aa99a10991b257a5ef2ffccb6bb86e5b7edacbcf2ccedc93016cdf84251c07
GET /wp-content/themes/manomav/images/mepl.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 6859
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/facilitateHome.jpg
92.42.110.125200 OK 43 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/facilitateHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash 8c0c6954d4cb5f5775528bd9bc4beb3a
006fb61c3c2ea0752e91099348c73dcb46772d47
b6a06abb2cf96835290b072f31b4bf3cc0ccb2a88d208b3d5aaef0ee67661055
GET /wp-content/uploads/photo-gallery/facilitateHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 42688
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/page-1_img06.png
92.42.110.125200 OK 1.0 kB URL HTTP/2 www.manomav.com//wp-content/uploads/page-1_img06.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 75 x 74, 8-bit colormap, non-interlaced\012- data
Hash 0936d25b5f0c880c758f834f5ff657af
665fb53da09cc0305e4af9f9d618b8ef95a45e31
b3241198cf470de3ecf19c7e5d6d5c1611504eed1faa54c723d75075a38a907d
GET //wp-content/uploads/page-1_img06.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 1041
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/constructions-analysis.jpg
92.42.110.125200 OK 17 kB URL HTTP/2 www.manomav.com//wp-content/uploads/constructions-analysis.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 370x247, components 3\012- data
Hash dace8485e254d259575929c33e9edbfd
637a6995a59734474006907df651352c6774a894
b150508454d6d1b33b6bc0dd99f3b38cb725bb949e546984425426eb88509ce1
GET //wp-content/uploads/constructions-analysis.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 16757
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/page-1_img05.png
92.42.110.125200 OK 837 B URL HTTP/2 www.manomav.com//wp-content/uploads/page-1_img05.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 75 x 74, 8-bit colormap, non-interlaced\012- data
Hash 496303110421a9ba99d696965b1af3ec
c7a660708c506099abb8d2b4dac5851aac8df6f3
b60b9e8dd0a9172871cb8f9c0e628b6ccd13d79d6dff1b3c16441eda70428aa5
GET //wp-content/uploads/page-1_img05.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 837
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/TECHNOLOGY-ADVANCE.jpg
92.42.110.125200 OK 14 kB URL HTTP/2 www.manomav.com//wp-content/uploads/TECHNOLOGY-ADVANCE.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 370x245, components 3\012- data
Hash 77df0a6308453dd3f8c3128a534815ba
21b7f5979e84ba135638dc1eb01b94eb8ebee067
ff57a4151e0d4d5413b21122dc6f4fbde486df5b02e0c3d31d7960ceadaeda5e
GET //wp-content/uploads/TECHNOLOGY-ADVANCE.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 13523
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/page-1_img04.png
92.42.110.125200 OK 976 B URL HTTP/2 www.manomav.com//wp-content/uploads/page-1_img04.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 75 x 74, 8-bit colormap, non-interlaced\012- data
Hash b16a8668230f6f41b82bc03669b39bf1
2457c8a555d93e88d70c0f7c809719a1851a5ec5
56410a1989ec35d1575ded12f1f6b1954c416b8f3c851647b9dae5b77679254d
GET //wp-content/uploads/page-1_img04.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 976
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/Knowledge-Sharing-1.jpg
92.42.110.125200 OK 21 kB URL HTTP/2 www.manomav.com//wp-content/uploads/Knowledge-Sharing-1.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 370x246, components 3\012- data
Hash 06cc248bfe6d3fd9f92ed1015102f9b7
f996ea896de5e30b393fec41b7b5c9ac54d3b8ea
8cabfa97d5842afd288e5c2726ee2768ab472a42901d754b1a91e7677593a23f
GET //wp-content/uploads/Knowledge-Sharing-1.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 20878
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/images/page-1_img08.png
92.42.110.125200 OK 2.0 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/page-1_img08.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 80 x 61, 8-bit/color RGBA, non-interlaced\012- data
Hash ceb41965553f18f73f8409c3030ea8cc
a6cf9929f2bc85f9ddeb3188eb15279407bde432
d9dff2f6cc6ceb2bead6dd1b2f488be068ecf5608c93410b339cba16b8a29e41
GET /wp-content/themes/manomav/images/page-1_img08.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 2034
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/data-tables-generator-by-supsystic/app/assets/js/dtgsnonce.js?ver=0.01
92.42.110.125200 OK 41 B URL HTTP/2 www.manomav.com/wp-content/plugins/data-tables-generator-by-supsystic/app/assets/js/dtgsnonce.js?ver=0.01
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 29a98c4f5edd4ec8249f165ffcfbfd37
20c6a355a13d953617d6e7c50c91432a03917d43
2e599dfaffe056d6e6f7f19cd3e1d47169ac4468bd9fb2f9f4033940f7fc7584
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/data-tables-generator-by-supsystic/app/assets/js/dtgsnonce.js?ver=0.01 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:13:09 GMT
accept-ranges: bytes
content-length: 41
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
92.42.110.125200 OK 2.3 kB URL HTTP/2 www.manomav.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (6494), with no line terminators
Hash d36aa71a696fa330e746e020f51706c1
d562000b49ba8a70ae9a0f7cfff1b879fcf978b0
fb18eb2f616d3ccb9f8d8ce3d01f4ada3f0a269eab413b7bd7ad38ebfe8d781a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2330
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
92.42.110.125200 OK 6.8 kB URL HTTP/2 www.manomav.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (19111)
Hash d626306dffd33f5fe5c26a7f3eb31e11
c6a49756a49e4e3b65834485e4755b021cff392c
f96d9b10de2d4256189f9e282c2f400cb8d59e23d7a6845b62e4c8aa820cea84
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6810
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
92.42.110.125200 OK 3.1 kB URL HTTP/2 www.manomav.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (9720), with no line terminators
Hash 7b3d5adb95a380672e7d5da68b57b3c0
58db2566c56407e29d4557d912663b36ec328b14
aaa8914b936896ede7bb53ba3a4273d63bf82ed918efe0cfac6f2b3f4641a423
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3050
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.15
92.42.110.125200 OK 287 B URL HTTP/2 www.manomav.com/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.15
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash b549377103ff5923af6a2bda22756d18
a4c00dace4932f712d63f67f2af4c5ea9d97d823
5518b4e3dc40d0172dab6d1c8e5babda33e6a59bb600677ab2c314ce3a9cb1e5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.15 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:13:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 287
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
92.42.110.125200 OK 8.6 kB URL HTTP/2 www.manomav.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (24733), with no line terminators
Hash 68595c6cc0dcbfdacf99bc94ff77ad86
2b2719f3d55566841af05dacf068dc2d3c10dcce
5ce4baf7eead42a8568d54a21c089360bb8667b592908350c1d8cb454844e2ce
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:13:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8563
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6
92.42.110.125200 OK 439 B URL HTTP/2 www.manomav.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (999), with no line terminators
Hash 941c9d44f1c480a37006540de948ef9a
29bc99b84660341fc37d60774b3083025a19147c
d297692ee1e68d1e2499576903508be06859340a25eded15b2565631a592851e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 439
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/js/jquery.js
92.42.110.125200 OK 32 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/js/jquery.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (32086), with CRLF line terminators
Hash 06a2b2c3ee18a2c3846e756c2e2b2cb4
5088db61206ef8a341da7e358bc182c2d28a4c75
f3b18f58b0161082f9f2d1441cd1c969efd18c4826c29c6525de52ee4af61b03
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/js/jquery.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32304
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/js/jquery-migrate-1.2.1.js
92.42.110.125200 OK 5.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/js/jquery-migrate-1.2.1.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 04c400ba07fddcda3018399d7181fff4
5215c06557983bb8897812522eefb300f3be9b14
cd2799411ea3af1cb3f953b06c15da3cc4054a0faa8e6ae0f59d26a48a7f0618
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/js/jquery-migrate-1.2.1.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5559
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/js/script.js
92.42.110.125200 OK 2.4 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/js/script.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text
Hash 5fcb47dadd3297ac861a4fe8656cc30c
7e00652626d70125b3cb5743a11c00885162ab4d
14dc1ef50af74df54ff7b59fa69ed99b6f83381596d68da4943f8b7ffbba2730
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/js/script.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2374
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 77b5da0f60755df91da1b98333c6d33c
0c36c5f1063e2ef41d02e26ddf9ed1e0a490e6b4
085b499d52d53965301db8affc692e09876290e5d67bf09c83178cc54384999f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
92.42.110.125200 OK 4.5 kB URL HTTP/2 www.manomav.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (15224)
Hash 3c05cdbb96f694e86b05c7a3e5c6703f
615a7094f3210830bd5e6f08f845c101be2eefeb
371bb131cc739b177f4c90f67535f020d0bbee092e2ff1bad6ac38e978da3092
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Tue, 08 Jun 2021 22:15:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4539
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/animate.css
92.42.110.125200 OK 4.4 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/animate.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 09ea38bbdd5d82125e69048cbb9067ae
17e771fd58069275493a18dc80bf14b4ab191a56
9c0f6b7c3f54797bf48d128737920cd2c5d705edea21ed68370cbf54ed053524
GET /wp-content/themes/manomav/css/animate.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4425
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/font-awesome/4.3.0/css/font-awesome.min.css
92.42.110.125200 OK 5.1 kB URL HTTP/2 www.manomav.com/font-awesome/4.3.0/css/font-awesome.min.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (23502)
Hash 7826f5087340a4cd319f2f3789cdd95a
cdcc88c38b1ce8fe1dda21dfdcd3b8b29aa47b6c
04a0fef17dabf0233d639fb47758824276bafb3286a63b888ea363f75a1339c0
GET /font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5089
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LeU98IfAAAAAD2zMRBHKynflTKmFsNAw_XYzNxE&ver=3.0
142.250.74.164200 OK 584 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LeU98IfAAAAAD2zMRBHKynflTKmFsNAw_XYzNxE&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 719c7a1b79ac2b0e2c2bad47e75f8f67
18e2cfb09a3e3ebe2eb3534c42a443a6c2b2b652
932b0d5545d3ef2b0c79d429e5557cfc1dfb33f99acdb67a413e21c311a2ce68
GET /recaptcha/api.js?render=6LeU98IfAAAAAD2zMRBHKynflTKmFsNAw_XYzNxE&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 26 Oct 2022 17:34:57 GMT
date: Wed, 26 Oct 2022 17:34:57 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 26e60c83d7af169687cbd74f7ca924e0
00f7ceb935fe1cc423f95718a04076e4f5eca150
a041e2901d418b289c3129ce7c07a66e598f6d3ac076732635b0a9ac6fbabb89
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e7f1de4025eee44eed5a0ada1e998d6c
fd8bfad40b964ffd3534ac3aff68aaf31d38ba37
fba4107e5627b68a00dc9c31a657be714c85dc7c648b8e8e1c7373cc305f8228
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-N27W84R
142.250.74.168200 OK 63 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-N27W84R
IP 142.250.74.168:0
File type ASCII text, with very long lines (3702)
Hash 1b64fbfdec4e4a9db7e5aa90e6b2d11e
dec23898f97c75bafd9858ee027e1fca6f9eb325
b624c7fe04d4dc49c2a25cf464470bd2cc2f7e49fd90bba676de10a94053a074
GET /gtm.js?id=GTM-N27W84R HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 26 Oct 2022 17:34:57 GMT
expires: Wed, 26 Oct 2022 17:34:57 GMT
cache-control: private, max-age=900
last-modified: Wed, 26 Oct 2022 16:04:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 62741
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/images/page-1_img07.png
92.42.110.125200 OK 59 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/page-1_img07.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 523 x 279, 8-bit/color RGBA, non-interlaced\012- data
Hash b17b9c5d84e23303a9e4192a2dfe13a3
b8c9f0f7526204ad8a4e6f5e58b2621b148c5846
874f9ca80a4b8d85470b9d70e7afdd6f05c4db1183bc116402525f9eff185580
GET /wp-content/themes/manomav/images/page-1_img07.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 58983
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/images/ajax_loader.png
92.42.110.125200 OK 10 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/images/ajax_loader.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 87b180d6f33ba5c4a931c2877484c5c3
76c99bb0eef2610b0b0c7a30fa3b20ab9c6dce59
5b13155d5e5495ecbd27b9fabc7b64d08cf8eaee2a83cb790d7c376fb1fc84a7
GET /wp-content/plugins/photo-gallery/images/ajax_loader.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: image/png
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-length: 10388
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/images/blank.gif
92.42.110.125200 OK 43 B URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/images/blank.gif
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /wp-content/plugins/photo-gallery/images/blank.gif HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: image/gif
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-length: 43
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e7f1de4025eee44eed5a0ada1e998d6c
fd8bfad40b964ffd3534ac3aff68aaf31d38ba37
fba4107e5627b68a00dc9c31a657be714c85dc7c648b8e8e1c7373cc305f8228
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/themes/manomav/images/primary-bg.jpg
92.42.110.125200 OK 104 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/primary-bg.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2015:04:28 14:19:02], baseline, precision 8, 1000x1000, components 3\012- data
Size 104 kB (104067 bytes)
Hash 33179044aa898ce83b0aa3fc7b5ef629
3459f02efa6b32aae7546d00d16aaba7a187d433
643bd15b632853388d44a19b19b2fcca9af0d07fee4d33d040b0090d2122445c
GET /wp-content/themes/manomav/images/primary-bg.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 104067
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff
92.42.110.125200 OK 57 kB URL HTTP/2 www.manomav.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
Analyzer Verdict Alert fortinet Malware
GET /font-awesome/4.3.0/fonts/fontawesome-webfont.woff HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.manomav.com/font-awesome/4.3.0/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: font/woff
last-modified: Wed, 30 Mar 2022 15:49:32 GMT
accept-ranges: bytes
content-length: 56780
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts/bwg.ttf?qy18kk
92.42.110.125200 OK 7.5 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts/bwg.ttf?qy18kk
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, bwg \012- data
Hash dae2130d98859247658e1e20ee533365
11f728cc64d77fb4fa61450e836c3c32f11958bf
97c83c5dacfb91b48c48b6ac0989f58eb8183d2a12f41e5f0d7553a0ff3bd467
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts/bwg.ttf?qy18kk HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: font/ttf
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7544
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/themes/manomav//js/jquery.cookie.js
92.42.110.125200 OK 1.3 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.cookie.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash b8922e4804dbd0e23f774988a1c23d4f
5385ed7ddb2e70318b1630948c67979bc64b0ab3
09b27d742e6b54386eb3c93d6526d6742a5759ff8cc14c2445bf0deb24650fdf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.cookie.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1340
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.easing.1.3.js
92.42.110.125200 OK 1.9 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.easing.1.3.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 2caffc7a73cc9190fe3b124cc781a42e
46ad6641d1ebf8e091bde798a73d175d4c9facab
3e40e775308d772a7b0312d951db5db75105184d893cb92acf6e8ba1e338104d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.easing.1.3.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1903
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/tmstickup.js
92.42.110.125200 OK 779 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/tmstickup.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash c0c4de491cc3f43583e42eb6a7ba8f64
830c1e66d8447ef834b9dca2b68f5d1a0deec6cc
4914d9aa236670673ae668ba22d198eb283998adb8edf260f15728d83aa45e5d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/tmstickup.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 779
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.ui.totop.js
92.42.110.125200 OK 521 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.ui.totop.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text, with CRLF line terminators
Hash 61f8dcda919aab860cfb126c145390b0
82356eb7d64c90583fd975c1c82a203ec49534dc
61177932bfa875a6ad4cb6ef709b97821d610d45d9d77233864b7ffb3360566c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.ui.totop.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 521
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/superfish.js
92.42.110.125200 OK 2.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/superfish.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash d5a50923fec57fc00cf76026094d6e20
645422233ad47b65e96d2f0dd8ccf46f76eb6084
2a892227b0f6b165380e8365222ca51e48725b963763d183f60d4133ff5b69a3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/superfish.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2604
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.rd-navbar.js
92.42.110.125200 OK 1.5 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.rd-navbar.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash ba84d20a0e659888094b4fd6af4e3c7d
04ea110dca487ee4b61795abcd0266fc7cfa62c4
25c05adf736a47e42c84ce9ae73eaea98e09a056d5a839705c7bb392faf63574
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.rd-navbar.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1488
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/wow.js
92.42.110.125200 OK 2.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/wow.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 2fd30581ab54d111e16cfed38983162f
7a5f473ca305b14177415829aa17176ad79a0bcd
3b902ea2e5ade7cd8c3742fc7acf92d823e743cf2134ddbda0ef555e1b5aef0c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/wow.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2630
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox.js
92.42.110.125200 OK 14 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF, CR line terminators
Hash 47b8b47f3065d7c1a7e41b8284656b67
fb5128734e13dc3a2dbe06604f4583d3dd72b7d9
28f74b55d6c059b9cb2fe7d9df4d5a51f6ae92a28721fecc709b1386327eeef3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.fancybox.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13997
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:08 GMT
expires: Thu, 19 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 597649
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2
216.58.207.195200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17508, version 1.0\012- data
Hash 7fbdfaab6bd8b191496ffe1ef1b9e748
e9e592f8498d489d8000f3a4cfb1bb447f251edd
bb8007225d94a099cddbade7ea904667c0dd0b68d5e30778e5c6257589ab94d1
GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17508
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:44:31 GMT
expires: Thu, 19 Oct 2023 19:44:31 GMT
cache-control: public, max-age=31536000
age: 597026
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-media.js
92.42.110.125200 OK 1.9 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-media.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 6e0eb49957743e04b5fbcb713068b239
3914094ae05d176832ec2f594ccedb2b9330d0b4
202c4298ebfc56b14e6a4e929c175683f241f2f758c16617138b8ba1b635974a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.fancybox-media.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1881
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:21 GMT
expires: Thu, 19 Oct 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 597636
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-buttons.js
92.42.110.125200 OK 994 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-buttons.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (411), with CRLF line terminators
Hash a3732175d4e9b44383f144d5ef77ca52
002cc74393490c7d8ff12d689082987f36c3f9ad
c9e6d91b7df0781566516f9c2ef9f3c7db9cff41521eb3a96f9f9b7f99400c8d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.fancybox-buttons.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 994
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:40:23 GMT
expires: Thu, 19 Oct 2023 19:40:23 GMT
cache-control: public, max-age=31536000
age: 597274
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:300|Roboto:400,500,300,300italic,900,900italic,700|Cutive
142.250.74.10200 OK 17 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:300|Roboto:400,500,300,300italic,900,900italic,700|Cutive
IP 142.250.74.10:0
Hash 137309c2c075bfdda87feba086969f86
1ed7b4099c782ceb6812d8b8270429139a36ba49
b79f6d35a20cce5dc5d0283c2935dbfb3f0c53c1cc4a45a0fd5e722e88404d5a
GET /css?family=Lato:300|Roboto:400,500,300,300italic,900,900italic,700|Cutive HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 26 Oct 2022 17:34:57 GMT
date: Wed, 26 Oct 2022 17:34:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4e7bf2c560f7e3adf637e8040f13f73d
8d719fbb91d017f349c1910aaa5ca888efd5a48d
cc99ab5dd2659ab03f95778b27a4caf6e236f3cb4341d493ded58518ffdfa6d2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 17:34:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 25 Oct 2022 07:31:19 GMT
Expires: Tue, 01 Nov 2022 07:31:18 GMT
Etag: "8d719fbb91d017f349c1910aaa5ca888efd5a48d"
Cache-Control: max-age=481580,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7604f217efeeb50f-OSL
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 14:07:32 GMT
expires: Thu, 26 Oct 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 12445
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cutive/v17/NaPZcZ_fHOhV3IpLSPJC.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/cutive/v17/NaPZcZ_fHOhV3IpLSPJC.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23176, version 1.0\012- data
Hash 1a46e43cdc6a2aa4db72a144956d324b
a262bb0c7203a615e67005881cb863062de96db6
c8e606c88b52a4176eaf5d9612001876d15d15a0c8aa1f436e86ca5681d62b36
GET /s/cutive/v17/NaPZcZ_fHOhV3IpLSPJC.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23176
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 03:55:56 GMT
expires: Sat, 21 Oct 2023 03:55:56 GMT
cache-control: public, max-age=31536000
age: 481141
last-modified: Thu, 21 Apr 2022 16:50:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/themes/manomav/images/favicon.ico
92.42.110.125200 OK 792 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/favicon.ico
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel\012- data
Hash 05dbaf79f2750d67b786fa7c63dc3696
c03e52114aea6599a0a0725e8f683ed71a13ae0a
c6fc47ed2b5113496ffe4d76b081be7b464f2bfcd28cb196d0284a2b0fe032ff
GET /wp-content/themes/manomav/images/favicon.ico HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: image/x-icon
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 792
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 26 Oct 2022 16:41:09 GMT
expires: Wed, 26 Oct 2022 18:41:09 GMT
cache-control: public, max-age=7200
age: 3228
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9ab0372fbd4e9d389119ccc12be968eb
0e48ffd21d7abf1cf59a471feba8da1f26b934fc
090ac22163a5cc5471bd4220bc6ebe686b115c15378c5eb9066f0767066af57d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4157
Cache-Control: max-age=126696
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:57 GMT
Etag: "6358ab6c-1d7"
Expires: Fri, 28 Oct 2022 04:46:33 GMT
Last-Modified: Wed, 26 Oct 2022 03:37:16 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7d4b826b3cd4f4fffd35abd60c407bdb
28e5a20b197bf6972fd097c3b302c1dd89b68f09
681fd035abbbf788f315fea7402f5e0d77b51f6167e237ff7516335911499b21
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
load.sumo.com/73.0a035390359aab65eb82.js
194.242.11.186200 OK 262 kB URL HTTP/2 load.sumo.com/73.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type HTML document, ASCII text, with very long lines (40498)
Size 262 kB (261566 bytes)
Hash 3b4702690218e216f36c932db1e9d22d
e9cb024d247c4ef6ca338c612e7121601cfb1e61
1f024b965f0a775461689f9ef8c184fd0daff33d2a6901f0b1948e26349ef06e
GET /73.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 17:34:57 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"ad6f2454f01de902ffd473d51c1207bf"
last-modified: Wed, 05 Oct 2022 16:49:51 GMT
x-amz-id-2: Dz0EM3/xFWfe6o0g/AA44XdKo7BjVItqj9DVOw2N0T94AYhGYKO+ZmtoAAFgSgxHbvbAvGVcz1g=
x-amz-request-id: SM1PZ234NFBD64Z9
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/19/2022 18:14:51
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 04dd1555168667b17d8a8cd6299ce4ea
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/961138791/?random=1666805693788&cv=11&fst=1666805693788&bg=ffffff&guid=ON&async=1>m=2wgaj0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&rfmt=3&fmt=4
142.250.74.2200 OK 989 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/961138791/?random=1666805693788&cv=11&fst=1666805693788&bg=ffffff&guid=ON&async=1>m=2wgaj0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&rfmt=3&fmt=4
IP 142.250.74.2:0
File type ASCII text, with very long lines (2024), with no line terminators
Hash 84b0a8bb769641ea12fd68a366074759
e61cf6c2b04a6d735720e14923ef76581d1b992d
2356d9c9a9bdb86d9bae71018e13544e378c69c8455b80e0548fd45e600bb53b
GET /pagead/viewthroughconversion/961138791/?random=1666805693788&cv=11&fst=1666805693788&bg=ffffff&guid=ON&async=1>m=2wgaj0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 26 Oct 2022 17:34:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 989
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 26-Oct-2022 17:49:57 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/pmcHome.jpg
92.42.110.125200 OK 45 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/pmcHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash 31c25d4abf593439281ec7d1901d2e37
11ae8ec356a433d00bca1b503e1f0b97de26f271
54c692448b2292ddbddfb689e1e96a3c215fc9a553a3158c627f4bf367ee8970
GET /wp-content/uploads/photo-gallery/pmcHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: image/jpeg
last-modified: Sat, 19 Aug 2017 10:40:55 GMT
accept-ranges: bytes
content-length: 45232
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/qsHome.jpg
92.42.110.125200 OK 35 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/qsHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash f4dbe5e0f58442c89ea6e2a24a35154c
2fefb02e6afa44e11bd6338c2df40237e0a5491a
75f568ae74d726b3c18d85f78fd17c0e077c27c68fc0cc103985996c3a34ba49
GET /wp-content/uploads/photo-gallery/qsHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: image/jpeg
last-modified: Sat, 19 Aug 2017 10:40:56 GMT
accept-ranges: bytes
content-length: 34551
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.221.16200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.221.16:0
File type ASCII text, with very long lines (64348)
Hash 3199a043c6e1f3cebc24fd8649209e83
52ab67a063797a77836fc3ff53d143dcbec4e1c9
10cc66b20e34c1b0cf13e97c83c67ba99037460fcd0703b75aae0cddd2c6f68a
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: eiomxJVVpmDDG+t2oyrZdP2A9/hUa2Dz62cW9qtG75nDUr/xIHtVBALfNlC1olJ0REWadUzU6MWY1XxgRw8CAg==
priority: u=3,i
content-length: 27045
x-fb-trip-id: 1679558926
date: Wed, 26 Oct 2022 17:34:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/bbsHome.jpg
92.42.110.125200 OK 80 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/bbsHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash 320b350237ff8de359326619d852ac17
768f352ef58f9d4aa8283e0cd893bed18f370b6d
cf8ff002d0dc615c8e8c2c4614ac442428e0407b5d006c411dc7177f98ef253a
GET /wp-content/uploads/photo-gallery/bbsHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: image/jpeg
last-modified: Sat, 19 Aug 2017 10:40:30 GMT
accept-ranges: bytes
content-length: 80516
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/bimHome.jpg
92.42.110.125200 OK 54 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/bimHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash d1b55265a9c929812723f8ba7c386ec4
6e7c65ef9a961d44dd598caa64c23ba10b67e521
f9e0106f4c433d265f5b88b807c221c6380e85068337e1fb1823c7f4a66aa13e
GET /wp-content/uploads/photo-gallery/bimHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:57 GMT
content-type: image/jpeg
last-modified: Sat, 19 Aug 2017 10:40:54 GMT
accept-ranges: bytes
content-length: 53571
date: Wed, 26 Oct 2022 17:34:57 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7d4b826b3cd4f4fffd35abd60c407bdb
28e5a20b197bf6972fd097c3b302c1dd89b68f09
681fd035abbbf788f315fea7402f5e0d77b51f6167e237ff7516335911499b21
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9ab0372fbd4e9d389119ccc12be968eb
0e48ffd21d7abf1cf59a471feba8da1f26b934fc
090ac22163a5cc5471bd4220bc6ebe686b115c15378c5eb9066f0767066af57d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4157
Cache-Control: max-age=126696
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:57 GMT
Etag: "6358ab6c-1d7"
Expires: Fri, 28 Oct 2022 04:46:33 GMT
Last-Modified: Wed, 26 Oct 2022 03:37:16 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ce5d09bafa968f66bc7828927cb90e05
d6445e57629d1fcb89ac2fefdc5071cf82f71a59
e6b4e02dcd04a13ac1c6ce72819b8f20b1b5555a516151264b9a685532c38632
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/961138791/?random=1666805693788&cv=11&fst=1666803600000&bg=ffffff&guid=ON&async=1>m=2wgaj0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&fmt=3&is_vtc=1&random=2199612589&rmt_tld=1&ipr=y
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/961138791/?random=1666805693788&cv=11&fst=1666803600000&bg=ffffff&guid=ON&async=1>m=2wgaj0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&fmt=3&is_vtc=1&random=2199612589&rmt_tld=1&ipr=y
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/961138791/?random=1666805693788&cv=11&fst=1666803600000&bg=ffffff&guid=ON&async=1>m=2wgaj0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&fmt=3&is_vtc=1&random=2199612589&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 26 Oct 2022 17:34:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US®ion=in&callback=onApiLoad
142.250.74.42200 OK 57 kB URL HTTP/2 maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US®ion=in&callback=onApiLoad
IP 142.250.74.42:0
File type ASCII text, with very long lines (2582)
Hash 9560e725d5613e0dc584f940e38521bd
00f78e0f43c240130e808efc6bb45246863ba980
471eb780ec75ac5db97aa74c68f743128b89295b18fd393250f254b9098237f6
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US®ion=in&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 56904
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=14
date: Wed, 26 Oct 2022 17:30:10 GMT
expires: Wed, 26 Oct 2022 18:00:10 GMT
cache-control: public, max-age=1800
content-type: text/javascript; charset=UTF-8
age: 287
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ce5d09bafa968f66bc7828927cb90e05
d6445e57629d1fcb89ac2fefdc5071cf82f71a59
e6b4e02dcd04a13ac1c6ce72819b8f20b1b5555a516151264b9a685532c38632
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 17:34:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.42200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.42:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 26 Oct 2022 17:34:58 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.google.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52837639-2&cid=1020268030.1666805694&jid=1150380921&gjid=466953139&_gid=1107932818.1666805694&_u=YEBAAEAAAAAAACAAI~&z=832664261
173.194.222.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52837639-2&cid=1020268030.1666805694&jid=1150380921&gjid=466953139&_gid=1107932818.1666805694&_u=YEBAAEAAAAAAACAAI~&z=832664261
IP 173.194.222.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52837639-2&cid=1020268030.1666805694&jid=1150380921&gjid=466953139&_gid=1107932818.1666805694&_u=YEBAAEAAAAAAACAAI~&z=832664261 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.manomav.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 26 Oct 2022 17:34:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1600006463365685&ev=PageView&dl=https%3A%2F%2Fwww.manomav.com%2F&rl=&if=false&ts=1666805694498&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1666805694497.1774043452&it=1666805694299&coo=false&rqm=GET
157.240.221.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1600006463365685&ev=PageView&dl=https%3A%2F%2Fwww.manomav.com%2F&rl=&if=false&ts=1666805694498&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1666805694497.1774043452&it=1666805694299&coo=false&rqm=GET
IP 157.240.221.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1600006463365685&ev=PageView&dl=https%3A%2F%2Fwww.manomav.com%2F&rl=&if=false&ts=1666805694498&sw=1280&sh=1024&v=2.9.88&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1666805694497.1774043452&it=1666805694299&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 26 Oct 2022 17:34:58 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Oct 2022 12:31:58 GMT
expires: Sun, 22 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 363780
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 00:48:31 GMT
expires: Sat, 21 Oct 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 492387
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 25 Oct 2022 17:17:27 GMT
expires: Wed, 25 Oct 2023 17:17:27 GMT
cache-control: public, max-age=31536000
age: 87451
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sumo.com/api/load/
52.34.133.113200 OK 921 B IP 52.34.133.113:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (920), with no line terminators
Hash 62a528f509aaf3347028e43fc545fb22
a83b7b45fcb81f2258553456e7682154fb895e50
83bfaa30aee0d65c0a3e8f9c2e755353be2950f724c48fb4b97e1cbec755f320
POST /api/load/ HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 210
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 17:34:59 GMT
content-type: application/json; charset=utf-8
content-length: 921
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://www.manomav.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
set-cookie: __smSessionId=s%3A86tkhQTUB3CClke0wmQx571T.iMLshuzh%2FjMRE5KvS2j2V6GpHlovicinaTxXhciqFuU; Path=/; Expires=Thu, 27 Oct 2022 02:20:35 GMT; HttpOnly
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
sumo.com/services
52.34.133.113204 No Content 0 B IP 52.34.133.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /services HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-sumo-auth
Referer: https://www.manomav.com/
Origin: https://www.manomav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 26 Oct 2022 17:34:59 GMT
access-control-allow-origin: https://www.manomav.com
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE
access-control-allow-headers: pragma, x-requested-with, accept, x-sumo-auth, x-sumo-token, content-type
access-control-max-age: 2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa5fdec-5335-427d-851c-6c86307c9c24.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa5fdec-5335-427d-851c-6c86307c9c24.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 250f9d4a37cec1e47b62fc5fdb1ee0e1
5fb06917bfb86966f06a981e960ff51df4cc344e
f2972481fbbb03204634e8b817d93f8dfd379033d0a7e20452d7bd4cc3920f99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fa5fdec-5335-427d-851c-6c86307c9c24.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5272
x-amzn-requestid: 321c9e46-69e8-4c04-8dff-229330fb9886
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ackaiGANoAMF1YA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6354e776-0a0e8cb30a7f95105ac6e5be;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 07:04:22 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ujQxv1qlxxYt_giDzIsPT6nW6UUtULuasBhgZLlQfiwz-Bawk-WKbg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 22:48:58 GMT
age: 67561
etag: "5fb06917bfb86966f06a981e960ff51df4cc344e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
sumo.com/services
52.34.133.113200 OK 0 B IP 52.34.133.113:0
POST /services HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Sumo-Auth: 86tkhQTUB3CClke0wmQx571T
Content-Length: 734
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 17:34:59 GMT
content-type: application/json; charset=utf-8
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://www.manomav.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-encoding: gzip
set-cookie: __smSessionId=s%3AVPSJPGLkYNjo9NBVD5ARNUjV.UnLxQTTFpDplfhhe7MQg1J8ioA2boDOJNOuHNf1Z64E; Path=/; Expires=Thu, 27 Oct 2022 02:20:35 GMT; HttpOnly
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
X-Firefox-Spdy: h2
load.sumo.com/7.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/7.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /7.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 17:34:59 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"3fa9c18f727d4b42fb894fda90a374e1"
last-modified: Wed, 05 Oct 2022 16:49:48 GMT
x-amz-id-2: nBEfyPUxSFBL1EVjUfR6exgU9/ttDETAEn00J9+59ErN3Qj1cSEVEWI7AqC5aXBrMuyTKijWajo=
x-amz-request-id: 2EJGVKQN3SSRVTH9
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/19/2022 18:14:52
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: f27ad8aa817c66cfedde3bcbee9d6d97
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/3.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/3.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /3.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 17:35:00 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"2e9797cb3f2d07795148e1bd54b404a0"
last-modified: Mon, 01 Aug 2022 17:36:34 GMT
x-amz-id-2: +ag1oPHCFSzvNrm+C7oVOIGpj9PQ4QHuUOSN7/u+eDHewmcXoYuoFOClihVlNfS2QW4nGCc0JPg=
x-amz-request-id: DN0C9TZFVYJ3ANH7
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/13/2022 17:53:08
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 1058ab62694600d79e84bd2d51dcc3e0
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/64.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/64.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /64.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 17:34:59 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"d200986501135078d1fbd7f480e7bb08"
last-modified: Mon, 01 Aug 2022 17:37:08 GMT
x-amz-id-2: uTd0fGAmQ/qQbQFNMxmbYzUtke4eY1PS5zTkBBciiv0Es0UchPt0PddZ9dyhRU9ZzowZafmJsoY=
x-amz-request-id: V8EXEYCRRPW7PD51
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/09/2022 20:15:03
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 08933f1f43aad17c7b3955994570cd9c
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/1.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/1.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /1.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 17:35:00 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"f9b0aedd5a94b36e30a06214fcc0644f"
last-modified: Wed, 05 Oct 2022 16:48:56 GMT
x-amz-id-2: 2v7NcLoXBJLbkAJ0OLaHu6G6VS0VvgUDfSghuh8SrAzedelE+gfYURjYn/wmEOFHwz72Tts4rcs=
x-amz-request-id: 822JAXT3V1FHXAV9
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/19/2022 18:14:49
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 72d7ffa91a217493709b4f6b16178021
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext
IP 142.250.74.10:0
GET /css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 26 Oct 2022 17:34:57 GMT
date: Wed, 26 Oct 2022 17:34:57 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
load.sumo.com/72.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/72.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /72.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 17:34:57 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"a1c4ecc2ca5bc12d61068cd427f9729f"
last-modified: Mon, 01 Aug 2022 17:37:14 GMT
x-amz-id-2: yncNVLF2WNTvfJNP5kgASaiZWLNa84vsckpGLCsBd0rTvIK+s4Z1y1Nb+RCG+2BivC/7SoYE1tk=
x-amz-request-id: ARECMNYEHV1MDN3P
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/09/2022 20:15:00
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 36144d4391a6ee8ce3685f8b7a489215
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/2.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/2.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /2.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 17:34:59 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"6bfdf1ae8492f107706ac037915be663"
last-modified: Wed, 25 May 2022 21:04:43 GMT
x-amz-id-2: 6PNzoY2bwq8TRd6kG87xsdwwZVMkvJf0/efDm8ajElAv34gPJUvYgkBjwDQSvVR2KKmGNxwg/Gk=
x-amz-request-id: 4NT63S72ZR8KN5DF
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/16/2022 07:42:52
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 1825f29bcbb5effdc6c2ddcae00febf4
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/15.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/15.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /15.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 17:35:00 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"6e9c6264954bf1f04a63db8a9fd0f653"
last-modified: Mon, 01 Aug 2022 17:36:20 GMT
x-amz-id-2: NHV5nlq+mDq2N08HvurKnzVQnKPySSwxEWj2WYoaW/C+P7eJg+68ngWotd3+C7uSI3uDKN8MRL0=
x-amz-request-id: MGA3NT1S3CPH1HS6
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/03/2022 12:08:08
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 32191b55c3418b68545cb0f34532b7de
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/grid.css
92.42.110.125200 OK 0 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/grid.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
GET /wp-content/themes/manomav/css/grid.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1329
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
load.sumo.com/10.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/10.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /10.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 17:34:59 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"fc263e7087822a0b00ff93677d6df4ea"
last-modified: Mon, 01 Aug 2022 17:36:09 GMT
x-amz-id-2: 2kF2L6GATDS/sHhd4gngOW1Rx7Yq2vmR0s/p/GkToAVBNdoukWzSUGmtutFH9geKnl8Ggp42Yps=
x-amz-request-id: Z6QZPQPN1V71YR3C
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/03/2022 12:08:26
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: b62e35b79f6da25dac40d0f74935b31a
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/23.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/23.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /23.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 17:34:59 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"be0b945be6cafa91f6fd4efdfc8268f8"
last-modified: Wed, 05 Oct 2022 16:49:12 GMT
x-amz-id-2: kzZOvZ7r3f5hxYpzDjVBqunvOP8OFAULDbq07PoafYkhGIr2taO/vwFa9AaMgx3w7eyMD/WRuiw=
x-amz-request-id: 36M7696Q6NK0AQ14
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/19/2022 18:14:50
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 194e6858cef8e589056ae5b466df4701
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/22.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/22.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /22.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 17:34:59 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"8af82c4c30a069f66de02526c2f332af"
last-modified: Wed, 05 Oct 2022 16:49:12 GMT
x-amz-id-2: 3KriydKg9JxnQcFGkvxRzLpJziV3G327lxh6pXvknur7zypoUeZTpBNO3Yd81QL4B5UQozJx69c=
x-amz-request-id: 822MNF7GN891CDYW
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/19/2022 18:14:49
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 1603ba56856e01628417f4605aea4c1e
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/21.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/21.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /21.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 17:34:59 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"beda094dfc3b530efd0d2d83c5a0280c"
last-modified: Thu, 28 Jul 2022 18:31:17 GMT
x-amz-id-2: CzydRzq5oDc790yclkehRSY/N4HbM9hWKTus/bfXU8tfT7c8w5WJiAtBJReHCyxz/8iaHbXHhh8=
x-amz-request-id: EGJRDEFA51GD0GY6
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/31/2022 19:36:57
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: dd8aecb92ba7a86229b84334d0a019f2
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/11.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/11.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /11.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 17:35:00 GMT
content-type: text/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"4624ceb9029a934a36424d836cf4cc37"
last-modified: Mon, 01 Aug 2022 17:36:16 GMT
x-amz-id-2: CcmL6MncxIAyT0N/YitjMpmZg7j5aaXl2gp/qA9kiMdUqmbflyP98FSkIMY7aWIHllWpKWIbCVA=
x-amz-request-id: 7009GYMXNRGD2HNX
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/03/2022 12:08:27
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 35c7f3e674f958059649be42cb7c1a3c
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.manomav.com/
92.42.110.125200 OK 0 B IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://www.manomav.com/wp-json/>; rel="https://api.w.org/", <https://www.manomav.com/wp-json/wp/v2/pages/27>; rel="alternate"; type="application/json", <https://www.manomav.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Wed, 26 Oct 2022 17:34:56 GMT
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5
92.42.110.125200 OK 0 B URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
GET /wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 02 Nov 2022 17:34:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12358
date: Wed, 26 Oct 2022 17:34:56 GMT
X-Firefox-Spdy: h2
load.sumo.com/
194.242.11.186200 OK 0 B IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET / HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 17:34:57 GMT
content-type: text/javascript
vary: Accept-Encoding
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=600
etag: W/"415c9608bc47ee8a16b3a2f2c0aee7b0"
last-modified: Wed, 05 Oct 2022 16:50:13 GMT
x-amz-id-2: DgzLsuMDbBY9U1KFeS4wwMaKKkummEDpz2A9t4KwSxPFovXnOjzB0vUl/7XzQv/8j6XkkbsnYzE=
x-amz-request-id: KDE2BEBCWW52FT42
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/19/2022 18:14:45
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 9073d0398cd72c18252445b0dddce9e5
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2