cafe-bg.com/espresso-coffee-machine.html
200 OK 3.6 kB URL HTTP/1.1 cafe-bg.com/espresso-coffee-machine.html
IP
ASN #197216 Delta HighTech Ltd.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 7827f4cefdff9aa500d5a1bee447d855
7efc7d6710e7dedf992c2d4a8724c0395d59e1d7
9a5ac74abb93878dca7b76cf55e5f29532f9626ee105e193c5836911f4392b02
Analyzer Verdict Alert fortinet Malware
GET /espresso-coffee-machine.html HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
last-modified: Mon, 12 Oct 2020 10:42:04 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3574
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4418
Expires: Thu, 22 Sep 2022 05:08:00 GMT
Date: Thu, 22 Sep 2022 03:54:22 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 22 Sep 2022 03:13:54 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _PGEx8Rg03wggR6VhlKAVSeNHyIyfGW2oLDLhJEOshPiPk3n4mqTXg==
Age: 2428
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash afb65a07bf7214addf83d17a53acba32
a8e973204431320aa7b362a4e73944520c4b51b9
46e1a9e6c98245afb7fa84bc6d9ba6844105024e2d3f56e28748e6c321475d02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46E1A9E6C98245AFB7FA84BC6D9BA6844105024E2D3F56E28748E6C321475D02"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17423
Expires: Thu, 22 Sep 2022 08:44:45 GMT
Date: Thu, 22 Sep 2022 03:54:22 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kjyMf8Y8ws/a90zojjmAhlK7P+H5s8CXf26gPAQhf2WgZukNn35EWCiGYd3N8+R0s5wf+xqruXY=
x-amz-request-id: ZTGQ9N8CW0Z0Q0DM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 22 Sep 2022 03:46:05 GMT
age: 497
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto+Condensed:400,300
200 OK 620 B URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto+Condensed:400,300
IP
Hash 128dc7524978acd6a42e09d85d7a106d
c7ef06f1710b898205c3b16defcf883106a28bc7
7e997dda62819188a6b39db24b1f757d1f247ce8d88bf545222f6c4cf841aeff
GET /css?family=Roboto+Condensed:400,300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 22 Sep 2022 03:54:22 GMT
Date: Thu, 22 Sep 2022 03:54:22 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 03:54:22 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cafe-bg.com/assets/css/animate.css
200 OK 3.8 kB URL HTTP/1.1 cafe-bg.com/assets/css/animate.css
IP
ASN #197216 Delta HighTech Ltd.
File type ASCII text, with CRLF line terminators
Hash 8f7084232734be305095cbd2ece2f856
9905c5eb35bd5dc3755806214a3d309a8dac22dc
d67ec8643e3d77fd9bb6631b14b9f4f0c34c9f5de4e038f81fadfec203a4db7f
GET /assets/css/animate.css HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: text/css
last-modified: Tue, 03 Oct 2017 21:00:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3776
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/css/bootstrap.css
200 OK 18 kB URL HTTP/1.1 cafe-bg.com/assets/css/bootstrap.css
IP
ASN #197216 Delta HighTech Ltd.
File type assembler source, ASCII text, with very long lines (540), with CRLF line terminators
Hash 6dd2fa05e19083f435ef16938d63489f
bcfd110744422f6ba76fcbcb75db42582c24e7e8
056ba79fc33e5d8a68f39ee44eee7a954bb41310b40dab686320289c9ff45617
GET /assets/css/bootstrap.css HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: text/css
last-modified: Tue, 03 Oct 2017 21:00:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 18512
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/css/font-awesome.css
200 OK 5.0 kB URL HTTP/1.1 cafe-bg.com/assets/css/font-awesome.css
IP
ASN #197216 Delta HighTech Ltd.
File type ASCII text, with very long lines (20773)
Hash 937d9f777db6df597ce72d0704526f33
3fcde5ed132e6b14fee0e83ae755067c4894bedd
702719ab1a96749cac3582e07034eb4a15367f8ba6125a6fe9066381fdc63e50
GET /assets/css/font-awesome.css HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: text/css
last-modified: Wed, 04 Oct 2017 21:00:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5021
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/css/nexus.css
200 OK 11 kB URL HTTP/1.1 cafe-bg.com/assets/css/nexus.css
IP
ASN #197216 Delta HighTech Ltd.
Hash cddcc0932d9e07c5ef3ea78ac263fc75
4621c668dce34e2d49c9a5532b38725e7445075c
1db9f95a5b003b93135c3b987c8291e2b22871236b61034d06e71ba567a1fab1
GET /assets/css/nexus.css HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: text/css
last-modified: Tue, 03 Oct 2017 21:00:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 10660
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/js/scripts.js
200 OK 592 B URL HTTP/1.1 cafe-bg.com/assets/js/scripts.js
IP
ASN #197216 Delta HighTech Ltd.
File type ASCII text, with very long lines (1652), with no line terminators
Hash 0a80ca4ff126db48626089a9078a550e
96beee0ec94478767769f115de9c5f6232f9815e
77c29c438fe471578c43902a5fdce232d633c9e6440dfa3bab07da3eb0eef196
Analyzer Verdict Alert fortinet Malware
GET /assets/js/scripts.js HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: application/javascript
last-modified: Wed, 04 Oct 2017 21:00:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 592
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/js/bootstrap.min.js
200 OK 8.6 kB URL HTTP/1.1 cafe-bg.com/assets/js/bootstrap.min.js
IP
ASN #197216 Delta HighTech Ltd.
File type ASCII text, with very long lines (31650), with CRLF line terminators
Hash 6f317a665e76bee3068bf4e5d1132417
8d9d8297b1ad374ae46b3ae53485b4e3cab15389
5c9dbb39ea1b260c7c41e75f4fdffe07396c12dd35ee277f1faa12a94a6791f9
Analyzer Verdict Alert fortinet Malware
GET /assets/js/bootstrap.min.js HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: application/javascript
last-modified: Tue, 03 Oct 2017 21:00:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 8558
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/js/jquery.slicknav.js
200 OK 2.1 kB URL HTTP/1.1 cafe-bg.com/assets/js/jquery.slicknav.js
IP
ASN #197216 Delta HighTech Ltd.
File type ASCII text, with very long lines (6266)
Hash 54e22f8875ea002f6606b65d5ff41f75
18b0ec5a74486fd8352be37e98625c703b37fc67
0ef35f4588e8d59cc46b271fb5862bf488915fbae1c2a9b78239b5da6ad1792e
Analyzer Verdict Alert fortinet Malware
GET /assets/js/jquery.slicknav.js HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: application/javascript
last-modified: Wed, 04 Oct 2017 21:00:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2130
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/js/jquery.visible.js
200 OK 578 B URL HTTP/1.1 cafe-bg.com/assets/js/jquery.visible.js
IP
ASN #197216 Delta HighTech Ltd.
File type ASCII text, with very long lines (1232), with no line terminators
Hash 559b654e5aee2782f123f2a47efc1f50
c6a944e643ef1a31ad127682091c201065a3bc7c
b9714bd56c2f756ede14b86ca7dfc336b048dd625dea7a28c019eb75f0090f49
Analyzer Verdict Alert fortinet Malware
GET /assets/js/jquery.visible.js HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: application/javascript
last-modified: Wed, 04 Oct 2017 21:00:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 578
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/js/jquery.sticky.js
200 OK 868 B URL HTTP/1.1 cafe-bg.com/assets/js/jquery.sticky.js
IP
ASN #197216 Delta HighTech Ltd.
File type ASCII text, with very long lines (1940), with no line terminators
Hash f52c0b15a05434e8a5d24c38384ec3ab
44d960cac3fa692ce795688331c8b3ad015792ce
6bbf7520b6be9c71a4962d74396cc14bcdb194d9fabad8ee0b15c27fd28d49bd
Analyzer Verdict Alert fortinet Malware
GET /assets/js/jquery.sticky.js HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: application/javascript
last-modified: Wed, 04 Oct 2017 21:00:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 868
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/js/slimbox2.js
200 OK 2.0 kB URL HTTP/1.1 cafe-bg.com/assets/js/slimbox2.js
IP
ASN #197216 Delta HighTech Ltd.
File type ASCII text, with very long lines (3624), with CRLF line terminators
Hash e9d6ca9de1ebee011203676709457503
2d8314477bbd9c1231cee2c5a70b2cc282658434
30ed8b23b7fcc003e56565a6825f1f4aa86e00c9538b44dc130d22b0fcbc908b
Analyzer Verdict Alert fortinet Malware
GET /assets/js/slimbox2.js HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: application/javascript
last-modified: Tue, 03 Oct 2017 21:00:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2038
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/js/jquery.min.js
200 OK 30 kB URL HTTP/1.1 cafe-bg.com/assets/js/jquery.min.js
IP
ASN #197216 Delta HighTech Ltd.
File type ASCII text, with very long lines (32061)
Hash 20c376334e519038396cf7050b7df703
8b4f4e84f66c657e71c212b29f32d2e11a4c3583
0950b29f7c267551a6e11e729dc5e4c0f7d416a41f6bbd22f704bfe721010448
Analyzer Verdict Alert fortinet Malware
GET /assets/js/jquery.min.js HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: application/javascript
last-modified: Tue, 03 Oct 2017 21:00:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 29643
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/js/jquery.isotope.js
200 OK 27 kB URL HTTP/1.1 cafe-bg.com/assets/js/jquery.isotope.js
IP
ASN #197216 Delta HighTech Ltd.
File type ASCII text, with CRLF line terminators
Hash 7e462d57e1cd34d420e8225c6911620b
c3b03c1a636da8247a2385b46db5a7e9aafffea9
54145a7d8255ea0c6e9173693012ef51b2cca1ce204329a36c1834e00775ad86
Analyzer Verdict Alert fortinet Malware
GET /assets/js/jquery.isotope.js HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: application/javascript
last-modified: Tue, 03 Oct 2017 21:00:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 26618
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/js/modernizr.custom.js
200 OK 4.0 kB URL HTTP/1.1 cafe-bg.com/assets/js/modernizr.custom.js
IP
ASN #197216 Delta HighTech Ltd.
File type HTML document text\012- HTML document, ASCII text, with very long lines (8854), with CRLF line terminators
Hash f35a6ce2b9972df20ca23907f057b9dd
9d7561235b6887da1f28cadb62e736b07f92332e
4ae09c7fd866339d8d265ea24d01b45fe65f49d7a360fb2876e7f37bded7110d
Analyzer Verdict Alert fortinet Malware
GET /assets/js/modernizr.custom.js HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: application/javascript
last-modified: Tue, 03 Oct 2017 21:00:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4011
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/css/responsive.css
200 OK 391 B URL HTTP/1.1 cafe-bg.com/assets/css/responsive.css
IP
ASN #197216 Delta HighTech Ltd.
File type ASCII text, with CRLF line terminators
Hash 883fea4e993cf6e0be52ffe900451b53
a4b09b6904a14b620f934001a0e2c4da540bd3b7
4daa0645d84840831a31dacdfca02aa73887684c2aa3e6888ebf083b8471b3ac
GET /assets/css/responsive.css HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: text/css
last-modified: Tue, 03 Oct 2017 21:00:00 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 391
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/img/espresso-coffee-machine.jpg
200 OK 23 kB URL HTTP/1.1 cafe-bg.com/assets/img/espresso-coffee-machine.jpg
IP
ASN #197216 Delta HighTech Ltd.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x384, components 3\012- data
Hash bd651c29e5d92c0b233e120321cec207
80d2499ec92ac40c4ac72f880ff56113996472bf
d010a716aa46b2d82ac6fc5be98224df18905c00aaef00f2aa673a6306b59365
GET /assets/img/espresso-coffee-machine.jpg HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: image/jpeg
last-modified: Mon, 02 Oct 2017 21:00:00 GMT
accept-ranges: bytes
content-length: 22689
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19a7DRs5.woff2
200 OK 9.7 kB URL HTTP/1.1 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19a7DRs5.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 9692, version 1.0\012- data
Hash d572b531f0823555818998b466028e08
788073fb7656c7b44a3d67468fc355ceb618290e
bddd7c9debeee9bccc8d6a0f0990743d3db200fe23fc08dbad9e60a007e52919
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19a7DRs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cafe-bg.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 9692
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 21 Sep 2022 02:44:55 GMT
Expires: Thu, 21 Sep 2023 02:44:55 GMT
Cache-Control: public, max-age=31536000
Age: 90567
Last-Modified: Tue, 19 Apr 2022 18:44:23 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data
Hash 3d7f7413fca69bff4d231ebdc50aaab0
cb18e7943b6a8a0e3672d7242197c19a226b92e8
6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cafe-bg.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15700
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 21 Sep 2022 02:37:40 GMT
Expires: Thu, 21 Sep 2023 02:37:40 GMT
Cache-Control: public, max-age=31536000
Age: 91002
Last-Modified: Tue, 19 Apr 2022 18:51:55 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2
200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15528, version 1.0\012- data
Hash 595fe3fc0b85f3cc9ef5aed2d519abc5
96e76de44987e9dec2f97f1e5eb7a18c738daf5d
747d5a0865fe76129cc17fe70097fd5b1db733ed3bbfa0210a8505d80c14ab5a
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cafe-bg.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15528
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 15 Sep 2022 06:57:01 GMT
Expires: Fri, 15 Sep 2023 06:57:01 GMT
Cache-Control: public, max-age=31536000
Age: 593841
Last-Modified: Tue, 19 Apr 2022 18:53:07 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCAYb8td.woff2
200 OK 9.3 kB URL HTTP/1.1 fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCAYb8td.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 9260, version 1.0\012- data
Hash 17717cb6e8d511e88ba2826efcf952ea
2eeb9d1caf13924064cad128af9ef4ffd1145fc4
6618b9e896668a4f31412b7be6751c198a88b157fc056d4932e41e7f6d38acf6
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCAYb8td.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cafe-bg.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 9260
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 22 Sep 2022 02:12:42 GMT
Expires: Fri, 22 Sep 2023 02:12:42 GMT
Cache-Control: public, max-age=31536000
Age: 6100
Last-Modified: Tue, 19 Apr 2022 19:19:26 GMT
Content-Type: font/woff2
cafe-bg.com/assets/img/social_icons/facebook.png
200 OK 460 B URL HTTP/1.1 cafe-bg.com/assets/img/social_icons/facebook.png
IP
ASN #197216 Delta HighTech Ltd.
File type PNG image data, 40 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash cb1d015077db8c41bbe62161bb76c346
46298e28e87f39599220e2a4c3cc03792ba4568d
333ab52c5f62cabfe1144a4f07af117f0f40941cce7162f41eab4ad968c64f69
GET /assets/img/social_icons/facebook.png HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/assets/css/nexus.css
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: image/png
last-modified: Wed, 20 Sep 2017 21:00:00 GMT
accept-ranges: bytes
content-length: 460
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/img/social_icons/rss.png
200 OK 3.6 kB URL HTTP/1.1 cafe-bg.com/assets/img/social_icons/rss.png
IP
ASN #197216 Delta HighTech Ltd.
File type PNG image data, 40 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 0ecdbcd5b1fde4102db14543d2f0fbe0
0c75347e643be66e214d7f1659de3f5633fa08b0
464b61ee380d00515842a7444ce1db2c42a21210cef7e6aa7ae200d146be307d
GET /assets/img/social_icons/rss.png HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/assets/css/nexus.css
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: image/png
last-modified: Wed, 20 Sep 2017 21:00:00 GMT
accept-ranges: bytes
content-length: 3569
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/img/menu_arrow.png
200 OK 237 B URL HTTP/1.1 cafe-bg.com/assets/img/menu_arrow.png
IP
ASN #197216 Delta HighTech Ltd.
File type PNG image data, 14 x 10, 8-bit/color RGBA, non-interlaced\012- data
Hash 667602237332feb52f51174b36bdcdbd
70be5535e5b1d64a81de1ffb39d630020edc6009
b39d2f96994c0939bed58ce7cd2a319a8f0c39defc04159c7bda7f3401028857
GET /assets/img/menu_arrow.png HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/assets/css/nexus.css
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: image/png
last-modified: Wed, 20 Sep 2017 21:00:00 GMT
accept-ranges: bytes
content-length: 237
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/assets/img/hr.png
200 OK 3.3 kB URL HTTP/1.1 cafe-bg.com/assets/img/hr.png
IP
ASN #197216 Delta HighTech Ltd.
File type PNG image data, 682 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash 2546593f209f5258a0f162203b2020a3
703aed642f128ddf2c3cbb571a76eb3dcb045825
e97b6aac133844396ad1565bc3f5b308f3d73d073aa46734c56b2af604fab4bc
GET /assets/img/hr.png HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/assets/css/nexus.css
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: image/png
last-modified: Wed, 11 Oct 2017 21:00:00 GMT
accept-ranges: bytes
content-length: 3332
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 22 Sep 2022 03:30:29 GMT
Cache-Control: max-age=3600
Expires: Thu, 22 Sep 2022 04:02:24 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: K5J11pg6dvGHyutC8BD8661aPyfQklpFktqXtPTA67sQfFB2k0oT0w==
Age: 3060
cafe-bg.com/assets/fonts/fontawesome-webfont.woff?v=4.2.0
200 OK 84 kB URL HTTP/1.1 cafe-bg.com/assets/fonts/fontawesome-webfont.woff?v=4.2.0
IP
ASN #197216 Delta HighTech Ltd.
File type Web Open Font Format, TrueType, length 83760, version 1.0\012- data
Hash fdf491ce5ff5b2da02708cd0e9864719
7f2f3c55c2de192387c351b995115f6b79e09173
66db52b456efe7e29cec11fa09421d03cb09e37ed1b567307ec0444fd605ce31
Analyzer Verdict Alert fortinet Malware
GET /assets/fonts/fontawesome-webfont.woff?v=4.2.0 HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://cafe-bg.com/assets/css/font-awesome.css
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: font/woff
last-modified: Wed, 20 Sep 2017 21:00:00 GMT
accept-ranges: bytes
content-length: 83760
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/apple-touch-icon.png
200 OK 8.3 kB URL HTTP/1.1 cafe-bg.com/apple-touch-icon.png
IP
ASN #197216 Delta HighTech Ltd.
File type PNG image data, 180 x 180, 8-bit/color RGB, non-interlaced\012- data
Hash 24c7d5934e719b87c0771784a405a2c7
d71ae6636bffb681d31e0001fd56d5e3742d00ef
e14dc0beb6208207698acc39e653c84c8bcbec82eaa9015bae48ae005ee4bdd6
GET /apple-touch-icon.png HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: image/png
last-modified: Fri, 06 Oct 2017 07:25:06 GMT
accept-ranges: bytes
content-length: 8262
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
cafe-bg.com/favicon-16x16.png
200 OK 1.1 kB URL HTTP/1.1 cafe-bg.com/favicon-16x16.png
IP
ASN #197216 Delta HighTech Ltd.
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 0e82230c1885adb0346e66af4865f593
9b1796f413f9fc2f10c1ae9a0c884e423aef97b3
0f3ef961a80426a239af61818ee54346f6e18404000760c859790d5407577dc1
GET /favicon-16x16.png HTTP/1.1
Host: cafe-bg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cafe-bg.com/espresso-coffee-machine.html
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Fri, 22 Sep 2023 03:54:22 GMT
content-type: image/png
last-modified: Fri, 06 Oct 2017 07:25:06 GMT
accept-ranges: bytes
content-length: 1100
date: Thu, 22 Sep 2022 03:54:22 GMT
server: LiteSpeed
ocsp.digicert.com/
200 OK 471 B IP
Hash ff6d50919e56aed75c47feb45ee2f2ec
98f558a4b2d4f3c271abc93d0b74ece4ad7a59ef
b1b6f0e78b5a1e2092cba6d71d0d5a918066c0486176cef0a19f51e2d5a9962e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6337
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 03:54:23 GMT
Last-Modified: Thu, 22 Sep 2022 02:08:46 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: p9ZU9kqoHEVae9r0l6hhJw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JSFEZRb2IAIq9P2DNdWxfZC7VdY=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7682
Expires: Thu, 22 Sep 2022 06:02:26 GMT
Date: Thu, 22 Sep 2022 03:54:24 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7682
Expires: Thu, 22 Sep 2022 06:02:26 GMT
Date: Thu, 22 Sep 2022 03:54:24 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7682
Expires: Thu, 22 Sep 2022 06:02:26 GMT
Date: Thu, 22 Sep 2022 03:54:24 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7682
Expires: Thu, 22 Sep 2022 06:02:26 GMT
Date: Thu, 22 Sep 2022 03:54:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62818de3c50f957b2e5680851a1768c9
80e48c9ae48c89598780736b089c98e22d58df9a
16f2c2d23e8641a3f297a175730343d11120a228c0fe846c0fdf1e39212c522c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8549
x-amzn-requestid: 6d44626b-16c6-4f19-ae52-d5350065b390
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwPHJJoAMFdfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84ce-46ebc35612eb7a4473b36189;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: e5m6NaDUH_3GPDkxbk6iKhffSJzyYMA97Illy7mtg9um3jcYBR6TXQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:11:23 GMT
etag: "80e48c9ae48c89598780736b089c98e22d58df9a"
content-type: image/jpeg
age: 20581
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9becda6e892a190dbbc63216ae697506
ba3369e1827d8f01ca10acb8648195847dd02ffd
d71dd28e0ff260326ba0c30748fa11160f4544c2a264d3a3dc361af0de9fd283
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11286
x-amzn-requestid: 7263b60d-fffe-4c0b-8de5-59dc9ac92a47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwZHOaIAMFSQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84cf-62e160b156b587cc21c7fda5;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: QxgrVMX7xwI6qE3T3-LRS3JWoJauPyvCSb9TacW9-ktw-BIq5PSF-g==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:16:03 GMT
etag: "ba3369e1827d8f01ca10acb8648195847dd02ffd"
content-type: image/jpeg
age: 20301
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b308c1c-61ac-4185-bb59-ab0cf1f2b8fc.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b308c1c-61ac-4185-bb59-ab0cf1f2b8fc.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ce3e9d330cc9b9c84fb7846bf0d8c7a0
134720f07ffdbef5ff551bdb3c3743c806d1512d
0724f7ca2de62c8086e80b527aec78de6b63996107b32c7e9990bd472e64a347
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b308c1c-61ac-4185-bb59-ab0cf1f2b8fc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9233
x-amzn-requestid: f90a9ed8-b4e7-4786-887a-90f24cc4f432
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1HZSG1IoAMFwxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b85d4-7a75336f316aa6450e3369b4;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:44:52 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PEhEMNxyamS4_x8DPhIeX2bEkaVWzS4foO7vPQX8KgWpm1KjsSvRxQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:14:27 GMT
age: 20397
etag: "134720f07ffdbef5ff551bdb3c3743c806d1512d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17a25218-4228-4cd1-8d35-a4a3f83296c8.jpeg
200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17a25218-4228-4cd1-8d35-a4a3f83296c8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 233816c447da50c62180800f65f5fe2f
78db85f54d3e4030f620f259f173ddb1438948fa
94cbbb0fe3d4edab6d96af2f4857eb1ad018a0e8c21fd8bbeacc4a383e99d859
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17a25218-4228-4cd1-8d35-a4a3f83296c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8449
x-amzn-requestid: 5b83b63b-07cc-459d-a31e-25dce2e250ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YzG34H01oAMF73g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ab832-03dc7ef72e1ef72f371716a9;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 07:07:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: I_Ohu8tmnISFj4rsHgGXPk_dw1nkeHsmP0hPMxeDlD3kFuVGCoE1qA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 07:22:35 GMT
age: 73909
etag: "78db85f54d3e4030f620f259f173ddb1438948fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e97d5f4-5913-4d42-9262-d48dbaa75ce4.png
200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e97d5f4-5913-4d42-9262-d48dbaa75ce4.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6a53e8b5e08445eee37e32441ff36e8
18eef7891438a6e616d34d068d1a26d2419d58f0
720fd7a7f7e7ef5660f3a230d82f001c7c65213c13775c8ad9d0ca2f2f2ba5f7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e97d5f4-5913-4d42-9262-d48dbaa75ce4.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7306
x-amzn-requestid: ec5a2302-7a8e-456e-bb88-e2f1ac8f9e7e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vEx4IAMFsCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-02b759474c454061018f0878;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uxBwqgB46NG8Ed2u3phdj0xvs4baDHqwOUD6IGvdXKIY90lLuXpx4w==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:22 GMT
age: 22802
etag: "18eef7891438a6e616d34d068d1a26d2419d58f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a504981ee10d8341b64f19001464ae8a
56f228d7358ba9deef000f53214dc7c1dc358109
0ea3b6ed12f3adf9d56e7d9b61f284d28107d99f28ee4e66b4c078a9a1a0cbee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8861
x-amzn-requestid: 873e88ab-7afc-4b14-b428-d90ec2079741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO2wuE0AoAMF7Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3804-0d25ab397a16c78907914e23;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:08:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UStTyIXPucbY9WmDl3W5bTyeT-2SJ5CTUjv8TLeexqZtKd1p2sJrNA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 03:11:18 GMT
age: 2586
etag: "56f228d7358ba9deef000f53214dc7c1dc358109"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
79.98.104.3
34.120.237.76
23.36.77.32
93.184.220.29