www.brasslineindia.com/
301 Moved Permanently 327 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 44740171666d98d449784edf83e49511
4736cb781d7d2913fb09fb71af2cb34ddcc06994
8e516540345de616442820d9832d7024b5fd7a22c0406d032642079e92d7fe0e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 18 Nov 2022 05:29:01 GMT
Server: Apache/2.4.29 (Ubuntu)
Location: https://www.brasslineindia.com/
Content-Length: 327
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d27590a1d3cbe1e9632b8ae92aaae3f4
202b34e8a0c3b88c8826fd56c6227b34f2cd6f46
6bcfa518476658128c1fb4ea2435c4e58531454cf97138dce7ece9def589aead
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BCFA518476658128C1FB4EA2435C4E58531454CF97138DCE7ECE9DEF589AEAD"
Last-Modified: Wed, 16 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2846
Expires: Fri, 18 Nov 2022 06:16:27 GMT
Date: Fri, 18 Nov 2022 05:29:01 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash be1be806b5dca7facbb45a6c3db44652
7ae9380a2f3eca959fe6ff6b3832a17cffd12cf4
1f3338058f8e9cae5c9fdd733c74564312726b01c6efdcd628d851d0c99876b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3587
Cache-Control: max-age=108129
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:29:01 GMT
Etag: "63760d7b-1d7"
Expires: Sat, 19 Nov 2022 11:31:10 GMT
Last-Modified: Thu, 17 Nov 2022 10:31:23 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2480
Expires: Fri, 18 Nov 2022 06:10:21 GMT
Date: Fri, 18 Nov 2022 05:29:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 04:45:00 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2641
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xitXkir93/kzOelClol3yAinzE/DdHIqA3Vbiy5zCnmGT80aYSSASLUOgfzLnMuGsg+TPqo3958=
x-amz-request-id: 1V54YY10Z9VBFNDM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 05:15:28 GMT
age: 813
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 05:29:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 05:25:01 GMT
cache-control: public,max-age=3600
age: 240
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3f1583ea885b7d6bacca8c3370da4f18
7705ead4a6c2a5d7510507d2fbc975c91f60d3e4
48921c07ea0050a2dcb738696873a9d87a313c4b0fbbbafa313d8faa86473536
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48921C07EA0050A2DCB738696873A9D87A313C4B0FBBBAFA313D8FAA86473536"
Last-Modified: Fri, 18 Nov 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 18 Nov 2022 11:29:01 GMT
Date: Fri, 18 Nov 2022 05:29:01 GMT
Connection: keep-alive
www.brasslineindia.com/
302 Found 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Date: Fri, 18 Nov 2022 05:29:01 GMT
Server: Apache/2.4.29 (Ubuntu)
Location: index/
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:01 GMT
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
200 OK 471 B IP
Hash c10055ce87434f700ff8b20e3be1f919
477b3c9f1da0c464282bb54572737e76b6e346da
4d78eb296876122e5ff40fcd7667adf1bf8a4b1ee4c8203c88a63ce8d7910a57
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6314
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:29:02 GMT
Last-Modified: Fri, 18 Nov 2022 03:43:48 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
www.brasslineindia.com/index/
200 OK 5.4 kB URL HTTP/1.1 www.brasslineindia.com/index/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash fc6a0d4a0c13884b21b64baab4fa5f08
5d7cb0edcd39f79954052c32e0660fb088a9b08d
c2b1d14e6f5837659c506ac4fbafc6d36be37ae518dc1a2bb1f92d76a0e90b4f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /index/ HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:02 GMT
Server: Apache/2.4.29 (Ubuntu)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; path=/; HttpOnly
_csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D; path=/; HttpOnly
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5393
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js
200 OK 4.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/modernizr/2.8.3/modernizr.min.js
IP
File type HTML document, ASCII text, with very long lines (11084), with no line terminators
Hash a5775b673c18ffa903cd1a6129ce5f87
ee2569b285a7dbc4ccc95b01a16f06943fade768
ab8ad2f07d5214be2ade4edcd295d5fb8f8aa60971b3ec1348063a8a19659fc9
GET /ajax/libs/modernizr/2.8.3/modernizr.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 05:29:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 3980
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f26-2b4c"
last-modified: Mon, 04 May 2020 16:13:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 210696
expires: Wed, 08 Nov 2023 05:29:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YkQ55Ds5ZMMFCmiw6pr0Iye%2B%2B448ef6izNfrVTRpYX4rIkA3o6KbvYT1dYSw9oO9lWMxTjLCaGFOqj4xTagStd%2B5zTpeo2X0b%2FheMKU6njCvSEQ2frLNOdQyugeDGLfMz6B3r9K2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76be4e5d59b20b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.brasslineindia.com/css/style.css
200 OK 7.9 kB URL HTTP/1.1 www.brasslineindia.com/css/style.css
IP
Hash 2c5ba635e78d4f5b98ddca6e11b49b45
7aeacfe39ca33b9544f6853f9d74655e0665280c
0faa10755b157781c63f1e8a4dccf9f2f1ce15b471883494a4cb4c64d0abca58
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/style.css HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/index/
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:02 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Sat, 24 Aug 2019 07:01:51 GMT
ETag: "b486-590d77f42b5c0;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7868
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PBV2ayU8UITDLd2N6jFNkg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9xqzoHhztsbk/Uy9UPBd4IFexSw=
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:29:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.brasslineindia.com/assets/b8178462/yii.js
200 OK 5.8 kB URL HTTP/1.1 www.brasslineindia.com/assets/b8178462/yii.js
IP
Hash 66910c82267b8028dd1e6845ace12e20
21037cbc560eab71cc4e9e1339aa6b18a07e6a24
b2469ecf390168e1f4b53af5d8435fe8c51f939a333523fe19b455e84a3efde2
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /assets/b8178462/yii.js HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/index/
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:02 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 19 Sep 2022 14:53:29 GMT
ETag: "51af-5e908dfeeb594;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5802
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:29:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.brasslineindia.com/js/imagesloaded.pkgd.min.js
200 OK 1.7 kB URL HTTP/1.1 www.brasslineindia.com/js/imagesloaded.pkgd.min.js
IP
File type ASCII text, with very long lines (5290)
Hash 30af7a2291505d9d8ace5d09659e2117
70e210b3ea4486c9053fca591b6e7deb1dd31396
b225e66da22444d9610b90f0768b102d6d8c3f9d12f9e784750b36ab3384c624
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/imagesloaded.pkgd.min.js HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/index/
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:02 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:11:28 GMT
ETag: "151f-58e6804926800;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1747
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.brasslineindia.com/js/slick.min.js
200 OK 10 kB URL HTTP/1.1 www.brasslineindia.com/js/slick.min.js
IP
File type ASCII text, with very long lines (42862)
Hash a200e519b47aabb15179d3d44b42a20d
40f67edd6550052b130507ed1a56650c6bdb798f
ea316b7198f70a2c53e9f534e6c2b9f6e570e4a7369d5c0508cd38de275717db
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/slick.min.js HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/index/
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:02 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:11:32 GMT
ETag: "a76f-58e6804cf7100;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10442
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
brasslineindia.com/backend/web/uploads/bannersmallimg/banner03-small-img_1566194446.png
200 OK 35 kB URL HTTP/1.1 brasslineindia.com/backend/web/uploads/bannersmallimg/banner03-small-img_1566194446.png
IP
File type PNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data
Hash 4715e96c0a7fa4a2325767e3b2a824e3
2a20561dcf7a22426170580525e26fd79697c6f0
b012d1cfbf4aef31d6c598f5e64d7b031301d78c979a212c571471a499b24994
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /backend/web/uploads/bannersmallimg/banner03-small-img_1566194446.png HTTP/1.1
Host: brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:02 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 19 Aug 2019 06:00:46 GMT
ETag: "8961-590720f9a5f80"
Accept-Ranges: bytes
Content-Length: 35169
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 05:29:02 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
www.brasslineindia.com/assets/4afec04b/jquery.js
200 OK 81 kB URL HTTP/1.1 www.brasslineindia.com/assets/4afec04b/jquery.js
IP
Hash d83f7ae2a4c7a54c51f0c8115be3693c
20ce0dc0fd5ad1e8d7e63fe2e82f768d114d6d28
f46031fa942d4bca7817bd272c34f183105972324aecf6e749d9b2c21755261e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /assets/4afec04b/jquery.js HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/index/
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:02 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 19 Sep 2022 14:53:29 GMT
ETag: "42587-5e908dfeeb594;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:02 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.brasslineindia.com/js/scripts.js
200 OK 1.8 kB URL HTTP/1.1 www.brasslineindia.com/js/scripts.js
IP
Hash addfe02c9c1208e65653f0a4671afe43
dc0f342add7edfa7e55a75f3702290e00674a44a
5627b3aa33b385ba228c56fe614620ed6ec5951e4d5b166d455140c3662ac8f9
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/scripts.js HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/index/
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 09 Aug 2019 12:48:16 GMT
ETag: "12b3-58fae96860400;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1781
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
brasslineindia.com/backend/web/uploads/bannerimage/banner02-img_1566192805.png
200 OK 157 kB URL HTTP/1.1 brasslineindia.com/backend/web/uploads/bannerimage/banner02-img_1566192805.png
IP
File type PNG image data, 1920 x 800, 8-bit colormap, non-interlaced\012- data
Size 157 kB (156815 bytes)
Hash fe1e0da3a889df69afab06a080f1b603
a15468d80e531464a54adfc91f610e866f754c4b
f5fffe8588a181e2f94c732cac01883a7f81fb0e15cddcabc26352178eb41d12
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /backend/web/uploads/bannerimage/banner02-img_1566192805.png HTTP/1.1
Host: brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:02 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 19 Aug 2019 05:33:25 GMT
ETag: "2648f-59071adcab340"
Accept-Ranges: bytes
Content-Length: 156815
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 05:29:02 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
www.brasslineindia.com/js/typeahead.bundle.js
200 OK 18 kB URL HTTP/1.1 www.brasslineindia.com/js/typeahead.bundle.js
IP
Hash 8d910524b0063091c79864de7c139ddc
f7330e9d4e24aadb9b4aae5d05f59d7f51821eb2
71d0ed5acf83d01ed00be250f906642d2da5615aec8373fb6ed4fba82d454558
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/typeahead.bundle.js HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/index/
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:11:34 GMT
ETag: "177b8-58e6804edf580;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 17768
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.brasslineindia.com/js/typeheadInit.js
200 OK 4.4 kB URL HTTP/1.1 www.brasslineindia.com/js/typeheadInit.js
IP
Hash 61ad9f9e39dd2ff465775a392c9700a1
8c825c99785f5d2f5a39d85a606ca74b6111821c
5973b72cc44891078a35f4336bd05b5c2d03ef6ad79ad4439ed2fcc245c42261
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/typeheadInit.js HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/index/
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Sat, 24 Aug 2019 06:47:58 GMT
ETag: "76f0-590d74d9c2380;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4413
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.brasslineindia.com/css/bootstrap.min.css
200 OK 21 kB URL HTTP/1.1 www.brasslineindia.com/css/bootstrap.min.css
IP
File type ASCII text, with very long lines (65324)
Hash 4e2c02211d789bbe7250420d16cef501
a8c6cb2336ce2313a99d934e8f77345b3f946137
a825f26affa88c3d5651c464aa7e866df1c3980051bc0620c546aa728eb713a8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/bootstrap.min.css HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/css/style.css
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:10:38 GMT
ETag: "22688-58e6801977780;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 21047
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
www.brasslineindia.com/js/jquery-3.2.1.min.js
200 OK 30 kB URL HTTP/1.1 www.brasslineindia.com/js/jquery-3.2.1.min.js
IP
File type ASCII text, with very long lines (32058)
Hash 3430607b4301113ad9394c9260eef3f0
8c4db68b161b17e31be300e968a30ab0116b3193
31e4d11375322cd6f94dba7338570426f2412d6c5fa670427966d45c3648098c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/jquery-3.2.1.min.js HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/index/
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:11:30 GMT
ETag: "15283-58e6804b0ec80;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30138
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.brasslineindia.com/css/font-awesome.min.css
200 OK 6.2 kB URL HTTP/1.1 www.brasslineindia.com/css/font-awesome.min.css
IP
File type ASCII text, with very long lines (27303)
Hash f14f185447db679e05c7b381ec56b6a9
f3e14686cab8519fd93955410d5b281ae86d6e69
26c6be13c6ab47c65829a0584e5c8af70013edb222abb8eb94f5a92bb7702863
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/font-awesome.min.css HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/css/style.css
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:10:40 GMT
ETag: "6b4a-58e6801b5fc00;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6243
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.brasslineindia.com/js/wow.min.js
200 OK 2.8 kB URL HTTP/1.1 www.brasslineindia.com/js/wow.min.js
IP
File type ASCII text, with very long lines (8099)
Hash 7495c05ff8d4643fab11c00fe89dda15
3ea76fbe9dd5b46b8b848176d1d2ec6294ccc1ba
c17ba3ef9831872befbba6c6170ef78f2401488fd035258d6533c7570f9e596a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/wow.min.js HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/index/
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:11:34 GMT
ETag: "1fdb-58e6804edf580;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2825
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.brasslineindia.com/css/linericon/style.css
200 OK 1.7 kB URL HTTP/1.1 www.brasslineindia.com/css/linericon/style.css
IP
Hash 7ab6a673d5e6fb9ea8e3ee4645c42493
38b4d86ba2ccd02ae25aaacbf3919a2e57c13c3b
a4ad682d8cad87cb4d62a15777d23087b90e11b156ba5466e52563f2f17767b4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/linericon/style.css HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/css/style.css
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:10:44 GMT
ETag: "2098-58e6801f30500;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1651
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
www.brasslineindia.com/css/animate.css
200 OK 4.3 kB URL HTTP/1.1 www.brasslineindia.com/css/animate.css
IP
File type ASCII text, with very long lines (460)
Hash 5d104eafe056491e96912e5017b4cb12
7df7d3a565b65a961c1bb4df9b614a40404bf8c3
0aa25f955ba28cb4393df32ff361a56077efe29ad9ed26538efda0d46e8e92d3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/animate.css HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/css/style.css
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:10:38 GMT
ETag: "df07-58e6801977780;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4344
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4436
Expires: Fri, 18 Nov 2022 06:42:59 GMT
Date: Fri, 18 Nov 2022 05:29:03 GMT
Connection: keep-alive
www.brasslineindia.com/css/magnific-popup.css
200 OK 1.8 kB URL HTTP/1.1 www.brasslineindia.com/css/magnific-popup.css
IP
Hash 24d43b806e85342a40e2da6970fdfaa0
b365e6daf45244233ffac6681aa3dad08a26f2c5
dcf879e6dd283fcbef1dc4a0392fbd2ec5ea512b31a97f64ea3076fc392d784e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/magnific-popup.css HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/css/style.css
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 05 Jun 2017 20:41:48 GMT
ETag: "1b27-5513c882b9b00;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1816
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4436
Expires: Fri, 18 Nov 2022 06:42:59 GMT
Date: Fri, 18 Nov 2022 05:29:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4436
Expires: Fri, 18 Nov 2022 06:42:59 GMT
Date: Fri, 18 Nov 2022 05:29:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4436
Expires: Fri, 18 Nov 2022 06:42:59 GMT
Date: Fri, 18 Nov 2022 05:29:03 GMT
Connection: keep-alive
www.brasslineindia.com/css/nice-select.css
200 OK 1.1 kB URL HTTP/1.1 www.brasslineindia.com/css/nice-select.css
IP
Hash d1d7efa19b769d2b6da55df37cebb29b
03b22939665eb62dbd1623d4eeffcd59381c66a3
0a3645773ac0ba2b3c8e31b51d9d00bafccfd56e55fff325d8c6f391506d0a9c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/nice-select.css HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/css/style.css
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:10:40 GMT
ETag: "fa7-58e6801b5fc00;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1057
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b2b393e36ee2c9649d90db136aa49542
e88c5832ff0c49bab181d948c3a510d88343bb6f
8b524701df43bff56ac52a021ff0fbd964e06f00e84b4861aa557ec6ae6b4ffd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7631
x-amzn-requestid: b47e545d-1fb6-4a62-ab45-28cdb9d3f0b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-vQE0XoAMFS3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab2e-56365eed3d4c082c53b172b3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qpoQa1Lhe-h27dGooXDCtujesSTg7Tb0Ov-PNLnUP0288ZofwHxkhQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:24:12 GMT
age: 25491
etag: "e88c5832ff0c49bab181d948c3a510d88343bb6f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg
200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4998f097d23ee5f19cae27d5b938e5fc
4369c8ebe61b9944e639bb2731feb51c5a758fe7
5691c66766c9578e9c4aa71240608653821162c668abc63ee40e553ede2450e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6339
x-amzn-requestid: 0be5dee5-272d-4577-ba55-5cdb7935ea60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-MCExBoAMFz6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa4c-15fd613336aa6fcb165d0b26;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NYs-Nf0PzWqhXP5nkvanTjhJ6vfwRIU--YD06RFIGPEuwDCu6fvEPg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:01:30 GMT
age: 26853
etag: "4369c8ebe61b9944e639bb2731feb51c5a758fe7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 032386e5c9dffff1ba1ee5e8a322d438
dd4fd6c803a9b333bace9a541c6bd183d0c56bb9
0e9f559a0aa7e114c5810a27ba243c0da7b44dc0bf7aec2b7ab32b8f0e2b536c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: 4778d1bd-28c3-4665-89da-046e356087f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyD1HE-oAMF0QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-53c7330c5fd36d3c4d9e6aed;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5zDWKjYmvVLCemXw5Swm2qkhw1mQtD5c07Fl7Krydo_XR5FFyHDu4Q==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 07:15:37 GMT
age: 80006
etag: "dd4fd6c803a9b333bace9a541c6bd183d0c56bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7d16e5ff718353c095d266b080fe547f
fa7c5c9a1d16355859196271f3d13f3850931888
9a94d8eb20cc56d0898b1e2b80c0006ebbef75c15ad94e907050c5be4e19a960
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10349
x-amzn-requestid: fc85e078-a81a-4fed-899e-15249961f59c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7tHGLIAMF00Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7d-4224d193517794684fcdc0ad;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UK-XD_8EcfPwfLb-QVwfLr8aG-sqVBoUJcbPb5hKAlQS68eOxdgM5g==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:05:52 GMT
age: 26591
etag: "fa7c5c9a1d16355859196271f3d13f3850931888"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e567bc1-d4b1-4dd2-b17e-3595ad1753e5.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e567bc1-d4b1-4dd2-b17e-3595ad1753e5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 35da1192dcadc6e329a9e60c16904301
90a146aef85765630a5e09e46a0a8682e204bec1
816d1387a3a91a82f0bdaa2b703b45aa30be206d30d4dd1e8ac5deca13de57ad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e567bc1-d4b1-4dd2-b17e-3595ad1753e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10281
x-amzn-requestid: 11dffc4e-71d7-4195-8890-62c8a2092728
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-77EWaIAMF3WA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7f-3c0dc7e43023af827ac26958;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:35 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Xbau-BXu_W5Hu8QaCg3tvwfYMb_8L8F_muNp4gVukeNTmiDW4BAXhA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:24:03 GMT
age: 25500
etag: "90a146aef85765630a5e09e46a0a8682e204bec1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d0b6106f00f9fd8b89c2d484a559a1a
399ac393209dcdac7d2188d7aa8d95f04570ef7c
5d8151c9eb558f4a2b8bd2952c6845606ddb0c27e36f6e49aca7e60908cd9fe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3759
x-amzn-requestid: 8c91ac59-89dc-4218-b69f-0cebb29f301b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-wJHgxoAMF-hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab33-4dac305614a92bc52c038222;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mb2-PTjNmt06Wd5jOjQ5WoLY-0NgI80CKPXtwgzBt4n5km8Pu_WN0Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:08:54 GMT
age: 26409
etag: "399ac393209dcdac7d2188d7aa8d95f04570ef7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.brasslineindia.com/css/slick.css
200 OK 569 B URL HTTP/1.1 www.brasslineindia.com/css/slick.css
IP
Hash 8089b828484e2269d5dcb1089c4004ba
9b61a0f5bf48ef08890dbae954ee9b5a90015d2c
35c1c8741af6e18aa88caca3d060e26808e1103a29b3ee0415ae3e3b648bcd09
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/slick.css HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/css/style.css
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:10:42 GMT
ETag: "6f0-58e6801d48080;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 569
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
www.brasslineindia.com/css/slick-theme.css
200 OK 873 B URL HTTP/1.1 www.brasslineindia.com/css/slick-theme.css
IP
Hash 16a6454252fe10664b39160ce3609535
37c60577fda41ef113571b89d95e3e8e753027d5
2efa93f53635179bdcb9f618f90631b10bd8f1e8c0486b00c1a39a395509b9ff
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/slick-theme.css HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/css/style.css
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:10:40 GMT
ETag: "c52-58e6801b5fc00;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 873
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.brasslineindia.com/js/bootstrap.bundle.min.js
200 OK 21 kB URL HTTP/1.1 www.brasslineindia.com/js/bootstrap.bundle.min.js
IP
File type ASCII text, with very long lines (65297)
Hash 2edf900acc745df663e046ef3fc4b418
59f89f5dfc701128484b406842847b6a69c79752
da349829bc30783e4ab0966278678f3d2f5d16112d927d27d38499d04b2a4fd3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/bootstrap.bundle.min.js HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/index/
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:11:28 GMT
ETag: "11536-58e6804926800;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:03 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20693
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:29:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data
Hash c26b97e7f5bb7a34d190703522d75e16
69d9e5aea0544dbaf9b78c1b65139c03eceece8f
96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brasslineindia.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 14 Nov 2022 21:11:05 GMT
expires: Tue, 14 Nov 2023 21:11:05 GMT
cache-control: public, max-age=31536000
age: 289078
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2
200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 16588, version 1.0\012- data
Hash 6a93e73463e9f1b7c7b41c52c93843c5
48d5ed2bcc9c9c5c4182ae8957e5cef207cdfcbc
54eb546ba2203d87ad9a38ffdb92fdfed9733e08239dbea692a1ca059a287480
GET /s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brasslineindia.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16588
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 21:30:47 GMT
expires: Fri, 17 Nov 2023 21:30:47 GMT
cache-control: public, max-age=31536000
age: 28696
last-modified: Thu, 21 Apr 2022 16:38:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
brasslineindia.com/backend/web/uploads/categoryicon/pani-puri_1566552865.png
200 OK 12 kB URL HTTP/1.1 brasslineindia.com/backend/web/uploads/categoryicon/pani-puri_1566552865.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 393f6dd32a82d41172b200da3a990eca
b7e04e8a2dd598d280680e97b588c178842e00f5
d3389326aa9fe96504b642bcbf2db234ec3fc46af9040278a68595ce4befa71a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /backend/web/uploads/categoryicon/pani-puri_1566552865.png HTTP/1.1
Host: brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 23 Aug 2019 09:34:25 GMT
ETag: "2fa5-590c5830a4a40"
Accept-Ranges: bytes
Content-Length: 12197
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 05:29:03 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
brasslineindia.com/backend/web/uploads/categoryicon/induction_1566552796.png
200 OK 7.6 kB URL HTTP/1.1 brasslineindia.com/backend/web/uploads/categoryicon/induction_1566552796.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 477050f892f131d322903e6b88ae5f1d
f014f7db62a1997474068030d584cb2af28f2a8b
c8204c1014aff28640046a9d5365e754591cbec92cd182b91b3022b67e92bcd2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /backend/web/uploads/categoryicon/induction_1566552796.png HTTP/1.1
Host: brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 23 Aug 2019 09:33:16 GMT
ETag: "1d8f-590c57eed6f00"
Accept-Ranges: bytes
Content-Length: 7567
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 05:29:03 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
brasslineindia.com/backend/web/uploads/categoryicon/BUD-vase_1566552655.png
200 OK 5.9 kB URL HTTP/1.1 brasslineindia.com/backend/web/uploads/categoryicon/BUD-vase_1566552655.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 95bc0bfebebe219643b1528f7eb58990
9aaf82b51eb722ee95367c9684c0e93294ad9ca2
a119088568b80857bc04e3af93ff8caeb4ba2233cdb459ae13f2958b90c05799
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /backend/web/uploads/categoryicon/BUD-vase_1566552655.png HTTP/1.1
Host: brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 23 Aug 2019 09:30:55 GMT
ETag: "16ed-590c57685f1c0"
Accept-Ranges: bytes
Content-Length: 5869
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 05:29:03 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
www.brasslineindia.com/images/logo.png
200 OK 21 kB URL HTTP/1.1 www.brasslineindia.com/images/logo.png
IP
File type PNG image data, 133 x 88, 8-bit/color RGBA, non-interlaced\012- data
Hash 98c23ca73b6c2c0b230d177ffba9f448
b6438c138025e1ae4546cbfa92e94ac4ef4e6a0d
5d3857a2617bf3b316a218b4729d576b8a37e35ddd9690db88ad0e6b1705f737
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /images/logo.png HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/index/
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:11:08 GMT
ETag: "5179-58e6803613b00;5ec2dc5006431"
Accept-Ranges: bytes
Content-Length: 20857
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 05:29:03 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:29:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/arimo/v27/P5sMzZCDf9_T_10ZxCE.woff2
200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/arimo/v27/P5sMzZCDf9_T_10ZxCE.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 18260, version 1.0\012- data
Hash 6dea752293556883fdae057d588b0bb1
e4d090e03bb920f5ddf7b09937428b2a0a2a9ee0
1ff84f1e03eb15dedc4668f0817372b734934076bc936e12c5c0bd3944dab0c0
GET /s/arimo/v27/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brasslineindia.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18260
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 17:03:36 GMT
expires: Fri, 17 Nov 2023 17:03:36 GMT
cache-control: public, max-age=31536000
age: 44727
last-modified: Mon, 11 Jul 2022 21:03:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.brasslineindia.com/css/linericon/fonts/Linearicons-Free.woff2?w118d
200 OK 22 kB URL HTTP/1.1 www.brasslineindia.com/css/linericon/fonts/Linearicons-Free.woff2?w118d
IP
File type Web Open Font Format (Version 2), TrueType, length 21780, version 1.0\012- data
Hash 03e91f122aa5fd425abbe23c85546eb0
c87a3db06c5db4e75e639382f174eafa439aeb27
296945e5922e764eef17b1b4a3ee3e60dc202b3c7f074150b62158915bf74e33
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /css/linericon/fonts/Linearicons-Free.woff2?w118d HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.brasslineindia.com/css/linericon/style.css
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:10:48 GMT
ETag: "5514-58e6802300e00;5ec2dc5006431"
Accept-Ranges: bytes
Content-Length: 21780
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:03 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
brasslineindia.com/backend/web/uploads/categoryicon/BFP_1566552641.png
200 OK 6.0 kB URL HTTP/1.1 brasslineindia.com/backend/web/uploads/categoryicon/BFP_1566552641.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash f02fd9c8116e12e7f6284c5c657adf0f
7c443534caad5a391dc9e7dc0b8091cbe5bd2344
2276a77af313bc666a9eff75fdfeb246f95fff74e109205eef4f98ecab885216
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /backend/web/uploads/categoryicon/BFP_1566552641.png HTTP/1.1
Host: brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Fri, 23 Aug 2019 09:30:41 GMT
ETag: "177b-590c575b05240"
Accept-Ranges: bytes
Content-Length: 6011
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 05:29:03 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.brasslineindia.com/fonts/fontawesome-webfont.woff2?v=4.5.0
200 OK 77 kB URL HTTP/1.1 www.brasslineindia.com/fonts/fontawesome-webfont.woff2?v=4.5.0
IP
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.brasslineindia.com/css/font-awesome.min.css
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jun 2019 13:55:22 GMT
ETag: "12d68-58a7fd4f72680;5ec2dc5006431"
Accept-Ranges: bytes
Content-Length: 77160
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:03 GMT
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
brasslineindia.com/backend/web/uploads/bannersmallimg/banner01-small-img_1566210187.png
200 OK 38 kB URL HTTP/1.1 brasslineindia.com/backend/web/uploads/bannersmallimg/banner01-small-img_1566210187.png
IP
File type PNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data
Hash a1527823bdf884e6bdeb30fc6a50276d
e926e219a753d4bedd781ff847741c1851b7a067
fee3f61bd4b277fe9c57c46588190d3cb29b6ae9f0f74111b81023e3b946d96d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /backend/web/uploads/bannersmallimg/banner01-small-img_1566210187.png HTTP/1.1
Host: brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 19 Aug 2019 10:23:07 GMT
ETag: "9310-59075b9d6f8c0"
Accept-Ranges: bytes
Content-Length: 37648
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 05:29:03 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
brasslineindia.com/backend/web/uploads/bannersmallimg/banner02-small-img_1566192805.png
200 OK 56 kB URL HTTP/1.1 brasslineindia.com/backend/web/uploads/bannersmallimg/banner02-small-img_1566192805.png
IP
File type PNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data
Hash 6553cbfc24b19b3aea631e3ccd555795
d2c2dfbdd64843ade3a49794dbd6c5db3a03e7e5
19ba8eec596d1dcc7d7bd285a828c5afbff2f74375632b8a4e444035e528e5fe
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /backend/web/uploads/bannersmallimg/banner02-small-img_1566192805.png HTTP/1.1
Host: brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 19 Aug 2019 05:33:25 GMT
ETag: "dc42-59071adcab340"
Accept-Ranges: bytes
Content-Length: 56386
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 05:29:03 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
brasslineindia.com/backend/web/uploads/bannerimage/banner03-img_1566194446.png
200 OK 186 kB URL HTTP/1.1 brasslineindia.com/backend/web/uploads/bannerimage/banner03-img_1566194446.png
IP
File type PNG image data, 1920 x 800, 8-bit colormap, non-interlaced\012- data
Size 186 kB (185699 bytes)
Hash 17f7a4afe458cf93cb649e751eedcc2c
1a66bf85299b0c1e481e83828769dde4daa970ae
c9c869035532399ce2d99da3a177637fe1e5b3ec40902ed079ff27210358c3f1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /backend/web/uploads/bannerimage/banner03-img_1566194446.png HTTP/1.1
Host: brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 19 Aug 2019 06:00:46 GMT
ETag: "2d563-590720f9a5f80"
Accept-Ranges: bytes
Content-Length: 185699
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 05:29:03 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
brasslineindia.com/backend/web/uploads/bannerimage/banner01-img_1566210187.png
200 OK 182 kB URL HTTP/1.1 brasslineindia.com/backend/web/uploads/bannerimage/banner01-img_1566210187.png
IP
File type PNG image data, 1920 x 800, 8-bit colormap, non-interlaced\012- data
Size 182 kB (182500 bytes)
Hash 3cbf474cbc465bb1aa3b55bdc86dcc56
580af4bafeb74e698e4d256358fa45ad7baf6c7a
83ec7a74add7eaf87f21f0d5cd42bbbcba5dd06313a543bd27ce9c143ffd5d71
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /backend/web/uploads/bannerimage/banner01-img_1566210187.png HTTP/1.1
Host: brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 19 Aug 2019 10:23:07 GMT
ETag: "2c8e4-59075b9d6f8c0"
Accept-Ranges: bytes
Content-Length: 182500
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 05:29:03 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
www.brasslineindia.com/js/jquery.magnific-popup.min.js
200 OK 7.3 kB URL HTTP/1.1 www.brasslineindia.com/js/jquery.magnific-popup.min.js
IP
File type ASCII text, with very long lines (20087)
Hash efa6db60af1529649bd3b95c4220e9ba
4b6b8cd07ee784e67c7702c147e0c80e0bb3bd90
5723d10c2697c434b25b904f2fcec179ad231ccaebc4c77daa7732c7949a1e99
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /js/jquery.magnific-popup.min.js HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/index/
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:04 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 05 Jun 2017 20:41:48 GMT
ETag: "4ef8-5513c882b9b00;5ec2dc5006431-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sun, 18 Dec 2022 05:29:04 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7346
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
brasslineindia.com/backend/web/uploads/newsimage/BL%20INVITE%20600BY600_1566035729.jpg
200 OK 330 kB URL HTTP/1.1 brasslineindia.com/backend/web/uploads/newsimage/BL%20INVITE%20600BY600_1566035729.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2019:08:17 15:20:06], baseline, precision 8, 600x600, components 3\012- data
Size 330 kB (329551 bytes)
Hash 69c10beedc5ce92805dce3931e55a438
c8d5685ef73afcc7f6adf92d966d402a71e9a68a
17101b19598f9a027d40eccdef27ce5173887ada431497072242898cb4794672
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /backend/web/uploads/newsimage/BL%20INVITE%20600BY600_1566035729.jpg HTTP/1.1
Host: brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:03 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Sat, 17 Aug 2019 09:55:29 GMT
ETag: "5074f-5904d1b552640"
Accept-Ranges: bytes
Content-Length: 329551
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 05:29:03 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.brasslineindia.com/images/ajax-loader.gif
200 OK 34 kB URL HTTP/1.1 www.brasslineindia.com/images/ajax-loader.gif
IP
File type GIF image data, version 89a, 60 x 60\012- data
Hash 1f89eb2fd63cc94fc29ef8b9a4dd399d
a248a828a7d505d6e8a5e8563a7bfd8ebbfaa81a
97986871dc362d0f15722c03d63ef7539cb1e070f2aff87ca246ae14a959782c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /images/ajax-loader.gif HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/css/slick-theme.css
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:04 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:10:56 GMT
ETag: "86ca-58e6802aa2000;5ec2dc5006431"
Accept-Ranges: bytes
Content-Length: 34506
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 05:29:04 GMT
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/gif
brasslineindia.com/backend/web/uploads/categoryicon/fruit-bowl_1565159032.png
200 OK 2.5 kB URL HTTP/1.1 brasslineindia.com/backend/web/uploads/categoryicon/fruit-bowl_1565159032.png
IP
File type PNG image data, 66 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 9f006bf00a2d113193efaaa26d79bb95
597fdebf7c0b5cfccd564a9ded54f26f4ff4b1eb
cddc5af75034bc15d00d86f68894bb174f738504fe4d83af46a02bc945848807
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /backend/web/uploads/categoryicon/fruit-bowl_1565159032.png HTTP/1.1
Host: brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:04 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 07 Aug 2019 06:23:52 GMT
ETag: "9db-58f80fc1e8e00"
Accept-Ranges: bytes
Content-Length: 2523
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 05:29:04 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 16bbadb18616687351d4047aedc2ab45
979123c7ad6726befbbab2c07b50ecca31aa2d18
de8231c6ee426b7a76ebf574998dec11ce908efc0a745c2182fb7b61c5915e9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:29:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 18 Nov 2022 04:41:09 GMT
expires: Fri, 18 Nov 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 2875
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 16bbadb18616687351d4047aedc2ab45
979123c7ad6726befbbab2c07b50ecca31aa2d18
de8231c6ee426b7a76ebf574998dec11ce908efc0a745c2182fb7b61c5915e9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:29:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j98&a=935299386&t=pageview&_s=1&dl=https%3A%2F%2Fwww.brasslineindia.com%2Findex%2F&ul=en-us&de=UTF-8&dt=Brassline%20India&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2046910300&gjid=770986847&cid=1898078055.1668749343&tid=UA-66295956-1&_gid=2132914354.1668749343&_r=1&_slc=1&z=835760407
200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=935299386&t=pageview&_s=1&dl=https%3A%2F%2Fwww.brasslineindia.com%2Findex%2F&ul=en-us&de=UTF-8&dt=Brassline%20India&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2046910300&gjid=770986847&cid=1898078055.1668749343&tid=UA-66295956-1&_gid=2132914354.1668749343&_r=1&_slc=1&z=835760407
IP
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j98&a=935299386&t=pageview&_s=1&dl=https%3A%2F%2Fwww.brasslineindia.com%2Findex%2F&ul=en-us&de=UTF-8&dt=Brassline%20India&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2046910300&gjid=770986847&cid=1898078055.1668749343&tid=UA-66295956-1&_gid=2132914354.1668749343&_r=1&_slc=1&z=835760407 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.brasslineindia.com
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.brasslineindia.com
date: Fri, 18 Nov 2022 05:29:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.brasslineindia.com/images/favicons/apple-touch-icon-114x114.png
200 OK 5.0 kB URL HTTP/1.1 www.brasslineindia.com/images/favicons/apple-touch-icon-114x114.png
IP
File type PNG image data, 114 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash 837dc9424e1212c8120da6caf3ddb287
7391b62c8f5c2aa7cd3bd335cb686d03746c7f93
84eb201f8a7c58f1d41f06d5bee24a0d7c78bac79e1c27507b848173842f2ab5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /images/favicons/apple-touch-icon-114x114.png HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/index/
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:04 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:11:24 GMT
ETag: "1356-58e6804555f00;5ec2dc5006431"
Accept-Ranges: bytes
Content-Length: 4950
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 05:29:04 GMT
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
www.brasslineindia.com/images/favicons/favicon.png
200 OK 4.3 kB URL HTTP/1.1 www.brasslineindia.com/images/favicons/favicon.png
IP
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 78c391d01fe9f43810320648196edaad
f95516f8a76573d079255f3fca0a5f0dda15b898
be7ee5454a6e0b99a2fc538257e73d86e03daee937dc8d62914bbd4e86ee1f43
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /images/favicons/favicon.png HTTP/1.1
Host: www.brasslineindia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/index/
Cookie: PHPSESSID=oo4sjsva96t5u9vkgfpn1cc7c1; _csrf=4cca5df36abf593377a0d06be1ad4989e5f3781bf29caba4327ddc41e7bbb48fa%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22_csrf%22%3Bi%3A1%3Bs%3A32%3A%22k0EBRiymaGvMQoKcB6crYnkACYCxAEZh%22%3B%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 05:29:04 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Wed, 24 Jul 2019 07:11:24 GMT
ETag: "10ed-58e6804555f00;5ec2dc5006431"
Accept-Ranges: bytes
Content-Length: 4333
Cache-Control: max-age=31536000
Expires: Sat, 18 Nov 2023 05:29:04 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5d0f26aabc1e6822799c7b2a0088c7c8
1fe0c1482425fd80388943a097e4bedd549cba84
2f946e377939664b21778a7453b114262582cca8484d148a16c24ca1710370fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:29:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-66295956-1&cid=1898078055.1668749343&jid=2046910300&gjid=770986847&_gid=2132914354.1668749343&_u=IEBAAEAAAAAAACAAI~&z=1660552281
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-66295956-1&cid=1898078055.1668749343&jid=2046910300&gjid=770986847&_gid=2132914354.1668749343&_u=IEBAAEAAAAAAACAAI~&z=1660552281
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-66295956-1&cid=1898078055.1668749343&jid=2046910300&gjid=770986847&_gid=2132914354.1668749343&_u=IEBAAEAAAAAAACAAI~&z=1660552281 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.brasslineindia.com
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.brasslineindia.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 18 Nov 2022 05:29:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8bd74b7ad2725f15396907ce2070e9a9
c624c31552aeb494b5a630db33054ad03cbd5a0e
a20baa5c9be0ccc20d8bcd78680101f96dc0f6a69427bd9f56436982288b72f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:29:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5d0f26aabc1e6822799c7b2a0088c7c8
1fe0c1482425fd80388943a097e4bedd549cba84
2f946e377939664b21778a7453b114262582cca8484d148a16c24ca1710370fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:29:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d3ba0eba720a8e5904bee6e804873c24
df1f9c79e39f777ab12225af0af60b9f26af6485
76500b32cbac4ad40e3f42c7dfd46832f3854ba88c3a6d5a9d2b5633e8e1f27b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:29:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66295956-1&cid=1898078055.1668749343&jid=2046910300&_u=IEBAAEAAAAAAACAAI~&z=63052671
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66295956-1&cid=1898078055.1668749343&jid=2046910300&_u=IEBAAEAAAAAAACAAI~&z=63052671
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66295956-1&cid=1898078055.1668749343&jid=2046910300&_u=IEBAAEAAAAAAACAAI~&z=63052671 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 18 Nov 2022 05:29:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66295956-1&cid=1898078055.1668749343&jid=2046910300&_u=IEBAAEAAAAAAACAAI~&z=63052671
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66295956-1&cid=1898078055.1668749343&jid=2046910300&_u=IEBAAEAAAAAAACAAI~&z=63052671
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66295956-1&cid=1898078055.1668749343&jid=2046910300&_u=IEBAAEAAAAAAACAAI~&z=63052671 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 18 Nov 2022 05:29:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8bd74b7ad2725f15396907ce2070e9a9
c624c31552aeb494b5a630db33054ad03cbd5a0e
a20baa5c9be0ccc20d8bcd78680101f96dc0f6a69427bd9f56436982288b72f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:29:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c15be7bf1c6987951ddd348d6f6b4db1
9faac1fb81abc8fce6d4ae81777c76b8bc11e9b0
7f1d01e3fc0b69e331fd30326ea8fd9b1e3e06a0a93ae4768e7addd03a121025
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 05:29:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Arimo:400,700|Fjalla+One|Nunito:400,600,700,800,900&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Arimo:400,700|Fjalla+One|Nunito:400,600,700,800,900&display=swap
IP
GET /css?family=Arimo:400,700|Fjalla+One|Nunito:400,600,700,800,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brasslineindia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 05:29:02 GMT
date: Fri, 18 Nov 2022 05:29:02 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
15.207.115.10
34.102.187.140
93.184.220.29
104.17.25.14
23.36.76.226