Overview

URL sprayitfwd.com/
IP162.240.64.171
ASNUNIFIEDLAYER-AS-1
Location United States
Report completed2022-07-07 00:15:31 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-07-07 2 sprayitfwd.com/ Phishing
2022-07-07 2 sprayitfwd.com/js/jquery-3.0.0.min.js Phishing
2022-07-07 2 sprayitfwd.com/js/popper.min.js Phishing
2022-07-07 2 sprayitfwd.com/js/bootstrap.bundle.min.js Phishing
2022-07-07 2 sprayitfwd.com/js/jquery.min.js Phishing
2022-07-07 2 sprayitfwd.com/js/custom.js Phishing
2022-07-07 2 sprayitfwd.com/js/owl.carousel.js Phishing
2022-07-07 2 sprayitfwd.com/js/jquery.mCustomScrollbar.concat.min.js Phishing
2022-07-07 2 sprayitfwd.com/js/plugin.js Phishing
2022-07-07 2 sprayitfwd.com/js/owl.carousel.js Phishing
2022-07-07 2 leostop.com/cgi-sys/suspendedpage.cgi?_=1657152919080 Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

URL firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-langua (...)
IP  54.230.111.35
Magic gzip compressed data, max compression\012- data
Size 849
MD5 f34b7a88f7b98915268276fd728957d8
SHA1 7a80c8ccea5e1c8a93d180b39a148d627f0fdc83
SHA256 1122762c261e137371b1db85c63d58ac5a012f2a2f8a73cd5b169e9a3d279bab
Analyzer Analysed Verdict Comment
VirusTotal 0/0


Passive DNS (15)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] cdnjs.cloudflare.com (1) 235 2014-04-23 07:31:51 UTC 2022-05-16 10:07:49 UTC 104.17.24.14
[Mnemonic Passive DNS] e1.o.lencr.org (1) 6159 2021-08-20 07:36:30 UTC 2022-07-06 04:48:56 UTC 23.36.77.32
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.35
[Mnemonic Passive DNS] netdna.bootstrapcdn.com (1) 3413 2017-01-30 05:02:32 UTC 2021-03-04 13:34:08 UTC 104.18.10.207
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-07-06 04:47:23 UTC 35.82.213.230
[Mnemonic Passive DNS] ocsp.pki.goog (4) 175 2017-06-14 07:23:31 UTC 2022-07-06 04:42:12 UTC 142.250.74.3
[Mnemonic Passive DNS] leostop.com (3) 513163 2019-07-06 12:02:00 UTC 2021-02-19 07:08:25 UTC 172.67.196.212
[Mnemonic Passive DNS] sprayitfwd.com (43) 0 No data No data 162.240.64.171 Unknown ranking
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-07-06 04:55:23 UTC 54.230.111.99
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-07-06 19:05:02 UTC 93.184.220.29
[Mnemonic Passive DNS] fonts.googleapis.com (1) 8877 2017-01-30 04:59:43 UTC 2019-10-16 05:12:41 UTC 216.58.211.10
[Mnemonic Passive DNS] fonts.gstatic.com (2) 0 2017-01-30 04:59:51 UTC 2022-07-06 04:41:59 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-07-06 17:02:11 UTC 34.120.237.76
[Mnemonic Passive DNS] r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-07-06 04:41:34 UTC 23.36.77.32


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 162.240.64.171

Date UQ / IDS / BL URL IP
2022-07-07 05:09:26 +0000
4 - 0 - 0 sitifinancial.com/SecureMTB/login.php?online_ (...) 162.240.64.171
2022-07-07 05:08:25 +0000
4 - 0 - 0 sitifinancial.com/SecureMTB/login.php?online_ (...) 162.240.64.171
2022-07-07 03:35:24 +0000
9 - 0 - 2 thevendorsource.com/admin/index.php 162.240.64.171
2022-07-07 03:35:00 +0000
4 - 0 - 1 sitifinancial.com/SecureMTB/login.php?online_ (...) 162.240.64.171
2022-07-07 03:01:04 +0000
3 - 0 - 0 cbcrating.com/SecureMTB/login.php?country={{c (...) 162.240.64.171
2022-07-07 02:08:25 +0000
4 - 0 - 0 cbcrating.com/SecureMTB/login.php?online_id=9 (...) 162.240.64.171
2022-07-07 01:04:51 +0000
4 - 0 - 1 sitifinancial.com/SecureMTB/login.php?online_ (...) 162.240.64.171
2022-07-07 00:15:32 +0000
0 - 0 - 11 sprayitfwd.com/ 162.240.64.171
2022-07-06 23:08:23 +0000
4 - 0 - 0 sitifinancial.com/SecureMTB/login.php?online_ (...) 162.240.64.171
2022-07-06 18:53:38 +0000
4 - 0 - 0 sitifinancial.com/SecureMTB/login.php?online_ (...) 162.240.64.171

Last 10 reports on ASN: UNIFIEDLAYER-AS-1

Date UQ / IDS / BL URL IP
2022-08-19 02:44:31 +0000
0 - 0 - 3 gurdwaraaid.com/est-dolores/doloribus.zip 162.241.169.33
2022-08-19 02:41:38 +0000
0 - 0 - 3 gurdwaraaid.com/est-dolores/velit.zip 162.241.169.33
2022-08-19 02:40:15 +0000
0 - 0 - 1 southbaywedding.com/202232/40/xc/c4/data/offi (...) 192.185.87.4
2022-08-19 02:39:16 +0000
0 - 0 - 1 www.rackenfordlabs.com/excel/excel/excel/login.php 50.87.248.50
2022-08-19 02:28:55 +0000
0 - 0 - 33 g9securityforce.com/pjsq4h0.zip 108.179.246.87
2022-08-19 02:12:07 +0000
0 - 0 - 1 mail.zieglergroup.net/online/dkb2022,11/tan/2 (...) 192.185.19.115
2022-08-19 02:11:39 +0000
0 - 0 - 1 mail.zieglergroup.net/online/dkb2022,11/tan/2 (...) 192.185.19.115
2022-08-19 02:05:59 +0000
0 - 0 - 1 mail.zieglergroup.net/online/dkb2022,11/tan/2 (...) 192.185.19.115
2022-08-19 02:03:44 +0000
0 - 0 - 1 mail.zieglergroup.net/online/dkb2022,11/tan/4 (...) 192.185.19.115
2022-08-19 02:01:53 +0000
0 - 0 - 1 mail.zieglergroup.net/online/dkb2022,11/tan/8 (...) 192.185.19.115

Last 1 reports on domain: sprayitfwd.com

Date UQ / IDS / BL URL IP
2022-07-07 00:15:32 +0000
0 - 0 - 11 sprayitfwd.com/ 162.240.64.171


JavaScript

Executed Scripts (11)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (74)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "78A5DCFAF2D93D9C87CFB6DBC56100E9F22965D4500554BA65F71CB7D84DD666"
Last-Modified: Wed, 06 Jul 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12612
Expires: Thu, 07 Jul 2022 03:45:30 GMT
Date: Thu, 07 Jul 2022 00:15:18 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 06 Jul 2022 23:56:23 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tnF2Xgp3abFPO4KJzwM-oBZTqq61RtPG1dlPeebvFgZbvxhjWciVDw==
Age: 1135


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.99
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Tue, 21 Jun 2022 12:10:22 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 06 Jul 2022 03:26:46 GMT
etag: "581454acdd98f34fd3fbabd0977ade29"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4CnxZWQIGFw7VXoR6eXEMd_tMSnV0wCSu_jQLPhc-uQ3Vikxjh1-8Q==
age: 74913
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    581454acdd98f34fd3fbabd0977ade29
Sha1:   d8d86c0b513137aeb85de01cea7b272c35eb6ab4
Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Thu, 07 Jul 2022 00:15:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET / HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Server: Apache
Last-Modified: Wed, 04 Mar 2020 01:18:22 GMT
Accept-Ranges: bytes
Content-Length: 23290
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (668), with CRLF line terminators
Size:   23290
Md5:    3377081bfcb9697de4630d04135334a4
Sha1:   c54e4cccd88a99c307a131a54f3703e332c43faa
Sha256: ba3b062d790589c6718ae0825e9ebca32f41449f55bda0c6b37d85190aac3c43

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /ajax/libs/fancybox/2.1.5/jquery.fancybox.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sprayitfwd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
                                        
date: Thu, 07 Jul 2022 00:15:18 GMT
content-type: text/css; charset=utf-8
content-length: 955
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e58-f2d"
last-modified: Mon, 04 May 2020 16:10:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 9004583
expires: Tue, 27 Jun 2023 00:15:18 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IHKuCpH6jriPRUDDcJcRDBoorOxY6s6KiawY%2FT7iPXuLQyDwU2vNhIedAKpblW0OgRF9XYyr6Z2UxDCldl09Sc%2F%2Fw0utwRsla4unNVHAEpcLf2pcsog%2FDBoUiLS8%2ByEri2aC2Bh5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 726c628babfa0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3885), with no line terminators
Size:   955
Md5:    254cb13c6249ee8b9472c24687430bce
Sha1:   b8a63a6e9a1c8a4b459b3406c488063656895e9e
Sha256: 35b2fbdb02a628e43ff25273c788262646b73374101214e88fc8ce83026295c8
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css/owl.theme.default.min.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
                                        
                                            GET /css/owl.carousel.min.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 3248
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3081)
Size:   3248
Md5:    351b4e5f569a83790bed10824208390d
Sha1:   c20bb4cbb04f19dd2ffc4e8734b96fe06cdc9b48
Sha256: 813f1398bf1531b20c365414d810e75f2ae867a70391794ca28eb57e18117c66
                                        
                                            GET /css/responsive.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Server: Apache
Last-Modified: Wed, 04 Mar 2020 01:35:46 GMT
Accept-Ranges: bytes
Content-Length: 10932
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   10932
Md5:    80991eb72c503fe2f4cd438a3aa81cce
Sha1:   fdad3b21b06f300e34780ff03f36ef66ba36bb6f
Sha256: fb58a03173b85d93f8287136f20f3c8f2358994473c398820a027b3946bd43cd
                                        
                                            GET /css/style.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Server: Apache
Last-Modified: Wed, 04 Mar 2020 01:35:52 GMT
Accept-Ranges: bytes
Content-Length: 16894
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   16894
Md5:    c60b9a02c1d27c2eead0ba7a39f1af3e
Sha1:   a6bd4926c195d0fa40bd038c1b15f3105c57ae5a
Sha256: e827ae3349c8147a2eecb752dc77d9b32c39347c7b4ae7ee451061781f52cd29
                                        
                                            GET /css/jquery.mCustomScrollbar.min.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 42839
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (42839), with no line terminators
Size:   42839
Md5:    f59e3f4c0087b4d8ddc27bdd9c9ab92b
Sha1:   fac9b521062feb5250c04d62128a8c3ddb312632
Sha256: 247184981eb6f698a94e431a83d68c6b0df623cce57b6e29dc5a6c11e23aa195
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 06 Jul 2022 23:34:57 GMT
Cache-Control: max-age=3600
Expires: Thu, 07 Jul 2022 00:10:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ImyWf62PLicZ1QdTPgbyO40w3phU-SoKy-KkxtM7uEu1X2JgGo0nQQ==
Age: 2422


--- Additional Info ---
Magic:  gzip compressed data, max compression\012- data
Size:   849
Md5:    f34b7a88f7b98915268276fd728957d8
Sha1:   7a80c8ccea5e1c8a93d180b39a148d627f0fdc83
Sha256: 1122762c261e137371b1db85c63d58ac5a012f2a2f8a73cd5b169e9a3d279bab

Alerts:
  File Analyzers:
    - virustotal: 0/0
                                        
                                            GET /js/jquery-3.0.0.min.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:50 GMT
Accept-Ranges: bytes
Content-Length: 11324
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   11324
Md5:    68c83ed206a2b972d61a89dfb6d250d0
Sha1:   1d310c0931fd748d904facfead4deaf7ad5739d1
Sha256: 263eb1915970b23889768338a7e7c82a23908b944100e50443183905636de4ff

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css/bootstrap.min.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 140421
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65324)
Size:   140421
Md5:    fee68c0f2f583161134a1fcb5950501d
Sha1:   8e52dd818562db0ba0764bba172cb91ce248d8b0
Sha256: 34959e43e6ecf368807a84f92ad9aa6e2dcd5f0c5c1e57da55e8f3248d9d9255
                                        
                                            GET /js/popper.min.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:52 GMT
Accept-Ranges: bytes
Content-Length: 19190
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (19013)
Size:   19190
Md5:    ccc533cf501d3f124323b95318c6bbb8
Sha1:   947b7849caa627e6f13941ce7d358fbe74cf3b68
Sha256: 6527e14ac1690f2e8b1fe033fe68d7673b27015a2affab7fe064aa39bb0f7d85

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/bootstrap.bundle.min.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:50 GMT
Accept-Ranges: bytes
Content-Length: 70808
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65297)
Size:   70808
Md5:    62e633210885066c625c46081cc2b339
Sha1:   8709e629eeefeb122c09d1d5f902854845a0b496
Sha256: efcad26419c1257989e551ae58bf2692e9ef872f7883df51c39ddbb2c8c74949

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/jquery.min.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:50 GMT
Accept-Ranges: bytes
Content-Length: 87088
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65290)
Size:   87088
Md5:    cbde2a48700724f03cee8c63d5911fbb
Sha1:   c867c50e43b7f62a4238b84e9f7fd2fffc0c6da5
Sha256: c90c190b73facc126891f2f132ec481e9d65f0eb550e34610e244adfaec23492

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/custom.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Server: Apache
Last-Modified: Fri, 20 Mar 2020 19:41:12 GMT
Accept-Ranges: bytes
Content-Length: 9866
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   9866
Md5:    74318ae0b9e1d194a71b21e7538478da
Sha1:   49409148fc39f3c65102a76675a55bb844e34efe
Sha256: 9ff93263ee4725706c4515e9fb3be76d9e0f83cd54d9e009e295ac76e211ef9f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/owl.carousel.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css/animate.min.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:46 GMT
Accept-Ranges: bytes
Content-Length: 53678
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (53660)
Size:   53678
Md5:    a332e9019e2a787d926d9fa1abaeb9d4
Sha1:   0b841113e864a4f89e12387d816546cf5bdc86fe
Sha256: 86abaffb470415e30702185491101c1f3767a73b2283305428d2450e358442ac
                                        
                                            GET /css/normalize.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 7381
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   7381
Md5:    8d9d541cc4c37ce152038f142628e199
Sha1:   b2e67ca61fc06e08530de1a70c476c72000fa297
Sha256: 1b9540dbd7121fe2712bcf8c78054bdfa4215254efec58a9724e5d9d55e9517c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 715
Cache-Control: max-age=115461
Date: Thu, 07 Jul 2022 00:15:19 GMT
Etag: "62c542d1-1d7"
Expires: Fri, 08 Jul 2022 08:19:40 GMT
Last-Modified: Wed, 06 Jul 2022 08:07:45 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /js/jquery.mCustomScrollbar.concat.min.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:50 GMT
Accept-Ranges: bytes
Content-Length: 45479
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32001)
Size:   45479
Md5:    42a368e95b4a38989c8984c672d29ec0
Sha1:   70b2b29b138b9ddcdcbb58bd5d825f780eadcdfa
Sha256: fd8027b53a97cbd5782e85c5908e563c39776703ff9279f50658e630927b4167

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css/icomoon.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 28414
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   28414
Md5:    e841f7cdec90ebf92272192c8e8bc027
Sha1:   adb98f477baaa9e703034dbb04e374f65800124a
Sha256: c009b6d8414d258f737d128b4519be3f3a13fcd81b7b3682753ff06de3b54d13
                                        
                                            GET /css?family=Open+Sans:400,700&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sprayitfwd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.10
HTTP/2 200 OK
                                        
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 07 Jul 2022 00:15:18 GMT
date: Thu, 07 Jul 2022 00:15:18 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /css/meanmenu.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Sat, 13 Jul 2019 19:18:38 GMT
Accept-Ranges: bytes
Content-Length: 3842
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   3842
Md5:    00294f3d8a54d4083e10a75b1fa5b5f1
Sha1:   7ebb52584dddecfc0ce9cd48b9c01ba9d883540a
Sha256: a599cf444dcb981d4291e0cc1f89575117c6569e78ec8eb3452c63d35b2affef
                                        
                                            GET /css/swiper.min.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
                                        
                                            GET /css/slick.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 1884
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1884
Md5:    f46bd015743c36e5514de87e0c1b40e5
Sha1:   11d17a03235ff610f893d04c5c6a30c7b1b401d3
Sha256: 00f74ce6434ed37ab229be8039bcdf6495a2fa58cc1e4ee65c5e623ec6b7af17
                                        
                                            GET /css/jquery.fancybox.min.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 14143
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (14143), with no line terminators
Size:   14143
Md5:    ba919c6d4aced8bb72840a2618f397a3
Sha1:   b6148ec09012fa119d02e0fc64d8e91ec272cd30
Sha256: 71655a3a80f0ede6a9011e1ab7d584473c29026c09f500cbe9bef99da96c70fe
                                        
                                            GET /css/nice-select.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 3653
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   3653
Md5:    7641aec4b8c405f570860925f7f64580
Sha1:   84460de5f6746a823d71cd2df0328ffa21f8431a
Sha256: 685f9eca266a49de2eaa2f052eee413ecef3ec2bca80b6d7e04c70dc02d0906a
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Bg5nKhUwdeDntGJd6NiqPA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.82.213.230
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dzLs2GNEprhGbWdMYmkLeWm2HuA=

                                        
                                            GET /css/jquery-ui.css HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:48 GMT
Accept-Ranges: bytes
Content-Length: 35973
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2363)
Size:   35973
Md5:    c4a88ec0cb998929a670c0c58d7dc526
Sha1:   03135a88e8dbc36020dd453d1e7407ce9a3a2cc2
Sha256: 44f8a56d427917b5fa0dd7933ba545679be5e6b3b93099e64a4e29c2159f57c0
                                        
                                            GET /js/plugin.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 07 Jul 2022 00:15:18 GMT
Server: Apache
Last-Modified: Wed, 10 Jul 2019 22:24:52 GMT
Accept-Ranges: bytes
Content-Length: 918708
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32000), with CRLF line terminators
Size:   918708
Md5:    1627446b73ab91f2df237b4fb989a9cf
Sha1:   392dca8a67c0804b18b90ee6171e9ef015f8e5da
Sha256: 0a403468ff0fb786bebdddc7625da883b09f9f8e83ba5475ad3ea729241447eb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /images/toogle-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 01:22:52 GMT
Accept-Ranges: bytes
Content-Length: 1066
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 41 x 23, 8-bit/color RGBA, non-interlaced\012- data
Size:   1066
Md5:    095cfcfb6f5c4cc9bf827b9351d4f1d1
Sha1:   45151af253747675a19b140f96053bcfe9884cda
Sha256: 0707e24c0e91121de581aceac65f8367265d6d3548afb0c8388fe3099bbc272c
                                        
                                            GET /images/user-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Fri, 28 Feb 2020 00:31:34 GMT
Accept-Ranges: bytes
Content-Length: 1081
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 19 x 18, 8-bit/color RGBA, non-interlaced\012- data
Size:   1081
Md5:    3e7cad0a8a7ae8bba0767a89144270b2
Sha1:   1025152e225a0159cb58dd089e845fe84f001af0
Sha256: 77c2d031efbf23e7b781e3f95d2fb70d0699232d840b7f8257cfdcb1a154f209
                                        
                                            GET /images/search-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 01:23:30 GMT
Accept-Ranges: bytes
Content-Length: 1189
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 21 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size:   1189
Md5:    dc9dbe8d63916e2108f9bd259cb00754
Sha1:   dff571352ba43ae3d8e53efd4335579da5821981
Sha256: e7637da0f34a4c4f6875d68424cf18c63efd7236df79481838009ccc1ce65f46
                                        
                                            GET /s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://sprayitfwd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16360
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Jul 2022 19:35:18 GMT
expires: Thu, 06 Jul 2023 19:35:18 GMT
cache-control: public, max-age=31536000
age: 16801
last-modified: Wed, 11 May 2022 19:25:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16360, version 1.0\012- data
Size:   16360
Md5:    4333f8c1f02dee549bdb7353a3b48e82
Sha1:   a6bd7db06cf5ea54c529c1c8efc81cb805fa51e3
Sha256: e3f25c51e5e6f03dc0513385a1d8730f36537309864c444ab253ed66b2bf2db3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/opensans/v29/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://sprayitfwd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16720
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Jul 2022 19:34:58 GMT
expires: Thu, 06 Jul 2023 19:34:58 GMT
cache-control: public, max-age=31536000
age: 16821
last-modified: Wed, 11 May 2022 19:25:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16720, version 1.0\012- data
Size:   16720
Md5:    c416910cae8fe4258cdf8c35933e9f4c
Sha1:   4a768ba0a3abc49b572c08c235db9f066ffc2b18
Sha256: 9434dddcdf38e072b039bb92f9e90639ec0e0563e8ff51604a60d91830c29289
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /images/logo.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 01:21:20 GMT
Accept-Ranges: bytes
Content-Length: 1997
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 136 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size:   1997
Md5:    7bbadb3dd646a2edc3dd8a263b00c936
Sha1:   049ece13cd509870c81ae6b42982e296fa9e9892
Sha256: e870ffa713e824fb44c8f0d109f240831141c4d1685883e802e0ff7ad5e844c2
                                        
                                            GET /js/owl.carousel.js HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /images/img-1.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 19:14:56 GMT
Accept-Ranges: bytes
Content-Length: 647891
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 816 x 699, 8-bit/color RGB, non-interlaced\012- data
Size:   647891
Md5:    2ccae0f4be37dbaec9a4e088dd036b30
Sha1:   518b0064566201d193a5e055d5c2960c847e5648
Sha256: 6f11ab403158d93c51633a95574bd800dcda59140e190f4712e05d539ac56e0b
                                        
                                            GET /images/banner-img.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 01:37:00 GMT
Accept-Ranges: bytes
Content-Length: 961239
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 664 x 1031, 8-bit/color RGBA, non-interlaced\012- data
Size:   961239
Md5:    1cce91ed82665967b2efeeb02cd44f8f
Sha1:   7fa802c7ab7ce7afeba0a3fff898b01ec0cb3f19
Sha256: 8c1e84bb6b22d5ca952c61324463bd0768e21e33187ee917c43d06a74dde3acd
                                        
                                            GET /images/img-2.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 20:46:32 GMT
Accept-Ranges: bytes
Content-Length: 609312
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 816 x 699, 8-bit/color RGB, non-interlaced\012- data
Size:   609312
Md5:    dd0345d2b0306d20bc420e9b8d31a13d
Sha1:   c675c1109e7969f24440a85d30732018e9e5bb52
Sha256: 1f6cf4ceee60ad4e9efc1c2d09aef9bcbf7aca4d86280aa7a7e2411731322b96
                                        
                                            GET /tracking/tracking.js?_=1657152919080 HTTP/1.1 
Host: leostop.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         172.67.196.212
HTTP/1.1 301 Moved Permanently
                                        
Date: Thu, 07 Jul 2022 00:15:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 07 Jul 2022 01:15:20 GMT
Location: https://leostop.com/tracking/tracking.js?_=1657152919080
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lECqR5D4fdXiEITRBMQ3x3c%2FYcFo77kQ9nW2T7iG%2FtyL36ZokmSYlROGGQ9PC0kiSvMMrZdzFaSHOH4k5ZA2Uo4FvnVwKcXKmYIL5L%2B%2B%2FmIrJYGZpMo1sY11hsHIcQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 726c62974d78b4e8-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "0F8B0E82954EEECC85FC189CB3A33845EC68B656B0D4DBBBEA011CF9782DD1B7"
Last-Modified: Tue, 05 Jul 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5913
Expires: Thu, 07 Jul 2022 01:53:53 GMT
Date: Thu, 07 Jul 2022 00:15:20 GMT
Connection: keep-alive

                                        
                                            GET /images/about-bg.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 20:53:30 GMT
Accept-Ranges: bytes
Content-Length: 617160
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 1920 x 684, 8-bit/color RGB, non-interlaced\012- data
Size:   617160
Md5:    d6e712967f89bd28371fbb8cf02c8c2d
Sha1:   a789ed586b41bda7b2709c1831813728fd8c2783
Sha256: 888b198ae412f38c2f5e8f48c4872b0eef3046e9c4852b8b67f18885b4faa5b0
                                        
                                            GET /images/client-img.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:20 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 21:19:00 GMT
Accept-Ranges: bytes
Content-Length: 44241
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 198 x 181, 8-bit/color RGBA, non-interlaced\012- data
Size:   44241
Md5:    028b81d3992bfd6c9ff80e71b5190897
Sha1:   872ea4eed01057ff4b398a1a5bf3badb8ba4a6cf
Sha256: b524e8853dca0234a405f2f7224088075cc5bc17f37467b556d5218669d7d769
                                        
                                            GET /images/footer-logo.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:20 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 22:51:38 GMT
Accept-Ranges: bytes
Content-Length: 1694
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 101 x 21, 8-bit/color RGBA, non-interlaced\012- data
Size:   1694
Md5:    4215008e31292b525d442aeef39905e8
Sha1:   a73d400dc6cde7a1b198132bb5752346cb429ede
Sha256: 3af311d73506e0e2a0239db74c34c64405e845f73560b8d94f4976df840b6665
                                        
                                            GET /images/fb-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:20 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 22:53:40 GMT
Accept-Ranges: bytes
Content-Length: 1173
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 16 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size:   1173
Md5:    69d2acc3fbc9b7ea73c4bade1f784d34
Sha1:   1430163934603696fd14040cbe09ceb44ae25381
Sha256: e468312322e0cc3a726c201aea5aef13fef84acc3554da77b5fee35cd6d0493d
                                        
                                            GET /images/twitter-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:20 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 22:53:10 GMT
Accept-Ranges: bytes
Content-Length: 1370
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 30 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   1370
Md5:    4c72add1274a1163bd6642cc7dd7315f
Sha1:   819fb2842120b17aeb14c60b7609971696b81a64
Sha256: 8147dc5c46a3869f9024e917d9abf277bb343c7dd7022475dda29c854cbbc1ed
                                        
                                            GET /images/linkedin-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:20 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 22:54:06 GMT
Accept-Ranges: bytes
Content-Length: 1319
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size:   1319
Md5:    14c774ab5830977fdb82585d6c944d71
Sha1:   cdaf014e8c56d003a19e01b83e5f079a456747ab
Sha256: 3b0651857b83929c88605cf5ef6107a6e7e62fc5bcf73fb41edd13e0259bb1e9
                                        
                                            GET /images/instagram-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:20 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 22:54:36 GMT
Accept-Ranges: bytes
Content-Length: 1583
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size:   1583
Md5:    5de678dcd97c12113c5a43123d4f9974
Sha1:   33415d07265f444f1bcd30af723146af5f7e1df1
Sha256: 8542fb2e0f9e6fd45250f608ae756aebdf35474e57a66933b51f6e40536396ab
                                        
                                            GET /images/call-icon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:20 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 23:07:40 GMT
Accept-Ranges: bytes
Content-Length: 1123
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 18 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size:   1123
Md5:    507eaa1bd1bc094154ffd8d78c86a8bb
Sha1:   86276f8605c80b83e92d8453a2fa861c27c31a7d
Sha256: e903a9b90f0144dc2c9275d63014d5d6004fad56cbaaac8c1f81a02c23f72794
                                        
                                            GET /font-awesome/4.0.3/css/font-awesome.css HTTP/1.1 
Host: netdna.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sprayitfwd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.10.207
HTTP/2 200 OK
                                        
date: Thu, 07 Jul 2022 00:15:18 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 2021-08-03 04:14:00
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 6358afe6e12aefed963ad27f3935d6d1
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 2599604
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 726c628b9fb7b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  troff or preprocessor input, ASCII text, with very long lines (305)
Size:   5459
Md5:    d06d472a11d88909f4fedf01dc6f5c93
Sha1:   dba3268e3bf8ccc41301baa7c01da44ed1603ae1
Sha256: 46f89a69cbeca72c060a40425717e886a41745198b179427693d57e354e091bc
                                        
                                            GET /cgi-sys/suspendedpage.cgi?_=1657152919080 HTTP/1.1 
Host: leostop.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://sprayitfwd.com/
Connection: keep-alive

                                         
                                         172.67.196.212
HTTP/1.1 301 Moved Permanently
                                        
Date: Thu, 07 Jul 2022 00:15:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 07 Jul 2022 01:15:20 GMT
Location: https://leostop.com/cgi-sys/suspendedpage.cgi?_=1657152919080
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DtC5V5W7QLkW7l1CBsCN7azNcCPJgTL4tsjt1pAFHyL4apBlHeM9gClhNHI%2Bbq9izRsRYd3laaIIqaJe%2B4PsbNKIOPfTySpin%2Bw0Kdhsej76lpnW87WAovgHOz672w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 726c6299ef0eb4e8-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /tracking/tracking.js?_=1657152919080 HTTP/1.1 
Host: leostop.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sprayitfwd.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.196.212
HTTP/2 302 Found
                                        
date: Thu, 07 Jul 2022 00:15:20 GMT
content-type: text/html; charset=iso-8859-1
location: http://leostop.com/cgi-sys/suspendedpage.cgi?_=1657152919080
cf-cache-status: BYPASS
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zzoy4Jl4RTEu0fqAYd7nlDVs2i9KPj8vtPgbHYalgamKJaNxOQ%2F%2FP0BoeoDWQam1f1lR%2FjJPM9G8xu2S969uRjq6RN%2Ba%2BNk1pI3kGhBmXOjjECORXQNHx8RgL%2F3E%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 726c6297ca34b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909"
Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3194
Expires: Thu, 07 Jul 2022 01:08:34 GMT
Date: Thu, 07 Jul 2022 00:15:20 GMT
Connection: keep-alive

                                        
                                            GET /images/banner-bg.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/css/style.css

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:19 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 01:40:04 GMT
Accept-Ranges: bytes
Content-Length: 1845249
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 1920 x 1143, 8-bit/color RGBA, non-interlaced\012- data
Size:   1845249
Md5:    46afeb30c88cb118a54bdcdcbfc242d0
Sha1:   f302e0fb7e59ea1369c60f645a3d1fc53966e943
Sha256: b244e2e4bda949010a46277ffcf8d75beaf1039eae116894ca335aa6b26f4c21
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909"
Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3194
Expires: Thu, 07 Jul 2022 01:08:34 GMT
Date: Thu, 07 Jul 2022 00:15:20 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909"
Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3194
Expires: Thu, 07 Jul 2022 01:08:34 GMT
Date: Thu, 07 Jul 2022 00:15:20 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909"
Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3194
Expires: Thu, 07 Jul 2022 01:08:34 GMT
Date: Thu, 07 Jul 2022 00:15:20 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909"
Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3194
Expires: Thu, 07 Jul 2022 01:08:34 GMT
Date: Thu, 07 Jul 2022 00:15:20 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13136825-0301-44c6-8c81-faf21628fe4c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6737
x-amzn-requestid: 9a9c33df-daa2-49fb-ba8e-fd5a3149828e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UeP9ZG93oAMFX6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bbf9ef-248528170cf451be2662dbef;Sampled=0
x-amzn-remapped-date: Wed, 29 Jun 2022 07:06:23 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GZWZ5vCdHbLeGN4FdZbd8ysfjqcGd-7MsBW_steUpJ38jyLd16JNtw==
via: 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 03:53:29 GMT
age: 73311
etag: "5e2f835320ab350cdd1c3ad1ceb71db2bb27b84f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6737
Md5:    44f59062cacc44be268845c493de29de
Sha1:   5e2f835320ab350cdd1c3ad1ceb71db2bb27b84f
Sha256: c37305dfa7a241e526c7246a6eb71360dbfa2fe5d7f369f37ef7ddbfe1b97749
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7394f5d-cdce-41b4-a77f-497fd53c5173.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6510
x-amzn-requestid: 94ccabe7-9fb8-4d91-beea-ebd9a669732b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Uq6h8EV3oAMFZfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c10ad9-0d787e463b15c84b2cca0df8;Sampled=0
x-amzn-remapped-date: Sun, 03 Jul 2022 03:19:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KJSLnVrt4pTPuOocLg2Sr5uTfRyiaYyBh9Txohz4mMhsXQ262yfeIw==
via: 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 06:32:58 GMT
age: 63742
etag: "5e1dc99fa1b894ae83dd0ef04b3daa5ff820cd40"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6510
Md5:    35403bff40fe010a03fbbfa56185ef30
Sha1:   5e1dc99fa1b894ae83dd0ef04b3daa5ff820cd40
Sha256: 6c7efc03f6c3ebcf6ed69bff044d63ba19c832cb8ecb7ce291226b69cb7b3ac5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff614546a-b9de-4cde-9316-e7b0a023451d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9330
x-amzn-requestid: 80ee6232-932d-45eb-b386-d569db2d2e8b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Uq50IFhToAMFbQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c109b3-1edf12c22621d5e055f86092;Sampled=0
x-amzn-remapped-date: Sun, 03 Jul 2022 03:14:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Fshu_SgoCenbQjkf6NwoXYE-UekfazsBPx2Jreb0MceWwyJ-cF3Wcw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 21:56:17 GMT
age: 8343
etag: "e67c7c39294aae3367e7cae4ad024784f3126d01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9330
Md5:    d1d3a6bb81992015ed51d709ee207324
Sha1:   e67c7c39294aae3367e7cae4ad024784f3126d01
Sha256: c9eafd568b1c7d444d6455ac1753794e4683f4dfa031671dfbd81a4b4a21a51c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd91e1318-19c1-478d-9499-3baab13b925b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6764
x-amzn-requestid: 066475d9-bed3-4626-9a4d-a9e713866195
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U3UCmEwgIAMFSDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c60076-694099bd5429b3a91e282d27;Sampled=0
x-amzn-remapped-date: Wed, 06 Jul 2022 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: jh7ZAJd4DsRo2ta0q52WTWDvbtko84520eh2OKRfDv7KdoEW4fGtXQ==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 21:45:37 GMT
age: 8983
etag: "245427c92c74e85f199f9fd9563c91cb62cba979"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6764
Md5:    92e0cfdf03ce76aa5a899b42fc763e83
Sha1:   245427c92c74e85f199f9fd9563c91cb62cba979
Sha256: 2216f105d3350eabd7422e964bbbd9758009675ace79437c368097a27bf1f1fb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93a8f62c-f477-4f86-b38f-9cf50f26ba6b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9435
x-amzn-requestid: 350dbee2-f49b-472b-9a5f-90b02e87f615
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U3UotFAbIAMFhmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c6016a-1de7a99c73563b870db79db6;Sampled=0
x-amzn-remapped-date: Wed, 06 Jul 2022 21:40:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3Qsv7VRNCSlGqPVaHmNyvQJi9qiO7fQFEC81jar7-qYxvR6V86uNjg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 21:54:16 GMT
age: 8464
etag: "e11de922533e84447d5051ffbe8a3ccdbe2614fd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9435
Md5:    e9ea64f1082e78d01093dfc138de477c
Sha1:   e11de922533e84447d5051ffbe8a3ccdbe2614fd
Sha256: 4808f3ad9ca2e7110b565be70050f8595478c830a627afcbcd19bad211cb0c69
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa89fb6c-1b8f-4b5f-881a-7c1b4ddc61b9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 4829
x-amzn-requestid: 9345b8b6-c799-4398-86f8-618eec6f54d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UjGL9F4oIAMFZQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62bdea4c-0699926943cefd29234495fa;Sampled=0
x-amzn-remapped-date: Thu, 30 Jun 2022 18:24:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: SMiaJuChqVtH1akE4ReBrQQQS5Ic3HWrxL6FolBADdFQPakWPK9-zw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 21:56:11 GMT
age: 8349
etag: "b639fd1617311bd45a8615efc46b043526add4aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4829
Md5:    08b23daa51c5aa9893d433505300ef81
Sha1:   b639fd1617311bd45a8615efc46b043526add4aa
Sha256: 861c1f7c52fd5c5d2b8d0ae86ee2e3d46df0e9552ed2657f8aa6114703320779
                                        
                                            GET /images/img-3.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 07 Jul 2022 00:15:20 GMT
Server: Apache
Last-Modified: Tue, 03 Mar 2020 20:47:22 GMT
Accept-Ranges: bytes
Content-Length: 1042844
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 816 x 699, 8-bit/color RGB, non-interlaced\012- data
Size:   1042844
Md5:    9d494e0c312456490443eabe9b0b6c23
Sha1:   093346dcf20f3285573619280de260594ad6aafd
Sha256: 3f9abba495798fc7b30aee209901caa01113ae996a3e2edca29ec30326ab8d48
                                        
                                            GET /images/fevicon.png HTTP/1.1 
Host: sprayitfwd.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sprayitfwd.com/

                                         
                                         162.240.64.171
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 07 Jul 2022 00:15:20 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3