r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1456357aecbd23f21ad98da57e0127eb
7074815b39fa8da9013883971d665e4c1b0797ea
f3eba265ee64870b2f822f1511b36c747d763c382557789cdad8be1d3b52d1f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9930
Expires: Wed, 23 Nov 2022 07:22:24 GMT
Date: Wed, 23 Nov 2022 04:36:54 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b59d95402dfb464c176610284ba13f65
1a6c62fb0d48654dd204b66161bb03fefe60f71a
40cfd59b890ec5a3570603d28d90bd7e5c506babd52c2ece93e09f1c7b2a6880
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6068
Cache-Control: max-age=113729
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:54 GMT
Etag: "637ca4f3-1d7"
Expires: Thu, 24 Nov 2022 12:12:23 GMT
Last-Modified: Tue, 22 Nov 2022 10:31:15 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15034
Expires: Wed, 23 Nov 2022 08:47:28 GMT
Date: Wed, 23 Nov 2022 04:36:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 23 Nov 2022 04:09:22 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1652
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4teeSHwzNuAOaTOUSrlf56Z6xUhu8wXpxiu0TbCwpWEAMUQv+Rg2q41PZXfaN3tDjR76TGwOBGc=
x-amz-request-id: YPTRQWANDK5WHHMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 23 Nov 2022 03:42:50 GMT
age: 3244
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 23 Nov 2022 04:36:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 23 Nov 2022 04:11:11 GMT
cache-control: public,max-age=3600
age: 1543
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
manomav.com/12/TrdngAnr6339.exe
92.42.110.125301 Moved Permanently 0 B URL HTTP/1.1 manomav.com/12/TrdngAnr6339.exe
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /12/TrdngAnr6339.exe HTTP/1.1
Host: manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Location: http://www.manomav.com
Content-Length: 0
Date: Wed, 23 Nov 2022 04:36:54 GMT
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8a181d95550cfdf3b1fc4deb71631e40
37866f7293c41fbfb817e321754cae5c5bf59f93
6aa3d2763181cc48d2ad0ce7d227f3cb3324045c3f7858ccdbae675768dcec55
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6136
Cache-Control: max-age=108736
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:55 GMT
Etag: "637c912f-1d7"
Expires: Thu, 24 Nov 2022 10:49:11 GMT
Last-Modified: Tue, 22 Nov 2022 09:06:55 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.43.58.150101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.58.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4EzE8MH7xnIkE2CNM4d1UA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yWC3lnUfvV6ai3CrmF6DnjNPgmY=
www.manomav.com/
92.42.110.125301 Moved Permanently 0 B IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
X-Redirect-By: WordPress
Location: https://www.manomav.com/
Content-Length: 0
Date: Wed, 23 Nov 2022 04:36:55 GMT
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15114
Expires: Wed, 23 Nov 2022 08:48:50 GMT
Date: Wed, 23 Nov 2022 04:36:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15114
Expires: Wed, 23 Nov 2022 08:48:50 GMT
Date: Wed, 23 Nov 2022 04:36:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15114
Expires: Wed, 23 Nov 2022 08:48:50 GMT
Date: Wed, 23 Nov 2022 04:36:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15114
Expires: Wed, 23 Nov 2022 08:48:50 GMT
Date: Wed, 23 Nov 2022 04:36:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2fba7b0-566a-4154-a555-caf6ef55283e.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2fba7b0-566a-4154-a555-caf6ef55283e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f90eaacb028f41ae23d5ae0bb5bb1c60
adabb8e73c60950b2161b973db1150a2e6484d3f
8e45a3b3966392447e2b426e912e8151e087cfbf9f4ff2af47d81d20d5a19f25
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2fba7b0-566a-4154-a555-caf6ef55283e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10678
x-amzn-requestid: 9180d893-71d8-460c-92b7-2bb406940975
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: byQ65Fr6oAMFzjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63772eab-1741d1f27534c13e43e3cec0;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 07:05:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K2Shuq-IX_VACYEEJzuubHKr01H_Oq_NntRt9WlJuAMsBG61kaFhjg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 19:31:13 GMT
age: 32743
etag: "adabb8e73c60950b2161b973db1150a2e6484d3f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f13f0a4-9e67-4f61-9165-83b87312d9cb.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f13f0a4-9e67-4f61-9165-83b87312d9cb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 309227dc1b5f9193c6be8f5a010fa348
dff12e88a784a954012f257d3689862c52251d01
2d52b83ff0a58c41bf2e38abf8fce13eb87b5ecfce144ff0edc1bfadd254b452
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f13f0a4-9e67-4f61-9165-83b87312d9cb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8081
x-amzn-requestid: cafd3337-7bb8-4e2d-91d4-a33439a32b80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBcAMEwgoAMFl-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d4067-6074dcae15d9194513916d48;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 21:34:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0qleUIXFjvOqr3SeTpnFnVnhacI-ps0Fc33zsWp3eynFDhYOasUpPw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 21:56:48 GMT
age: 24008
etag: "dff12e88a784a954012f257d3689862c52251d01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 481c033b9ffd030ff0de6e35cf788b47
85d3baad9217af2b5d75c019d2ef95dbb919a788
02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 65a3db77-b2e6-40b9-a776-021c2e9b56d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bubSsHbZoAMFZNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375a5aa-1286b97968cc2e4c7fe8ab29;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 03:08:26 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: _j5ykGwKHIQEFLyuJK_OMvs-CsCvkUQhZc_YD8gAtbyOECQ894zvjw==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 05:19:29 GMT
age: 83847
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F719df867-6e3b-42ad-bb29-bacd6908c756.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F719df867-6e3b-42ad-bb29-bacd6908c756.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 858121146f13af8b53e7bfb9d143490c
2a0aa4d6e3d648b23e15db38559fa9be9ca2cdd8
5c79f7d9479cdaca6fca1abc2af768f8dbe2e7df70959a6620c676a4a4060b9e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F719df867-6e3b-42ad-bb29-bacd6908c756.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5721
x-amzn-requestid: d6a84920-e8e5-4160-aea1-ccabce26d36f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bvCq5EH4IAMFlSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375e4ab-7835c4341c7b2fb700784aa2;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 07:37:15 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: uHxRMxqxRzA8EdKR4GXNTGnjYcS2u1qLVmU6AZPSol1EXyHWkvmTzw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 05:08:07 GMT
age: 84529
etag: "2a0aa4d6e3d648b23e15db38559fa9be9ca2cdd8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19004cd2-76fa-499a-9749-67f2994dc084.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19004cd2-76fa-499a-9749-67f2994dc084.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a539a7b4a38c495d8d7efd7b95fec6de
8f8bdba45b4fdf16783758eb6e53f957e53987bc
2d209c13af43c4237e36291cb24140e4993361311489ad27943b1209262592e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19004cd2-76fa-499a-9749-67f2994dc084.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11839
x-amzn-requestid: b0429c36-a8c3-49e7-b25a-1ecdfc6e7648
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: btVS7Hp2oAMF32g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637535ac-097bd45a569a4cff672486de;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 19:10:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: omaSeWY89Yj_x-18NptKJzjBTZXpKGcUVWYdr05K0YwqGhSjQ3ohaQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 22:09:30 GMT
age: 23246
etag: "8f8bdba45b4fdf16783758eb6e53f957e53987bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0ea68cc-d723-41ae-8bc2-16e2e422e2aa.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0ea68cc-d723-41ae-8bc2-16e2e422e2aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c6380f73d47906bd63b9c48137e4df61
94e053461d2db89e9d08321f26a2555ebcd7e0b9
84144e3c3e7acc7339fd1da9b373f18582734b6f4d235b2aef8c90616ed1c8a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0ea68cc-d723-41ae-8bc2-16e2e422e2aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5914
x-amzn-requestid: 8dea187e-ee61-4691-aff7-59202f978565
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b2P4MF0UIAMFWBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6378c69a-011430f86689624a29d71215;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 12:05:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: c2w_q7fYc60JSQ4GcAlmUFyp7csfflgG8GvCXJuy_wWlvf9mIG0u9g==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 22:38:55 GMT
age: 21481
etag: "94e053461d2db89e9d08321f26a2555ebcd7e0b9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
92.42.110.125200 OK 10 kB URL HTTP/2 www.manomav.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (39791)
Hash 3cc7696f4c8caa2b1c7acab0c2ae1515
2df12fe5d820c9c8129c9276e2bb94f9df860331
5ec052aed0f32fed1fc31c9be24e1cd03a7bcdede8ae098af3d1997fdfb51a6a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:19:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10549
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
92.42.110.125200 OK 848 B URL HTTP/2 www.manomav.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
92.42.110.125200 OK 791 B URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash 70803413c9597ee8c0d1014c24614132
ebcf83176e785a74666e9a6f6237509f11e6dcca
fd2994ae20595548eaaf7b3071ced4b3ed29db6d87940a6a1c9672a10ae399e6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 791
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.3.24
92.42.110.125200 OK 1.7 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.3.24
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (6794)
Hash 9bb930afefcd08578e40d87e6cf74366
c2a096ebbc4a5e7400bb4d4294d5c011eb975a27
5c85203c7d95fbc0a76522a933408c07fe6e362c8094e514ec3c0bcb9e6bbd34
GET /wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.3.24 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1660
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5
92.42.110.125200 OK 3.8 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (42839), with no line terminators
Hash 0f2a1830a2eb3452fe698134828443d4
4d04d53d82c38785c13e1aa7cf012cb9dbf3db28
a037316b9cce9cab96056fd1797693e625fda9cfcd5337f5412b9aa8b6aae3ad
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3806
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3
92.42.110.125200 OK 6.8 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (45348), with no line terminators
Hash ac86c46c81a26a9b2dddfaff693e20ed
bcab73993780f26ad845347f3930b629cccbdfc2
cdc2f8852d087adb339f2813bb8663c5ef58722ac581ee64b5ea6751a74612b4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6791
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/
92.42.110.125200 OK 16 kB IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (26704), with CRLF, LF line terminators
Hash f8997b1e0b54329a04f935e4d77c011e
86ab72f66c53a73a0f4ab9cf25391f60e5e08305
c0ff09ae3a66e67a2a0888953d07f0e2ba6e1847a3b70ea38fc6e5e995ba7a12
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://www.manomav.com/wp-json/>; rel="https://api.w.org/", <https://www.manomav.com/wp-json/wp/v2/pages/27>; rel="alternate"; type="application/json", <https://www.manomav.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 04:36:56 GMT
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/service-box/assets/css/font-awesome/css/font-awesome.min.css?ver=5.9.5
92.42.110.125200 OK 6.7 kB URL HTTP/2 www.manomav.com/wp-content/plugins/service-box/assets/css/font-awesome/css/font-awesome.min.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (30837)
Hash 5dbbe85d6a3308dceb97d91b740b0f11
3f70abf9963371962665167f98ba52365481496d
751d4fdd16bd33cc9c93bcaadcd316922ca9bbd74cb6a9e1705c8bef4330dabf
GET /wp-content/plugins/service-box/assets/css/font-awesome/css/font-awesome.min.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6657
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/service-box/assets/css/bootstrap-front.css?ver=5.9.5
92.42.110.125200 OK 1.5 kB URL HTTP/2 www.manomav.com/wp-content/plugins/service-box/assets/css/bootstrap-front.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type assembler source, ASCII text, with very long lines (780)
Hash 2450779d95988cbe3c194d0f237670a8
e4af4b0e996b3697247d61f69d22f2273bd2b502
f1d88e4d468177db9f7fee176aa747ff09b992e73c4646cac2f3ef1afb584de9
GET /wp-content/plugins/service-box/assets/css/bootstrap-front.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1513
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/service-box/assets/css/owl.carousel.min.css?ver=5.9.5
92.42.110.125200 OK 1.2 kB URL HTTP/2 www.manomav.com/wp-content/plugins/service-box/assets/css/owl.carousel.min.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash ed801a1ee20bd6fd608be655cb07414e
6d6e3bdcd175b935d5344fb88e81a179a950f0c8
70edd720e30cc3723648f94458c7f0a990ddb8736c2400a201f03bc969a0dce1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/service-box/assets/css/owl.carousel.min.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:14:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1219
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widget.css?ver=5.9.5
92.42.110.125200 OK 2.1 kB URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widget.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (1332), with CRLF line terminators
Hash f0638c8e827007a1f336d2d6a0322b86
5302f4e9c29b18011f6dc53d15386676c55fad8c
84a8a5ed9f1590af4e0377b5003ab886cb049c639c45b24b9bde37fd2f2863de
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widget.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:15:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2060
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Style/richwebicons.css?ver=5.9.5
92.42.110.125200 OK 6.6 kB URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Style/richwebicons.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (412), with CRLF line terminators
Hash 30d7ed83122fd22771242fe54d4d8d5a
2cda87a11934256a1c1d83f6d1a668204a8f87b8
307b245e22943e5e4d6e105a69d3babd867a89f08cad2f94ccd7dd12c58697cc
GET /wp-content/plugins/slider-images/Style/richwebicons.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:15:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6633
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/recent-facebook-posts/assets/css/default.min.css?ver=2.0.13
92.42.110.125200 OK 627 B URL HTTP/2 www.manomav.com/wp-content/plugins/recent-facebook-posts/assets/css/default.min.css?ver=2.0.13
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (2339), with no line terminators
Hash 1a1871d6af0a277a4d7639e3e300fd9e
650e0b90196359669cf8590659b0f7c205375d12
4ad1e09185368fe44a670a5770d413b8665150b0ba206d05c17f93feca54cdce
GET /wp-content/plugins/recent-facebook-posts/assets/css/default.min.css?ver=2.0.13 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 627
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/genericons/genericons.css?ver=3.2
92.42.110.125200 OK 16 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/genericons/genericons.css?ver=3.2
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (19226), with CRLF line terminators
Hash 20f23c9697d6cc3fe3bee8fb8c0a8a68
08f4902584fd5a3048108387833104418e220cd0
5ee3fbfe65bb5c9cea06a44a3962ff4241b33fffa6a8d63ba6abc8b32f9af5dc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/genericons/genericons.css?ver=3.2 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16120
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/style.css?ver=5.9.5
92.42.110.125200 OK 575 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav/style.css?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (403)
Hash ac2e554d3dbf718e78606ede087cc049
01665beced7abf0e74306ffc4988657a98160997
93b8c3c40df3c91b35ab315213170cd3539922538f662b7645281831b0e3ba3c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/style.css?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 575
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.1
92.42.110.125200 OK 467 B URL HTTP/2 www.manomav.com/wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (3439), with no line terminators
Hash 04772b9a0d585dfb3c5761d2d3e8fd1a
1e5bd07f0138eafe870044ed503ac4e70970dd47
86c487538e95f949bc90d27f9db5fbfd5ea625fd8ad54e5972b87be7500c4f32
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:12:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 467
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.1
92.42.110.125200 OK 308 B URL HTTP/2 www.manomav.com/wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash 2475dc1856a51066526df1559de3dc3f
5a8f5901fd85da4e9dbdebfd6414b4ee5d251945
9461e6eb400fba6ff730e74e1e64bcd071e7a23fe123bf1c116cf95e5e6578f9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 04 May 2022 12:12:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 308
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
92.42.110.125200 OK 30 kB URL HTTP/2 www.manomav.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (65447)
Hash 34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
92.42.110.125200 OK 4.0 kB URL HTTP/2 www.manomav.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.3.24
92.42.110.125200 OK 7.4 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.3.24
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (1518)
Hash 7d2b4b55e04a6146c2b720c9d0a13d67
383c540478a21bc16b9a2c717a2ed28037fc3434
5f54b010dad731bceeeaa543a4767f3ca865cdb705c9d645068d35214e49970a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.3.24 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7419
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
92.42.110.125200 OK 8.8 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (25075)
Hash 1bc242a2555501251f4581a861d273b5
8182ba41622cb62f0b476c7f0f93aa835c6c9ec2
1834970e62778a993bf85b79b67c3e9687a2721f187722bdc1dc5f45605119b4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8752
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5
92.42.110.125200 OK 12 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (32001)
Hash e37dc9214e778f86c6dd07ca57bfe23d
2e1092d6634e370f97d3f7682e540f024fe9d80c
0c0f613b62e2faf3bdb93c389f666914323e163f757e4fed41bd9754602a7555
GET /wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12358
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0
92.42.110.125200 OK 2.0 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (5661)
Hash 02411584ba4f45db9c42a9944b4387f6
6536a6c1bd50cec302906246bfcb26796cee78c8
900005aa2f419bb5d3232695ab1fb3fd350586937dedc1ade84aeb40be6cdbff
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2017
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.3
92.42.110.125200 OK 31 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.3
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Hash 954aad693c0471a47f7a5438eabaf004
744c122858868545722250cbedf4a20c4e8ab07b
ded172a5737b0a1ed127c10d69f43be4087f2dbceaf851807c403863db7268d0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.3 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 31363
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/service-box/assets/js/owl.carousel.min.js?ver=1
92.42.110.125200 OK 11 kB URL HTTP/2 www.manomav.com/wp-content/plugins/service-box/assets/js/owl.carousel.min.js?ver=1
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (31997)
Hash 3cb10c6c01ef15e7d2c5ef33c6f06ee5
561a0008fd649a946ff6cdba379547c998cb4582
2107b826f18f7f10f78a38641124da03dad389704816a86136488123a0f01f3d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/service-box/assets/js/owl.carousel.min.js?ver=1 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:14:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11139
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Widget.js?ver=5.9.5
92.42.110.125200 OK 0 B URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Widget.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Widget.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-length: 0
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.easing.1.2.js?ver=5.9.5
92.42.110.125200 OK 837 B URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.easing.1.2.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (408)
Hash 24979d6f0439bd29a296a15a0af37440
d3936e7582eed7085442653449ed2f5bf991eeae
62b83c18b7f291559532f0061d9562d7a941198fe82b851c20fa135f96160cb3
GET /wp-content/plugins/slider-images/Scripts/jquery.easing.1.2.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 837
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.anythingslider.min.js?ver=5.9.5
92.42.110.125200 OK 188 B URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.anythingslider.min.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash ab146f4e02cf2813634d311b1d9141ba
47fa96bd2c56803cb6b6d0a85442d8cf927fcc0b
fe2f780b72df154bac9018fe4baa456963cefb7249f0c1a4ec111fe1b8368fde
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/slider-images/Scripts/jquery.anythingslider.min.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-length: 188
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.colorbox-min.js?ver=5.9.5
92.42.110.125200 OK 4.1 kB URL HTTP/2 www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.colorbox-min.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (9604)
Hash b3adc1a7f7dd023c2494e3834421bc89
3cb62b9faa35f4a7dba45a984406fb3f1bd75190
d26ac67d779d67d2ff53113c5972807ee79c76f47a810b5bbb6140b137ec476b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/slider-images/Scripts/jquery.colorbox-min.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4103
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/grid.css
92.42.110.125200 OK 1.3 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/grid.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash ac2c35e1b949f8154133fb4468d3d5cf
5374c530e8a62f448e826f3677b3bbfc9f727c09
f22d52ff425aef56c61abd727de012968c449a36de2f0a238f83c2f1dd264289
GET /wp-content/themes/manomav/css/grid.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1329
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/style.css
92.42.110.125200 OK 5.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/style.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash c9d6de9b3da4e1bd1f8b601269de456f
151d0eb4f001c63314709d57c596303ee47d9bd9
b1d971443f8f1db1f34b1a14c6ac1e21bff7987bd37c4e856398d93cce5c111d
GET /wp-content/themes/manomav/css/style.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5588
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/search.css
92.42.110.125200 OK 1.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/search.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 7355ef7b9168aae08f682ae45afc5941
75e8172962f7a2a7dfad2d96f2c8d7ec65ec7006
7037ec382a90222c29992ee657592996b500e88ec2aa3be15efd4d40851ee48e
GET /wp-content/themes/manomav/css/search.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1569
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/camera.css
92.42.110.125200 OK 1.2 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/camera.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash 75f4f7c39dad79e31a958f1c7eded89d
d08426e2b95ecfab3892710be8202e8a9f1865f8
768ea26c96921cb2f931879b5fc661c6f69e589772e0b5eb0476b2fa2d35517f
GET /wp-content/themes/manomav/css/camera.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1159
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/jquery.fancybox.css
92.42.110.125200 OK 1.3 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/jquery.fancybox.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 37110acaee335e72e0712f7152823006
1beabc4c70adca4de893be66c147fe435cb00b55
4bc71a992d1743fc76b0307fe1c4b625705fbf9af9efa31803bba81e7c049dce
GET /wp-content/themes/manomav/css/jquery.fancybox.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1282
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/google-map.css
92.42.110.125200 OK 174 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/google-map.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash d269908f072f380ea45b133c503b2ce0
b2f9f143c16a858df0afed0316487d15ee8e1553
2d1cca22aadb4f3e063e370cb31a8dfa475b387be75552271dfb659f9cdc7072
GET /wp-content/themes/manomav/css/google-map.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 174
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/contact-form.css
92.42.110.125200 OK 3.1 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/contact-form.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (2096)
Hash 511bef2a86c236383f0c58811367e697
df18f686b763cf2d353d689ad8efe8375e3adfa2
4d3fb8684f0b3f6559d3b564f755921c16c27d3bade8fc75965f751c3996241b
GET /wp-content/themes/manomav/css/contact-form.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3099
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/js/device.min.js
92.42.110.125200 OK 868 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav/js/device.min.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (645), with CRLF line terminators
Hash 5090a07e86b65c91c0f8523dbd961ab3
defbd6761de94fe1efcfecd36b4084300885ad12
82ae7f744c08401d562664f09e436403446aa40b3c81b5e1f7219c0eb359bca4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/js/device.min.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 868
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/images/mepl.png
92.42.110.125200 OK 6.9 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/mepl.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 286 x 284, 8-bit/color RGB, non-interlaced\012- data
Hash abe4ddf571667a910a00df0e92f67c19
c60d14f2e841073caf32c084a54af1837fad443c
b8aa99a10991b257a5ef2ffccb6bb86e5b7edacbcf2ccedc93016cdf84251c07
GET /wp-content/themes/manomav/images/mepl.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 6859
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/facilitateHome.jpg
92.42.110.125200 OK 43 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/facilitateHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash 8c0c6954d4cb5f5775528bd9bc4beb3a
006fb61c3c2ea0752e91099348c73dcb46772d47
b6a06abb2cf96835290b072f31b4bf3cc0ccb2a88d208b3d5aaef0ee67661055
GET /wp-content/uploads/photo-gallery/facilitateHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 42688
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/data-tables-generator-by-supsystic/app/assets/js/dtgsnonce.js?ver=0.01
92.42.110.125200 OK 41 B URL HTTP/2 www.manomav.com/wp-content/plugins/data-tables-generator-by-supsystic/app/assets/js/dtgsnonce.js?ver=0.01
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 29a98c4f5edd4ec8249f165ffcfbfd37
20c6a355a13d953617d6e7c50c91432a03917d43
2e599dfaffe056d6e6f7f19cd3e1d47169ac4468bd9fb2f9f4033940f7fc7584
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/data-tables-generator-by-supsystic/app/assets/js/dtgsnonce.js?ver=0.01 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:13:09 GMT
accept-ranges: bytes
content-length: 41
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 065495ec7a963a205abd9c8dbc75cb5d
ea416d0df4f6706150bda5da2077174f5cdd986b
1b2a2afee887651b23a849f14ace89b330329f6bf61c331545a3f6d12037aee5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ae7674294f5a17ef8761b33ac4dad848
30a771e623dd1e3cb8694bb5f71393aaa9e87b6a
cac85ed50ce25c45d5093aaaa231a0d1cd9667f47bd2312947070ba202c5d96b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
92.42.110.125200 OK 2.3 kB URL HTTP/2 www.manomav.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (6494), with no line terminators
Hash d36aa71a696fa330e746e020f51706c1
d562000b49ba8a70ae9a0f7cfff1b879fcf978b0
fb18eb2f616d3ccb9f8d8ce3d01f4ada3f0a269eab413b7bd7ad38ebfe8d781a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2330
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
92.42.110.125200 OK 6.8 kB URL HTTP/2 www.manomav.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (19111)
Hash d626306dffd33f5fe5c26a7f3eb31e11
c6a49756a49e4e3b65834485e4755b021cff392c
f96d9b10de2d4256189f9e282c2f400cb8d59e23d7a6845b62e4c8aa820cea84
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:19:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6810
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
92.42.110.125200 OK 3.1 kB URL HTTP/2 www.manomav.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (9720), with no line terminators
Hash 7b3d5adb95a380672e7d5da68b57b3c0
58db2566c56407e29d4557d912663b36ec328b14
aaa8914b936896ede7bb53ba3a4273d63bf82ed918efe0cfac6f2b3f4641a423
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3050
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.15
92.42.110.125200 OK 287 B URL HTTP/2 www.manomav.com/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.15
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
Hash b549377103ff5923af6a2bda22756d18
a4c00dace4932f712d63f67f2af4c5ea9d97d823
5518b4e3dc40d0172dab6d1c8e5babda33e6a59bb600677ab2c314ce3a9cb1e5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.15 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:13:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 287
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
92.42.110.125200 OK 8.6 kB URL HTTP/2 www.manomav.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (24733), with no line terminators
Hash 68595c6cc0dcbfdacf99bc94ff77ad86
2b2719f3d55566841af05dacf068dc2d3c10dcce
5ce4baf7eead42a8568d54a21c089360bb8667b592908350c1d8cb454844e2ce
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:13:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8563
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6
92.42.110.125200 OK 439 B URL HTTP/2 www.manomav.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (999), with no line terminators
Hash 941c9d44f1c480a37006540de948ef9a
29bc99b84660341fc37d60774b3083025a19147c
d297692ee1e68d1e2499576903508be06859340a25eded15b2565631a592851e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 04 May 2022 12:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 439
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/js/jquery.js
92.42.110.125200 OK 32 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/js/jquery.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (32086), with CRLF line terminators
Hash 06a2b2c3ee18a2c3846e756c2e2b2cb4
5088db61206ef8a341da7e358bc182c2d28a4c75
f3b18f58b0161082f9f2d1441cd1c969efd18c4826c29c6525de52ee4af61b03
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/js/jquery.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32304
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/js/jquery-migrate-1.2.1.js
92.42.110.125200 OK 5.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/js/jquery-migrate-1.2.1.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 04c400ba07fddcda3018399d7181fff4
5215c06557983bb8897812522eefb300f3be9b14
cd2799411ea3af1cb3f953b06c15da3cc4054a0faa8e6ae0f59d26a48a7f0618
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/js/jquery-migrate-1.2.1.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5559
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/js/script.js
92.42.110.125200 OK 2.4 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/js/script.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text
Hash 5fcb47dadd3297ac861a4fe8656cc30c
7e00652626d70125b3cb5743a11c00885162ab4d
14dc1ef50af74df54ff7b59fa69ed99b6f83381596d68da4943f8b7ffbba2730
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav/js/script.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2374
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/page-1_img06.png
92.42.110.125200 OK 1.0 kB URL HTTP/2 www.manomav.com//wp-content/uploads/page-1_img06.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 75 x 74, 8-bit colormap, non-interlaced\012- data
Hash 0936d25b5f0c880c758f834f5ff657af
665fb53da09cc0305e4af9f9d618b8ef95a45e31
b3241198cf470de3ecf19c7e5d6d5c1611504eed1faa54c723d75075a38a907d
GET //wp-content/uploads/page-1_img06.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 1041
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/constructions-analysis.jpg
92.42.110.125200 OK 17 kB URL HTTP/2 www.manomav.com//wp-content/uploads/constructions-analysis.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 370x247, components 3\012- data
Hash dace8485e254d259575929c33e9edbfd
637a6995a59734474006907df651352c6774a894
b150508454d6d1b33b6bc0dd99f3b38cb725bb949e546984425426eb88509ce1
GET //wp-content/uploads/constructions-analysis.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 16757
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/page-1_img05.png
92.42.110.125200 OK 837 B URL HTTP/2 www.manomav.com//wp-content/uploads/page-1_img05.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 75 x 74, 8-bit colormap, non-interlaced\012- data
Hash 496303110421a9ba99d696965b1af3ec
c7a660708c506099abb8d2b4dac5851aac8df6f3
b60b9e8dd0a9172871cb8f9c0e628b6ccd13d79d6dff1b3c16441eda70428aa5
GET //wp-content/uploads/page-1_img05.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 837
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/TECHNOLOGY-ADVANCE.jpg
92.42.110.125200 OK 14 kB URL HTTP/2 www.manomav.com//wp-content/uploads/TECHNOLOGY-ADVANCE.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 370x245, components 3\012- data
Hash 77df0a6308453dd3f8c3128a534815ba
21b7f5979e84ba135638dc1eb01b94eb8ebee067
ff57a4151e0d4d5413b21122dc6f4fbde486df5b02e0c3d31d7960ceadaeda5e
GET //wp-content/uploads/TECHNOLOGY-ADVANCE.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 13523
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/page-1_img04.png
92.42.110.125200 OK 976 B URL HTTP/2 www.manomav.com//wp-content/uploads/page-1_img04.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 75 x 74, 8-bit colormap, non-interlaced\012- data
Hash b16a8668230f6f41b82bc03669b39bf1
2457c8a555d93e88d70c0f7c809719a1851a5ec5
56410a1989ec35d1575ded12f1f6b1954c416b8f3c851647b9dae5b77679254d
GET //wp-content/uploads/page-1_img04.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 976
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com//wp-content/uploads/Knowledge-Sharing-1.jpg
92.42.110.125200 OK 21 kB URL HTTP/2 www.manomav.com//wp-content/uploads/Knowledge-Sharing-1.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 370x246, components 3\012- data
Hash 06cc248bfe6d3fd9f92ed1015102f9b7
f996ea896de5e30b393fec41b7b5c9ac54d3b8ea
8cabfa97d5842afd288e5c2726ee2768ab472a42901d754b1a91e7677593a23f
GET //wp-content/uploads/Knowledge-Sharing-1.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 20878
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/images/page-1_img08.png
92.42.110.125200 OK 2.0 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/page-1_img08.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 80 x 61, 8-bit/color RGBA, non-interlaced\012- data
Hash ceb41965553f18f73f8409c3030ea8cc
a6cf9929f2bc85f9ddeb3188eb15279407bde432
d9dff2f6cc6ceb2bead6dd1b2f488be068ecf5608c93410b339cba16b8a29e41
GET /wp-content/themes/manomav/images/page-1_img08.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 2034
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
92.42.110.125200 OK 4.5 kB URL HTTP/2 www.manomav.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (15224)
Hash 3c05cdbb96f694e86b05c7a3e5c6703f
615a7094f3210830bd5e6f08f845c101be2eefeb
371bb131cc739b177f4c90f67535f020d0bbee092e2ff1bad6ac38e978da3092
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:56 GMT
content-type: application/javascript
last-modified: Tue, 08 Jun 2021 22:15:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4539
date: Wed, 23 Nov 2022 04:36:56 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/css/animate.css
92.42.110.125200 OK 4.4 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/css/animate.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 09ea38bbdd5d82125e69048cbb9067ae
17e771fd58069275493a18dc80bf14b4ab191a56
9c0f6b7c3f54797bf48d128737920cd2c5d705edea21ed68370cbf54ed053524
GET /wp-content/themes/manomav/css/animate.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4425
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/font-awesome/4.3.0/css/font-awesome.min.css
92.42.110.125200 OK 5.1 kB URL HTTP/2 www.manomav.com/font-awesome/4.3.0/css/font-awesome.min.css
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (23502)
Hash 7826f5087340a4cd319f2f3789cdd95a
cdcc88c38b1ce8fe1dda21dfdcd3b8b29aa47b6c
04a0fef17dabf0233d639fb47758824276bafb3286a63b888ea363f75a1339c0
GET /font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: text/css
last-modified: Wed, 30 Mar 2022 15:49:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5089
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LeU98IfAAAAAD2zMRBHKynflTKmFsNAw_XYzNxE&ver=3.0
142.250.74.164200 OK 584 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LeU98IfAAAAAD2zMRBHKynflTKmFsNAw_XYzNxE&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash a801506f4b5f0d8b40cba9d70ffedb73
c010c06415d21cbe475485d1f4b0af46e7935ee6
4fc0582e3cfb3e6f0e3ff3579b6b3a9d9f92fd7ed8869e4a27e92bb4eaf9ebc6
GET /recaptcha/api.js?render=6LeU98IfAAAAAD2zMRBHKynflTKmFsNAw_XYzNxE&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 23 Nov 2022 04:36:57 GMT
date: Wed, 23 Nov 2022 04:36:57 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 065495ec7a963a205abd9c8dbc75cb5d
ea416d0df4f6706150bda5da2077174f5cdd986b
1b2a2afee887651b23a849f14ace89b330329f6bf61c331545a3f6d12037aee5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 8069f5e67c25fc0b7388ba5d4decd8c9
64a85ba44c80ea206f4382f573c3d61e4f607ccf
7587cd04333ddf1cff15ae219cb8fca0618786a9fe4cee989975f4d50889e72a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/themes/manomav//js/jquery.cookie.js
92.42.110.125200 OK 1.3 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.cookie.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash b8922e4804dbd0e23f774988a1c23d4f
5385ed7ddb2e70318b1630948c67979bc64b0ab3
09b27d742e6b54386eb3c93d6526d6742a5759ff8cc14c2445bf0deb24650fdf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.cookie.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1340
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fb4ee3082622f9f3340432290d63437e
852ca64934462e133e34043fca561aca215e6255
d4c2f665873baede94309128e276df6fdf7f0e1ec15699e75cd6bae2c24d556a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/themes/manomav//js/jquery.easing.1.3.js
92.42.110.125200 OK 1.9 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.easing.1.3.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 2caffc7a73cc9190fe3b124cc781a42e
46ad6641d1ebf8e091bde798a73d175d4c9facab
3e40e775308d772a7b0312d951db5db75105184d893cb92acf6e8ba1e338104d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.easing.1.3.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1903
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/tmstickup.js
92.42.110.125200 OK 779 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/tmstickup.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash c0c4de491cc3f43583e42eb6a7ba8f64
830c1e66d8447ef834b9dca2b68f5d1a0deec6cc
4914d9aa236670673ae668ba22d198eb283998adb8edf260f15728d83aa45e5d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/tmstickup.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 779
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav/images/page-1_img07.png
92.42.110.125200 OK 59 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav/images/page-1_img07.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 523 x 279, 8-bit/color RGBA, non-interlaced\012- data
Hash b17b9c5d84e23303a9e4192a2dfe13a3
b8c9f0f7526204ad8a4e6f5e58b2621b148c5846
874f9ca80a4b8d85470b9d70e7afdd6f05c4db1183bc116402525f9eff185580
GET /wp-content/themes/manomav/images/page-1_img07.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 58983
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/images/ajax_loader.png
92.42.110.125200 OK 10 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/images/ajax_loader.png
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 87b180d6f33ba5c4a931c2877484c5c3
76c99bb0eef2610b0b0c7a30fa3b20ab9c6dce59
5b13155d5e5495ecbd27b9fabc7b64d08cf8eaee2a83cb790d7c376fb1fc84a7
GET /wp-content/plugins/photo-gallery/images/ajax_loader.png HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: image/png
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-length: 10388
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/images/blank.gif
92.42.110.125200 OK 43 B URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/images/blank.gif
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /wp-content/plugins/photo-gallery/images/blank.gif HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: image/gif
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-length: 43
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:300|Roboto:400,500,300,300italic,900,900italic,700|Cutive
142.250.74.10200 OK 105 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:300|Roboto:400,500,300,300italic,900,900italic,700|Cutive
IP 142.250.74.10:0
Size 105 kB (105025 bytes)
Hash 75d746cb219086216b9733759f006cdd
4536c77da2b48ea2e601ea0ed89a2ebc343cde15
5455fe7ec20360c6784eb5867ae4b4596d92536ae35ec9e3f4fb8b33bd1aee46
GET /css?family=Lato:300|Roboto:400,500,300,300italic,900,900italic,700|Cutive HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 23 Nov 2022 04:36:57 GMT
date: Wed, 23 Nov 2022 04:36:57 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-N27W84R
142.250.74.168200 OK 63 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-N27W84R
IP 142.250.74.168:0
File type ASCII text, with very long lines (3702)
Hash d97ca3138bcdb5e3a0142bca9cf62aff
5023358009ca91069f9c8b4d37dc35106384348b
898005599b0a5147f8353346575a065a08b4a80f53f455a64d869ffa02593fe2
GET /gtm.js?id=GTM-N27W84R HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 04:36:57 GMT
expires: Wed, 23 Nov 2022 04:36:57 GMT
cache-control: private, max-age=900
last-modified: Wed, 23 Nov 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 62961
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.manomav.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff
92.42.110.125200 OK 57 kB URL HTTP/2 www.manomav.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
Analyzer Verdict Alert fortinet Malware
GET /font-awesome/4.3.0/fonts/fontawesome-webfont.woff HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.manomav.com/font-awesome/4.3.0/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: font/woff
last-modified: Wed, 30 Mar 2022 15:49:32 GMT
accept-ranges: bytes
content-length: 56780
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts/bwg.ttf?qy18kk
92.42.110.125200 OK 7.5 kB URL HTTP/2 www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts/bwg.ttf?qy18kk
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, bwg \012- data
Hash dae2130d98859247658e1e20ee533365
11f728cc64d77fb4fa61450e836c3c32f11958bf
97c83c5dacfb91b48c48b6ac0989f58eb8183d2a12f41e5f0d7553a0ff3bd467
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts/bwg.ttf?qy18kk HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: font/ttf
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7544
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/themes/manomav//js/jquery.ui.totop.js
92.42.110.125200 OK 521 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.ui.totop.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type HTML document, ASCII text, with CRLF line terminators
Hash 61f8dcda919aab860cfb126c145390b0
82356eb7d64c90583fd975c1c82a203ec49534dc
61177932bfa875a6ad4cb6ef709b97821d610d45d9d77233864b7ffb3360566c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.ui.totop.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 521
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/superfish.js
92.42.110.125200 OK 2.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/superfish.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash d5a50923fec57fc00cf76026094d6e20
645422233ad47b65e96d2f0dd8ccf46f76eb6084
2a892227b0f6b165380e8365222ca51e48725b963763d183f60d4133ff5b69a3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/superfish.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2604
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.rd-navbar.js
92.42.110.125200 OK 1.5 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.rd-navbar.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash ba84d20a0e659888094b4fd6af4e3c7d
04ea110dca487ee4b61795abcd0266fc7cfa62c4
25c05adf736a47e42c84ce9ae73eaea98e09a056d5a839705c7bb392faf63574
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.rd-navbar.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1488
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/wow.js
92.42.110.125200 OK 2.6 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/wow.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 2fd30581ab54d111e16cfed38983162f
7a5f473ca305b14177415829aa17176ad79a0bcd
3b902ea2e5ade7cd8c3742fc7acf92d823e743cf2134ddbda0ef555e1b5aef0c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/wow.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2630
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox.js
92.42.110.125200 OK 14 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF, CR line terminators
Hash 47b8b47f3065d7c1a7e41b8284656b67
fb5128734e13dc3a2dbe06604f4583d3dd72b7d9
28f74b55d6c059b9cb2fe7d9df4d5a51f6ae92a28721fecc709b1386327eeef3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.fancybox.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13997
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-media.js
92.42.110.125200 OK 1.9 kB URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-media.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 6e0eb49957743e04b5fbcb713068b239
3914094ae05d176832ec2f594ccedb2b9330d0b4
202c4298ebfc56b14e6a4e929c175683f241f2f758c16617138b8ba1b635974a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.fancybox-media.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1881
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cutive/v17/NaPZcZ_fHOhV3IpLSPJC.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/cutive/v17/NaPZcZ_fHOhV3IpLSPJC.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23176, version 1.0\012- data
Hash 1a46e43cdc6a2aa4db72a144956d324b
a262bb0c7203a615e67005881cb863062de96db6
c8e606c88b52a4176eaf5d9612001876d15d15a0c8aa1f436e86ca5681d62b36
GET /s/cutive/v17/NaPZcZ_fHOhV3IpLSPJC.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23176
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 03:20:45 GMT
expires: Thu, 23 Nov 2023 03:20:45 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 16:50:37 GMT
content-type: font/woff2
age: 4572
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-buttons.js
92.42.110.125200 OK 994 B URL HTTP/2 www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-buttons.js
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type ASCII text, with very long lines (411), with CRLF line terminators
Hash a3732175d4e9b44383f144d5ef77ca52
002cc74393490c7d8ff12d689082987f36c3f9ad
c9e6d91b7df0781566516f9c2ef9f3c7db9cff41521eb3a96f9f9b7f99400c8d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/manomav//js/jquery.fancybox-buttons.js HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: application/javascript
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 994
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2
216.58.207.195200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17508, version 1.0\012- data
Hash 7fbdfaab6bd8b191496ffe1ef1b9e748
e9e592f8498d489d8000f3a4cfb1bb447f251edd
bb8007225d94a099cddbade7ea904667c0dd0b68d5e30778e5c6257589ab94d1
GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17508
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:44:33 GMT
expires: Thu, 16 Nov 2023 19:44:33 GMT
cache-control: public, max-age=31536000
age: 550344
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:34:08 GMT
expires: Thu, 16 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 550969
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:34:21 GMT
expires: Thu, 16 Nov 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 550956
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:40:23 GMT
expires: Thu, 16 Nov 2023 19:40:23 GMT
cache-control: public, max-age=31536000
age: 550594
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fb4ee3082622f9f3340432290d63437e
852ca64934462e133e34043fca561aca215e6255
d4c2f665873baede94309128e276df6fdf7f0e1ec15699e75cd6bae2c24d556a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 18:53:49 GMT
expires: Thu, 16 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 553388
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 14:07:32 GMT
expires: Thu, 16 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 570565
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.manomav.com/wp-content/uploads/photo-gallery/pmcHome.jpg
92.42.110.125200 OK 45 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/pmcHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash 31c25d4abf593439281ec7d1901d2e37
11ae8ec356a433d00bca1b503e1f0b97de26f271
54c692448b2292ddbddfb689e1e96a3c215fc9a553a3158c627f4bf367ee8970
GET /wp-content/uploads/photo-gallery/pmcHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: image/jpeg
last-modified: Sat, 19 Aug 2017 10:40:55 GMT
accept-ranges: bytes
content-length: 45232
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/qsHome.jpg
92.42.110.125200 OK 35 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/qsHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash f4dbe5e0f58442c89ea6e2a24a35154c
2fefb02e6afa44e11bd6338c2df40237e0a5491a
75f568ae74d726b3c18d85f78fd17c0e077c27c68fc0cc103985996c3a34ba49
GET /wp-content/uploads/photo-gallery/qsHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: image/jpeg
last-modified: Sat, 19 Aug 2017 10:40:56 GMT
accept-ranges: bytes
content-length: 34551
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/bbsHome.jpg
92.42.110.125200 OK 80 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/bbsHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash 320b350237ff8de359326619d852ac17
768f352ef58f9d4aa8283e0cd893bed18f370b6d
cf8ff002d0dc615c8e8c2c4614ac442428e0407b5d006c411dc7177f98ef253a
GET /wp-content/uploads/photo-gallery/bbsHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: image/jpeg
last-modified: Sat, 19 Aug 2017 10:40:30 GMT
accept-ranges: bytes
content-length: 80516
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
www.manomav.com/wp-content/uploads/photo-gallery/bimHome.jpg
92.42.110.125200 OK 54 kB URL HTTP/2 www.manomav.com/wp-content/uploads/photo-gallery/bimHome.jpg
IP 92.42.110.125:0
ASN #29066 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Hash d1b55265a9c929812723f8ba7c386ec4
6e7c65ef9a961d44dd598caa64c23ba10b67e521
f9e0106f4c433d265f5b88b807c221c6380e85068337e1fb1823c7f4a66aa13e
GET /wp-content/uploads/photo-gallery/bimHome.jpg HTTP/1.1
Host: www.manomav.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 04:36:57 GMT
content-type: image/jpeg
last-modified: Sat, 19 Aug 2017 10:40:54 GMT
accept-ranges: bytes
content-length: 53571
date: Wed, 23 Nov 2022 04:36:57 GMT
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 3e74417af1d3df81b4b66ecfb3291c72
faa8eee480f5912c4ae3c55a939305103424833a
420f3ddac4616c132d1efb0c38ec0b450b5248264ef6298bc3faefd615549d61
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 04:36:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 07:31:19 GMT
Expires: Tue, 29 Nov 2022 07:31:18 GMT
Etag: "faa8eee480f5912c4ae3c55a939305103424833a"
Cache-Control: max-age=528260,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76e734f47d121bfe-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0be3e3b6a55789993d7a1a175bb8e335
70e1b2ef23731397872aa67d3da9f97d40e4fad4
155e55bec061fd76dc2a73b570ebbac9ad17f22e95394c7bf96094a0729a7a54
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3127
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:57 GMT
Last-Modified: Wed, 23 Nov 2022 03:44:50 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
load.sumo.com/72.0a035390359aab65eb82.js
194.242.11.186200 OK 45 kB URL HTTP/2 load.sumo.com/72.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type Unicode text, UTF-8 text, with very long lines (31962)
Hash 0b3c78edab81afc8966c7f729ee6dd88
fabf0420fd40504e46dc4fa04b15787cb988fe92
ea3ed6ef9f3c57dc389a63fb6347c2b3510b42b7053fcd13eece611c404b895e
GET /72.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 04:36:57 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"a1c4ecc2ca5bc12d61068cd427f9729f"
last-modified: Mon, 01 Aug 2022 17:37:14 GMT
x-amz-id-2: yncNVLF2WNTvfJNP5kgASaiZWLNa84vsckpGLCsBd0rTvIK+s4Z1y1Nb+RCG+2BivC/7SoYE1tk=
x-amz-request-id: ARECMNYEHV1MDN3P
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/09/2022 20:15:00
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 848d53c2f50ce1ac8ca4f9a37d760bec
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/
194.242.11.186200 OK 1.6 kB IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (2192), with no line terminators
Hash ad20c993b983a5b8fb44818b6af8312a
b49396d6ef8ae97a33d272cf92fc8b857f7c2b6b
bd34f479e2adc0beabc20e731af28c521c1cab95ed3318f12053884e6818543a
GET / HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 04:36:57 GMT
content-type: text/javascript
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=600
etag: W/"415c9608bc47ee8a16b3a2f2c0aee7b0"
last-modified: Wed, 05 Oct 2022 16:50:13 GMT
x-amz-id-2: yWwpYjuVMUCRycTod3A8/6vZcH3rcKsHfa5zJ7LX12WcHiXnoQ7ORq4B2BUmD5heklcYFhcOKoY=
x-amz-request-id: WS2CDS9DCKR7RTS8
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2022 17:52:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: b1e56bb75997bf50e458cf9a6215cd64
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
142.250.74.163200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 05:54:54 GMT
expires: Wed, 22 Nov 2023 05:54:54 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 81723
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 23 Nov 2022 02:41:08 GMT
expires: Wed, 23 Nov 2022 04:41:08 GMT
cache-control: public, max-age=7200
age: 6949
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: private
cache-control: private
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
x-ua-compatible: IE=edge
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 0fsBjYHRe5p27HEZNgr8yUELfuSfwSUPgWYSU6Dtw7ZqnHFQnSApSb613cCTTie4G9NDiqEZP/kpZhxntGuPAg==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1679558926
date: Wed, 23 Nov 2022 04:36:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0be3e3b6a55789993d7a1a175bb8e335
70e1b2ef23731397872aa67d3da9f97d40e4fad4
155e55bec061fd76dc2a73b570ebbac9ad17f22e95394c7bf96094a0729a7a54
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3128
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:58 GMT
Last-Modified: Wed, 23 Nov 2022 03:44:50 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b2b92f1110c82662bfa1addc9bab3130
d6f86300cbfd5b21b3d505c08ffd6edef34b654a
6914944644172d563d0d7c2a5084690fce86ead13949ff29f42842d4bb6e0734
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash c04aed338f8610ba6b0acc4ab749c52e
9cce76bf45ca7cb7e101d6c5c8013ecc83f188a4
4d4e0d35a6f2357ff749b146e4f0fdff7f5f8631b3e6efee952f5c82fb256fbd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/961138791/?random=1669178217450&cv=11&fst=1669176000000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&fmt=3&is_vtc=1&random=2324328815&rmt_tld=1&ipr=y
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/961138791/?random=1669178217450&cv=11&fst=1669176000000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&fmt=3&is_vtc=1&random=2324328815&rmt_tld=1&ipr=y
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/961138791/?random=1669178217450&cv=11&fst=1669176000000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.manomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&fmt=3&is_vtc=1&random=2324328815&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 23 Nov 2022 04:36:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash c04aed338f8610ba6b0acc4ab749c52e
9cce76bf45ca7cb7e101d6c5c8013ecc83f188a4
4d4e0d35a6f2357ff749b146e4f0fdff7f5f8631b3e6efee952f5c82fb256fbd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:36:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=1600006463365685&ev=PageView&dl=https%3A%2F%2Fwww.manomav.com%2F&rl=&if=false&ts=1669178217971&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1669178217970.1898644183&it=1669178217654&coo=false&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1600006463365685&ev=PageView&dl=https%3A%2F%2Fwww.manomav.com%2F&rl=&if=false&ts=1669178217971&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1669178217970.1898644183&it=1669178217654&coo=false&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1600006463365685&ev=PageView&dl=https%3A%2F%2Fwww.manomav.com%2F&rl=&if=false&ts=1669178217971&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1669178217970.1898644183&it=1669178217654&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 23 Nov 2022 04:36:58 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 12:31:58 GMT
expires: Sun, 19 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 317100
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 21:46:16 GMT
expires: Fri, 17 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 456642
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 18:53:49 GMT
expires: Thu, 16 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 553389
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52837639-2&cid=876489639.1669178218&jid=187455379&gjid=402825453&_gid=2011920362.1669178218&_u=YEBAAEAAAAAAACAAI~&z=1399501644
142.251.1.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52837639-2&cid=876489639.1669178218&jid=187455379&gjid=402825453&_gid=2011920362.1669178218&_u=YEBAAEAAAAAAACAAI~&z=1399501644
IP 142.251.1.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-52837639-2&cid=876489639.1669178218&jid=187455379&gjid=402825453&_gid=2011920362.1669178218&_u=YEBAAEAAAAAAACAAI~&z=1399501644 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.manomav.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 23 Nov 2022 04:36:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sumo.com/api/load/
52.38.14.212200 OK 921 B IP 52.38.14.212:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (920), with no line terminators
Hash 7c55ee4f97c620ed630194b56ef8294d
83c855a0ce6838df6ef9bdaa7bd14a1783381862
a701b1a0557beeb1b19ad465a6a96710311c62cb816f48b67f075313b691a0d8
POST /api/load/ HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 210
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 23 Nov 2022 04:36:59 GMT
content-type: application/json; charset=utf-8
content-length: 921
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://www.manomav.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
set-cookie: __smSessionId=s%3AMQXxsobzGAduQGrt4Y9csUrB.H2J1UieHrLH%2Bnb6LffGEFSzE1FmZiQN2SvVhLSG6alI; Path=/; Expires=Wed, 23 Nov 2022 13:22:35 GMT; HttpOnly
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
sumo.com/services
52.38.14.212204 No Content 0 B IP 52.38.14.212:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /services HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-sumo-auth
Referer: https://www.manomav.com/
Origin: https://www.manomav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 23 Nov 2022 04:36:59 GMT
access-control-allow-origin: https://www.manomav.com
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE
access-control-allow-headers: pragma, x-requested-with, accept, x-sumo-auth, x-sumo-token, content-type
access-control-max-age: 2592000
X-Firefox-Spdy: h2
load.sumo.com/96.0a035390359aab65eb82.js
194.242.11.186200 OK 102 kB URL HTTP/2 load.sumo.com/96.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (65536), with no line terminators
Size 102 kB (101579 bytes)
Hash 542af940310f9126ee07c15532a08298
6fc01af6b58d13e5ed08d7a69dface7c2fa67571
ec15c9edec1caa550d4007abeae31e142ab6db4164517d21d6fc055ae12959bd
GET /96.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 04:37:00 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"f33273f5c8e8dd3d010a11b209891b91"
last-modified: Wed, 25 May 2022 21:05:41 GMT
x-amz-id-2: oWZwV68z0ZCzv6p9ikD/9Zqf8HgilPFx7iKeWmSkvbvM6LwG5TReXNryXRxtFupGJWUv+hbZ0Ek=
x-amz-request-id: 4NT2N7V1ZP2X9DMS
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/16/2022 07:42:52
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 8d04a9f64405e834a93a9e3688e0b3aa
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
sumo.com/services
52.38.14.212200 OK 24 kB IP 52.38.14.212:0
Hash 637278fc5d9e48d8253fed226407c69f
ab1a7a3e1734085bb9d4629500307a488ac6a545
34706b539aa3d593f7c730d38907a8cf25ef561723dc8c4f480b676ee7089a15
POST /services HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Sumo-Auth: MQXxsobzGAduQGrt4Y9csUrB
Content-Length: 748
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 23 Nov 2022 04:36:59 GMT
content-type: application/json; charset=utf-8
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://www.manomav.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
content-encoding: gzip
set-cookie: __smSessionId=s%3AOGY3h3vsw23C6VbSs3J6OxiT.2YUZSTRxojvictpa3UKzJ9NYzPrx8gpRhBDHBkYyno8; Path=/; Expires=Wed, 23 Nov 2022 13:22:35 GMT; HttpOnly
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
X-Firefox-Spdy: h2
load.sumo.com/7.0a035390359aab65eb82.js
194.242.11.186200 OK 87 kB URL HTTP/2 load.sumo.com/7.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (58711)
Hash 3e3a22fc548759f9656d269034ed0a48
aa42b98227b414b365eeab0675161dd2099b2cd8
24dcb4e6385b118f29e192fc30b7f4ff8ab231188cf7ac9e1aae06eb97a7e4d4
GET /7.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 04:36:59 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"3fa9c18f727d4b42fb894fda90a374e1"
last-modified: Wed, 05 Oct 2022 16:49:48 GMT
x-amz-id-2: +tZBC0yCRpC0RwQm18pOLd8ZUd7hqbTPV/hOapjhWvXkW/PYom2XdXxFKSxvPs+fZp1IHRGFK2Q=
x-amz-request-id: KZSAVBQ92E9TXV4E
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2022 17:52:29
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c609abd3bba4a69e9f53a6bcdeaf5d59
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 8069f5e67c25fc0b7388ba5d4decd8c9
64a85ba44c80ea206f4382f573c3d61e4f607ccf
7587cd04333ddf1cff15ae219cb8fca0618786a9fe4cee989975f4d50889e72a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 04:37:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
clients6.google.com/rpc?key=AIzaSyCKSbrvQasunBoV16zDH9R33D88CeLr9gQ
142.250.74.142404 Not Found 1.6 kB URL HTTP/2 clients6.google.com/rpc?key=AIzaSyCKSbrvQasunBoV16zDH9R33D88CeLr9gQ
IP 142.250.74.142:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash fdafd7cfefa898c6cdd100bbb5a9a66b
8bfb3adcc308a18d8367634e5850520d94895206
1b033c332a02fde4de1489e33cfe304e2ab016ccc725d5216fad989975330318
OPTIONS /rpc?key=AIzaSyCKSbrvQasunBoV16zDH9R33D88CeLr9gQ HTTP/1.1
Host: clients6.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.manomav.com/
Origin: https://www.manomav.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
referrer-policy: no-referrer
content-length: 1564
date: Wed, 23 Nov 2022 04:37:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sumo.com/apps/share/facebook/queue
52.38.14.212200 OK 16 B URL HTTP/2 sumo.com/apps/share/facebook/queue
IP 52.38.14.212:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
POST /apps/share/facebook/queue HTTP/1.1
Host: sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 109
Origin: https://www.manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 23 Nov 2022 04:37:00 GMT
content-type: application/json; charset=utf-8
content-length: 16
x-frame-options: SAMEORIGIN
access-control-allow-origin: https://www.manomav.com
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
p3p: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
X-Firefox-Spdy: h2
load.sumo.com/64.0a035390359aab65eb82.js
194.242.11.186200 OK 132 kB URL HTTP/2 load.sumo.com/64.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (1305), with no line terminators
Size 132 kB (131990 bytes)
Hash 1213d0014345f14559e75b7969f8193a
ad0d5a4613d7e48985175e15522e7d1055c11aa1
e7acd247593096312ec86005ed250aae0f4c6e09f0b5f22b03138a6758dfd24f
GET /64.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 04:36:59 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"d200986501135078d1fbd7f480e7bb08"
last-modified: Mon, 01 Aug 2022 17:37:08 GMT
x-amz-id-2: uTd0fGAmQ/qQbQFNMxmbYzUtke4eY1PS5zTkBBciiv0Es0UchPt0PddZ9dyhRU9ZzowZafmJsoY=
x-amz-request-id: V8EXEYCRRPW7PD51
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/09/2022 20:15:03
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 5843ce90e70e67d4281ac9e88835abf6
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/22.0a035390359aab65eb82.js
194.242.11.186200 OK 25 kB URL HTTP/2 load.sumo.com/22.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (65536), with no line terminators
Hash b7e32b2da8c3c02de5dfe06bf8babf3e
88f9389a23a079d9264658b43dc540737d91d880
d1ddd81aac80a01fe4238ae13ef38cf0f623936bc6d31f15f7da29650df61bdd
GET /22.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 04:36:59 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"8af82c4c30a069f66de02526c2f332af"
last-modified: Wed, 05 Oct 2022 16:49:12 GMT
x-amz-id-2: AXgNUG4Gx/RKXwLPg9dg1H/Ru1HgWxjBqrFSIBFGJq0xRjGTk7ZFg/3uvwXewFKOoQ+oVX84uOM=
x-amz-request-id: N7TD803J1C8YZ1DX
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2022 17:52:26
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 70bb661a99787b9bfa6651a569412e1a
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdde883bc-a7d5-4543-99fc-54e30eee2be6.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdde883bc-a7d5-4543-99fc-54e30eee2be6.jpeg
IP 34.120.237.76:0
File type gzip compressed data, max compression\012- data
Hash dbe5fd818ab8511de3638aec32ddc2b3
cb0606891741e8d702476d3b5837058f3b3ee152
e4f27062e36ea65861f8faab04a7b2c780836af9a281c01ff2f4765cc96bda2f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdde883bc-a7d5-4543-99fc-54e30eee2be6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8577
x-amzn-requestid: c0a5f9a1-e6f6-480e-a534-3d1b16c79a75
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1jHVGFYIAMFyFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63787efb-544394f15e8380910447d48a;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 07:00:11 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: jUnOXD_n9DpLqeKBY_T-FVh-zWBfZddGKkHQHasqESKrYvXyZxljag==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 07:03:42 GMT
age: 77601
etag: "cc4dae732136f04ab6824e78e834cef8c3174ede"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
load.sumo.com/73.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/73.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /73.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 04:36:57 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"ad6f2454f01de902ffd473d51c1207bf"
last-modified: Wed, 05 Oct 2022 16:49:51 GMT
x-amz-id-2: Hz9r0Oy0Lsbgn9NcYv/B+XTMeQ2xOfGvr5EDFJozese24w/F5uOsPkmwbJdvmhKzxtztGF2d/m8=
x-amz-request-id: EMRCGRD8TNPBR2V9
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2022 17:52:27
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c1c3e161299fad6f4deed6656b04e026
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/4.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/4.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /4.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 04:36:59 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"a39d043b7c7bba70750cf288ee5ef71a"
last-modified: Wed, 05 Oct 2022 16:49:25 GMT
x-amz-id-2: 4fcmsSo4UqJwhOqjF2RabwAMenMTkrbZaYqouwX9hgXNAhvFAfHRrltlEFVyyBl16ZbGgXMNzVw=
x-amz-request-id: 3ZW0ENMS0W1WHH93
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2022 17:52:23
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 295e7c0204f8b30b11e8d3e58061e81a
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/2.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/2.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /2.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 04:36:59 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"6bfdf1ae8492f107706ac037915be663"
last-modified: Wed, 25 May 2022 21:04:43 GMT
x-amz-id-2: 6PNzoY2bwq8TRd6kG87xsdwwZVMkvJf0/efDm8ajElAv34gPJUvYgkBjwDQSvVR2KKmGNxwg/Gk=
x-amz-request-id: 4NT63S72ZR8KN5DF
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/16/2022 07:42:52
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: f39183526f8260d54c8d96f0806db2a1
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
load.sumo.com/23.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/23.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /23.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 04:36:59 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"be0b945be6cafa91f6fd4efdfc8268f8"
last-modified: Wed, 05 Oct 2022 16:49:12 GMT
x-amz-id-2: fZ89+7KF1xOysm3DW2wmctYjGGcEkc5ujUbQRz38wDJ8OeaWLrXwnNGLI5SWOB5Np+dxRRMIbiY=
x-amz-request-id: N7T17F0N6AS9ENSA
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2022 17:52:26
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: d6345014c25c357687902f0e57b15363
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext
IP 142.250.74.10:0
GET /css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 23 Nov 2022 04:36:57 GMT
date: Wed, 23 Nov 2022 04:36:57 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
load.sumo.com/21.0a035390359aab65eb82.js
194.242.11.186200 OK 0 B URL HTTP/2 load.sumo.com/21.0a035390359aab65eb82.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /21.0a035390359aab65eb82.js HTTP/1.1
Host: load.sumo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 04:36:59 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"beda094dfc3b530efd0d2d83c5a0280c"
last-modified: Thu, 28 Jul 2022 18:31:17 GMT
x-amz-id-2: CzydRzq5oDc790yclkehRSY/N4HbM9hWKTus/bfXU8tfT7c8w5WJiAtBJReHCyxz/8iaHbXHhh8=
x-amz-request-id: EGJRDEFA51GD0GY6
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/31/2022 19:36:57
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 12abdf86e02b94abb0535e4426d9e5ac
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2