r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2461
Expires: Sun, 29 Jan 2023 04:23:43 GMT
Date: Sun, 29 Jan 2023 03:42:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3015
Expires: Sun, 29 Jan 2023 04:32:57 GMT
Date: Sun, 29 Jan 2023 03:42:42 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 03:35:33 GMT
content-type: application/json
age: 429
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.shahcorporationltd.com/index.php
162.241.224.167301 Moved Permanently 243 B URL HTTP/1.1 www.shahcorporationltd.com/index.php
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3729b93c59993a1f683738104640ccfd
e3cd4b5c18b78f6a1c325a1bfcff37b38d476a8d
04931fa79924de6c578c51c7fbd07e258174c7e86df8fb32d85e0968dc60598b
Analyzer Verdict Alert fortinet Phishing
GET /index.php HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 29 Jan 2023 03:42:41 GMT
Server: nginx/1.21.6
Content-Type: text/html; charset=iso-8859-1
Content-Length: 243
Location: https://www.shahcorporationltd.com/
X-Server-Cache: true
X-Proxy-Cache: MISS
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14479
Expires: Sun, 29 Jan 2023 07:44:01 GMT
Date: Sun, 29 Jan 2023 03:42:42 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8qteyR+3LVr9dbDDZwihAeYmVMHr/QfoIE3xdQQDqkTNEqokC7iPgOrjU69dwYNzKHcfUzh+1mAM8XMB5sh7Sw==
x-amz-request-id: G165XMCBHE8ZZ4SD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 03:21:14 GMT
age: 1288
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 03:42:42 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 03:41:41 GMT
age: 62
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e50d53e243cb23292032d4adadc1c838
513e516cfe2f5b74c094b0bdf0358297b69ae642
2bc679d4fa69b47cabc160eef00a4e04e0880363beb45bd3c45940867c0c6797
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2BC679D4FA69B47CABC160EEF00A4E04E0880363BEB45BD3C45940867C0C6797"
Last-Modified: Sat, 28 Jan 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21536
Expires: Sun, 29 Jan 2023 09:41:39 GMT
Date: Sun, 29 Jan 2023 03:42:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20269
Expires: Sun, 29 Jan 2023 09:20:32 GMT
Date: Sun, 29 Jan 2023 03:42:43 GMT
Connection: keep-alive
push.services.mozilla.com/
44.227.59.33101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.227.59.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nRFd673Rt7P4+lLPG1QLDQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /jUFe05cnaTAWGnPXePvWs/a25k=
cdnjs.cloudflare.com/ajax/libs/popper.js/1.11.0/umd/popper.min.js
104.17.24.14200 OK 6.1 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.11.0/umd/popper.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (18860)
Hash 644b7e1b85739d3ef9b424708cc14fa5
8b84449b04a1f5ca00e7ff1d5ef92aebf1ddb4ef
eaec1c8906a7a577d272afbd87ade62bdf3ca3a4a82a497f818485fe7110a0b4
GET /ajax/libs/popper.js/1.11.0/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.shahcorporationltd.com
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 03:42:44 GMT
content-type: application/javascript; charset=utf-8
content-length: 6098
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4a59"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3363992
expires: Fri, 19 Jan 2024 03:42:44 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ct6ho5lK5N%2BG2bluURQj6%2FL46StjRpwqkzp5wxNoBCMTPHONHAjJmXEE2sbqSZZEsVkHcIGZamyMX%2BJKQYF67IbJIc4sKNxItQq8pvtxlsV%2BpfEzGVPlWLOJ6%2FxyuWwcow3gDPpK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 790ef5a73c871c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-207871571-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-207871571-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash c9f83a8850c8df8270348db90325d678
1e61c817be633b6c779b79b12321827c2e2bf4fb
dc923a5d543da101d9f625ea3de8ea679402618e44a0437f5e4b380f904823a6
GET /gtag/js?id=UA-207871571-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 03:42:44 GMT
expires: Sun, 29 Jan 2023 03:42:44 GMT
cache-control: private, max-age=900
last-modified: Sun, 29 Jan 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44023
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.shahcorporationltd.com/css/slick.css
162.241.224.167200 OK 575 B URL HTTP/2 www.shahcorporationltd.com/css/slick.css
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash c7cd7eaaeceb626699c3f61cf0d97b31
7930a73cbfbc0683ebf12b982b4ec0ddf3498852
9782a15945372abd060dd052ac7e93e7239f7f4ac20ff8716c8f554a2e78855f
GET /css/slick.css HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Jun 2021 09:20:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 575
content-type: text/css
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/css/slicknav.min.css
162.241.224.167200 OK 861 B URL HTTP/2 www.shahcorporationltd.com/css/slicknav.min.css
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2414)
Hash 4abe33b286f4cb4b8a219e6d73a68e46
2851fcd60b28370bec7b2751c49ed1dc08838f76
fe0999e4c0f3313d973c26f266b6c9b3ab54d6b30b5c7ec33e77d676cb2cdc9b
GET /css/slicknav.min.css HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Jun 2021 09:20:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 861
content-type: text/css
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/css/owl.carousel.min.css
162.241.224.167200 OK 462 B URL HTTP/2 www.shahcorporationltd.com/css/owl.carousel.min.css
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 3d5a4ba30c4700ee8428f53f31678a97
5ac2165328680897194fcd4414ca3df4b99e64eb
fa4990fd506c6de8e428ff7498e392909416eed477ce7421e509de4e2e30cf90
GET /css/owl.carousel.min.css HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 11:18:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 462
content-type: text/css
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/
162.241.224.167200 OK 46 kB URL HTTP/2 www.shahcorporationltd.com/
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (844), with CRLF line terminators
Hash 1fe1aafff94e60ca10b1e99e2023f66b
4ddc424497c81e9c09034791e2792b1ca62f2ed9
be9c1f9ada84d2c4ce75330c67ef1935e5be9bb1966d329cd2c1ac9d47c24b82
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 29 Jan 2023 03:42:42 GMT
server: nginx/1.21.6
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-server-cache: true
x-proxy-cache: MISS
set-cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; expires=Sun, 29-Jan-2023 05:42:43 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D; expires=Sun, 29-Jan-2023 05:42:43 GMT; Max-Age=7200; path=/; httponly; samesite=lax
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash b05e37987ad8e44ea101f3b9eeeea811
8b951cd89964d68299b64d2d4039533d92ff6453
5ff5fa7feb58f096454f488b56d366d96f901f3a856e661063e2a992ab96401f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:44 GMT
Etag: "63d47108-117"
Server: ECS (amb/6BA4)
Content-Length: 280
www.shahcorporationltd.com/img/Shah-Corporation-logos/new-logos/ShahCrown.gif
162.241.224.167200 OK 40 kB URL HTTP/2 www.shahcorporationltd.com/img/Shah-Corporation-logos/new-logos/ShahCrown.gif
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 80 x 60\012- data
Hash 83debcd54f4d8b039f9072d0fba72af0
7718d373fd5c8939b466f166764eebc923a60b4b
176b7740cb0a55ff806c09b0c8a85509d7c1b8a7af36dc2545c00fbda1794fbf
GET /img/Shah-Corporation-logos/new-logos/ShahCrown.gif HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 29 Jun 2022 17:15:02 GMT
accept-ranges: bytes
content-length: 39594
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/gif
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/css/elegant-icons.css
162.241.224.167200 OK 5.2 kB URL HTTP/2 www.shahcorporationltd.com/css/elegant-icons.css
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6610)
Hash 2e9511477d5b3e753cc1baff4a4464e7
11f797a8bad984979c82ac86fe87191cff3ad656
ea26311b4560cf2916362fdf3ce23081c32184eae0e88394f16051478def6d95
GET /css/elegant-icons.css HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Jun 2021 09:20:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 5206
content-type: text/css
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/Shah-Corporation-logos/shahpreloaderlogo.png
162.241.224.167200 OK 47 kB URL HTTP/2 www.shahcorporationltd.com/img/Shah-Corporation-logos/shahpreloaderlogo.png
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 939 x 720, 8-bit/color RGBA, non-interlaced\012- data
Hash 40f21ef8fdb6b3c968f82e227e3628c6
11894165769d0418c9fdf208556ba2b0917ce5dd
98dcac5f74ab526cd8e2421c9cc48ab6933221dfdf2649a2885478a2a4d27b58
GET /img/Shah-Corporation-logos/shahpreloaderlogo.png HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 23 May 2022 18:12:36 GMT
accept-ranges: bytes
content-length: 47289
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash b05e37987ad8e44ea101f3b9eeeea811
8b951cd89964d68299b64d2d4039533d92ff6453
5ff5fa7feb58f096454f488b56d366d96f901f3a856e661063e2a992ab96401f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:44 GMT
Last-Modified: Sun, 29 Jan 2023 03:42:44 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 280
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12563
Expires: Sun, 29 Jan 2023 07:12:07 GMT
Date: Sun, 29 Jan 2023 03:42:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12563
Expires: Sun, 29 Jan 2023 07:12:07 GMT
Date: Sun, 29 Jan 2023 03:42:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12563
Expires: Sun, 29 Jan 2023 07:12:07 GMT
Date: Sun, 29 Jan 2023 03:42:44 GMT
Connection: keep-alive
fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600;700;800;900&display=swap
142.250.74.74200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600;700;800;900&display=swap
IP 142.250.74.74:0
Hash 3006d1bd07388edfafaf8eab99cb69dd
76931479eb2eb04e2e003af16b098928d5d1e90a
bf130d1f71caac2372fdbbbd57e00482fea2646ffa942766a1af14079b7f3f65
GET /css2?family=Poppins:wght@300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 03:42:44 GMT
date: Sun, 29 Jan 2023 03:42:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:46:16 GMT
age: 24988
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d5ed99a9aed6f367efc5c9498ce87ff1
3123eb6f550c51fe17fc62eff943b3739e239a9b
536f45bf2eb41f7056df8b34964538005d6a0a4c6157def3fbdd9487f8c79027
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10168
x-amzn-requestid: fe58fe3c-dd23-4614-b5a2-e91ef68c2ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFOD7H-NIAMFcxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb907f-687fc51741d7ff97182d1955;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 07:13:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SORDxKQP-GudaCfRIbrmexyEeJXBExRipfF8sPHI-UkaYhR_RkDjvQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 00:55:27 GMT
age: 10037
etag: "3123eb6f550c51fe17fc62eff943b3739e239a9b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10a6491e2c1dfde68c7cd7297e70700f
d0f195319825a6d3e5e50ad15b2fcab27cb65896
4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 04:01:14 GMT
age: 85290
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6af6f32397882f56d14d22348e44a9f1
5a626376807e7507fa3a204c4e4e9e44aa074a37
478f32e98c0a1f0d62fa337795ca88b7927e14b684b681f7629b648bc2d709a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7417
x-amzn-requestid: 53032353-8613-49b0-944d-3742236cf50c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYcMmFeQIAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d340b6-7fe2226327d90db014527c08;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 03:10:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zd8cTO2N1JO-OK3hCDwVO8naClCsg0raJLboRFle-DPSKhR_7k8-Yg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 03:16:35 GMT
age: 1569
etag: "5a626376807e7507fa3a204c4e4e9e44aa074a37"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 5a5a883e-d7d4-4fc5-925a-3a95830c504e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVguyG7BIAMFm8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d214c4-390b59a32060e41203533c58;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 05:51:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ewSsCY4u9DwRtaj00U9JCim9tYeCgHRuIQFpdHm4ttI6L02-e44iDQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 06:42:55 GMT
age: 75589
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e63fa9f-a982-4d0a-ac29-9acbfe59f503.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e63fa9f-a982-4d0a-ac29-9acbfe59f503.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 61dd48155b70501a72ec13f79745433d
4efc3d15f04a290a590b54122822d55a9d3fa1ca
9345056c111439b34aff08323fc99a2d315fa91293039dc5acf67affb50636d3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e63fa9f-a982-4d0a-ac29-9acbfe59f503.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4202
x-amzn-requestid: d33bee10-9642-4138-8dde-3486ec7f6535
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa9ABFFvIAMFbqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d441ff-3b3a99db469e3f8c068d553c;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:28:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RIvTaBE3RpB7sP9Bb1Ku1ItsiaCFKNmyHArESR1FuqDIHXt2uOLG6A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 05:22:38 GMT
age: 80406
etag: "4efc3d15f04a290a590b54122822d55a9d3fa1ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/slider/shahmind.jpg
162.241.224.167200 OK 108 kB URL HTTP/2 www.shahcorporationltd.com/img/slider/shahmind.jpg
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x533, components 3\012- data
Size 108 kB (108002 bytes)
Hash 7b877f150ea83de00e2804891e08c881
286f47b7230b50e585ad60e4554c82fc539c0623
689ad0b12288b83510ce2ca12830d5d225a466c1c565ce67a8cfd17ca0ba733d
GET /img/slider/shahmind.jpg HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 12 Sep 2022 15:19:58 GMT
accept-ranges: bytes
content-length: 108002
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/jpeg
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.227200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.shahcorporationltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 04:05:29 GMT
expires: Tue, 23 Jan 2024 04:05:29 GMT
cache-control: public, max-age=31536000
age: 517036
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
216.58.207.227200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Hash 8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb
GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.shahcorporationltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 20:09:33 GMT
expires: Thu, 25 Jan 2024 20:09:33 GMT
cache-control: public, max-age=31536000
age: 286392
last-modified: Wed, 27 Apr 2022 16:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7078b1d21bbac26012d93fc9501fbbb0
412189ffa7980709edc28b87a820aa1ae64fa3a7
6db1d0d3f3924d7e75e1fd087553cf4ec5fa938ecc52adf3f149570551eaf7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5143
Cache-Control: max-age=141981
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:45 GMT
Etag: "63d55ebb-1d7"
Expires: Mon, 30 Jan 2023 19:09:06 GMT
Last-Modified: Sat, 28 Jan 2023 17:43:23 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
216.58.207.227200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.shahcorporationltd.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 09:41:14 GMT
expires: Wed, 24 Jan 2024 09:41:14 GMT
cache-control: public, max-age=31536000
age: 410491
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/slider/traders.jpg
162.241.224.167200 OK 112 kB URL HTTP/2 www.shahcorporationltd.com/img/slider/traders.jpg
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x533, components 3\012- data
Size 112 kB (111935 bytes)
Hash 049069efcd15c8cf6b2246d2cbcaf892
9057bae7f603926e9c9127b44a992746eb16298f
ba2f8d1921ac99bd27ffc62ef4800f21cf1a95e8162ad244b691a52bff0bc488
GET /img/slider/traders.jpg HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 12 Sep 2022 15:25:08 GMT
accept-ranges: bytes
content-length: 111935
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/jpeg
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/slider/teqholicc.jpg
162.241.224.167200 OK 138 kB URL HTTP/2 www.shahcorporationltd.com/img/slider/teqholicc.jpg
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x533, components 3\012- data
Size 138 kB (138162 bytes)
Hash ecdc3ccf60f023a35226a09d726fddbc
5beea79f69510a442b39e061e8964406d31fc3e3
5f6756a57601d6d5fa93bc8856e77417f77e53e42a3874c2ea2075c151e1fa9d
GET /img/slider/teqholicc.jpg HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 12 Sep 2022 15:22:44 GMT
accept-ranges: bytes
content-length: 138162
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/jpeg
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7078b1d21bbac26012d93fc9501fbbb0
412189ffa7980709edc28b87a820aa1ae64fa3a7
6db1d0d3f3924d7e75e1fd087553cf4ec5fa938ecc52adf3f149570551eaf7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5143
Cache-Control: max-age=141981
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:45 GMT
Etag: "63d55ebb-1d7"
Expires: Mon, 30 Jan 2023 19:09:06 GMT
Last-Modified: Sat, 28 Jan 2023 17:43:23 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 293 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (327)
Hash 2f913d812811ef7e6fca30334c5972e2
d17caaa167443dc08696c672380f237e0db3fb02
ee8918a2f5d163099104b70f79065abc8fd309e69add57170546f2706956eef8
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 19 Jan 2024 15:05:51 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: L5E9gSgR735vyjAzTFly4g==
x-fb-debug: /9Qe6uKKDKz36swGUpB6d826bZhnbvK/o3asCYb/tw1wjgA5YGEQbZwB4k8CYOotbHx2od6nJbFTxrRRd0F0Iw==
priority: u=3,i
content-length: 293
x-fb-trip-id: 1679558926
date: Sun, 29 Jan 2023 03:42:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fshahcorporation.ltd%2F&tabs=timeline&width=340&height=630&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=true&appId=540889233659570
157.240.200.35200 OK 19 kB URL HTTP/2 www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fshahcorporation.ltd%2F&tabs=timeline&width=340&height=630&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=true&appId=540889233659570
IP 157.240.200.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (18746)
Hash 95a84c1a0d628388337632c9f05baa8d
10765b849cc0561eafbcccf77b319ab0311849c0
4137f6b2fba869b9218afe4254306f6ad5cd39b4b4a4b83a082edb5b207605bb
GET /plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fshahcorporation.ltd%2F&tabs=timeline&width=340&height=630&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=true&appId=540889233659570 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 78ctBxasooq0THEFTVtA5I+CJqPck2ZBDYfTXFqIN1Ogs169BxeOIhs8tf4aXtTVDlQQcddSCA/8BUC4305iXA==
date: Sun, 29 Jan 2023 03:42:45 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y2/r/hWOdyLOhufr.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 7.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y2/r/hWOdyLOhufr.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4057)
Hash 4542c58795523351cacfecdb315eba00
e44e00242137798121e12b6cb4353fac2e127af3
ecb041648adda0cdbf6d2b01eed61e1cc22a1f3d33026ee58c3b89b4ca2e40e1
GET /rsrc.php/v3/y2/r/hWOdyLOhufr.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 19 Jan 2024 01:35:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: RULFh5VSM1HKz+zbMV66AA==
x-fb-debug: 3omcqHqFIKGFGFwvkL4zQrU24s5kUZ3S0w+0fWKyVDARYazydRG1etJ32PjhFXqqCcBXHrJjvH9lTcJQ8MKoVA==
content-length: 7168
x-fb-trip-id: 1679558926
date: Sun, 29 Jan 2023 03:42:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/r/0jooLb3-GZj.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 18 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/r/0jooLb3-GZj.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (10595)
Hash 02f1b7b68cae3041d06a7a05b5a7fe1e
80278d8d009008c14ddad0aa1c0614cf5170d4ae
42c82038ad279453ee082c0661d76f99060d413813cba3570868494edbbee3ab
GET /rsrc.php/v3/ys/r/0jooLb3-GZj.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 28 Jan 2024 18:29:44 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: AvG3toyuMEHQanoFtaf+Hg==
x-fb-debug: eeOdJWUeUy2BHGl4XyV8obQIDZkQTQrVgMBIvi1noHWidcXj/l3NCnONPdmoBVNbSaCmR++NxPOBb6FKu2OPUw==
priority: u=3,i
content-length: 17709
x-fb-trip-id: 1679558926
date: Sun, 29 Jan 2023 03:42:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yN/l/en_US/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 24 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yN/l/en_US/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (42114)
Hash f8ca3ab8395af8fbd25391b445bb6670
12da1e04b1e26a8c7710ac93a66ab4fbbbc5026d
2f11cd57e135482fab0eb7606f056110bfd99d3a5afb47732cc4bab681fb54ed
GET /rsrc.php/v3iEpO4/yN/l/en_US/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 25 Jan 2024 16:30:30 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: +Mo6uDla+PvSU5G0RbtmcA==
x-fb-debug: TZ8qhvc8tnVla/QAZN8xseYFZBk86TB485RMcYKxIlcJNCh1fVcxGc1Ot2Tiw96nAYqhprzQd2FcO7058SBnsQ==
priority: u=3,i
content-length: 23510
x-fb-trip-id: 1679558926
date: Sun, 29 Jan 2023 03:42:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/Shah-Corporation-logos/logofinal.gif
162.241.224.167200 OK 933 kB URL HTTP/2 www.shahcorporationltd.com/img/Shah-Corporation-logos/logofinal.gif
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 939 x 720\012- data
Size 933 kB (933169 bytes)
Hash b71ee40a33dfe2bac86c9523ba741634
24ead57bae881a18767b3d11839d379d2218809c
793030cc19411d4f75e5809f885a9cdfad33413f4630ba854322f4436be5b1f2
GET /img/Shah-Corporation-logos/logofinal.gif HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 19:35:26 GMT
accept-ranges: bytes
content-length: 933169
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/gif
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yN/r/elvGmxOyMJZ.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yN/r/elvGmxOyMJZ.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (3744)
Hash 1d528b587346b24d7e36f3881c2d6a77
9e92e6b415c50f4882ba7e0dd65ff6ee31091bb6
89c5f78d73cde32bff1a97a0e9ff383400e282d0d3473d267132a5000abd28c3
GET /rsrc.php/v3/yN/r/elvGmxOyMJZ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 25 Jan 2024 17:14:11 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: HVKLWHNGsk1+NvOIHC1qdw==
x-fb-debug: d+mC+7XqNehENxg1G1Yj9lvyKZOBf2jLl8CZxhAuThD5Rjy4GG4hYFaMKPv7I6T0/uWU2HVnYma4satuAOCJWQ==
priority: u=3,i
content-length: 1728
x-fb-trip-id: 1679558926
date: Sun, 29 Jan 2023 03:42:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/slider/shahpress.jpg
162.241.224.167200 OK 129 kB URL HTTP/2 www.shahcorporationltd.com/img/slider/shahpress.jpg
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x533, components 3\012- data
Size 129 kB (128977 bytes)
Hash 4118375a1d9606ce8e95092f0a576a32
32f89ba69fab084d54ae8e069050117035827497
5212cb4ef306e9e315cecbd21c67576ca75097833bd6f8b4df0d4e8776b96891
GET /img/slider/shahpress.jpg HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 12 Sep 2022 15:21:52 GMT
accept-ranges: bytes
content-length: 128977
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/jpeg
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 830 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (724)
Hash d63a02ce87c07ffcfa869fef7fc5f233
cae745fef84088abe3525bb77f75c55cd1d4cc2c
bf9d4d71541a0a1f31b10be351add847ee935da6de355756314c8ca96512444d
GET /rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 26 Jan 2024 00:19:31 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 1joCzofAf/z6hp/vf8XyMw==
x-fb-debug: FYw2zXOlLP6h265x2Sr0jTK0pUmqdSgQVeOjraAfBOXllTLR5kZSy3WzCRheOv7gs3sqWXL9uNSfUoL53jJMCA==
priority: u=3,i
content-length: 830
x-fb-trip-id: 1679558926
date: Sun, 29 Jan 2023 03:42:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/slider/sarakuch.jpg
162.241.224.167200 OK 120 kB URL HTTP/2 www.shahcorporationltd.com/img/slider/sarakuch.jpg
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x533, components 3\012- data
Size 120 kB (120490 bytes)
Hash 65393439b7d3f9889013cba446ba2dc8
05043f49444234b69039a901a9640b520b142033
d8257e7f56ab4b617430cac05723c8e60f7add898a035f77479d20bfde5c2cd8
GET /img/slider/sarakuch.jpg HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 12 Sep 2022 15:18:32 GMT
accept-ranges: bytes
content-length: 120490
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/jpeg
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yD/r/GL3fwyPuftm.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 1.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yD/r/GL3fwyPuftm.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (1984)
Hash 6e9da4ca37bd91ed4b55bdfd94d641e6
581d1c986cf5809cd2fc1859f732d936b53708a8
b24defbd5bcb2f39db991c8361c62e39b0f199d8d72fa9f023739defee55dbd3
GET /rsrc.php/v3/yD/r/GL3fwyPuftm.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 24 Jan 2024 19:06:19 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: bp2kyje9ke1LVb39lNZB5g==
x-fb-debug: ZN5IBFcnLGRMsFGq95YXX5NIEJjknLAotfAuozcREcZT+R6a9aJbP8N4r5J8ygLaAiKH6QLjNMyAw+c2yARmXA==
priority: u=3,i
content-length: 1649
x-fb-trip-id: 1679558926
date: Sun, 29 Jan 2023 03:42:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yK/l/0,cross/MNmosChZJhQ.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yK/l/0,cross/MNmosChZJhQ.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4431)
Hash 399182b9034230c2ad272f905a9f9a92
a361cbbb9ed2b5ab8f7ba04b5237893dff19fdab
b33e1292301c35be9ad01dcdc3850fa69852475360c6dbfd3daede8eff34a6a4
GET /rsrc.php/v3/yK/l/0,cross/MNmosChZJhQ.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 28 Jan 2024 18:33:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: OZGCuQNCMMKtJy+QWp+akg==
x-fb-debug: jw8KfNd6u4il+veetu8JnR3xS2Rj7TdurMm1s4MuL3h8jQEgI9AkgepjuXNiunYRlWWfX+sGHP+J5PedyV3PTg==
content-length: 5141
x-fb-trip-id: 1679558926
date: Sun, 29 Jan 2023 03:42:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/logo/Building_Design-01-min.jpg
162.241.224.167200 OK 62 kB URL HTTP/2 www.shahcorporationltd.com/img/logo/Building_Design-01-min.jpg
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 490x586, components 3\012- data
Hash 3121af1980b3b5f4ad20c08cb674fbb3
788951e497d5b60500ef30a83551c7c1315a6b6b
0d029ccf448866321bde7b402638bfa7618007dc99710786baaf7e7175657e1e
GET /img/logo/Building_Design-01-min.jpg HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 12 Sep 2022 15:10:00 GMT
accept-ranges: bytes
content-length: 61659
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/jpeg
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (5542)
Hash 1ad15afc034f310427c81b0759603a2b
e5efd1d029dccf5fa8128c84aadb6544a4ab60e0
fedf63f655f9eef24c517c3d6762fb07b142213ba623d4a0b06614fb5d9754bd
GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 18 Jan 2024 23:12:27 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: GtFa/ANPMQQnyBsHWWA6Kw==
x-fb-debug: 4n3wHNRSMi6kreY6gUDKrwAejVV7s7IbnyP/3dxKJBFD3Wd8ovz0Zf1dm7NLI518n+gGZ1KROnr2B+7L6k6/pg==
priority: u=3,i
content-length: 12334
x-fb-trip-id: 1679558926
date: Sun, 29 Jan 2023 03:42:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.shahcorporationltd.com/js/main.js
162.241.224.167200 OK 1.9 kB URL HTTP/2 www.shahcorporationltd.com/js/main.js
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 46422d33cbde6350d7a217b96692f079
063eace571b9b5c1920747c65823edcc04779282
e16391e8ab34fad75ebd990dc6e7e1a635b81740a41af5544b6d65e49a714b02
Analyzer Verdict Alert fortinet Phishing
GET /js/main.js HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 11:35:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 1869
content-type: application/javascript
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/js/jquery.slicknav.js
162.241.224.167200 OK 5.7 kB URL HTTP/2 www.shahcorporationltd.com/js/jquery.slicknav.js
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 59d85035aaf48ba711860f52a7ddc8cf
d95316c30c3ab24d175ed412f57d9d201b7f3a58
8c50812f45dba85197863da0c3b8b55997551a427c4664a671a333ecae10bf3f
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.slicknav.js HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Jun 2021 09:20:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 5733
content-type: application/javascript
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yu/r/6y4CCZM5a8v.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yu/r/6y4CCZM5a8v.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (8848)
Hash 9734a0267b00a50c8eb7614bee9c6545
d8163bd9220aaa5674dbf00612b42505fb15f2cd
ca64b67c67b52c47e3a136997975c35e2a8c40751740bab7a88af53020dfcbe4
GET /rsrc.php/v3/yu/r/6y4CCZM5a8v.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 19 Jan 2024 01:35:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: lzSgJnsApQyOt2FL7pxlRQ==
x-fb-debug: NdLVT2TVzgrm/jd7BBLPlQaSTF6Eu9zb8DcD8rycy1wky5nVJekIMtEppTtdQqGHPc0Irr+pfzO1Zzg89hjVbQ==
priority: u=3,i
content-length: 16276
x-fb-trip-id: 1679558926
date: Sun, 29 Jan 2023 03:42:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.shahcorporationltd.com/js/slick.min.js
162.241.224.167200 OK 16 kB URL HTTP/2 www.shahcorporationltd.com/js/slick.min.js
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (53179)
Hash bf6dbc6811b5d8a75c75ca1529e8d87d
41c87bbedda43286c7a37dd1dcda8712be7c0818
29daa543ebe1e5ab50b1531880167a5b04762bfff358829f7bb023a30aeec93c
Analyzer Verdict Alert fortinet Phishing
GET /js/slick.min.js HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Jun 2021 09:20:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 16263
content-type: application/javascript
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/js/owl.carousel.min.js
162.241.224.167200 OK 16 kB URL HTTP/2 www.shahcorporationltd.com/js/owl.carousel.min.js
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (31997)
Hash 8a2ba9702fb3cca3c84924959fff383d
ec7e32b952d84e211870dd0e9f1520582e3b4270
ebcdf76e9e513c320785d95cbfa122a4aaa6143fc8ea69a2ea0dedf0277828b8
Analyzer Verdict Alert fortinet Phishing
GET /js/owl.carousel.min.js HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Jun 2021 09:20:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-length: 15883
content-type: application/javascript
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/Shah-Corporation-logos/logo-icons/NaturalPlus.png
162.241.224.167200 OK 16 kB URL HTTP/2 www.shahcorporationltd.com/img/Shah-Corporation-logos/logo-icons/NaturalPlus.png
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 107 x 106, 8-bit/color RGBA, non-interlaced\012- data
Hash 1ad3b320abddb3027d60bd0674cac2a6
3ae49696e05909fddd4d413c93bbeff2a2e853fc
c2a4d5af41d0b99611216909bfc01daef57ec846387617115b02b2e82c4c58ba
GET /img/Shah-Corporation-logos/logo-icons/NaturalPlus.png HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 10 Sep 2022 17:51:06 GMT
accept-ranges: bytes
content-length: 16158
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/logo/Head-01.png
162.241.224.167200 OK 31 kB URL HTTP/2 www.shahcorporationltd.com/img/logo/Head-01.png
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 565 x 566, 8-bit/color RGBA, non-interlaced\012- data
Hash a1b51228a3c8880b8948ae47510ad5e5
d46f8119ee813398cbd58356927a6978876b47df
374fa02f0b7c3248093d335a772db0fe1f11d485ee5b77226fc61cf4881032a5
GET /img/logo/Head-01.png HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 01 Jun 2022 22:33:34 GMT
accept-ranges: bytes
content-length: 30985
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/logo/Ibn_last_work-01.png
162.241.224.167200 OK 18 kB URL HTTP/2 www.shahcorporationltd.com/img/logo/Ibn_last_work-01.png
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1129 x 165, 8-bit/color RGBA, non-interlaced\012- data
Hash b14ac015fc4e5b85e217c1ed3f22c4b5
0a7bf084747256b357b2f81ada269e879dda00a0
31c4c9539be457b49b35250fa327e5f8ec1c53612a5b46ed43a4dde7b854a289
GET /img/logo/Ibn_last_work-01.png HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 02 Jun 2022 18:58:54 GMT
accept-ranges: bytes
content-length: 18278
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 29 Jan 2023 01:45:20 GMT
expires: Sun, 29 Jan 2023 03:45:20 GMT
cache-control: public, max-age=7200
age: 7046
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
151.101.244.157200 OK 28 kB URL HTTP/2 platform.twitter.com/widgets.js
IP 151.101.244.157:0
File type Unicode text, UTF-8 text, with very long lines (38752)
Hash e537bb9176ab0d49ccaa2baf56ba5cd4
1be6d53a34b7dbdd869b3e0680c1c75a2a490c63
ef1af552de1464ddb5c212464755232eee06f1595aadc1afb8ed1a2a6a8f57d4
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 21:41:51 GMT
cache-control: public, max-age=1800
content-type: application/javascript; charset=utf-8
etag: "9e99725b7a4cd730a934afba2a438bb5+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:46 GMT
x-served-by: cache-iad-kcgs7200031-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 27630
X-Firefox-Spdy: h2
www.shahcorporationltd.com/fonts/ElegantIcons.woff
162.241.224.167200 OK 64 kB URL HTTP/2 www.shahcorporationltd.com/fonts/ElegantIcons.woff
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, CFF, length 63664, version 1.0\012- data
Hash fdd9e757bf61675343dcf55100422b84
f9be87fa2d1d4a95e8305afb51778db4bc759fbc
be1825e52a0dc7df04df9322f62abe2a2f2a25d98aac186de0140dfc7f6bdcae
Analyzer Verdict Alert fortinet Phishing
GET /fonts/ElegantIcons.woff HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/css/elegant-icons.css
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Jun 2021 09:20:00 GMT
accept-ranges: bytes
content-length: 63664
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: font/woff
date: Sun, 29 Jan 2023 03:42:45 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/fonts/fontawesome-webfont.woff2?v=4.7.0
162.241.224.167200 OK 77 kB URL HTTP/2 www.shahcorporationltd.com/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/css/font-awesome.min.css
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Jun 2021 09:20:00 GMT
accept-ranges: bytes
content-length: 77160
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: font/woff2
date: Sun, 29 Jan 2023 03:42:45 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 967b8300980e161586de77a421dd3a29
ed9a520b3948a0144f839405d6b2ba0843acf203
34f69d87f4ce47012405bb6455e5708c8bc5f9fbc8b3415f846d2e1a6411035c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6153
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:46 GMT
Last-Modified: Sun, 29 Jan 2023 02:00:13 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
www.shahcorporationltd.com/img/logo/Shah_Group.png
162.241.224.167200 OK 387 kB URL HTTP/2 www.shahcorporationltd.com/img/logo/Shah_Group.png
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 4053 x 3518, 8-bit/color RGBA, non-interlaced\012- data
Size 387 kB (387397 bytes)
Hash 94555be1b8573aa950e51dc003ee2a76
b26e4faa52d2dec92b76431d3ea4abed6bedf41d
cc269fa3bfd6ce2ae1900fb848801cc30f0899f1efd5cf6169285d2b77ca4740
GET /img/logo/Shah_Group.png HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 Jan 2023 07:48:56 GMT
accept-ranges: bytes
content-length: 387397
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/undefined
162.241.224.167404 Not Found 2.4 kB URL HTTP/2 www.shahcorporationltd.com/undefined
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 2c59a78d307edd82bedad546b353034f
e6d48d6a80e3a9fcb75687428c10e9a2a09da60c
cb0e78ab14ec80aebcd936d81db6f357ef32a656ebd65a4c1455cb2ca21244cd
Analyzer Verdict Alert fortinet Phishing
GET /undefined HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Sun, 29 Jan 2023 03:42:44 GMT
server: nginx/1.21.6
content-type: text/html; charset=UTF-8
content-length: 2414
cache-control: no-cache, private
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Firefox-Spdy: h2
platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fwww.shahcorporationltd.com
151.101.244.157200 OK 105 kB URL HTTP/2 platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fwww.shahcorporationltd.com
IP 151.101.244.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56166)
Size 105 kB (105435 bytes)
Hash b9e24937b9bed483feef94b5cdc39114
d17bb4230d4e6bc204041d6b7055ec4c51c7f77b
927e6f52902d207a572c6075acdc33bedab029a97ee7180538cf6799847a25a4
GET /widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fwww.shahcorporationltd.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 21:41:13 GMT
cache-control: public, max-age=315360000
content-type: text/html; charset=utf-8
etag: "95e1b50b0c179aefb47b5b211bb347b5+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:46 GMT
x-served-by: cache-iad-kjyo7100116-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 105435
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/shah_main_logo.png
162.241.224.167200 OK 14 kB URL HTTP/2 www.shahcorporationltd.com/img/shah_main_logo.png
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 290 x 209, 8-bit/color RGBA, non-interlaced\012- data
Hash 7b888161a9f9c7d0fee778347346bbb8
266561705a3717e267b7f383ee1821f6c56122c7
17056fc58771f86f254f13c1d09b1648f2818730dd88db04657b3372fada8e82
GET /img/shah_main_logo.png HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Jun 2021 21:20:00 GMT
accept-ranges: bytes
content-length: 13510
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/png
date: Sun, 29 Jan 2023 03:42:46 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d0dfe02316e5f4a151e3c6c85ae97f65
e7598a17ec81d32831bc9c28a3b767e086884a3b
b3f46d1cf1a2f89d71977fa916148b51fca272cf4c9ea2baf1521068adb2165f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4158
Cache-Control: max-age=95578
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:46 GMT
Etag: "63d4ad52-139"
Expires: Mon, 30 Jan 2023 06:15:44 GMT
Last-Modified: Sat, 28 Jan 2023 05:06:26 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 313
www.shahcorporationltd.com/img/Latest_Projects/import&export.m4v
162.241.224.167206 Partial Content 33 kB URL HTTP/2 www.shahcorporationltd.com/img/Latest_Projects/import&export.m4v
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Hash b5e675ee91439ca77cd7cc30876f4a82
185e751e5a2406bcc92ec9e6b5b706fd364b85b2
23f614c4cca2a3215f4308c33be5368a5e00f6d2e0ca37e1e4de914183c64b06
GET /img/Latest_Projects/import&export.m4v HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
last-modified: Sat, 04 Jun 2022 20:56:40 GMT
accept-ranges: bytes
content-length: 544893
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-range: bytes 0-544892/544893
content-type: video/x-m4v
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.instagram.com/embed.js
157.240.200.174200 OK 21 kB URL HTTP/2 www.instagram.com/embed.js
IP 157.240.200.174:0
File type ASCII text, with very long lines (18734)
Hash 143fd60e8926abea05ff16dc359b3033
729a3f83c981170a37a567effd54832802c8854d
fa54129395227d0c3a328c0ca9c1b054a7e7805716ab427b22fa820f0682ab31
GET /embed.js HTTP/1.1
Host: www.instagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 81b497069f7debc0e51328c3824f3157
etag: "e485839131a215b4d44c11b64d07d686"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
edge-control: cache-maxage=1200s
expires: Sun, 29 Jan 2023 04:02:46 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
reporting-endpoints: default="https://www.instagram.com/error/ig_web_error_reports/?device_level=unknown"
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.instagram.com\/error\/ig_web_error_reports\/?device_level=unknown"}]}
x-frame-options: DENY
strict-transport-security: max-age=15552000
content-md5: FD/WDokmq+oF/xbcNZswMw==
x-fb-debug: ecbvSqdlhxsWLuCcOfIZQ0y0b1TWARLUepBIaUgLSu2eyWI+P73fskJd1p490+8mZ3+qJyIlHIhAefQVfbuJnA==
content-length: 20852
date: Sun, 29 Jan 2023 03:42:46 GMT
priority: u=3,i
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=0e698bc1f93d732e684f783513bd00a83df3e52b
104.244.42.200200 OK 22 kB URL HTTP/2 syndication.twitter.com/settings?session_id=0e698bc1f93d732e684f783513bd00a83df3e52b
IP 104.244.42.200:0
Hash 3233f3901b545877da6086c657704111
136e74ab6c0d952f21b8996eaec8d649eafb5827
05cdb7d1b735052818f3868fd464c7b3a37d8fedcd4110fb0affb7be8ceb3108
GET /settings?session_id=0e698bc1f93d732e684f783513bd00a83df3e52b HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 03:42:46 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Sun, 29 Jan 2023 03:42:46 GMT
content-length: 326
content-encoding: gzip
x-transaction-id: 6ebcb9aa683e0705
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 105
x-connection-hash: 3cdfc7a6520344499605d86cc3f1ac2ef2081cd84ed52c0cb7a3cdc7e33ba7e4
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fee41750f3cb1bfe2c902eb49bf0e840
85307150ea0d090e4f930dbad2270108c44e5f3b
b31b042852f2772d9e5991f873066455bae832219282665d4bbd97b985ce7dcd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:46 GMT
Etag: "63d52d67-1d7"
Server: ECS (amb/6BA4)
Content-Length: 471
www.shahcorporationltd.com/img/Latest_Projects/education.m4v
162.241.224.167206 Partial Content 17 kB URL HTTP/2 www.shahcorporationltd.com/img/Latest_Projects/education.m4v
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Hash ac5d2555fee4007f78ddb8f04ec5fbd2
f42f22b0b380c39d20597d7ebbf79f9b66732827
b8126c0da4fe4da98446fcf65e6c3565a3a227eb59ad645b9bee5a5def8b2220
Analyzer Verdict Alert fortinet Phishing
GET /img/Latest_Projects/education.m4v HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
last-modified: Sat, 04 Jun 2022 20:28:58 GMT
accept-ranges: bytes
content-length: 374305
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-range: bytes 0-374304/374305
content-type: video/x-m4v
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/slider/gameworld.jpg
162.241.224.167200 OK 471 B URL HTTP/2 www.shahcorporationltd.com/img/slider/gameworld.jpg
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 221f6821cb16292db2a34b719718d6f1
86da71b1b715f7bef571683a4b112e516516f820
ca3f5d3e7f3ce3dc1d2e502b7c8f59fdb26a9564e1c4638b529db5dc50ad8dba
GET /img/slider/gameworld.jpg HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 12 Sep 2022 15:16:04 GMT
accept-ranges: bytes
content-length: 112450
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/jpeg
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 221f6821cb16292db2a34b719718d6f1
86da71b1b715f7bef571683a4b112e516516f820
ca3f5d3e7f3ce3dc1d2e502b7c8f59fdb26a9564e1c4638b529db5dc50ad8dba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4130
Cache-Control: max-age=132661
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:46 GMT
Etag: "63d53e49-1d7"
Expires: Mon, 30 Jan 2023 16:33:47 GMT
Last-Modified: Sat, 28 Jan 2023 15:24:57 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
www.shahcorporationltd.com/img/slider/it.jpg
162.241.224.167200 OK 471 B URL HTTP/2 www.shahcorporationltd.com/img/slider/it.jpg
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 221f6821cb16292db2a34b719718d6f1
86da71b1b715f7bef571683a4b112e516516f820
ca3f5d3e7f3ce3dc1d2e502b7c8f59fdb26a9564e1c4638b529db5dc50ad8dba
GET /img/slider/it.jpg HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 12 Sep 2022 15:17:40 GMT
accept-ranges: bytes
content-length: 100420
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: image/jpeg
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 221f6821cb16292db2a34b719718d6f1
86da71b1b715f7bef571683a4b112e516516f820
ca3f5d3e7f3ce3dc1d2e502b7c8f59fdb26a9564e1c4638b529db5dc50ad8dba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4130
Cache-Control: max-age=132661
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:46 GMT
Etag: "63d53e49-1d7"
Expires: Mon, 30 Jan 2023 16:33:47 GMT
Last-Modified: Sat, 28 Jan 2023 15:24:57 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
static.cdninstagram.com/rsrc.php/v3/yE/l/0,cross/5A9WoU1R7hH.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.53200 OK 27 kB URL HTTP/2 static.cdninstagram.com/rsrc.php/v3/yE/l/0,cross/5A9WoU1R7hH.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.53:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32811)
Hash f7bf32d28ca2cb86f883884f1cbddbea
527aed8e28c451e7f0e15dd33956599f2441195a
76a8e232a18c9288a063f245fff86516712fa615e11d7a5b9e3c1f578fc832b2
GET /rsrc.php/v3/yE/l/0,cross/5A9WoU1R7hH.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.instagram.com
Connection: keep-alive
Referer: https://www.instagram.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 28 Jan 2024 19:22:15 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: S3dJQwr0MzyaTIpFJrRJzA==
x-fb-debug: MDrvdayh/pR7V/sNw18sucxfwVNn/NtuR87zX9kO6FI7+6WbEqx/9ublcqJ9TXtoODaUMd4SiviG2ceCqrAtBw==
content-length: 3914
x-fb-trip-id: 1512268381
date: Sun, 29 Jan 2023 03:42:46 GMT
access-control-allow-origin: https://www.instagram.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 221f6821cb16292db2a34b719718d6f1
86da71b1b715f7bef571683a4b112e516516f820
ca3f5d3e7f3ce3dc1d2e502b7c8f59fdb26a9564e1c4638b529db5dc50ad8dba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3572
Cache-Control: max-age=132103
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:46 GMT
Etag: "63d53e49-1d7"
Expires: Mon, 30 Jan 2023 16:24:29 GMT
Last-Modified: Sat, 28 Jan 2023 15:24:57 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
static.cdninstagram.com/rsrc.php/v3/yI/l/0,cross/-snZp9s_9r3.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.53200 OK 2.3 kB URL HTTP/2 static.cdninstagram.com/rsrc.php/v3/yI/l/0,cross/-snZp9s_9r3.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.53:0
File type ASCII text, with very long lines (1591)
Hash d5b9ca9192bfa024813ca62748c28220
931c907b4cef6eee656c2d92ba1b640137fba108
7d2c1bba400ecf3e6dcdb715b85f39627cad1ded13e64a109607b683dafe491c
GET /rsrc.php/v3/yI/l/0,cross/-snZp9s_9r3.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.instagram.com
Connection: keep-alive
Referer: https://www.instagram.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 27 Jan 2024 18:30:25 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 1bnKkZK/oCSBPKYnSMKCIA==
x-fb-debug: r9I9+O38J8CnUbWiho35oQQHqTIZcFoS0YbFmWQPFSUmqPEFQPMZySp+QqGOiuQN2AdTwZbINuZTMULHnXTVwg==
priority: u=3,i
content-length: 2348
x-fb-trip-id: 1512268381
date: Sun, 29 Jan 2023 03:42:46 GMT
access-control-allow-origin: https://www.instagram.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.cdninstagram.com/rsrc.php/v3/y0/l/0,cross/3Tc81XMaGRS.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.53200 OK 1.4 kB URL HTTP/2 static.cdninstagram.com/rsrc.php/v3/y0/l/0,cross/3Tc81XMaGRS.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.53:0
File type ASCII text, with very long lines (935)
Hash ced3a89309e000cfb075cb5585212f05
1c283e8dd8291b5a04b0e7395263b4d622010629
70847a8f6a4626ef233416779ded14484f46cb5c20b0b05e38a8c509e8c8a74c
GET /rsrc.php/v3/y0/l/0,cross/3Tc81XMaGRS.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.instagram.com
Connection: keep-alive
Referer: https://www.instagram.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 28 Jan 2024 21:34:28 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ztOokwngAM+wdctVhSEvBQ==
x-fb-debug: viG2AHhMBX730gbzPzc1LTmep6tl7K2+UrkvrT5dhzpZlpEkcUB9Vw3lBssHwO51PbA43oxtQRn/o55TrgmnTA==
content-length: 1395
x-fb-trip-id: 1512268381
date: Sun, 29 Jan 2023 03:42:46 GMT
access-control-allow-origin: https://www.instagram.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.cdninstagram.com/rsrc.php/v3/yo/l/0,cross/g6IwV-yGYw4.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.53200 OK 1.6 kB URL HTTP/2 static.cdninstagram.com/rsrc.php/v3/yo/l/0,cross/g6IwV-yGYw4.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.53:0
File type ASCII text, with very long lines (3457)
Hash 282540ca205c4236caff9d2d0fa9934d
8a7a640b9eb8a770286e3f9d6bf458d6d28fd883
1ab4ea83c1261e2c3c918ef1c9e5edbc4e5b98a62200e44052c657b7edac9ba1
GET /rsrc.php/v3/yo/l/0,cross/g6IwV-yGYw4.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.instagram.com
Connection: keep-alive
Referer: https://www.instagram.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 28 Jan 2024 19:22:15 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KCVAyiBcQjbK/50tD6mTTQ==
x-fb-debug: Z6edGx0HUodYKKtKm29h8r7cZHhEsIuWOJu57s/aAKaTiYGFvDOrO/rEKJa+kIz1ARhZWSr89rsBcne3bD5aPA==
priority: u=3,i
content-length: 1573
x-fb-trip-id: 1512268381
date: Sun, 29 Jan 2023 03:42:46 GMT
access-control-allow-origin: https://www.instagram.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent.cdninstagram.com/v/t51.2885-19/235540629_4039520606170874_1388765291395792698_n.jpg?stp=dst-jpg_s150x150&_nc_ht=scontent.cdninstagram.com&_nc_cat=102&_nc_ohc=EU6-_W9ifPQAX_DaJZA&edm=APs17CUBAAAA&ccb=7-5&oh=00_AfDBVYZTBHFDmzM8kgpCdPm4fwtPt6jxiYDf75of_ge4_A&oe=63DBD277&_nc_sid=978cb9
31.13.72.53200 OK 4.1 kB URL HTTP/2 scontent.cdninstagram.com/v/t51.2885-19/235540629_4039520606170874_1388765291395792698_n.jpg?stp=dst-jpg_s150x150&_nc_ht=scontent.cdninstagram.com&_nc_cat=102&_nc_ohc=EU6-_W9ifPQAX_DaJZA&edm=APs17CUBAAAA&ccb=7-5&oh=00_AfDBVYZTBHFDmzM8kgpCdPm4fwtPt6jxiYDf75of_ge4_A&oe=63DBD277&_nc_sid=978cb9
IP 31.13.72.53:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash 0c352d94dd5e9c11bafcea963b806a56
c5f5d56545aa88b399b0464225cb3db818571feb
ca2a933197be8548314b1df25ecaae7159317a172f37e258b26b89bbe0ae9b11
GET /v/t51.2885-19/235540629_4039520606170874_1388765291395792698_n.jpg?stp=dst-jpg_s150x150&_nc_ht=scontent.cdninstagram.com&_nc_cat=102&_nc_ohc=EU6-_W9ifPQAX_DaJZA&edm=APs17CUBAAAA&ccb=7-5&oh=00_AfDBVYZTBHFDmzM8kgpCdPm4fwtPt6jxiYDf75of_ge4_A&oe=63DBD277&_nc_sid=978cb9 HTTP/1.1
Host: scontent.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.instagram.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Mon, 09 Aug 2021 06:02:57 GMT
x-haystack-needlechecksum: 2290525114
x-needle-checksum: 3216233703
content-type: image/jpeg
content-digest: adler32=644075505
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
content-length: 4144
x-fb-trip-id: 1512268381
date: Sun, 29 Jan 2023 03:42:46 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/Latest_Projects/manfacturing.m4v
162.241.224.167206 Partial Content 101 kB URL HTTP/2 www.shahcorporationltd.com/img/Latest_Projects/manfacturing.m4v
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 101 kB (101449 bytes)
Hash 3176bc12b4b9e53109f470b9c52f2843
e7bb6e79210ff93e86f13c82a8327c8d5e6c3821
26c19acd377b96020b89dddce588d16e038916d01740e619b0ad5cdaaeb54ac1
Analyzer Verdict Alert fortinet Phishing
GET /img/Latest_Projects/manfacturing.m4v HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
last-modified: Sat, 04 Jun 2022 20:55:52 GMT
accept-ranges: bytes
content-length: 431781
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-range: bytes 0-431780/431781
content-type: video/x-m4v
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 221f6821cb16292db2a34b719718d6f1
86da71b1b715f7bef571683a4b112e516516f820
ca3f5d3e7f3ce3dc1d2e502b7c8f59fdb26a9564e1c4638b529db5dc50ad8dba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6590
Cache-Control: max-age=135120
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:47 GMT
Etag: "63d53e49-1d7"
Expires: Mon, 30 Jan 2023 17:14:47 GMT
Last-Modified: Sat, 28 Jan 2023 15:24:57 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 221f6821cb16292db2a34b719718d6f1
86da71b1b715f7bef571683a4b112e516516f820
ca3f5d3e7f3ce3dc1d2e502b7c8f59fdb26a9564e1c4638b529db5dc50ad8dba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4131
Cache-Control: max-age=132661
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:47 GMT
Etag: "63d53e49-1d7"
Expires: Mon, 30 Jan 2023 16:33:48 GMT
Last-Modified: Sat, 28 Jan 2023 15:24:57 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
s3.us-west-1.wasabisys.com/cdn.tagembed.com/fonts/fonts.css
38.146.40.16200 OK 11 kB URL HTTP/1.1 s3.us-west-1.wasabisys.com/cdn.tagembed.com/fonts/fonts.css
IP 38.146.40.16:0
ASN #395717 BLUEARCHIVE-ZONE-1
File type ASCII text, with very long lines (373), with CRLF line terminators
Hash 4fc3fdcf66db0e48f55e4806fd5d7942
96072ff44788f18c58d41198ee1e245052975cb1
9c3f405ad95fbfa6c83a99a6f53d2869269fbec51c021e3d88daf018a2863792
GET /cdn.tagembed.com/fonts/fonts.css HTTP/1.1
Host: s3.us-west-1.wasabisys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.tagembed.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 11364
Content-Type: text/css
Date: Sun, 29 Jan 2023 03:42:46 GMT
ETag: "4fc3fdcf66db0e48f55e4806fd5d7942"
Last-Modified: Thu, 17 Nov 2022 10:09:29 GMT
Server: WasabiS3/7.10.1198-2022-12-14-39a7a2e69e (head05)
x-amz-id-2: AGJJNgy7kVYnZ3tMVkZr4ITmvy2I7g/wVb6CNdMaqrHWUXLaH8UTJK3wXsPBIHZxW3uKRtw2Pr/2
x-amz-request-id: A978321310E4DF2C
scontent.cdninstagram.com/v/t39.30808-6/321573521_696885555396442_3536608535560092793_n.jpg?stp=dst-jpg_e15_s150x150&_nc_ht=scontent.cdninstagram.com&_nc_cat=110&_nc_ohc=0jKPcONj8vEAX-FuTGU&edm=APs17CUAAAAA&ccb=7-5&oh=00_AfAsjZm9j_rIrjUxHO3euiXBlgTuEsbHDvtRBZTLFnBkqw&oe=63DB1AA0&_nc_sid=978cb9
31.13.72.53200 OK 4.0 kB URL HTTP/2 scontent.cdninstagram.com/v/t39.30808-6/321573521_696885555396442_3536608535560092793_n.jpg?stp=dst-jpg_e15_s150x150&_nc_ht=scontent.cdninstagram.com&_nc_cat=110&_nc_ohc=0jKPcONj8vEAX-FuTGU&edm=APs17CUAAAAA&ccb=7-5&oh=00_AfAsjZm9j_rIrjUxHO3euiXBlgTuEsbHDvtRBZTLFnBkqw&oe=63DB1AA0&_nc_sid=978cb9
IP 31.13.72.53:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash fbe94e2a0c1cb6d50d2d6e33b404a929
a8871c70c73e2e05de3c709198e2402bf8c762b9
565781f9f0fe4a690c39cc2e20db410cdf1f9669ec3568c7139b65eb828d0b2d
GET /v/t39.30808-6/321573521_696885555396442_3536608535560092793_n.jpg?stp=dst-jpg_e15_s150x150&_nc_ht=scontent.cdninstagram.com&_nc_cat=110&_nc_ohc=0jKPcONj8vEAX-FuTGU&edm=APs17CUAAAAA&ccb=7-5&oh=00_AfAsjZm9j_rIrjUxHO3euiXBlgTuEsbHDvtRBZTLFnBkqw&oe=63DB1AA0&_nc_sid=978cb9 HTTP/1.1
Host: scontent.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.instagram.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sat, 24 Dec 2022 11:49:01 GMT
x-haystack-needlechecksum: 2273743402
x-needle-checksum: 1245867154
content-type: image/jpeg
content-digest: adler32=2563559641
content-length: 4003
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
x-fb-trip-id: 1512268381
date: Sun, 29 Jan 2023 03:42:47 GMT
x-fb-edge-debug: lNWsygLFBrNf1dHAUZ53MrStWl5K4udFu-7u1TH855V8F7mXa5X-iRzg1kizG2sTFfo2lqnIUdT1qpNbcq-UP3d28Wab2isdIQDYu1Qzi7s
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.shahcorporationltd.com/js/bootstrap.min.js
162.241.224.167200 OK 30 kB URL HTTP/2 www.shahcorporationltd.com/js/bootstrap.min.js
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 9114aa7235050c385dacf567ba61d937
eec2d0df2f4a6de2bb6a292456ca876a84f232ae
52b7244a4a5c1683e7395471faa20b4bc463b802790d31e1628f52ec5877a5e5
Analyzer Verdict Alert fortinet Phishing
GET /js/bootstrap.min.js HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Jun 2021 09:20:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: application/javascript
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yO/r/2ihP3NA43zp.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 31 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yO/r/2ihP3NA43zp.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
Hash 98749e45ea984bcc4797acc8574689f2
3fef5cfac9a1569cb565b91d125f2de29e226cf9
0ec75ac1c3bd4a229b5634cecfc4f7de0267a540e55ef3d58855041b1037ecb6
GET /rsrc.php/v3/yO/r/2ihP3NA43zp.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 25 Jan 2024 20:17:25 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: kpCsC9m0q2CfFtfkKFwmfA==
x-fb-debug: B/R5/US140wTiVAaEeaUuRkxwFIrUGygv5Ymk4zdi7DLG7UQvfFfPS7yyYlRvE/DHL6CyqprsL4DsugOmsiwlg==
content-length: 85074
x-fb-trip-id: 1679558926
date: Sun, 29 Jan 2023 03:42:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/Latest_Projects/technology.m4v
162.241.224.167206 Partial Content 101 kB URL HTTP/2 www.shahcorporationltd.com/img/Latest_Projects/technology.m4v
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 101 kB (101309 bytes)
Hash 367578a5519eafe05c61135426048dd4
05b7f048318109586e267c45c12d7f326b69de6b
52b7d74b370e27e4793613daf377a96832b78c5aea55357894a7d31eb63223ca
Analyzer Verdict Alert fortinet Phishing
GET /img/Latest_Projects/technology.m4v HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
last-modified: Sat, 04 Jun 2022 20:17:42 GMT
accept-ranges: bytes
content-length: 466677
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-range: bytes 0-466676/466677
content-type: video/x-m4v
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/Latest_Projects/manfacturing.m4v
162.241.224.167206 Partial Content 42 kB URL HTTP/2 www.shahcorporationltd.com/img/Latest_Projects/manfacturing.m4v
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Hash a1afbe7fe11836513ba75e39b8d02c1b
28409ba5918c03a92323007176673a1462e4da8e
33b0fdbb5187d99e431ed33beb45f83c3d367b0776335490d81834bd6bdc5e1b
Analyzer Verdict Alert fortinet Phishing
GET /img/Latest_Projects/manfacturing.m4v HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
last-modified: Sat, 04 Jun 2022 20:55:52 GMT
accept-ranges: bytes
content-length: 431781
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-range: bytes 0-431780/431781
content-type: video/x-m4v
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/Latest_Projects/health&lifestyle.m4v
162.241.224.167206 Partial Content 34 kB URL HTTP/2 www.shahcorporationltd.com/img/Latest_Projects/health&lifestyle.m4v
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Hash 4de0adc4f25b7efd55e836b2c8f107e9
1440017166f2b6491fdb3276bff79b555e77c383
b4bebcabe5718c9d9e86860a358cbfbdd24d047a86d8da492e70d7af598f4fd4
GET /img/Latest_Projects/health&lifestyle.m4v HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
last-modified: Sat, 04 Jun 2022 20:34:26 GMT
accept-ranges: bytes
content-length: 532111
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-range: bytes 0-532110/532111
content-type: video/x-m4v
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/Latest_Projects/health&lifestyle.m4v
162.241.224.167206 Partial Content 17 kB URL HTTP/2 www.shahcorporationltd.com/img/Latest_Projects/health&lifestyle.m4v
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Hash d94e5d1acad50c077a6c5258933e8ba3
2fc737f83c9270573d01148a526a587592fca91f
694c780ab2e93bbbbbfc36e3d2ded641e1dd95b1ee602f5c0c731980d0231f3d
GET /img/Latest_Projects/health&lifestyle.m4v HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
last-modified: Sat, 04 Jun 2022 20:34:26 GMT
accept-ranges: bytes
content-length: 532111
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-range: bytes 0-532110/532111
content-type: video/x-m4v
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/js/jquery-3.3.1.min.js
162.241.224.167200 OK 38 kB URL HTTP/2 www.shahcorporationltd.com/js/jquery-3.3.1.min.js
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 2a04aa5055e46cb95af81fdd07d8a386
b8717f66d963e95d6ab3b3668c5c7208d77a96a5
0ecd6af8fc6f833c95faa569493ca2398aa0e5c1e86722c022fa41d2ae61e87a
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery-3.3.1.min.js HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Jun 2021 09:20:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: application/javascript
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ed8a8c45dceab588456b222e04775919
0242859712655caa3c3e9b936878c7c7874b7b5a
669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-207871571-1&cid=986479964.1674963772&jid=673374723&gjid=302595327&_gid=1450942060.1674963772&_u=YEBAAUAAAAAAACAAI~&z=1799478131
64.233.165.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-207871571-1&cid=986479964.1674963772&jid=673374723&gjid=302595327&_gid=1450942060.1674963772&_u=YEBAAUAAAAAAACAAI~&z=1799478131
IP 64.233.165.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-207871571-1&cid=986479964.1674963772&jid=673374723&gjid=302595327&_gid=1450942060.1674963772&_u=YEBAAUAAAAAAACAAI~&z=1799478131 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.shahcorporationltd.com
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.shahcorporationltd.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 29 Jan 2023 03:42:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
platform.twitter.com/js/timeline.16b53cc33aaa562f8f41a495bf720289.js
151.101.244.157200 OK 3.0 kB URL HTTP/2 platform.twitter.com/js/timeline.16b53cc33aaa562f8f41a495bf720289.js
IP 151.101.244.157:0
File type Unicode text, UTF-8 text, with very long lines (8260), with no line terminators
Hash 6a34dd4d8bdc6a27b9d35915a5da68df
209a13a7b49f3673876f39b5ae230a3a0e61467e
ad73af43416878b20704d428afa1c97877f04b10ee3fee5bd495987cb19655b3
GET /js/timeline.16b53cc33aaa562f8f41a495bf720289.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 24 Jan 2023 21:41:06 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "569768187d20181e1cdea6aa19f3a4b4+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:47 GMT
x-served-by: cache-iad-kjyo7100163-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 2964
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ed8a8c45dceab588456b222e04775919
0242859712655caa3c3e9b936878c7c7874b7b5a
669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 86352d15c37831cf9bf1e41325029224
ac8b28bcc1e6dd026e1f62d1ef8b9f80a42eee21
154f5f5e116df41f5d3bd414c671138b2afc198071529a0f3573109277566cd8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 4.2 kB IP 142.250.74.131:0
Hash 8fd20f557bdefc8010c7aebc2e055c69
6e97a5a7fd42803f7bbf007d2222f2f5c8e29fac
2ecd28fccf212cdd481f1399a2a035ceb8c668b3747f0b28935390e97bc3ad5b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-207871571-1&cid=986479964.1674963772&jid=673374723&_u=YEBAAUAAAAAAACAAI~&z=1501482830
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-207871571-1&cid=986479964.1674963772&jid=673374723&_u=YEBAAUAAAAAAACAAI~&z=1501482830
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-207871571-1&cid=986479964.1674963772&jid=673374723&_u=YEBAAUAAAAAAACAAI~&z=1501482830 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 03:42:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-207871571-1&cid=986479964.1674963772&jid=673374723&_u=YEBAAUAAAAAAACAAI~&z=1501482830
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-207871571-1&cid=986479964.1674963772&jid=673374723&_u=YEBAAUAAAAAAACAAI~&z=1501482830
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-207871571-1&cid=986479964.1674963772&jid=673374723&_u=YEBAAUAAAAAAACAAI~&z=1501482830 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 03:42:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
web.tagembed.com/app/api/wall/41666
188.114.96.1200 OK 5.7 kB URL HTTP/2 web.tagembed.com/app/api/wall/41666
IP 188.114.96.1:0
File type JSON data\012- , ASCII text, with very long lines (638)
Hash cf1facaccb8dfd73613a11da58c10b5f
aeca09ee0459250eb5e6f2a8122adacdd4dc1fbb
f07fcfb582b94b07daedfd30cfaf8096135e5c7b42edfe69cf217b93f694ea83
GET /app/api/wall/41666 HTTP/1.1
Host: web.tagembed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://widget.tagembed.com
Connection: keep-alive
Referer: https://widget.tagembed.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 03:42:48 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.2.21
access-control-allow-origin: *
access-control-allow-headers: wall, action, url, editor, content-type, owner
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rRpaEsrycNKiOdU9dUZdB0CmPAHiJmBnzqEHIakHqLVFntMiPqEutnOGrZkG5pxAEEyaGVtLUTMRdsAeptgJ6sDF8Uqj%2F4N2lpKTjxKz4wSLGqP4%2FsyFVLqQWjvEb7phHAh%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790ef5b35efc0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
syndication.twitter.com/srv/timeline-profile/screen-name/shahcorps?dnt=true&embedId=twitter-widget-0&features=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&frame=false&hideBorder=false&hideFooter=false&hideHeader=false&hideScrollBar=false&lang=en&maxHeight=575px&origin=https%3A%2F%2Fwww.shahcorporationltd.com%2F&sessionId=0e698bc1f93d732e684f783513bd00a83df3e52b&showHeader=true&showReplies=false&transparent=false&widgetsVersion=aaf4084522e3a%3A1674595607486
104.244.42.200200 OK 13 kB URL HTTP/2 syndication.twitter.com/srv/timeline-profile/screen-name/shahcorps?dnt=true&embedId=twitter-widget-0&features=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&frame=false&hideBorder=false&hideFooter=false&hideHeader=false&hideScrollBar=false&lang=en&maxHeight=575px&origin=https%3A%2F%2Fwww.shahcorporationltd.com%2F&sessionId=0e698bc1f93d732e684f783513bd00a83df3e52b&showHeader=true&showReplies=false&transparent=false&widgetsVersion=aaf4084522e3a%3A1674595607486
IP 104.244.42.200:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (61320), with no line terminators
Hash 6aabe19f327249968b699ec454bd13a9
9f75e96fa790217e46f5b9b3703f25a3beee3fe7
366435b131e696babd4baea8bfde36ed5f9a91b34b30a4715e45b34cd0cdcd26
GET /srv/timeline-profile/screen-name/shahcorps?dnt=true&embedId=twitter-widget-0&features=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&frame=false&hideBorder=false&hideFooter=false&hideHeader=false&hideScrollBar=false&lang=en&maxHeight=575px&origin=https%3A%2F%2Fwww.shahcorporationltd.com%2F&sessionId=0e698bc1f93d732e684f783513bd00a83df3e52b&showHeader=true&showReplies=false&transparent=false&widgetsVersion=aaf4084522e3a%3A1674595607486 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 03:42:48 GMT
etag: "1bc5a-NZqDZkuWMq49aeWofOvpM1+30BU"
perf: 7626143928
server: tsa_o
content-type: text/html; charset=utf-8
cache-control: must-revalidate, max-age=60
x-transaction-id: 35cf11b2eb9c1305
x-xss-protection: 0
strict-transport-security: max-age=631138519
content-encoding: gzip
content-length: 12658
x-response-time: 382
x-connection-hash: 3cdfc7a6520344499605d86cc3f1ac2ef2081cd84ed52c0cb7a3cdc7e33ba7e4
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bc7c4f207ec97cacb1eedd94d2f6b371
5f0948a39435ace8bacc4ac5fb3df19045908e42
bfb24fe4a1cb45a068b0a6432b03c20d00ea178aabea23498f2d1f0273bf6e1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bc7c4f207ec97cacb1eedd94d2f6b371
5f0948a39435ace8bacc4ac5fb3df19045908e42
bfb24fe4a1cb45a068b0a6432b03c20d00ea178aabea23498f2d1f0273bf6e1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bc7c4f207ec97cacb1eedd94d2f6b371
5f0948a39435ace8bacc4ac5fb3df19045908e42
bfb24fe4a1cb45a068b0a6432b03c20d00ea178aabea23498f2d1f0273bf6e1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/a/AATXAJx4jPwGoCeOf_QQ8xb8VzjGJpnTBD37ag2_8PdG=s128-c0x00000000-cc-rp-mo
142.250.74.97200 OK 3.4 kB URL HTTP/2 lh3.googleusercontent.com/a/AATXAJx4jPwGoCeOf_QQ8xb8VzjGJpnTBD37ag2_8PdG=s128-c0x00000000-cc-rp-mo
IP 142.250.74.97:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 802b79956f837b8f8d84b9c272e8b81d
8792dea3fed28c8a25a91cc8bb802d9c3578bfc2
80c57b8548071e28dcf6d447af0c43cd6a54b0f030d3e0d2be9b2ecccff713e9
GET /a/AATXAJx4jPwGoCeOf_QQ8xb8VzjGJpnTBD37ag2_8PdG=s128-c0x00000000-cc-rp-mo HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.tagembed.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3364
x-xss-protection: 0
date: Sun, 29 Jan 2023 01:50:28 GMT
expires: Mon, 30 Jan 2023 01:50:28 GMT
cache-control: public, max-age=86400, no-transform
content-type: image/png
age: 6740
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bc7c4f207ec97cacb1eedd94d2f6b371
5f0948a39435ace8bacc4ac5fb3df19045908e42
bfb24fe4a1cb45a068b0a6432b03c20d00ea178aabea23498f2d1f0273bf6e1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bc7c4f207ec97cacb1eedd94d2f6b371
5f0948a39435ace8bacc4ac5fb3df19045908e42
bfb24fe4a1cb45a068b0a6432b03c20d00ea178aabea23498f2d1f0273bf6e1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/a/AATXAJwEhbTT5SJULd1cFWYrjHGG2n7KyqTyWOB7m-rS=s128-c0x00000000-cc-rp-mo
142.250.74.97200 OK 5.5 kB URL HTTP/2 lh3.googleusercontent.com/a/AATXAJwEhbTT5SJULd1cFWYrjHGG2n7KyqTyWOB7m-rS=s128-c0x00000000-cc-rp-mo
IP 142.250.74.97:0
Hash b2c9619559c5748999725701135d63bb
f67240c91d54163c46b97d4e4c6fb899c61544f6
036d26aec026c06ffd9361d54ab7cfcdcbdf624a9585c563dc8644b159dabe17
GET /a/AATXAJwEhbTT5SJULd1cFWYrjHGG2n7KyqTyWOB7m-rS=s128-c0x00000000-cc-rp-mo HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.tagembed.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4908
x-xss-protection: 0
date: Sun, 29 Jan 2023 01:50:28 GMT
expires: Mon, 30 Jan 2023 01:50:28 GMT
cache-control: public, max-age=86400, no-transform
content-type: image/png
age: 6740
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/AOh14Gj6bNAcyqg_NnDX7Dxc5XGwDb-at-lkfD6aHkSvJg=s128-c0x00000000-cc-rp-mo
142.250.74.97200 OK 36 kB URL HTTP/2 lh3.googleusercontent.com/a-/AOh14Gj6bNAcyqg_NnDX7Dxc5XGwDb-at-lkfD6aHkSvJg=s128-c0x00000000-cc-rp-mo
IP 142.250.74.97:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 906e064ee8555d8a82bc637fbf3592f9
309f8020cc319f51fd411a91e65eae93e07a7bad
fe0ca7525866e22245d32c81f1cec8b598f1649fdcfb3400a22f7241f942aafc
GET /a-/AOh14Gj6bNAcyqg_NnDX7Dxc5XGwDb-at-lkfD6aHkSvJg=s128-c0x00000000-cc-rp-mo HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.tagembed.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 36470
x-xss-protection: 0
date: Sun, 29 Jan 2023 01:50:28 GMT
expires: Wed, 25 Jan 2023 23:29:50 GMT
cache-control: public, max-age=86400, no-transform
age: 6740
etag: "v25d"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a/AATXAJzbyEd7pTSgJOJKrLjxjWeh0leXb5hyjMkkg02h=s128-c0x00000000-cc-rp-mo
142.250.74.97200 OK 4.6 kB URL HTTP/2 lh3.googleusercontent.com/a/AATXAJzbyEd7pTSgJOJKrLjxjWeh0leXb5hyjMkkg02h=s128-c0x00000000-cc-rp-mo
IP 142.250.74.97:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffe504224ad3c6b43d5e7cd41cf868d
2e8b53be4497f8a226ef068c95628e9ab6d56bd6
bdae211c68106f84175f1a598436b3eab9378de8442a91013162444591bf1b78
GET /a/AATXAJzbyEd7pTSgJOJKrLjxjWeh0leXb5hyjMkkg02h=s128-c0x00000000-cc-rp-mo HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.tagembed.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4566
x-xss-protection: 0
date: Sun, 29 Jan 2023 01:50:28 GMT
expires: Mon, 30 Jan 2023 01:50:28 GMT
cache-control: public, max-age=86400, no-transform
content-type: image/png
age: 6740
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a/AATXAJxqVVWLdqoG0u20_PjWA0zLm3H7OfvDYQuPb-M-=s128-c0x00000000-cc-rp-mo
142.250.74.97200 OK 3.8 kB URL HTTP/2 lh3.googleusercontent.com/a/AATXAJxqVVWLdqoG0u20_PjWA0zLm3H7OfvDYQuPb-M-=s128-c0x00000000-cc-rp-mo
IP 142.250.74.97:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash a24018a4606306b4dbb87af312fbb448
c680dbdbdffd67ee80a4c45854e67f5b553b73dd
c79c64025b249e175d07dd47008f9a558e3cd1ef6f479c720e00d4f976d3ff60
GET /a/AATXAJxqVVWLdqoG0u20_PjWA0zLm3H7OfvDYQuPb-M-=s128-c0x00000000-cc-rp-mo HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.tagembed.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3848
x-xss-protection: 0
date: Sun, 29 Jan 2023 01:50:28 GMT
expires: Mon, 30 Jan 2023 01:50:28 GMT
cache-control: public, max-age=86400, no-transform
content-type: image/png
age: 6740
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bc7c4f207ec97cacb1eedd94d2f6b371
5f0948a39435ace8bacc4ac5fb3df19045908e42
bfb24fe4a1cb45a068b0a6432b03c20d00ea178aabea23498f2d1f0273bf6e1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:42:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.twitter.com/_next/static/chunks/runtime-200f8a234c9b058ee035.js
151.101.244.157200 OK 2.2 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/runtime-200f8a234c9b058ee035.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (4155), with no line terminators
Hash 645a1f11dd72ba56005450e63d2d4789
edbbeb0dd73333674be4141e7f2600990b55d772
d9c730268e84ef3687d238fe5e20abc0e991487f2252a1a7a2babfcc67d55a3e
GET /_next/static/chunks/runtime-200f8a234c9b058ee035.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 19:48:48 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "e916660011f6a7d7e0b0d528f3fec620+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:48 GMT
x-served-by: cache-iad-kjyo7100132-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 2233
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/modules.20f98d7498a59035a762.js
151.101.244.157200 OK 96 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/modules.20f98d7498a59035a762.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 437a7f92b5160eb05d28892d18920fdc
9a34b537123a8574b8b0b1b36faff0255694de09
414f99db9b9390dad93551361a117df16f30c1174a367d51cd263a6be8a171c9
GET /_next/static/chunks/modules.20f98d7498a59035a762.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Jan 2023 18:55:07 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "1c54378254eefb52fea75b3c31dfe51d+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:48 GMT
x-served-by: cache-iad-kiad7000041-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 95842
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/main-fd9ef5eb169057cda26d.js
151.101.244.157200 OK 85 B URL HTTP/2 platform.twitter.com/_next/static/chunks/main-fd9ef5eb169057cda26d.js
IP 151.101.244.157:0
File type ASCII text, with no line terminators
Hash 3aafc9d72105373bab0a0e6a6ea74b20
b78e1de780ababf8735425d7fe8981b07d2974cd
a411488b398e6f1e6385787312fddc4d5c8a55ce4b71bf143db3df030edc404e
GET /_next/static/chunks/main-fd9ef5eb169057cda26d.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Jan 2023 18:55:05 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "1d1fa0644a94523711b2bb99a8d652bc+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:48 GMT
x-served-by: cache-iad-kiad7000053-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 85
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/pages/_app-1de42c5b58d3c0c73bcc.js
151.101.244.157200 OK 668 B URL HTTP/2 platform.twitter.com/_next/static/chunks/pages/_app-1de42c5b58d3c0c73bcc.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (1338), with no line terminators
Hash 7eba2662355f5ee41076debac9786b90
44657d7e84da67267e340e5120afbfe88d8451ec
61c7d9a71e89ac277d466617b3f81555ac354faacf250e824768e7f273717010
GET /_next/static/chunks/pages/_app-1de42c5b58d3c0c73bcc.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Jan 2023 22:54:30 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "2856f57c62c238a564ef576bbc50ca4a+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:48 GMT
x-served-by: cache-iad-kcgs7200066-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 668
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/pages/timeline-profile/screen-name/%5BscreenName%5D-c33f0b02841cffc3e9b4.js
151.101.244.157200 OK 1.3 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/pages/timeline-profile/screen-name/%5BscreenName%5D-c33f0b02841cffc3e9b4.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (13508), with no line terminators
Hash e1fa57149a041c4c430301a7f97b6831
88ca7ac84dbcd00215896f3f1ace1cb8f678227f
32638aff10ee0a9446b56258d0f4b13c8f71a6768aec0408819e4f9f70e94d05
GET /_next/static/chunks/pages/timeline-profile/screen-name/%5BscreenName%5D-c33f0b02841cffc3e9b4.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Jan 2023 22:54:30 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "e78034c651c8a81b2acd83dc7e7ad407+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:48 GMT
x-served-by: cache-iad-kiad7000158-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 1290
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/0F7sPL8xjjEQhBKtMk8QJ/_ssgManifest.js
151.101.244.157200 OK 1.2 kB URL HTTP/2 platform.twitter.com/_next/static/0F7sPL8xjjEQhBKtMk8QJ/_ssgManifest.js
IP 151.101.244.157:0
Hash 6e04ff46005fef80765c98ad7996732a
352503533c0edd9035d15c1be96cb735efb1db77
2051bf522fd78a28b5f8ebf6c30a6b0ac5fdb437296fb48e02702e24153e6b32
GET /_next/static/0F7sPL8xjjEQhBKtMk8QJ/_ssgManifest.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 19:48:48 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "abee47769bf307639ace4945f9cfd4ff+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:48 GMT
x-served-by: cache-iad-kiad7000150-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 60
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/2.691622e4391d1973cb65.js
151.101.244.157200 OK 7.7 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/2.691622e4391d1973cb65.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (23122), with no line terminators
Hash 4e68298e4344aa0d3d13719534a3438e
ac46127e7ea4b8a1d548414dcc7760c87c92afa6
b1225020ac004667f5143b07e601c42f334723d978141edaf2f1288d34ec9e68
GET /_next/static/chunks/2.691622e4391d1973cb65.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Jan 2023 18:55:05 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "942b5b928a24465d1906b4716131d896+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:49 GMT
x-served-by: cache-iad-kiad7000141-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 7674
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/16.cf2498641ffeea0501f9.js
151.101.244.157200 OK 12 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/16.cf2498641ffeea0501f9.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (38240), with no line terminators
Hash 34e51138fd930c751cb561be3b564855
4506c6289d9fcdaedbdb674fc4c81fcc124a0b34
322c1c0796b7d28040b2dffc95e72ab3f66c1a493b245a34a2933ad29b72e24d
GET /_next/static/chunks/16.cf2498641ffeea0501f9.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 19:48:48 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "686cee182f1b6274807308d61445c90e+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:49 GMT
x-served-by: cache-iad-kiad7000162-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 12019
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/6.aba35a239a4780e40713.js
151.101.244.157200 OK 1.3 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/6.aba35a239a4780e40713.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (2558), with no line terminators
Hash 1b7e2ea3ea6bc9be26d876c28d7b7176
c26cd2ab84ee15a7fda56c2e99cb7bdd3abeafef
2ce54debf4e3275a1127a36846c827f559760827dd1bd0415b71c4d46720bf4b
GET /_next/static/chunks/6.aba35a239a4780e40713.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Jan 2023 22:54:30 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "0e9ca787dfdcbf5ffeb7df678ec8f6df+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:49 GMT
x-served-by: cache-iad-kcgs7200134-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 1276
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/0.12059cc9aae4f779ab68.js
151.101.244.157200 OK 106 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/0.12059cc9aae4f779ab68.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 106 kB (106305 bytes)
Hash 5eb49f1de6865378d9f5efbef83e57c3
13408b51b6ef3291e354f99dc81a948ebe4028c0
7538a81951d8c7cee4aa60c245f2706e61e20329678def8c2cb4fdb0d98fcbc9
GET /_next/static/chunks/0.12059cc9aae4f779ab68.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Jan 2023 18:55:06 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "145185fec2c06c3409682e5df48acdf8+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:49 GMT
x-served-by: cache-iad-kiad7000140-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 106305
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/1.48b01f08913eb5fa0cc2.js
151.101.244.157200 OK 39 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/1.48b01f08913eb5fa0cc2.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash cc0dd3d91d3f84793d6d5e56b240040c
5f43903e7ad7fc06846d0b615917a0123dacf934
491e4c701259b691028848d7973d99d768096a4398ec0c0bcbd9f67a33b11918
GET /_next/static/chunks/1.48b01f08913eb5fa0cc2.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 19:48:49 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "49b3568b2658a3f2161ba0f0828a0d4a+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:49 GMT
x-served-by: cache-iad-kiad7000073-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 39055
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/4.c99a76747fd916e95958.js
151.101.244.157200 OK 67 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/4.c99a76747fd916e95958.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e8cc3decf9ffb8630018633df8fe09dd
ef08df2a7b73ea9d44a17111ca614f0d28385fcd
6a1381e479b0113bf1c2003166f4e770a50685a38536676d4808b5ede9d9bcf4
GET /_next/static/chunks/4.c99a76747fd916e95958.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Jan 2023 04:48:13 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "813fe12fe49871b42d9cd17b5f80c663+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:49 GMT
x-served-by: cache-iad-kiad7000068-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 66820
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/3.1ccb4322689c37f32bbe.js
151.101.244.157200 OK 166 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/3.1ccb4322689c37f32bbe.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 166 kB (165711 bytes)
Hash 14e116db6e51b2eacbd49094d66d42fd
21ac571eb05d99fd531531e03a2e98e1c21b5638
7ce30bae18996dcd2a3089a08e0e63690c1a2f125cc930941c284e7918a53faf
GET /_next/static/chunks/3.1ccb4322689c37f32bbe.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 19:48:49 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "133e3fa7c7c80902d114e5ba94e18769+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:49 GMT
x-served-by: cache-iad-kjyo7100101-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 165711
X-Firefox-Spdy: h2
s3.us-west-1.wasabisys.com/cdn.tagembed.com/fonts/webfont/open-sans-v17-latin-regular.woff2
38.146.40.16200 OK 14 kB URL HTTP/1.1 s3.us-west-1.wasabisys.com/cdn.tagembed.com/fonts/webfont/open-sans-v17-latin-regular.woff2
IP 38.146.40.16:0
ASN #395717 BLUEARCHIVE-ZONE-1
File type Web Open Font Format (Version 2), TrueType, length 14380, version 1.0\012- data
Hash 33543c5cc5d88f5695dd08c87d280dfd
600db9374e47e4f73a59ccc0a99bcc42f4a3e02a
9c50a96c859b9beea47b71740bd14e7f69a4df586d015f47434037f8def53b52
GET /cdn.tagembed.com/fonts/webfont/open-sans-v17-latin-regular.woff2 HTTP/1.1
Host: s3.us-west-1.wasabisys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://widget.tagembed.com
Connection: keep-alive
Referer: https://s3.us-west-1.wasabisys.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET, HEAD, POST, PUT, DELETE, MOVE, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Date, Etag, Content-Length, Accept-Ranges, Content-Range, Server, Location, X-Amz-Version-Id
Access-Control-Max-Age: 86400
Content-Length: 14380
Content-Type: application/octet-stream
Date: Sun, 29 Jan 2023 03:42:49 GMT
ETag: "33543c5cc5d88f5695dd08c87d280dfd"
Last-Modified: Mon, 08 Feb 2021 06:06:36 GMT
Server: WasabiS3/7.10.1198-2022-12-14-39a7a2e69e (head05)
x-amz-id-2: eRc1luo2QtN6PiMWOrwVrkP1UM/FicXf8Wl6Il5ksnSRw3blTl/IvUHeC4Kbl/8Zc7I/+Bya+REd
x-amz-request-id: F350AE6637F28BCE
platform.twitter.com/_next/static/chunks/ondemand.Dropdown.4cd773fb670117e677f6.js
151.101.244.157200 OK 2.8 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/ondemand.Dropdown.4cd773fb670117e677f6.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (7266), with no line terminators
Hash 84a65e6495f109dc6ce506206c2e843c
b77511d747b4340a06b92abbb536a3bbdea16823
e3816d1b044f3b2aa01e1b5c6d2b947e0ecce02095e8051ecc79b8ca021b5e1a
GET /_next/static/chunks/ondemand.Dropdown.4cd773fb670117e677f6.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Jan 2023 22:54:30 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "ee85bb78f0eb1080fd5fc8c4d4cddbb8+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:49 GMT
x-served-by: cache-iad-kjyo7100091-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 2822
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/vendors~ondemand.LottieWeb.d0dde7eb339d57b45e0d.js
151.101.244.157200 OK 42 kB URL HTTP/2 platform.twitter.com/_next/static/chunks/vendors~ondemand.LottieWeb.d0dde7eb339d57b45e0d.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 09c2fd4e5f3d9abc54e231bde32d2022
78c208ddb78abdb980ce25ba1361c05aeace4bbb
cf9f987adc53ae48ffcceb9b62097af9f0e7df9431797d51c356ff39a9793985
GET /_next/static/chunks/vendors~ondemand.LottieWeb.d0dde7eb339d57b45e0d.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Jan 2023 04:48:12 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "5e006b62c5bde14eb6fa194e2cee465c+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:50 GMT
x-served-by: cache-iad-kiad7000116-IAD, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 41941
X-Firefox-Spdy: h2
abs.twimg.com/sticky/animations/like.4.json
152.199.21.141200 OK 1.9 kB URL HTTP/2 abs.twimg.com/sticky/animations/like.4.json
IP 152.199.21.141:0
File type ASCII text, with very long lines (24291)
Hash c5203df5bd1440c2fdf4b44f0eb3116a
6b928e79e59b281eb5b9f5c2ad608f81078b5869
0b638ce107a37db0734fcd82af97d1dd575c246d737949c5414aa1dc549540e3
GET /sticky/animations/like.4.json HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syndication.twitter.com/
Origin: https://syndication.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 8679091
content-type: application/json
date: Sun, 29 Jan 2023 03:42:50 GMT
etag: "YKYmOkwIx9KztN7bQT7x8g=="
expires: Mon, 29 Jan 2024 03:42:50 GMT
last-modified: Thu, 20 Oct 2022 16:50:56 GMT
perf: 7626143928
server: ECAcc (ska/F695)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
vary: Accept-Encoding
x-cache: HIT
x-connection-hash: 00620de26479f72103b0d6f4ca0873a782dd4164b4c1379a9b6b21190ad4a58b
x-content-type-options: nosniff
x-response-time: 10
x-ton-expected-size: 24292
x-transaction-id: 80afab27525733bc
content-length: 1897
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1674963775930%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22dnt%22%3Atrue%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fwww.shahcorporationltd.com%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%22949fd67%3A1674699165631%22%2C%22widget_data_source%22%3A%22screen-name%3Ashahcorps%22%7D&dnt=1&session_id=0e698bc1f93d732e684f783513bd00a83df3e52b
104.244.42.200200 OK 35 kB URL HTTP/2 syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1674963775930%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22dnt%22%3Atrue%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fwww.shahcorporationltd.com%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%22949fd67%3A1674699165631%22%2C%22widget_data_source%22%3A%22screen-name%3Ashahcorps%22%7D&dnt=1&session_id=0e698bc1f93d732e684f783513bd00a83df3e52b
IP 104.244.42.200:0
Hash 519a43e88c49728db19b2b1b80d47637
206e7b1c576a98fa03435afc6f700f46fd73d94e
f2fe4f37b07cdfba83f6f0047ac4fc1f7e05e0c2b49da9d1d2933c483f048d26
GET /i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1674963775930%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22dnt%22%3Atrue%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fwww.shahcorporationltd.com%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%22949fd67%3A1674699165631%22%2C%22widget_data_source%22%3A%22screen-name%3Ashahcorps%22%7D&dnt=1&session_id=0e698bc1f93d732e684f783513bd00a83df3e52b HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/srv/timeline-profile/screen-name/shahcorps?dnt=true&embedId=twitter-widget-0&features=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&frame=false&hideBorder=false&hideFooter=false&hideHeader=false&hideScrollBar=false&lang=en&maxHeight=575px&origin=https%3A%2F%2Fwww.shahcorporationltd.com%2F&sessionId=0e698bc1f93d732e684f783513bd00a83df3e52b&showHeader=true&showReplies=false&transparent=false&widgetsVersion=aaf4084522e3a%3A1674595607486
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 03:42:49 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Sun, 29 Jan 2023 03:42:50 GMT
content-length: 43
x-transaction-id: ba2f0e70b544d548
strict-transport-security: max-age=631138519
x-response-time: 107
x-connection-hash: 3cdfc7a6520344499605d86cc3f1ac2ef2081cd84ed52c0cb7a3cdc7e33ba7e4
X-Firefox-Spdy: h2
pbs.twimg.com/profile_images/1389895086792658949/v7RO1XXF_normal.jpg
151.101.244.159200 OK 1.9 kB URL HTTP/2 pbs.twimg.com/profile_images/1389895086792658949/v7RO1XXF_normal.jpg
IP 151.101.244.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 48x48, components 3\012- data
Hash e24e5153e36e8e133085932c7069631f
c0dfabfbeb12c9330d799fd9362b98649194d80a
1fdbb90203870b628fd6a5ff39259e7e3ed3c0d67ab3bc935c8dd24b4f600642
GET /profile_images/1389895086792658949/v7RO1XXF_normal.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
perf: 7626143928
cache-control: max-age=604800, must-revalidate
last-modified: Wed, 05 May 2021 10:47:46 GMT
x-transaction-id: 9f2477a964a7e669
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:50 GMT
x-cache: HIT, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7371-LHR, cache-hel1410028-HEL, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 1883
X-Firefox-Spdy: h2
pbs.twimg.com/media/Fk4oCt7WYAA1aj5?format=png&name=360x360
151.101.244.159200 OK 139 kB URL HTTP/2 pbs.twimg.com/media/Fk4oCt7WYAA1aj5?format=png&name=360x360
IP 151.101.244.159:0
File type PNG image data, 360 x 359, 8-bit/color RGB, non-interlaced\012- data
Size 139 kB (139409 bytes)
Hash 35416545b8e403cb8207813fe095bb1e
43327e68b30c709703d41b72763dc835cb067b78
66541d5d574ee595731511cb5016b5bb0f4716ec8858879e763983ffd3c5027a
GET /media/Fk4oCt7WYAA1aj5?format=png&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
perf: 7626143928
content-type: image/png
cache-control: max-age=604800, must-revalidate
last-modified: Mon, 26 Dec 2022 06:42:44 GMT
x-transaction-id: 74bc743f53d66f0f
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:51 GMT
x-cache: HIT, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7373-LHR, cache-hel1410028-HEL, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 139409
X-Firefox-Spdy: h2
pbs.twimg.com/media/Fh7Xu5XXwAIMaTj?format=jpg&name=360x360
151.101.244.159200 OK 17 kB URL HTTP/2 pbs.twimg.com/media/Fh7Xu5XXwAIMaTj?format=jpg&name=360x360
IP 151.101.244.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x203, components 3\012- data
Hash 65d656b213431be216beeb59c6c3e649
339532d5547a0315ec134e07e597168c465c83dc
30b7c4690434d226dc4f665f924e92be1def49d827ae6d3569e5e279f1db49d2
GET /media/Fh7Xu5XXwAIMaTj?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
perf: 7626143928
content-type: image/jpeg
cache-control: max-age=604800, must-revalidate
last-modified: Sat, 19 Nov 2022 12:43:15 GMT
x-transaction-id: 24b4f124eda8f5ed
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:51 GMT
x-cache: HIT, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7322-LHR, cache-hel1410028-HEL, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 16848
X-Firefox-Spdy: h2
pbs.twimg.com/media/Fg9IXBRWIAIyR4x?format=jpg&name=360x360
151.101.244.159200 OK 16 kB URL HTTP/2 pbs.twimg.com/media/Fg9IXBRWIAIyR4x?format=jpg&name=360x360
IP 151.101.244.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x202, components 3\012- data
Hash 45cff621abd8c09be45caf9431bc4f0a
31a6ee5e3aaa858bf0adf47a5a821065fe8b50f2
219b2e6982fc05bb24ac743289829df036adca5b6f5f999759e96c1cf78dac6e
GET /media/Fg9IXBRWIAIyR4x?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
perf: 7626143928
content-type: image/jpeg
cache-control: max-age=604800, must-revalidate
last-modified: Mon, 07 Nov 2022 10:39:38 GMT
x-transaction-id: 904ea02ae3b93269
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:51 GMT
x-cache: HIT, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7325-LHR, cache-hel1410028-HEL, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 16422
X-Firefox-Spdy: h2
pbs.twimg.com/media/FgYVT5OWYAETcrY?format=jpg&name=360x360
151.101.244.159200 OK 19 kB URL HTTP/2 pbs.twimg.com/media/FgYVT5OWYAETcrY?format=jpg&name=360x360
IP 151.101.244.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x203, components 3\012- data
Hash 5724c2fbd0553541fa003c775aa4209b
e7c6c31cce526191137e3f74a9d01d2d79211be8
75c1e36f0b375d151d22d99f0cba54b29eff6144d1fbeb3f0e64d42860e86333
GET /media/FgYVT5OWYAETcrY?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
perf: 7626143928
content-type: image/jpeg
cache-control: max-age=604800, must-revalidate
last-modified: Mon, 31 Oct 2022 07:10:16 GMT
x-transaction-id: 9d4b3b6fdca3fba9
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:51 GMT
x-cache: HIT, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7348-LHR, cache-hel1410028-HEL, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 18594
X-Firefox-Spdy: h2
pbs.twimg.com/media/Fed3zF4XoAEf32p?format=jpg&name=360x360
151.101.244.159200 OK 17 kB URL HTTP/2 pbs.twimg.com/media/Fed3zF4XoAEf32p?format=jpg&name=360x360
IP 151.101.244.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x203, components 3\012- data
Hash d5269d4880a97fffa56f5b58e001fe32
0bd103fe7f4f30e6c9f5a76e87f5d4e330251d81
58973c64431e6e3a115ac21ee7c57e39698d9b91aca0f2c8ccb807163e623fe9
GET /media/Fed3zF4XoAEf32p?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
perf: 7626143928
content-type: image/jpeg
cache-control: max-age=604800, must-revalidate
last-modified: Fri, 07 Oct 2022 12:27:39 GMT
x-transaction-id: df6e9a8fb8b758cb
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:51 GMT
x-cache: HIT, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7333-LHR, cache-hel1410028-HEL, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 16959
X-Firefox-Spdy: h2
pbs.twimg.com/media/Fd52W3ZWYAIlYfp?format=jpg&name=360x360
151.101.244.159200 OK 20 kB URL HTTP/2 pbs.twimg.com/media/Fd52W3ZWYAIlYfp?format=jpg&name=360x360
IP 151.101.244.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x203, components 3\012- data
Hash 32cdd5ccb08e2f0a981f6e558e41bb2b
e6a6bcd6d2c3e4734924674afc526ebb3051b2ac
4bf238937502c9754f91f623be68e9e938c2132e6a385b02c48ab5ef6276fb42
GET /media/Fd52W3ZWYAIlYfp?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
perf: 7626143928
content-type: image/jpeg
cache-control: max-age=604800, must-revalidate
last-modified: Fri, 30 Sep 2022 12:35:01 GMT
x-transaction-id: 1da193eb0dc27fc0
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:51 GMT
x-cache: HIT, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7367-LHR, cache-hel1410028-HEL, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 20021
X-Firefox-Spdy: h2
pbs.twimg.com/media/FdVvQZWX0AAdS2Z?format=jpg&name=360x360
151.101.244.159200 OK 23 kB URL HTTP/2 pbs.twimg.com/media/FdVvQZWX0AAdS2Z?format=jpg&name=360x360
IP 151.101.244.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x203, components 3\012- data
Hash eb86860b62d5a3cde53b88e6f402f290
4f465ab693e6be8099b16b96684c1ac9e922f299
11bb8de6e382dc8c90b7458f2059c737181ffdd80ed0a323ee4f2f62a13bfd83
GET /media/FdVvQZWX0AAdS2Z?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
perf: 7626143928
content-type: image/jpeg
cache-control: max-age=604800, must-revalidate
last-modified: Fri, 23 Sep 2022 12:17:40 GMT
x-transaction-id: 7690578720ca3e85
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:42:51 GMT
x-cache: HIT, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7386-LHR, cache-hel1410028-HEL, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 23439
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/Latest_Projects/import&export.m4v
162.241.224.167206 Partial Content 0 B URL HTTP/2 www.shahcorporationltd.com/img/Latest_Projects/import&export.m4v
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /img/Latest_Projects/import&export.m4v HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
last-modified: Sat, 04 Jun 2022 20:56:40 GMT
accept-ranges: bytes
content-length: 544893
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-range: bytes 0-544892/544893
content-type: video/x-m4v
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/Latest_Projects/education.m4v
162.241.224.167206 Partial Content 0 B URL HTTP/2 www.shahcorporationltd.com/img/Latest_Projects/education.m4v
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /img/Latest_Projects/education.m4v HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
last-modified: Sat, 04 Jun 2022 20:28:58 GMT
accept-ranges: bytes
content-length: 374305
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-range: bytes 0-374304/374305
content-type: video/x-m4v
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
www.shahcorporationltd.com/css/style.css
162.241.224.167200 OK 0 B URL HTTP/2 www.shahcorporationltd.com/css/style.css
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /css/style.css HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 28 Jan 2023 11:52:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: text/css
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
web.tagembed.com/app/api/embedUrl/
188.114.96.1200 OK 0 B URL HTTP/2 web.tagembed.com/app/api/embedUrl/
IP 188.114.96.1:0
OPTIONS /app/api/embedUrl/ HTTP/1.1
Host: web.tagembed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: owner,url,wall
Referer: https://widget.tagembed.com/
Origin: https://widget.tagembed.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 03:42:51 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.2.21
access-control-allow-origin: *
access-control-allow-headers: wall, action, url, editor, content-type, owner
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=37gLfvqQtHJxbI%2FHnB9%2FURb4%2BU%2F5HG1Fc5M2WgQWR3i6zxD9cewn6UBG%2Bft%2BpsYoVOApwHLoLQqILz5JhxpxHUJNAqclZKd18KGkvcAIUHOPnJtGiBGuz6UfjAwxLusSROqj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790ef5d2df820b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.shahcorporationltd.com/img/Latest_Projects/technology.m4v
162.241.224.167206 Partial Content 0 B URL HTTP/2 www.shahcorporationltd.com/img/Latest_Projects/technology.m4v
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Phishing
GET /img/Latest_Projects/technology.m4v HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
last-modified: Sat, 04 Jun 2022 20:17:42 GMT
accept-ranges: bytes
content-length: 466677
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-range: bytes 0-466676/466677
content-type: video/x-m4v
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Aldrich&display=swap
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Aldrich&display=swap
IP 142.250.74.74:0
GET /css2?family=Aldrich&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 03:42:44 GMT
date: Sun, 29 Jan 2023 03:42:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
widget.tagembed.com/embed.min.js
188.114.96.1200 OK 0 B URL HTTP/2 widget.tagembed.com/embed.min.js
IP 188.114.96.1:0
GET /embed.min.js HTTP/1.1
Host: widget.tagembed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 03:42:44 GMT
content-type: application/javascript
last-modified: Fri, 16 Dec 2022 06:01:28 GMT
cache-control: max-age=0,no-cache,no-store,must-revalidate
etag: W/"0df3a85be0b618ac184c5cd328be9a7f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4zXdRRpg3Nz1Rs5_Uaw-LIOkdh4R0Su77J6kgABRJXV58nu6K3NZwA==
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yV6i2sdygLElvNmSehtgcutlZEfDUOzyfV579FmofQc3%2BMySbf%2B2hvON9x5zFp0ptOOLskcigCCTIpQlVvU%2FlBS36dYYMLEsYLdB%2BjbUc%2B1BqM7MHwvXKfzlqpC7wU9uQsLl%2FsG0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790ef5a9388fb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yJ/r/s0faeuC9AwY.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 0 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yJ/r/s0faeuC9AwY.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
GET /rsrc.php/v3/yJ/r/s0faeuC9AwY.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 18 Jan 2024 21:18:26 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: Z0bW5cJQEKK0dRcfXhXlyA==
x-fb-debug: IZKlUuQIJvOx+celsej2F/7UqXYsb9GukD7NLUD/vrhMWjGWynoWDqmMhRvq/lUNluQYJV7u71lpce0VyDLsGA==
priority: u=3,i
content-length: 56377
x-fb-trip-id: 1679558926
date: Sun, 29 Jan 2023 03:42:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.shahcorporationltd.com/css/bootstrap.min.css
162.241.224.167200 OK 0 B URL HTTP/2 www.shahcorporationltd.com/css/bootstrap.min.css
IP 162.241.224.167:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /css/bootstrap.min.css HTTP/1.1
Host: www.shahcorporationltd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.shahcorporationltd.com/
Cookie: XSRF-TOKEN=eyJpdiI6InpYWks0a0dqUVYwV1B0VGlROHAybHc9PSIsInZhbHVlIjoieTFpbjlYUUFuOGVGc0E0bjk0NmVHbFNUNWNsUy9vWkwwMEx3VTF0NW9hREFDYWRaZzh3UiszVjlXLzhFZW9SQTMxSWtSRHpld05iVUI2eFlXYjJnQXUxK3doWUUzT1lnRm9GNlVMYmNWRHI5cFlMN0prWVVLeE4vYnB0aTdHRSsiLCJtYWMiOiIxMjQ5OWQ2YTRmM2NlYjc5MmI3ZDU3ZjE2OGQ3YzVhMjlkM2QzNWRjZDQ0ZWU1YjkwN2I3OWRkZWMxZTE4YTY4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikd1Y1RJR0gvNU5SaU85STJTc2RyWGc9PSIsInZhbHVlIjoiZDI4a1V3VEJTMnF6cUhsQlZxZW1xR0ZYQzdQY0MyamF3eEV1c1hNZVpwMk10WUVpUUVYeXBxd0h3TXh2OUFVV200YldIcDFFU09jRXlUSHFCTGIzYm5UNTdlRTcvNzVZNGs1U2JJUVRydm5TQ25LQkZwVU1YSWhNaXVTWS9JVHAiLCJtYWMiOiI5MzY0MzAyZDFhODI5NWI5OTg4OTRlN2VkNTU2NDMzYTJlNWQzM2Y4NjczZWE4OThjYzg4ZTBmODZjYmVhNTU3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 11:22:29 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
content-type: text/css
date: Sun, 29 Jan 2023 03:42:44 GMT
server: Apache
X-Firefox-Spdy: h2