Report - rachnasagar.in/blog/category/cbse-pariksha-pre-board

Report Overview

Submitted URL
rachnasagar.in/blog/category/cbse-pariksha-pre-board
IP
43.224.137.139
ASN
#17439 Netmagic Datacenter Mumbai
Submitted
2023-01-29 14:48:36
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
16

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
code.jquery.com	634	2012-05-21T19:28:02Z	2023-03-13T05:09:57Z	369 B	34 kB	69.16.175.42
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	382 B	46 kB	216.58.207.200
securegw.paytm.in	551289	2017-01-31T12:38:02Z	2023-01-29T14:06:58Z	1.5 kB	11 kB	184.86.49.198
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	56 kB	34.120.237.76
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:09:18Z	1.5 kB	888 B	216.239.34.36
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	370 B	21 kB	142.250.74.110
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-13T06:26:15Z	836 B	758 B	142.250.74.35
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
rachnasagar.in	unknown	2014-08-08T23:06:50Z	2023-01-23T11:06:50Z	2.5 kB	1.2 MB	43.224.137.139
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.7 kB	5.6 kB	142.250.74.131
www.rachnasagar.in	unknown	2013-09-09T12:28:43Z	2023-01-18T14:52:20Z	2.9 kB	2.2 kB	43.224.137.139
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.161.147.150
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-13T05:09:21Z	1.7 kB	16 kB	104.17.24.14
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
www.google.com	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	824 B	1.3 kB	216.58.211.4
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-13T08:02:41Z	600 B	592 B	173.194.221.156
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	23.36.76.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-29	medium	rachnasagar.in/blog/category/cbse-pariksha-pre-board	Malware
2023-01-29	medium	rachnasagar.in/reactassets/static/js/main.cab9be1f.js	Malware
2023-01-29	medium	www.rachnasagar.in/api/home-top	Malware
2023-01-29	medium	www.rachnasagar.in/api/seo/home	Malware
2023-01-29	medium	www.rachnasagar.in/api/footer-termsofuse	Malware
2023-01-29	medium	www.rachnasagar.in/api/home-middle	Malware
2023-01-29	medium	www.rachnasagar.in/api/footer-login	Malware
2023-01-29	medium	www.rachnasagar.in/api/footer-product-service	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	rachnasagar.in/blog/category/cbse-pariksha-pre-board	341 B	2023-03-13	2023-03-13
Pretty URL rachnasagar.in/blog/category/cbse-pariksha-pre-board IP 43.224.137.139 ASN #17439 Netmagic Datacenter Mumbai Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:18:00 Last Seen2023-03-13 11:18:00 Times Seen1 Hash 3c161df756e76b0d027c0bb6bd8febc7 9c51b96d29b3f57f6fbc912196fc87d8460e8a45 b92d9dfe08d682761c23b110024959761b62ee655f37656590b07b6ecb7945f9 Loading...

	securegw.paytm.in/merchantpgpui/checkoutjs/merchants/Rachna00883415851600.js	2.2 kB	2023-03-13	2023-03-13
Pretty URL securegw.paytm.in/merchantpgpui/checkoutjs/merchants/Rachna00883415851600.js IP 184.86.49.198 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:18:00 Last Seen2023-03-13 11:18:00 Times Seen1 Hash 6451df1d30f0784945cd27fdbf107cae 2733898a251d51aa48a5fb47235c14e76c3fe344 48c06b58a9b4380f157f302328b782fa057c5a9a6cc7c7942d87c1a7efba9bad Loading...

	www.google.com/pagead/1p-conversion/10903942179/?random=1675003716500&cv=11&fst=1675003716500&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&label=zmKZCOr374UYEKPos88o&hn=www.google.com&frm=0&url=http%3A%2F%2Frachnasagar.in%2Fblog%2Fcategory%2Fcbse-pariksha-pre-board&tiba=Rachna%20Sagar-%20Buy%20Online%20CBSE%2C%20ICSE%20and%20State%20Board%20Books&value=0&mid=120381204&fcntr=India&flng=Eng&bttype=purchase&auid=1689019736.1675003716&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4	43 B	2023-03-07	2024-04-08
Pretty URL www.google.com/pagead/1p-conversion/10903942179/?random=1675003716500&cv=11&fst=1675003716500&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&label=zmKZCOr374UYEKPos88o&hn=www.google.com&frm=0&url=http%3A%2F%2Frachnasagar.in%2Fblog%2Fcategory%2Fcbse-pariksha-pre-board&tiba=Rachna%20Sagar-%20Buy%20Online%20CBSE%2C%20ICSE%20and%20State%20Board%20Books&value=0&mid=120381204&fcntr=India&flng=Eng&bttype=purchase&auid=1689019736.1675003716&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 IP 216.58.211.4 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2024-04-08 20:17:10 Times Seen63935 Hash ad8b6f08655797587cdec719a94efe59 182adf5a140796f81e930649d05654dbf22fd5b7 77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6 Loading...

	cdnjs.cloudflare.com/ajax/libs/owl-carousel/1.3.3/owl.carousel.min.js	24 kB	2023-03-07	2024-04-18
Pretty URL cdnjs.cloudflare.com/ajax/libs/owl-carousel/1.3.3/owl.carousel.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:29 Last Seen2024-04-18 13:22:05 Times Seen4759 Hash 88d0fe722f04973e2888b58a63aa0570 f947512e51f8ef4b15bba3f701de64e53a7f7f9b e0e2bc4e1d3ee5024c4e1aa58a6cad9aa42fc63a8c89ce18013a1c8f2b94875c Loading...

	www.googletagmanager.com/gtag/js?id=UA-79784237-1	116 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-79784237-1 IP 216.58.207.200 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:18:00 Last Seen2023-03-13 11:18:00 Times Seen1 Hash db33c17100fe99a9740b2866830424ef 41d8acf3f8eb17e93d3da7e4416b5cde35433041 f06cd23ff7c11a17c5a8d073d8f3230070cdabed3fadb6189f863a4d57ee0da5 Loading...

	rachnasagar.in/blog/category/cbse-pariksha-pre-board	154 B	2023-03-13	2023-03-13
Pretty URL rachnasagar.in/blog/category/cbse-pariksha-pre-board IP 43.224.137.139 ASN #17439 Netmagic Datacenter Mumbai Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:18:00 Last Seen2023-03-13 11:18:00 Times Seen1 Hash 2be786921b3b1ea36abff351b7c5aead 69b1fa55fe5275b3653e4a04f8be33d06f9ecb0e 29885b575d6ca66458a4deee60d1a0494929ec3a49fdad67cf4c964ed9c8da5d Loading...

	www.googletagmanager.com/gtag/js?id=G-M1NVVNB90H&l=dataLayer&cx=c	220 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-M1NVVNB90H&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:18:00 Last Seen2023-03-13 11:18:00 Times Seen1 Hash ad0da024dd7df41828b9034dabd68b03 ff6a688fbd1da4f6a6e049ad0c613983eca739e5 d489a071afc80688e2ccca1180fb1b7f39e86444dfcf6645df683bcbc765245c Loading...

	rachnasagar.in/reactassets/static/js/main.cab9be1f.js	945 kB	2023-03-13	2023-03-13
Pretty URL rachnasagar.in/reactassets/static/js/main.cab9be1f.js IP 43.224.137.139 ASN #17439 Netmagic Datacenter Mumbai Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:18:00 Last Seen2023-03-13 11:18:00 Times Seen1 Hash 5efcca0ae2effbdfd21de3a1e87b4f31 52c02971d9927ab48cb7c0f8209aa9f5f163d039 bc089e2b1d307abd76c67a4c84dea1a8f33b1e771e00a02680ffd71abcd073fa Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	code.jquery.com/jquery-1.12.0.min.js	97 kB	2023-03-07	2024-04-18
Pretty URL code.jquery.com/jquery-1.12.0.min.js IP 69.16.175.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:02 Last Seen2024-04-18 13:37:46 Times Seen4920 Hash cbb11b58473b2d672f4ed53abbb67336 66f47b885d587aa9a6c453ae3f2c9a382e5c7ec7 5f1ab65fe2ad6b381a1ae036716475bf78c9b2e309528cf22170c1ddeefddcbf Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 02:20:20 Times Seen36951635 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-54TKWGB	136 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-54TKWGB IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:18:00 Last Seen2023-03-13 11:18:00 Times Seen1 Hash 68df4c7a8d6ab230219e76cba08c6825 91917f23eefc9833bbc4a324b5d837b4243df428 fe1188460a71f231c7edb418164eead6107b69dda6d0f9b6ea71c68f2c038a94 Loading...

HTTP Transactions (50)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6480
Expires: Sun, 29 Jan 2023 16:36:25 GMT
Date: Sun, 29 Jan 2023 14:48:25 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4022
Expires: Sun, 29 Jan 2023 15:55:27 GMT
Date: Sun, 29 Jan 2023 14:48:25 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 14:43:08 GMT
content-type: application/json
age: 317
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2869
Expires: Sun, 29 Jan 2023 15:36:14 GMT
Date: Sun, 29 Jan 2023 14:48:25 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: rPhFUknacad6edt7wlSsTmJLQaa7gyiw2iUeqfZgW3hlrMr13e1z8tenNWNa19zyL/X1cUzJpZ8=
x-amz-request-id: V09H4R6QXYHNKFVP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 14:21:25 GMT
age: 1620
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 14:48:25 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 14:41:41 GMT
age: 404
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19144
Expires: Sun, 29 Jan 2023 20:07:30 GMT
Date: Sun, 29 Jan 2023 14:48:26 GMT
Connection: keep-alive

push.services.mozilla.com/

35.161.147.150

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.147.150:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dU10uJ5FS3zv+QEJoKMYYQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TgEsqJN/2e4dcv7HgR84fBOcAds=

rachnasagar.in/blog/category/cbse-pariksha-pre-board

43.224.137.139

200 OK

2.6 kB

URL HTTP/1.1
rachnasagar.in/blog/category/cbse-pariksha-pre-board
IP
43.224.137.139:0
ASN
#17439 Netmagic Datacenter Mumbai

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (961), with CRLF line terminators
Size
2.6 kB (2572 bytes)
Hash
2fd02e7dda034ed182b2307742dbb973
4c6d8bf38d5c038bc51d448f279d0310a37511eb
20d34ca3aa443a74a3444af0e24d07f019c063ed4ed67808d44e430a098e5257

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /blog/category/cbse-pariksha-pre-board HTTP/1.1
Host: rachnasagar.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:48:24 GMT
Server: Apache
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IjhOcmtoaTRyS0gwNDR2cW9CVnoyU3c9PSIsInZhbHVlIjoibVJNOUVvK294NldLRVBtUUVqdHZUL0NwUlNITlZOckJYa1B2ZFM4K2VNbWNXQnJQNnA2ZU5DMFZpVDhMNDBhVDVtWW9uZ3NaTWJKYmlPd3ZENVQ5RHExR1ZFNVlCVEhEMDlFRVNMdjJzNGJVZzZNSkFzWE9KdTBhYytEaHVyTVYiLCJtYWMiOiI5MjhkYzExYTBhZDVmZmU4YTNjMjczOTRjOTUxOWFkNWQyNmE2ZTQwZjA0MjBmNWNmN2UxZGU0ZTE1NjE3NTUwIiwidGFnIjoiIn0%3D; expires=Sun, 29-Jan-2023 16:48:25 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IjRWZGUrblVlSVY1cVk2UStSQ2M0VGc9PSIsInZhbHVlIjoia0FYWUZXd2NkUFpkd2p4RkkycENKN1B5UTh3aFQwUzhGcXMvUk1aaGlaMHF6aGx6SlNqT0VGdDZhSzlDSnVJekpwK1FFUXJvL0JYUGc3UTN4L0g2V2JMY3pJMHNOa3JDQys3S2JpazlIb2VSY1E1eWNnYkJhRjlSY3BRNWNMaVciLCJtYWMiOiJmNjUzODdlMzRhNTAwNDc5MjhiNWQxZTI1OGZkZGNmMzgyMDY1YjlkOGNhZWYzNTlmMzFmZTJiMzBmN2JkYWJmIiwidGFnIjoiIn0%3D; expires=Sun, 29-Jan-2023 16:48:25 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

cdnjs.cloudflare.com/ajax/libs/owl-carousel/1.3.3/owl.carousel.min.js

104.17.24.14

200 OK

5.7 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/owl-carousel/1.3.3/owl.carousel.min.js
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (635)
Size
5.7 kB (5743 bytes)
Hash
57b264dada801fd368e31aff6a9de4a7
f092254b29df5bf4722b14bee7b9c1be63540bab
cfc703991824d4a28997fe6221aa2e9b0e2f87644a8b4761a2da306559ef74ea

HTTP Headers

GET /ajax/libs/owl-carousel/1.3.3/owl.carousel.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rachnasagar.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:48:26 GMT
content-type: application/javascript; charset=utf-8
content-length: 5743
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f3f-5d52"
last-modified: Mon, 04 May 2020 16:13:51 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 12946325
expires: Fri, 19 Jan 2024 14:48:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KFdMhtlWI7kaKKKyGUcrQvLVZoDEr4UJrTirNvzuImCJukBNL1Kb7vCbnwUp1LaS2c6RNBgTZrEZuRgqwrJrWylC34jfKg5oJx6kLwjIJVG8TBnvZnkKPZIZmSyK1cl5MX9dJ%2FAO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7912c4d08b56b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css

104.17.24.14

200 OK

5.6 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (30837)
Size
5.6 kB (5631 bytes)
Hash
109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rachnasagar.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:48:26 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 230742
expires: Fri, 19 Jan 2024 14:48:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EIR3H0VFZjm3BEW409zTm5q5FwGSrT1xxNatTGjd%2F5gDuPISWkPzCbd5drcGCm9GFrKAjtGKVg1bMoqUNFVW9VkwTOeZVgIQIK3VKvB%2B%2BLP8fOu0fA2IviuHNxYDDBk90yC2zCu6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7912c4d08b52b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/owl-carousel/1.3.3/owl.theme.min.css

104.17.24.14

200 OK

277 B

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/owl-carousel/1.3.3/owl.theme.min.css
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1152), with no line terminators
Size
277 B (277 bytes)
Hash
a594eaee30708f92534360fc8ae8452a
f125915d12a15bbf672b0abf255a52d6158d3771
3e28de1506ec74f1458bb7ed33a34d60b8adf2e99ff343e0e0e87a897c29c746

HTTP Headers

GET /ajax/libs/owl-carousel/1.3.3/owl.theme.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rachnasagar.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:48:26 GMT
content-type: text/css; charset=utf-8
content-length: 277
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f3f-480"
last-modified: Mon, 04 May 2020 16:13:51 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 229610
expires: Fri, 19 Jan 2024 14:48:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6Zz3b8vJYIb4HeIOBx2a4dJyc%2FCthnOEapo80Q%2BwArXZQixKpal66Z5oxhMhVsPCpMaywe33ndyYWTAvbhLD%2BxM5jk0095nqCp3ClXoDr2sYe%2ByTgHpgTj7w8FXN7nsYHsPSUnZ%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7912c4d08b57b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/owl-carousel/1.3.3/owl.carousel.min.css

104.17.24.14

200 OK

301 B

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/owl-carousel/1.3.3/owl.carousel.min.css
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1174), with no line terminators
Size
301 B (301 bytes)
Hash
7281d1b94239b8df0260fb471fc05be7
982f4a6baed8d7e158d80c9f28f76aeca2f7f10e
422b1f08cd6031264eee1fb9be217ace31638f1f8a2960a9ed847b1b4e9e512e

HTTP Headers

GET /ajax/libs/owl-carousel/1.3.3/owl.carousel.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rachnasagar.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:48:26 GMT
content-type: text/css; charset=utf-8
content-length: 301
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f3f-496"
last-modified: Mon, 04 May 2020 16:13:51 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5242095
expires: Fri, 19 Jan 2024 14:48:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FUC%2BUYioFPwrydLp3OTma42pNTIiNgX94OLWWO6pnqv%2BQatvCXGo7DvpY%2BjG9ZP72i948W2NkrNDS7FzlL7VDqP9wqT1waDEpph72VUki4xWXb87BpzCogYAMLQgdijFsHbWOyYX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7912c4d08b5bb4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

code.jquery.com/jquery-1.12.0.min.js

69.16.175.42

200 OK

34 kB

URL HTTP/2
code.jquery.com/jquery-1.12.0.min.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (32060)
Size
34 kB (33820 bytes)
Hash
e0865bea5b028ce4d913dc4d6166c751
b2df1f4068ce3040ba56512e7fa7674db72f8fcb
0dbb35dfe27885f4ab7cb2f5f3b6894d0fe03f691e4612cec613bd6a74193337

HTTP Headers

GET /jquery-1.12.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rachnasagar.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:48:26 GMT
content-encoding: gzip
content-length: 33820
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-17c52"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675003706.dop069.sk1.t,1675003706.cds236.sk1.hn,1675003706.cds229.sk1.c
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-79784237-1

216.58.207.200

200 OK

45 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-79784237-1
IP
216.58.207.200:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
45 kB (45000 bytes)
Hash
17c7b3a232c236202e7b7a6091efc02c
7dca215d5cbf98dba982aee583e0bb2cd3960dfc
3d55c9bd3199405fcf33f434d068b5c841d24fe0f2e2daa3d75fe14b786068c1

HTTP Headers

GET /gtag/js?id=UA-79784237-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rachnasagar.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 14:48:27 GMT
expires: Sun, 29 Jan 2023 14:48:27 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45000
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

securegw.paytm.in/merchantpgpui/checkoutjs/merchants/Rachna00883415851600.js

184.86.49.198

200 OK

844 B

URL HTTP/2
securegw.paytm.in/merchantpgpui/checkoutjs/merchants/Rachna00883415851600.js
IP
184.86.49.198:0
ASN
#16625 AKAMAI-AS

File type
ASCII text
Size
844 B (844 bytes)
Hash
638b10552eb8345b6e74f02de16a5a3c
96565b91d5ec453862d36c4c1003c2f16fbe899b
57af22f157e917caabe7f575a031fe73845ff2d64a55185d286f26bae098bd14

HTTP Headers

GET /merchantpgpui/checkoutjs/merchants/Rachna00883415851600.js HTTP/1.1
Host: securegw.paytm.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rachnasagar.in
Connection: keep-alive
Referer: http://rachnasagar.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
etag: W/"89a-JzOJiiUdUapIpftHI1wU52w/40Q"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT, X-CustomHeader, Keep-Alive, User-Agent, X-Requested-With, If-Modified-Since, sso_token, Cache-Control, Content-Type
vary: Accept-Encoding
content-encoding: gzip
content-length: 844
date: Sun, 29 Jan 2023 14:48:27 GMT
strict-transport-security: max-age=86400
originserver: akamai-merchantpgpui-pg-alb.paytm.in
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9080
Expires: Sun, 29 Jan 2023 17:19:47 GMT
Date: Sun, 29 Jan 2023 14:48:27 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9080
Expires: Sun, 29 Jan 2023 17:19:47 GMT
Date: Sun, 29 Jan 2023 14:48:27 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9080
Expires: Sun, 29 Jan 2023 17:19:47 GMT
Date: Sun, 29 Jan 2023 14:48:27 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9167 bytes)
Hash
3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:46:16 GMT
age: 64931
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4475 bytes)
Hash
4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:56:46 GMT
age: 60701
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8652 bytes)
Hash
43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 21c734f0-cd73-4691-812e-7cd3908f8f89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRbH4HtPIAMFUGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d07232-291e20fb41c53db7664d04b2;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 00:05:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: j2zDtHz3pZLHJKG3-PaITyUzHOQBEELzuDIt7sbB8X_B10OxG394tg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 06:49:29 GMT
age: 28738
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5594 bytes)
Hash
4c77437e3a7361861aed8bfecbfe6bd6
fefd238c13c0fdfb7d964c90fcc8a8cbbf953034
282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: d56c9b84-dc1f-4d5c-91bf-7db55058bf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLyeEGOloAMFpzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce3126-5013a6b971d6800c5c85a4eb;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:03:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uPJu2SzvWcfqukF9t0PKG5iK7LrTnk1Cn5nioD4MklQgDAZnbiH8Gw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 14:55:48 GMT
age: 85959
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11470 bytes)
Hash
10a6491e2c1dfde68c7cd7297e70700f
d0f195319825a6d3e5e50ad15b2fcab27cb65896
4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 04:01:15 GMT
age: 38832
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10168 bytes)
Hash
d5ed99a9aed6f367efc5c9498ce87ff1
3123eb6f550c51fe17fc62eff943b3739e239a9b
536f45bf2eb41f7056df8b34964538005d6a0a4c6157def3fbdd9487f8c79027

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10168
x-amzn-requestid: fe58fe3c-dd23-4614-b5a2-e91ef68c2ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFOD7H-NIAMFcxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb907f-687fc51741d7ff97182d1955;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 07:13:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SORDxKQP-GudaCfRIbrmexyEeJXBExRipfF8sPHI-UkaYhR_RkDjvQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 00:55:27 GMT
age: 49980
etag: "3123eb6f550c51fe17fc62eff943b3739e239a9b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

rachnasagar.in/reactassets/static/css/main.eb3aa93a.css

43.224.137.139

200 OK

287 kB

URL HTTP/1.1
rachnasagar.in/reactassets/static/css/main.eb3aa93a.css
IP
43.224.137.139:0
ASN
#17439 Netmagic Datacenter Mumbai

File type
ASCII text, with very long lines (65536), with no line terminators
Size
287 kB (287172 bytes)
Hash
f5adbe418d85db482dbc414bee782b96
c28d30b442b35f7c9ba497e906e03f2f1a22589a
2fe9970551ffb55197278ed673f722ac674c58958d0cd47e8574dbbbfc70ed36

HTTP Headers

GET /reactassets/static/css/main.eb3aa93a.css HTTP/1.1
Host: rachnasagar.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rachnasagar.in/blog/category/cbse-pariksha-pre-board
Cookie: XSRF-TOKEN=eyJpdiI6IjhOcmtoaTRyS0gwNDR2cW9CVnoyU3c9PSIsInZhbHVlIjoibVJNOUVvK294NldLRVBtUUVqdHZUL0NwUlNITlZOckJYa1B2ZFM4K2VNbWNXQnJQNnA2ZU5DMFZpVDhMNDBhVDVtWW9uZ3NaTWJKYmlPd3ZENVQ5RHExR1ZFNVlCVEhEMDlFRVNMdjJzNGJVZzZNSkFzWE9KdTBhYytEaHVyTVYiLCJtYWMiOiI5MjhkYzExYTBhZDVmZmU4YTNjMjczOTRjOTUxOWFkNWQyNmE2ZTQwZjA0MjBmNWNmN2UxZGU0ZTE1NjE3NTUwIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjRWZGUrblVlSVY1cVk2UStSQ2M0VGc9PSIsInZhbHVlIjoia0FYWUZXd2NkUFpkd2p4RkkycENKN1B5UTh3aFQwUzhGcXMvUk1aaGlaMHF6aGx6SlNqT0VGdDZhSzlDSnVJekpwK1FFUXJvL0JYUGc3UTN4L0g2V2JMY3pJMHNOa3JDQys3S2JpazlIb2VSY1E1eWNnYkJhRjlSY3BRNWNMaVciLCJtYWMiOiJmNjUzODdlMzRhNTAwNDc5MjhiNWQxZTI1OGZkZGNmMzgyMDY1YjlkOGNhZWYzNTlmMzFmZTJiMzBmN2JkYWJmIiwidGFnIjoiIn0%3D

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:48:25 GMT
Server: Apache
Last-Modified: Sat, 28 Jan 2023 10:30:02 GMT
Accept-Ranges: bytes
Content-Length: 287172
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

securegw.paytm.in/merchantpgpui/checkoutjs/Rachna00883415851600

184.86.49.198

200 OK

8.5 kB

URL HTTP/2
securegw.paytm.in/merchantpgpui/checkoutjs/Rachna00883415851600
IP
184.86.49.198:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32969)
Size
8.5 kB (8530 bytes)
Hash
7ff5d649a768f6c355438be578a56d97
1b4148e9a0ad7bed02b337299478588d555f36f3
3e5725e081e327acb619431cec7b39adab1f05ecd1e9cf48be8532b3556f7a59

HTTP Headers

OPTIONS /merchantpgpui/checkoutjs/Rachna00883415851600 HTTP/1.1
Host: securegw.paytm.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://rachnasagar.in/
Origin: http://rachnasagar.in
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/html; charset=utf-8
etag: W/"8fd0-BmxXWtcmgf3hAaIrme29G55nNWE"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT, X-CustomHeader, Keep-Alive, User-Agent, X-Requested-With, If-Modified-Since, sso_token, Cache-Control, Content-Type
vary: Accept-Encoding
content-encoding: gzip
date: Sun, 29 Jan 2023 14:48:28 GMT
content-length: 8530
strict-transport-security: max-age=86400
originserver: akamai-merchantpgpui-pg-alb.paytm.in
X-Firefox-Spdy: h2

securegw.paytm.in/merchantpgpui/checkoutjs/Rachna00883415851600

184.86.49.198

200 OK

150 B

URL HTTP/2
securegw.paytm.in/merchantpgpui/checkoutjs/Rachna00883415851600
IP
184.86.49.198:0
ASN
#16625 AKAMAI-AS

File type
JSON data\012- , ASCII text, with no line terminators
Size
150 B (150 bytes)
Hash
195cc413c06da7217b97f2300539dab7
b0bbfb27b4aad38e161b25a645728866b506e280
c31910315d6ef45af55b94acb036b2acbd9a7e0167904ccae5da5b118868139a

HTTP Headers

GET /merchantpgpui/checkoutjs/Rachna00883415851600 HTTP/1.1
Host: securegw.paytm.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/javascript; charset=utf-8
Origin: http://rachnasagar.in
Connection: keep-alive
Referer: http://rachnasagar.in/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 150
etag: W/"96-sLv7J7Sq044WGyWmRXKIZrUG4oA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT, X-CustomHeader, Keep-Alive, User-Agent, X-Requested-With, If-Modified-Since, sso_token, Cache-Control, Content-Type
date: Sun, 29 Jan 2023 14:48:28 GMT
strict-transport-security: max-age=86400
originserver: akamai-merchantpgpui-pg-alb.paytm.in
X-Firefox-Spdy: h2

rachnasagar.in/reactassets/static/js/main.cab9be1f.js

43.224.137.139

200 OK

945 kB

URL HTTP/1.1
rachnasagar.in/reactassets/static/js/main.cab9be1f.js
IP
43.224.137.139:0
ASN
#17439 Netmagic Datacenter Mumbai

File type
ASCII text, with very long lines (65465)
Size
945 kB (944998 bytes)
Hash
5efcca0ae2effbdfd21de3a1e87b4f31
52c02971d9927ab48cb7c0f8209aa9f5f163d039
bc089e2b1d307abd76c67a4c84dea1a8f33b1e771e00a02680ffd71abcd073fa

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /reactassets/static/js/main.cab9be1f.js HTTP/1.1
Host: rachnasagar.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rachnasagar.in/blog/category/cbse-pariksha-pre-board
Cookie: XSRF-TOKEN=eyJpdiI6IjhOcmtoaTRyS0gwNDR2cW9CVnoyU3c9PSIsInZhbHVlIjoibVJNOUVvK294NldLRVBtUUVqdHZUL0NwUlNITlZOckJYa1B2ZFM4K2VNbWNXQnJQNnA2ZU5DMFZpVDhMNDBhVDVtWW9uZ3NaTWJKYmlPd3ZENVQ5RHExR1ZFNVlCVEhEMDlFRVNMdjJzNGJVZzZNSkFzWE9KdTBhYytEaHVyTVYiLCJtYWMiOiI5MjhkYzExYTBhZDVmZmU4YTNjMjczOTRjOTUxOWFkNWQyNmE2ZTQwZjA0MjBmNWNmN2UxZGU0ZTE1NjE3NTUwIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjRWZGUrblVlSVY1cVk2UStSQ2M0VGc9PSIsInZhbHVlIjoia0FYWUZXd2NkUFpkd2p4RkkycENKN1B5UTh3aFQwUzhGcXMvUk1aaGlaMHF6aGx6SlNqT0VGdDZhSzlDSnVJekpwK1FFUXJvL0JYUGc3UTN4L0g2V2JMY3pJMHNOa3JDQys3S2JpazlIb2VSY1E1eWNnYkJhRjlSY3BRNWNMaVciLCJtYWMiOiJmNjUzODdlMzRhNTAwNDc5MjhiNWQxZTI1OGZkZGNmMzgyMDY1YjlkOGNhZWYzNTlmMzFmZTJiMzBmN2JkYWJmIiwidGFnIjoiIn0%3D

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:48:25 GMT
Server: Apache
Last-Modified: Sat, 28 Jan 2023 10:30:09 GMT
Accept-Ranges: bytes
Content-Length: 944998
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

region1.google-analytics.com/g/collect?v=2&tid=G-FRWKGMKTME&gtm=2oe1p0&_p=2098004213&cid=302148207.1675003716&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675003716&sct=1&seg=0&dl=http%3A%2F%2Frachnasagar.in%2Fblog%2Fcategory%2Fcbse-pariksha-pre-board&dt=Rachna%20Sagar-%20Buy%20Online%20CBSE%2C%20ICSE%20and%20State%20Board%20Books&en=page_view&_fv=1&_nsi=1&_ss=1&_c=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-FRWKGMKTME&gtm=2oe1p0&_p=2098004213&cid=302148207.1675003716&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675003716&sct=1&seg=0&dl=http%3A%2F%2Frachnasagar.in%2Fblog%2Fcategory%2Fcbse-pariksha-pre-board&dt=Rachna%20Sagar-%20Buy%20Online%20CBSE%2C%20ICSE%20and%20State%20Board%20Books&en=page_view&_fv=1&_nsi=1&_ss=1&_c=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-FRWKGMKTME&gtm=2oe1p0&_p=2098004213&cid=302148207.1675003716&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675003716&sct=1&seg=0&dl=http%3A%2F%2Frachnasagar.in%2Fblog%2Fcategory%2Fcbse-pariksha-pre-board&dt=Rachna%20Sagar-%20Buy%20Online%20CBSE%2C%20ICSE%20and%20State%20Board%20Books&en=page_view&_fv=1&_nsi=1&_ss=1&_c=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rachnasagar.in
Connection: keep-alive
Referer: http://rachnasagar.in/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: http://rachnasagar.in
date: Sun, 29 Jan 2023 14:48:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-M1NVVNB90H&gtm=2oe1p0&_p=2098004213&cid=302148207.1675003716&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675003716&sct=1&seg=0&dl=http%3A%2F%2Frachnasagar.in%2Fblog%2Fcategory%2Fcbse-pariksha-pre-board&dt=Rachna%20Sagar-%20Buy%20Online%20CBSE%2C%20ICSE%20and%20State%20Board%20Books&en=page_view&_fv=1&_ss=1&_c=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-M1NVVNB90H&gtm=2oe1p0&_p=2098004213&cid=302148207.1675003716&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675003716&sct=1&seg=0&dl=http%3A%2F%2Frachnasagar.in%2Fblog%2Fcategory%2Fcbse-pariksha-pre-board&dt=Rachna%20Sagar-%20Buy%20Online%20CBSE%2C%20ICSE%20and%20State%20Board%20Books&en=page_view&_fv=1&_ss=1&_c=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-M1NVVNB90H&gtm=2oe1p0&_p=2098004213&cid=302148207.1675003716&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675003716&sct=1&seg=0&dl=http%3A%2F%2Frachnasagar.in%2Fblog%2Fcategory%2Fcbse-pariksha-pre-board&dt=Rachna%20Sagar-%20Buy%20Online%20CBSE%2C%20ICSE%20and%20State%20Board%20Books&en=page_view&_fv=1&_ss=1&_c=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rachnasagar.in
Connection: keep-alive
Referer: http://rachnasagar.in/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: http://rachnasagar.in
date: Sun, 29 Jan 2023 14:48:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rachnasagar.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 29 Jan 2023 13:46:59 GMT
expires: Sun, 29 Jan 2023 15:46:59 GMT
cache-control: public, max-age=7200
age: 3691
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
86352d15c37831cf9bf1e41325029224
ac8b28bcc1e6dd026e1f62d1ef8b9f80a42eee21
154f5f5e116df41f5d3bd414c671138b2afc198071529a0f3573109277566cd8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:48:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/pagead/1p-conversion/10903942179/?random=1675003716500&cv=11&fst=1675003716500&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&label=zmKZCOr374UYEKPos88o&hn=www.google.com&frm=0&url=http%3A%2F%2Frachnasagar.in%2Fblog%2Fcategory%2Fcbse-pariksha-pre-board&tiba=Rachna%20Sagar-%20Buy%20Online%20CBSE%2C%20ICSE%20and%20State%20Board%20Books&value=0&mid=120381204&fcntr=India&flng=Eng&bttype=purchase&auid=1689019736.1675003716&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4

216.58.211.4

302 Found

63 B

URL HTTP/2
www.google.com/pagead/1p-conversion/10903942179/?random=1675003716500&cv=11&fst=1675003716500&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&label=zmKZCOr374UYEKPos88o&hn=www.google.com&frm=0&url=http%3A%2F%2Frachnasagar.in%2Fblog%2Fcategory%2Fcbse-pariksha-pre-board&tiba=Rachna%20Sagar-%20Buy%20Online%20CBSE%2C%20ICSE%20and%20State%20Board%20Books&value=0&mid=120381204&fcntr=India&flng=Eng&bttype=purchase&auid=1689019736.1675003716&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP
216.58.211.4:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26

HTTP Headers

GET /pagead/1p-conversion/10903942179/?random=1675003716500&cv=11&fst=1675003716500&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&label=zmKZCOr374UYEKPos88o&hn=www.google.com&frm=0&url=http%3A%2F%2Frachnasagar.in%2Fblog%2Fcategory%2Fcbse-pariksha-pre-board&tiba=Rachna%20Sagar-%20Buy%20Online%20CBSE%2C%20ICSE%20and%20State%20Board%20Books&value=0&mid=120381204&fcntr=India&flng=Eng&bttype=purchase&auid=1689019736.1675003716&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rachnasagar.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 14:48:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/10903942179/?random=1675003716500&cv=11&fst=1675003716500&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&label=zmKZCOr374UYEKPos88o&hn=www.google.com&frm=0&url=http%3A%2F%2Frachnasagar.in%2Fblog%2Fcategory%2Fcbse-pariksha-pre-board&tiba=Rachna%20Sagar-%20Buy%20Online%20CBSE%2C%20ICSE%20and%20State%20Board%20Books&value=0&mid=120381204&fcntr=India&flng=Eng&bttype=purchase&auid=1689019736.1675003716&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
1141ae65ad448fb3438690d5042af728
aa8b236bb1099c9440bfe3e98530939623250c03
e55eeaf5cd454042706c3e2d7d2b0211e91087b430cb5bae6b9e030392f57b4b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:48:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:48:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ed8a8c45dceab588456b222e04775919
0242859712655caa3c3e9b936878c7c7874b7b5a
669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:48:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/pagead/1p-conversion/10903942179/?random=1675003716500&cv=11&fst=1675003716500&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&label=zmKZCOr374UYEKPos88o&hn=www.google.com&frm=0&url=http%3A%2F%2Frachnasagar.in%2Fblog%2Fcategory%2Fcbse-pariksha-pre-board&tiba=Rachna%20Sagar-%20Buy%20Online%20CBSE%2C%20ICSE%20and%20State%20Board%20Books&value=0&mid=120381204&fcntr=India&flng=Eng&bttype=purchase&auid=1689019736.1675003716&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0

142.250.74.35

200 OK

63 B

URL HTTP/2
www.google.no/pagead/1p-conversion/10903942179/?random=1675003716500&cv=11&fst=1675003716500&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&label=zmKZCOr374UYEKPos88o&hn=www.google.com&frm=0&url=http%3A%2F%2Frachnasagar.in%2Fblog%2Fcategory%2Fcbse-pariksha-pre-board&tiba=Rachna%20Sagar-%20Buy%20Online%20CBSE%2C%20ICSE%20and%20State%20Board%20Books&value=0&mid=120381204&fcntr=India&flng=Eng&bttype=purchase&auid=1689019736.1675003716&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
63 B (63 bytes)
Hash
0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26

HTTP Headers

GET /pagead/1p-conversion/10903942179/?random=1675003716500&cv=11&fst=1675003716500&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&label=zmKZCOr374UYEKPos88o&hn=www.google.com&frm=0&url=http%3A%2F%2Frachnasagar.in%2Fblog%2Fcategory%2Fcbse-pariksha-pre-board&tiba=Rachna%20Sagar-%20Buy%20Online%20CBSE%2C%20ICSE%20and%20State%20Board%20Books&value=0&mid=120381204&fcntr=India&flng=Eng&bttype=purchase&auid=1689019736.1675003716&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rachnasagar.in/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 14:48:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-79784237-1&cid=302148207.1675003716&jid=1295355361&gjid=947736848&_gid=2015603488.1675003718&_u=YADAAUAAAAAAACAAI~&z=438864441

173.194.221.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-79784237-1&cid=302148207.1675003716&jid=1295355361&gjid=947736848&_gid=2015603488.1675003718&_u=YADAAUAAAAAAACAAI~&z=438864441
IP
173.194.221.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-79784237-1&cid=302148207.1675003716&jid=1295355361&gjid=947736848&_gid=2015603488.1675003718&_u=YADAAUAAAAAAACAAI~&z=438864441 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://rachnasagar.in
Connection: keep-alive
Referer: http://rachnasagar.in/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: http://rachnasagar.in
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 29 Jan 2023 14:48:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:48:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ed8a8c45dceab588456b222e04775919
0242859712655caa3c3e9b936878c7c7874b7b5a
669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:48:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.rachnasagar.in/api/home-top

43.224.137.139

204 No Content

0 B

URL HTTP/1.1
www.rachnasagar.in/api/home-top
IP
43.224.137.139:0
ASN
#17439 Netmagic Datacenter Mumbai

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

OPTIONS /api/home-top HTTP/1.1
Host: www.rachnasagar.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: rskey
Referer: http://rachnasagar.in/
Origin: http://rachnasagar.in
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Date: Sun, 29 Jan 2023 14:48:29 GMT
Server: Apache
Cache-Control: no-cache, private
Access-Control-Allow-Origin: *
Vary: Access-Control-Request-Method,Access-Control-Request-Headers
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: rskey
Access-Control-Max-Age: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

www.rachnasagar.in/api/seo/home

43.224.137.139

204 No Content

0 B

URL HTTP/1.1
www.rachnasagar.in/api/seo/home
IP
43.224.137.139:0
ASN
#17439 Netmagic Datacenter Mumbai

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

OPTIONS /api/seo/home HTTP/1.1
Host: www.rachnasagar.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: rskey
Referer: http://rachnasagar.in/
Origin: http://rachnasagar.in
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Date: Sun, 29 Jan 2023 14:48:30 GMT
Server: Apache
Cache-Control: no-cache, private
Access-Control-Allow-Origin: *
Vary: Access-Control-Request-Method,Access-Control-Request-Headers
Access-Control-Allow-Methods: POST
Access-Control-Allow-Headers: rskey
Access-Control-Max-Age: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

www.rachnasagar.in/api/footer-termsofuse

43.224.137.139

204 No Content

0 B

URL HTTP/1.1
www.rachnasagar.in/api/footer-termsofuse
IP
43.224.137.139:0
ASN
#17439 Netmagic Datacenter Mumbai

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

OPTIONS /api/footer-termsofuse HTTP/1.1
Host: www.rachnasagar.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: rskey
Referer: http://rachnasagar.in/
Origin: http://rachnasagar.in
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Date: Sun, 29 Jan 2023 14:48:30 GMT
Server: Apache
Cache-Control: no-cache, private
Access-Control-Allow-Origin: *
Vary: Access-Control-Request-Method,Access-Control-Request-Headers
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: rskey
Access-Control-Max-Age: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

www.rachnasagar.in/api/home-middle

43.224.137.139

204 No Content

0 B

URL HTTP/1.1
www.rachnasagar.in/api/home-middle
IP
43.224.137.139:0
ASN
#17439 Netmagic Datacenter Mumbai

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

OPTIONS /api/home-middle HTTP/1.1
Host: www.rachnasagar.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: rskey
Referer: http://rachnasagar.in/
Origin: http://rachnasagar.in
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Date: Sun, 29 Jan 2023 14:48:30 GMT
Server: Apache
Cache-Control: no-cache, private
Access-Control-Allow-Origin: *
Vary: Access-Control-Request-Method,Access-Control-Request-Headers
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: rskey
Access-Control-Max-Age: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

www.rachnasagar.in/api/footer-login

43.224.137.139

204 No Content

0 B

URL HTTP/1.1
www.rachnasagar.in/api/footer-login
IP
43.224.137.139:0
ASN
#17439 Netmagic Datacenter Mumbai

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

OPTIONS /api/footer-login HTTP/1.1
Host: www.rachnasagar.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: rskey
Referer: http://rachnasagar.in/
Origin: http://rachnasagar.in
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Date: Sun, 29 Jan 2023 14:48:31 GMT
Server: Apache
Cache-Control: no-cache, private
Access-Control-Allow-Origin: *
Vary: Access-Control-Request-Method,Access-Control-Request-Headers
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: rskey
Access-Control-Max-Age: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

www.rachnasagar.in/api/footer-product-service

43.224.137.139

204 No Content

0 B

URL HTTP/1.1
www.rachnasagar.in/api/footer-product-service
IP
43.224.137.139:0
ASN
#17439 Netmagic Datacenter Mumbai

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

OPTIONS /api/footer-product-service HTTP/1.1
Host: www.rachnasagar.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: rskey
Referer: http://rachnasagar.in/
Origin: http://rachnasagar.in
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Date: Sun, 29 Jan 2023 14:48:30 GMT
Server: Apache
Cache-Control: no-cache, private
Access-Control-Allow-Origin: *
Vary: Access-Control-Request-Method,Access-Control-Request-Headers
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: rskey
Access-Control-Max-Age: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML