Overview

URL acadplus.in/city.com/
IP119.18.52.62
ASNPUBLIC-DOMAIN-REGISTRY
Location India
Report completed2022-10-05 18:54:50 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-10-05 2 acadplus.in/city.com/ Generic/Spear Phishing
2022-10-05 2 acadplus.in/city.com/ Generic/Spear Phishing
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-05 2 acadplus.in/city.com/ Phishing
2022-10-05 2 acadplus.in/city.com/ Phishing
2022-10-05 2 acadplus.in/city.com/img/js(1) Phishing
2022-10-05 2 acadplus.in/city.com/img/cool-2.1.15.min.js Phishing
2022-10-05 2 acadplus.in/city.com/img/tc.min.js Phishing
2022-10-05 2 acadplus.in/city.com/img/js(2) Phishing
2022-10-05 2 acadplus.in/city.com/img/clarity.js Phishing
2022-10-05 2 acadplus.in/city.com/img/f.txt Phishing
2022-10-05 2 acadplus.in/city.com/img/js(5) Phishing
2022-10-05 2 acadplus.in/city.com/img/js(3) Phishing
2022-10-05 2 acadplus.in/city.com/img/bat.js Phishing
2022-10-05 2 acadplus.in/city.com/img/js Phishing
2022-10-05 2 acadplus.in/city.com/img/js(6) Phishing
2022-10-05 2 acadplus.in/city.com/img/dpm_pixel_min.js Phishing
2022-10-05 2 acadplus.in/city.com/img/js(7) Phishing
2022-10-05 2 acadplus.in/city.com/img/js(8) Phishing
2022-10-05 2 acadplus.in/city.com/img/js(9) Phishing
2022-10-05 2 acadplus.in/city.com/img/js(10) Phishing
2022-10-05 2 acadplus.in/city.com/img/js(11) Phishing
2022-10-05 2 acadplus.in/city.com/img/js(12) Phishing
2022-10-05 2 acadplus.in/city.com/img/js(13) Phishing
2022-10-05 2 acadplus.in/city.com/img/3fac67bbed26d3e121bb84cefe395515.js Phishing
2022-10-05 2 acadplus.in/city.com/img/js(14) Phishing
2022-10-05 2 acadplus.in/city.com/img/8e31a20960f50a1c34f7ccb1cd9737ec.js Phishing
2022-10-05 2 acadplus.in/city.com/img/d77cad342c2e126c752063748cd63d48.js Phishing
2022-10-05 2 acadplus.in/city.com/img/6c8ea0384518f24fa6367b97cbf3fd9d.js Phishing
2022-10-05 2 acadplus.in/city.com/img/51aba9f62787efbaa13e53a8d1ae3892.js Phishing
2022-10-05 2 acadplus.in/city.com/img/9d552101ccdbc20ef239307e0ace1356.js Phishing
2022-10-05 2 acadplus.in/city.com/img/96e0eb995483e83e7b3f71968eedeed1.js Phishing
2022-10-05 2 acadplus.in/city.com/img/d74f82b561a6aa5d9247eaf72394131a.js Phishing
2022-10-05 2 acadplus.in/city.com/img/557566dc60916e3de69e006bef252459.js Phishing
2022-10-05 2 acadplus.in/city.com/img/42d4d669434e7d621371bd59ca097dbf.js Phishing
2022-10-05 2 acadplus.in/city.com/img/d90ce1a791ada193ee0ca4e9ce66632d.js Phishing
2022-10-05 2 acadplus.in/city.com/img/fdf45a7c15c1cee06bb71e10dac4e26e.js Phishing
2022-10-05 2 acadplus.in/city.com/img/serverComponent.php Phishing
2022-10-05 2 acadplus.in/city.com/img/tagging.min.js Phishing
2022-10-05 2 acadplus.in/city.com/img/banner.min.js Phishing
2022-10-05 2 acadplus.in/city.com/img/Bootstrap.js Phishing
2022-10-05 2 acadplus.in/city.com/img/tags.js Phishing
2022-10-05 2 acadplus.in/city.com/img/6c8322c7341eac98645c10e3d1d3c7ae.js Phishing
2022-10-05 2 acadplus.in/city.com/img/logo.js Phishing
2022-10-05 2 acadplus.in/city.com/img/tags.js(1).download Phishing
2022-10-05 2 acadplus.in/city.com/img/cedric.js Phishing
2022-10-05 2 acadplus.in/city.com/img/tags.js(2).download Phishing
2022-10-05 2 acadplus.in/city.com/img/embed.js Phishing
2022-10-05 2 acadplus.in/city.com/img/1-es2015.e6099f56b51f44414444.js Phishing
2022-10-05 2 acadplus.in/city.com/img/16003743.js Phishing
2022-10-05 2 acadplus.in/city.com/img/f(1).txt Phishing
2022-10-05 2 acadplus.in/city.com/img/16001692.js Phishing
2022-10-05 2 acadplus.in/city.com/img/f(2).txt Phishing
2022-10-05 2 acadplus.in/city.com/img/f(3).txt Phishing
2022-10-05 2 acadplus.in/city.com/img/f(4).txt Phishing
2022-10-05 2 acadplus.in/city.com/img/f(5).txt Phishing
2022-10-05 2 acadplus.in/city.com/img/f(6).txt Phishing
2022-10-05 2 acadplus.in/city.com/img/f(7).txt Phishing
2022-10-05 2 acadplus.in/city.com/img/f(8).txt Phishing
2022-10-05 2 acadplus.in/city.com/img/bat.js Phishing
2022-10-05 2 acadplus.in/city.com/img/logo.js Phishing
2022-10-05 2 acadplus.in/city.com/img/050-location@2x.svg Phishing
2022-10-05 2 acadplus.in/city.com/img/icon_globe_med-grey@2x.svg Phishing
2022-10-05 2 acadplus.in/cbol-pre-login-static-assets/commonui-assets/fonts/interstate/I (...) Phishing
2022-10-05 2 acadplus.in/cbol-pre-login-static-assets/commonui-assets/fonts/interstate/I (...) Phishing
2022-10-05 2 acadplus.in/city.com/img/cds-assets/fonts/interstate/Interstate-Bold.woff Phishing
2022-10-05 2 acadplus.in/cbol-pre-login-static-assets/commonui-assets/fonts/interstate/I (...) Phishing
2022-10-05 2 acadplus.in/cbol-pre-login-static-assets/commonui-assets/fonts/interstate/I (...) Phishing
2022-10-05 2 acadplus.in/city.com/img/cds-assets/fonts/interstate/Interstate-Bold.ttf Phishing
2022-10-05 2 acadplus.in/city.com/img/commonui-assets/fonts/interstate/Interstate-Bold.woff Phishing
2022-10-05 2 acadplus.in/city.com/img/cds-assets/fonts/interstate/Interstate-Bold.woff Phishing
2022-10-05 2 acadplus.in/city.com/img/commonui-assets/fonts/interstate/Interstate-Light.woff Phishing
2022-10-05 2 acadplus.in/city.com/img/cds-assets/fonts/interstate/Interstate-Light.woff Phishing
2022-10-05 2 acadplus.in/city.com/img/cds-assets/fonts/interstate/Interstate-Bold.ttf Phishing
2022-10-05 2 acadplus.in/city.com/img/commonui-assets/fonts/interstate/Interstate-Bold.ttf Phishing
2022-10-05 2 acadplus.in/city.com/img/cds-assets/fonts/interstate/Interstate-Light.ttf Phishing
2022-10-05 2 acadplus.in/city.com/img/commonui-assets/fonts/interstate/Interstate-Light.ttf Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (39)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-05 09:14:56 UTC 35.82.48.240
mnemonic passive DNS content22.online.citi.com (30) 37039 2018-02-04 10:52:56 UTC 2022-10-04 15:44:06 UTC 91.235.133.67
mnemonic passive DNS 1.a79ab95c1589a13f8a4cab612bc71f9f7.com (2) 75111 2020-11-23 09:04:27 UTC 2022-10-05 15:27:14 UTC 54.230.111.21
mnemonic passive DNS contents1.00110.citi.com (1) 34217 2020-08-27 11:03:54 UTC 2022-10-04 15:56:15 UTC 13.89.105.232
mnemonic passive DNS cdn.pbbl.co (1) 8838 2018-03-28 15:43:32 UTC 2022-10-05 08:29:29 UTC 54.230.111.108
mnemonic passive DNS acadplus.in (87) 0 2017-07-25 04:27:47 UTC 2022-10-05 17:04:46 UTC 119.18.52.62 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-10-05 07:13:38 UTC 23.36.76.226
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-05 05:01:05 UTC 34.117.237.239
mnemonic passive DNS online.citi.com (1) 23902 2015-08-09 05:07:37 UTC 2022-10-04 15:45:03 UTC 23.13.42.166
mnemonic passive DNS metrics1.citi.com (1) 25538 2017-02-01 05:57:44 UTC 2022-10-04 16:01:17 UTC 15.236.176.210
mnemonic passive DNS www.google.com (8) 7 2016-08-04 12:36:31 UTC 2022-10-05 16:49:33 UTC 142.250.74.164
mnemonic passive DNS ocsps.ssl.com (1) 14517 2018-11-21 10:22:19 UTC 2022-10-05 13:35:11 UTC 34.237.184.165
mnemonic passive DNS udc-neb.kampyle.com (1) 3039 2015-12-24 09:52:27 UTC 2022-10-05 17:35:47 UTC 35.241.45.82
mnemonic passive DNS googleads.g.doubleclick.net (9) 42 2021-02-20 15:43:32 UTC 2022-10-05 17:59:05 UTC 142.250.74.34
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-10-05 14:02:21 UTC 54.230.111.118
mnemonic passive DNS ocsp.sca1b.amazontrust.com (3) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 54.230.245.110
mnemonic passive DNS c1.rfihub.net (1) 6410 2012-05-22 09:58:31 UTC 2022-10-05 06:01:13 UTC 54.230.111.62
mnemonic passive DNS nebula-cdn.kampyle.com (1) 3739 2015-09-21 16:24:38 UTC 2022-10-05 05:50:29 UTC 151.101.85.175
mnemonic passive DNS ocsp.sectigo.com (5) 487 2018-12-17 11:31:55 UTC 2022-10-05 15:14:22 UTC 104.18.32.68
mnemonic passive DNS ocsp.pki.goog (12) 175 2017-06-14 07:23:31 UTC 2022-10-05 06:59:18 UTC 142.250.74.3
mnemonic passive DNS cm.everesttech.net (1) 996 2017-01-30 04:59:57 UTC 2022-10-05 11:39:42 UTC 54.74.40.111
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-10-05 06:03:19 UTC 34.160.144.191
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-10-05 12:33:02 UTC 34.120.237.76
mnemonic passive DNS dpm.demdex.net (5) 204 2017-01-30 04:59:39 UTC 2022-10-05 11:38:44 UTC 52.49.126.217
mnemonic passive DNS contents2.00110.citi.com (6) 32534 2020-09-23 15:03:49 UTC 2022-10-04 15:43:59 UTC 52.154.174.214
mnemonic passive DNS 1.c81358859121583b7adf2ace89cb39f44.com (2) 75217 2020-11-23 09:04:27 UTC 2022-10-05 15:27:14 UTC 54.230.111.64
mnemonic passive DNS c.clarity.ms (2) 803 2021-02-03 23:22:47 UTC 2022-10-05 10:31:21 UTC 20.234.93.27
mnemonic passive DNS c.bing.com (1) 247 2012-05-22 10:26:32 UTC 2022-10-05 11:39:06 UTC 13.107.21.200
mnemonic passive DNS ocsp.securetrust.com (1) 18792 2019-12-23 03:05:54 UTC 2022-10-05 17:15:26 UTC 23.36.79.25
mnemonic passive DNS resources.digital-cloud-citi.medallia.com (2) 25588 2019-02-05 02:36:49 UTC 2022-10-04 15:56:13 UTC 151.101.85.230
mnemonic passive DNS sr.rlcdn.com (1) 13315 2017-03-20 22:14:30 UTC 2022-10-05 15:26:05 UTC 35.190.60.146
mnemonic passive DNS p.tvpixel.com (2) 1352 2018-04-17 12:54:27 UTC 2022-10-05 07:02:06 UTC 52.22.42.247
mnemonic passive DNS citi.demdex.net (1) 41247 2019-01-22 17:28:20 UTC 2022-10-04 15:43:58 UTC 52.49.126.217
mnemonic passive DNS 1.b406929acabac9b095f124c81bdfcf57f.com (2) 75277 2020-11-23 09:04:27 UTC 2022-10-05 15:27:14 UTC 54.230.111.46
mnemonic passive DNS ocsp.godaddy.com (1) 698 2012-05-20 19:28:57 UTC 2022-10-05 10:10:40 UTC 192.124.249.24
mnemonic passive DNS ocsp.digicert.com (13) 86 2012-05-21 07:02:23 UTC 2022-10-05 16:07:29 UTC 93.184.220.29
mnemonic passive DNS nexus.ensighten.com (10) 2786 2017-01-29 18:53:16 UTC 2022-10-05 10:58:00 UTC 54.230.111.74
mnemonic passive DNS 89oebq5kczg3ghvfhl4btlj7hqcgbmpe5jomxzqk31f079b47db06ff4am1.e.aa.online-metrix.net (1) 0 No data No data 91.235.134.131 Domain (online-metrix.net) ranked at: 1982
mnemonic passive DNS 89oebq5ka4b25zymnoyrkbsdklbqrknifamjhly35527618d41f91b6aam1.e.aa.online-metrix.net (1) 0 No data No data 91.235.134.131 Domain (online-metrix.net) ranked at: 1982


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 119.18.52.62

Date UQ / IDS / BL URL IP
2022-10-08 23:55:42 +0000
0 - 0 - 1 acadplusvk.in/ 119.18.52.62
2022-10-07 23:03:58 +0000
0 - 0 - 11 119-18-52-62.cprapid.com/ 119.18.52.62
2022-10-07 20:15:01 +0000
0 - 0 - 75 acadplusvk.in/city.com 119.18.52.62
2022-10-07 20:14:38 +0000
0 - 0 - 73 acadplusvk.in/city.com/ 119.18.52.62
2022-10-07 20:14:23 +0000
0 - 0 - 75 acadplusvk.in/city.com/emailaddress.php 119.18.52.62

Last 5 reports on ASN: PUBLIC-DOMAIN-REGISTRY

Date UQ / IDS / BL URL IP
2022-11-28 20:55:27 +0000
14 - 0 - 0 travelroofs.com/BOAtravelroofsBOFA 43.225.55.146
2022-11-28 20:19:57 +0000
0 - 0 - 134 defi-portal.intecilab.com/3b6837e/Info.html 199.79.62.115
2022-11-28 20:02:10 +0000
0 - 0 - 4 www.nccnalbari.in/website/static/js/bid/login.php? 119.18.54.24
2022-11-28 19:39:12 +0000
0 - 0 - 6 seinteriors.co/dste/index.php?tse-ist=1 116.206.105.72
2022-11-28 19:29:05 +0000
0 - 0 - 2 icloud-fmi-nc.com/expire/index2.html 199.79.63.155

Last 1 reports on domain: acadplus.in

Date UQ / IDS / BL URL IP
2022-10-05 18:54:50 +0000
0 - 0 - 76 acadplus.in/city.com/ 119.18.52.62

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-10 18:30:13 +0000
3 - 0 - 0 www.payonline.citicards.com/ 104.110.29.33
2022-10-28 01:45:51 +0000
0 - 0 - 1 verify-citybankonline.alert.brownboyboardbook (...) 50.62.141.181
2022-10-07 20:14:38 +0000
0 - 0 - 73 acadplusvk.in/city.com/ 119.18.52.62
2022-09-21 06:13:27 +0000
0 - 0 - 17 citl-online.site/login.php 62.204.41.126
2022-09-10 10:23:22 +0000
0 - 0 - 21 ct-is6c8.ondigitalocean.app/login 104.16.243.78


JavaScript

Executed Scripts (97)


Executed Evals (5)

#1 JavaScript::Eval (size: 61, repeated: 1) - SHA256: 4c7434541d1c4e35e47fa7017129597be4de29d8520f8d28324360e68ee147bb

                                        var eval_fn_1 = function(element, value) {
    element.src = value;
};
                                    

#2 JavaScript::Eval (size: 74, repeated: 1) - SHA256: 5825930e400f3c0b303a930b890dd589e3fefeb58b7a2819919a0bfbd43a958f

                                        var eval_fn_3 = function(element, value) {
    element.style.background = value;
};
                                    

#3 JavaScript::Eval (size: 12, repeated: 1) - SHA256: bddcf25867435760b58937910118ebed74be4f123e0aefd1248383144032afa3

                                        this.setArgs
                                    

#4 JavaScript::Eval (size: 10, repeated: 1) - SHA256: 338eebe354feee40bdfe97326853bdc041f0478b9a764f2cde16abcd93dc9a86

                                        this.track
                                    

#5 JavaScript::Eval (size: 50, repeated: 1) - SHA256: 107abd1d4c412c9df04a22eea7a81d0ace815adf4ca7b8c2e3d6ea6c459423b5

                                        var eval_fn_2 = function(doc) {
    return doc.open();
};
                                    

Executed Writes (0)



HTTP Transactions (233)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: K6J73gKlGAOARO3oRvjEmLRvUV9LojlA0dJ-wd9G7NEMFTNKQYcO_g==
Age: 11240


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            GET /city.com/ HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         119.18.52.62
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Wed, 05 Oct 2022 18:54:37 GMT
Server: Apache
Location: https://acadplus.in/city.com/
Content-Length: 237
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   237
Md5:    90fe368525f10759a4c911f5a5175c79
Sha1:   13f85dbac617962858ade58aee9519fbf964d1d5
Sha256: 92bb066955385f5288192b0ca66cbd1f8b01fc6757b4da147e49e56846e11350

Alerts:
  Blocklists:
    - openphish: Generic/Spear Phishing
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "AB48F17E54075E1ECF034278E82BCACD2E3689773186CC84FBA9B79AAC907294"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5626
Expires: Wed, 05 Oct 2022 20:28:25 GMT
Date: Wed, 05 Oct 2022 18:54:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B91D37F606EAF448B9C7DFC05566A11DE004CE44503409E1A776288EE2622805"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7763
Expires: Wed, 05 Oct 2022 21:04:02 GMT
Date: Wed, 05 Oct 2022 18:54:39 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: NILnrWn2Ykl1cGppRHoFnXox5r3Ee0SOw/Jts5gCZ3z8mThPQK/DXiWgIuEHCFaQ71J06/H2VBk=
x-amz-request-id: YE5KPBHNYER3W4TY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 05 Oct 2022 17:58:23 GMT
age: 3376
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 05 Oct 2022 18:54:39 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 18:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 05 Oct 2022 18:46:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hn0IUwH-Daphoi_vWlSJo5GCWGLFTZPoJlGuwhuxSPf4KTx8Ns_bFA==
Age: 1506


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /city.com/ HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:37 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=15
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (55779)
Size:   52649
Md5:    595fe907bc1dae1a9923bde5a202b1e9
Sha1:   55c670872571a4d970b0e846e8525be57c08231b
Sha256: 918b0e0f819455014c1bfec80ede5d2f60862f3d0e65b80ea10e98318ef3efc5

Alerts:
  Blocklists:
    - openphish: Generic/Spear Phishing
    - fortinet: Phishing
                                        
                                            GET /city.com/img/js(1) HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
                                        
Date: Wed, 05 Oct 2022 18:54:38 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 39772
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1640)
Size:   39772
Md5:    3cfcb4d4c31a061960283514f90e5130
Sha1:   3ec4450227f130102a543cb0caadc66400a599bc
Sha256: 8cbdcfe372053681318359e27f8c9e0068b4bbfd33bef8f65edd61e408bd6eea

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/cool-2.1.15.min.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:38 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5197
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (585)
Size:   5197
Md5:    a8a8316559534b9784a92826ab49b9f2
Sha1:   3836a3dbc421106117da4a97871aed09eedbdf0c
Sha256: b11175156d2ff85a9f749c78ab961597cc0034db4df0295f2e57335e94f61b1e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/tc.min.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:38 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6162
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  C source, ASCII text, with very long lines (19497)
Size:   6162
Md5:    a8f94d5105fd6d5fcbdb6435bab6ff43
Sha1:   e5bc21e369a0c149e12dcb854644568dd3963a11
Sha256: dd136d20bbeb1aefa56500b77bb9008f9292677935bd59ffc5549a5b8e507600

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4890
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 18:54:40 GMT
Last-Modified: Wed, 05 Oct 2022 17:33:10 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /city.com/img/js(2) HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
                                        
Date: Wed, 05 Oct 2022 18:54:38 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 39803
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1640)
Size:   39803
Md5:    8c40befd946045cb6f5673c71f958f82
Sha1:   f5e93048f326cef620147131ea8d2d7cb010ebdd
Sha256: cc856e7ee21af5e9bc49dc8c87e168711d0d6c92f94d68f902ca7becfc62a7e7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4146
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 18:54:40 GMT
Last-Modified: Wed, 05 Oct 2022 17:45:34 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4146
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 18:54:40 GMT
Last-Modified: Wed, 05 Oct 2022 17:45:34 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4146
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 18:54:40 GMT
Last-Modified: Wed, 05 Oct 2022 17:45:34 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /city.com/img/clarity.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:38 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 18821
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (53819)
Size:   18821
Md5:    1df44579a11164ddfcdce4e95874010f
Sha1:   7f52b8ef17db7b67c3357274b8ba92f33b5679fb
Sha256: b19f8a7d2025ca7994af38b345c9311d599d5483230f7bc400af1beefb30bf59

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/f.txt HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Date: Wed, 05 Oct 2022 18:54:38 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 14886
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2165)
Size:   14886
Md5:    143a9342a09f8cafd071a4acd011ade6
Sha1:   828a2d4c58ea2847ef1bd595ac5193525c33f5db
Sha256: 96e8085b21c91627b12b2520b518314ff4609be36770c7868fe5b9f96b2e7abe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/js(5) HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
                                        
Date: Wed, 05 Oct 2022 18:54:38 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 39832
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1640)
Size:   39832
Md5:    857d4e7297f79dd15ddee9597aa86893
Sha1:   89c4888a0bf915c598b0a1efc2ce270221a5aaad
Sha256: 06605731a3dd6ff63a540296e67eaf6b4a328bffa68b2ce9817e3a4340babdc3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: y/XnjtigSm+R4zYDwGZu9A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.82.48.240
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pNZm618y5OJ6eQC2/Y//1INTAhw=

                                        
                                            GET /city.com/img/js(3) HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
                                        
Date: Wed, 05 Oct 2022 18:54:38 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 39772
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1640)
Size:   39772
Md5:    7f0e8e2e63c0c611fcec89ff2979c0f8
Sha1:   ab69e01a75b13c7ae863283ca37d65715488b322
Sha256: a32fcbba5db0da7831bbaa0de685ab5380f861006c6cef50af5ef048f0422764

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/bat.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:38 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   36
Md5:    6a83fd075b3bf9a252aec307795c05b4
Sha1:   993d53f565edcb12f46eaa6a9e8b4c1639ef7185
Sha256: 4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
                                        
Date: Wed, 05 Oct 2022 18:54:38 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 39776
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1640)
Size:   39776
Md5:    818f3b4b535225d162b570dc175fc722
Sha1:   dea13edf80fa27615383ed6ca066b0438989417f
Sha256: 2af3cd69b03ff143359a7ed1338a2e4a4666009f5f2f515509572434f6955de2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/js(6) HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
                                        
Date: Wed, 05 Oct 2022 18:54:38 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 39808
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1640)
Size:   39808
Md5:    35d2d6b80b6ffdca451312faac4f5a11
Sha1:   dc045da464500ec6e15dfc5e6663d8f8d4f9f405
Sha256: 169a66b2646a20fc1412b332e467d0ef06aaf1a72f3aaef4ab315376f2e36242

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/dpm_pixel_min.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:38 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 31914
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (60150)
Size:   31914
Md5:    a13c13bfc8e3a6eed56db40635dcfed8
Sha1:   8f7d95d999e8324bfa118d7a496df5f5f5c6e5f0
Sha256: 8e604cadc25d40a2ae050c1d6f15f273dd875f780411686b576284148cc697ad

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/js(7) HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
                                        
Date: Wed, 05 Oct 2022 18:54:38 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 39802
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1640)
Size:   39802
Md5:    29b6798795bc812e566e7f3fa2e662c2
Sha1:   600ab77f6144c2acc49503d5567527b45a8cc9ae
Sha256: 23ef01d92372b4f054bb6c97211bd18ae7158e69953ffe28f8cc363deefd6a3c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/js(8) HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
                                        
Date: Wed, 05 Oct 2022 18:54:38 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 39791
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1640)
Size:   39791
Md5:    f63472c7dba48d843716502b2fe37503
Sha1:   ca23ebc513fd573036d6703c424866852c36fb9f
Sha256: 51f1f0c3f1dfbb2cb9a66c2295774f4519da9919886dca9400295153cd744a53

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/js(9) HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
                                        
Date: Wed, 05 Oct 2022 18:54:38 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36168
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1567)
Size:   36168
Md5:    b8ce9db51584537e2a3c24c4f122f6ef
Sha1:   e46d9a3cc46607f92955f6d0cc755e3792f74c0f
Sha256: e854dbda156456eda3a2865be6d287bf3ef4d3ada5eeb21df5a493fbfe83d7a9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/js(10) HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
                                        
Date: Wed, 05 Oct 2022 18:54:38 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36167
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1567)
Size:   36167
Md5:    065a753713ea40b6327eef9130fb1758
Sha1:   471ce4504d91066d36532d5b83d0f37b14fccd47
Sha256: 3dfb7da8dd26b606200607b104f0f9afede1e2dfabaa181b70c4f340d1364371

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/js(11) HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36164
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1567)
Size:   36164
Md5:    dde2d459eecdfb430afa144fdcfb9118
Sha1:   bee45ce32319dee3d8d092ca42d60c6f3bba823f
Sha256: ed90984015bb009ffed394a032e68cd5fc3b6d8a867424ffdb3ca016e315ee54

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/js(12) HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36166
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1567)
Size:   36166
Md5:    170cdeb35b0c26ee3a74b8cdf22bf8e6
Sha1:   c4cb99e1cf3a8fa142a10e85f7fea547bb2a3014
Sha256: 199040c36390032d1747fbbadda30c211efd5ad870afea7056db590613581c01

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/js(13) HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36158
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1567)
Size:   36158
Md5:    356c054c8d28bc3e0b09a0c3a5c25e42
Sha1:   1991da15314fddbe19b46f077d5c7399933820b6
Sha256: 30ea83f9f2ce35112b57cab9b1baf62266c49609e34475a0287b0ac8ed84f49d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/3fac67bbed26d3e121bb84cefe395515.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 894
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (518)
Size:   894
Md5:    00a79177ffbf1161d3039c2f0f8541b6
Sha1:   4253bd5ea9a5bccd6f105677d90cbb77c3a2b139
Sha256: feba39ed1bc19f5dc8733c76421db6294a9d9d868ca128551664fb623ba9c3d1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/js(14) HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36160
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1567)
Size:   36160
Md5:    49cc4ebfd06b64d2a1a73f2e86ae2fa5
Sha1:   d5c0f254ce3e1d11d2d1b9ab74ea00ab3f6dbd7a
Sha256: b7d90088f74158f27464ad2d793a80b9dde41765f00cb0408bf66a0e26d1cd1d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/8e31a20960f50a1c34f7ccb1cd9737ec.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 250
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (340), with no line terminators
Size:   250
Md5:    588fcac72b049bfc02ab7e13f3b8aad1
Sha1:   ba9f376b983c31182cbfe9685b384fcafeed1bbc
Sha256: 4b0345e4841f9aaa14740b503c5f41fae2c6d6f57ff96607ee77d4425e4b15f9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/d77cad342c2e126c752063748cd63d48.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7391
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (571)
Size:   7391
Md5:    8d7d1a07a42f1829164c181a86d4a5ce
Sha1:   15df732664fc173a68e640a70be122a88d5ae64e
Sha256: 2225e983ca98645af9de8be31506fccdfdf8f68317bd6837bdd7b8ddec50ab55

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/6c8ea0384518f24fa6367b97cbf3fd9d.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36095
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (614)
Size:   36095
Md5:    75978b9a0d65859315b8804798e21d1b
Sha1:   bd5729b9691e7c0135272b3a7110296c79ef8638
Sha256: 155d20b32a7244c1e8544abb772cba5f797d6287f3b250aa7b20a199f5d5f3f7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/51aba9f62787efbaa13e53a8d1ae3892.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 649
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (524)
Size:   649
Md5:    980e52a2c9e28fdf32301b6716d81b73
Sha1:   4d161c3ab8796be6fcdf86d92ffce216acf5209c
Sha256: 2542302ed836267987c3491480930774754864cbd24cfd2b6c8684da02ea91b5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/9d552101ccdbc20ef239307e0ace1356.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 34355
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (573)
Size:   34355
Md5:    bea764b82d812efd4dbf1a14c053bcf1
Sha1:   781b620451e19e8ed72b400f0e28af3ddbf43a44
Sha256: 3d4d45f928036ac102ef92f25607cac07ce29c7e39168466d31bf39e70d2fc11

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/96e0eb995483e83e7b3f71968eedeed1.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=15
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (965)
Size:   122344
Md5:    ca6fd7e47ea777f9526a4ad8babe5d29
Sha1:   f618c7b67c26a3928ae4f09244ad1b82fce65a7f
Sha256: dbeecb1f966b92798a152c6f918ad42cb67652f8ee6908f3c8f1f7ca4ee0eaa4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.110
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 18:54:40 GMT
Last-Modified: Wed, 05 Oct 2022 17:27:05 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5PLXjCRkG_eyyzzczDMlBUPvsDRcpC0Krm8Nwt44bVX5slWaNW-D_Q==
Age: 5255

                                        
                                            GET /city.com/img/d74f82b561a6aa5d9247eaf72394131a.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 663
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (549)
Size:   663
Md5:    6bde9e19d3aed7b919afc44ac0b8822e
Sha1:   7561ce9117a75bc19c10b06dea84636e6e3e5b9b
Sha256: 0bd0e1ec976540cbfafa53e7fa4e90041e747e456f01a4dd5165703c937ff9f1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/557566dc60916e3de69e006bef252459.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 763
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1964)
Size:   763
Md5:    317da12924228063a155ef6c18f54170
Sha1:   fecd1e51b4925ccda28b428e512ef25cb65b34ea
Sha256: 2ef1ab0033be93a4c92819bf929938a96738d6ee544bc5b4bdd9fe6eb4aa00ae

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/42d4d669434e7d621371bd59ca097dbf.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1570
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (532)
Size:   1570
Md5:    230475f73e9749be49930b65b85a6301
Sha1:   c9b51ddb3463ddaee285e45d202114135045ce33
Sha256: 1fee4765de2c66c0bfde9bbbfa65b24fc5996373d7c7791c6337eabeb1f141fb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/d90ce1a791ada193ee0ca4e9ce66632d.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1200
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1194)
Size:   1200
Md5:    ea5eebc93c345cb7ecd508f205e7c399
Sha1:   45eefd66ad099e29c4ebde526de527408a8fb966
Sha256: 64feb844f72ea374cf5addb837ded6badd366b847ab7523b809f4a3903c14aeb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: p.tvpixel.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://acadplus.in/
Origin: https://acadplus.in
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.22.42.247
HTTP/2 200 OK
                                        
date: Wed, 05 Oct 2022 18:54:40 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://acadplus.in
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2

                                        
                                            GET /city.com/img/fdf45a7c15c1cee06bb71e10dac4e26e.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 548
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (524)
Size:   548
Md5:    38e6a3a3c9a5b9bdbf4c2afa815a0eab
Sha1:   e59ec1f408515c29253192f01d6c445152ed6c7e
Sha256: 44f8d4a027af822df7160def12841736ccb9b39e6431121acae31a8713baf045

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/serverComponent.php HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 751
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2006)
Size:   751
Md5:    2569922762a2f5f19123e851e6768d54
Sha1:   b9beebfb91cacd70b63bdc3e105cbd583781f025
Sha256: 98d353b6f63d91a83a3278f8b1db1aebf1c007b15702b90bc5e2a018b6ea3b11

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: p.tvpixel.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1596
Origin: https://acadplus.in
Connection: keep-alive
Referer: https://acadplus.in/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         52.22.42.247
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
date: Wed, 05 Oct 2022 18:54:41 GMT
content-length: 2
server: nginx
set-cookie: sp=eff2603b-26bb-4803-9b99-17969265b60a; Expires=Thu, 05 Oct 2023 18:54:41 GMT; Domain=tvpixel.com; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://acadplus.in
access-control-allow-credentials: true
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    444bcb3a3fcf8389296c49467f27e1d6
Sha1:   7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
                                        
                                            GET /city.com/img/tagging.min.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10566
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (45425), with no line terminators
Size:   10566
Md5:    88e1054ab6d33e9defe7ec049eb50ba5
Sha1:   1e2712fbcea34c4a4dc6f3a7e38ee72011a336d3
Sha256: 8831d2aa2ab752f277b9c61258b5506bf6ec53b814d9ca88a0d3611709f5eefe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/banner.min.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4812
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (15581), with no line terminators
Size:   4812
Md5:    e9b433ff656ba0687ad16bc9071a2a75
Sha1:   2d5a95f59a8c8087e6a2522166db8a16825736ef
Sha256: 5bc864b5da90ce783d3ef0e8d4d0a255966ee1f49671eb157c8d119c5050e186

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/Bootstrap.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=15
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (579)
Size:   70727
Md5:    6bccff550405fb6227bfa9ed1608f587
Sha1:   1259a5bee3ea2b7b72a2544ea1a8b3ff8da94903
Sha256: 4fbd3bd4726ed8c43b1ee693cd143fb519957b0f7a768e1f9cc2b25fd0de28e0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/tags.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10167
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (15031)
Size:   10167
Md5:    20fa0088d5e956d4edd38c48b886250e
Sha1:   83e6de0d6037c47f8bcff13dbf54f367991a5758
Sha256: 07e3fa4428d9e7cc2a2822f32875c4bcde1153103d95c417800650361e3d57dc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/6c8322c7341eac98645c10e3d1d3c7ae.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=15
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   132096
Md5:    ec3c4e913e701ffdaa2d4e61b8b304cf
Sha1:   58af6e6c4e4fff4f255d07bee570dd41693b9503
Sha256: 9ffd12a29bf91c2b40ac4278387eef088db320756d3b32c5f42f9571e9c0130c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/logo.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   36
Md5:    6a83fd075b3bf9a252aec307795c05b4
Sha1:   993d53f565edcb12f46eaa6a9e8b4c1639ef7185
Sha256: 4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/tags.js(1).download HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10309
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (15031)
Size:   10309
Md5:    9344751b4386fd87e022144f77a7bd32
Sha1:   dae8b3b9127de7f79e97cafa4d6620f5a67d2ce2
Sha256: b7f03292fd5b6ed9fdbd79fc3056e20e875afc354d1eff2c67d0e6e2f5011068

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/styles.a4a9307b7b034ca614a7.css HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=15
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65017), with no line terminators
Size:   152500
Md5:    6fec417a3d17d627dafe4bfb42b6adc9
Sha1:   0163fedbe38e00a72062ec026dc716ad4ebf4cb2
Sha256: d0f49e8a512369a4642d0ee74c29902e6978f26326f5c5be219d8d759640ec86
                                        
                                            GET /city.com/img/cedric.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=15
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (63761)
Size:   114803
Md5:    0aee8b9a53e8c5dbcb2f7f6be4d13c0c
Sha1:   47312dabe77080b429e40d1edc7769479739d800
Sha256: 5fc5c3425a87a1f8c42d4c94be3e89d176389a47af2a4b146666bf7ff613feae

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/tags.js(2).download HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10371
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (15031)
Size:   10371
Md5:    6f22c0c80d0c42eeee7424b9d4cdffc1
Sha1:   b3029fc60b60c5fd33d594ebb5ed4554a4880f8c
Sha256: 3fc593067a4ca69323a48a306be9d0db386beff589b0c6dbf663d65e772b770c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/embed.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 676
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (449)
Size:   676
Md5:    89c3892e6759fce75721ce954f3c35e5
Sha1:   b6c68164536f402b6440b20e98649bbee3a251f1
Sha256: fc5ee98ac49e747826400feb07739cd07f96784fe6ee250a59d43900e1c271cb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/1-es2015.e6099f56b51f44414444.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=15
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   109789
Md5:    49ccd713648338622978d8b39faf97e4
Sha1:   03a005976de4d0b377d6548004fd46c48d3b4e34
Sha256: 5d0fe77c4ca3fade748fe4cdcd6ddeaa56cf3b136aa938019b34495b516616d0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/16003743.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Content-Length: 0
Vary: User-Agent
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/f(1).txt HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1033
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1707), with no line terminators
Size:   1033
Md5:    4f74d4e7894f6e9a5e8bb6972a2de856
Sha1:   670b5b0169a48169a0ebd5fd4b7fb99ac53dcde5
Sha256: d170df1f45194591e6ec394653f027be2645be51caceb2a2407507886c8aad81

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/16001692.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 435
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (683), with CRLF line terminators
Size:   435
Md5:    b52fff442612ca5cb4421d120c836e08
Sha1:   7af38d2d4c808da1152ccb57f5ac7d0680165a4a
Sha256: 815e408d62635cf226ee1002238ef4d978c0afe9c22da9fda94816a082e27f53

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3187
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 18:54:41 GMT
Last-Modified: Wed, 05 Oct 2022 18:01:34 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6602
Expires: Wed, 05 Oct 2022 20:44:43 GMT
Date: Wed, 05 Oct 2022 18:54:41 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6602
Expires: Wed, 05 Oct 2022 20:44:43 GMT
Date: Wed, 05 Oct 2022 18:54:41 GMT
Connection: keep-alive

                                        
                                            GET /city.com/img/f(2).txt HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1029
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1687), with no line terminators
Size:   1029
Md5:    dbc4b7b5fd5ae97be6b6680a68bac057
Sha1:   2c5aa0b08c06a35bbdee0f9d667b6e6022619f06
Sha256: 376dd3ebfa1791363def7ec1870bff17a4e9395fadbf1f06106d31c9b117383c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6602
Expires: Wed, 05 Oct 2022 20:44:43 GMT
Date: Wed, 05 Oct 2022 18:54:41 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6602
Expires: Wed, 05 Oct 2022 20:44:43 GMT
Date: Wed, 05 Oct 2022 18:54:41 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8926
x-amzn-requestid: 27fc8976-af8d-40a3-b701-0642fa135ec4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8s1GSbIAMFTiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7eb-4d4c7837576e0fdb5828fe3b;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:38:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YzVofPSJC-YVU1Q1V9AnjNeQTa1BQEh6ZiH2HjSeeX5RygysFP7oAA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:43:25 GMT
age: 76276
etag: "70e8d1589f3daf71378965dd197934e220fb6aa4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8926
Md5:    1de7c17a0ba9295135e7f8b490b6a8d3
Sha1:   70e8d1589f3daf71378965dd197934e220fb6aa4
Sha256: ee559ce3166479e2b930be7d18525f5c2d164aed8ca005302ddaf3bfe37eec24
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aeOU8fGkf5uHuYZ79k17EzxiFnwm0_z7SeZJElgwECzRyhR2N_SYJA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:06:09 GMT
age: 53312
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10158
Md5:    4fc2ddd86450d64d3fb659ab4e78be58
Sha1:   bbe71936b78a8c34d03ab87948dc840b35c6948f
Sha256: 84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5832
x-amzn-requestid: c4427edd-3d71-47d0-a2d3-b3bfed089535
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8s1FuUoAMFhBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7eb-46ddff150da4141d23fc0d8a;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:38:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: iR82CJ6A06dpqy_nm6JrmjeUJT-uhI5rr0dr6ZnhrQQo9Jqxh10qRQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:43:43 GMT
age: 76258
etag: "4daf0c001e86af8477fb097e8ca932edb8e5f981"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5832
Md5:    3257b782efae9b64e6e18a547866ec50
Sha1:   4daf0c001e86af8477fb097e8ca932edb8e5f981
Sha256: 899f9692e86405aa288d88dd285a6fe26bedab1a2ca4693212476063890b01a5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3585
x-amzn-requestid: 43c510d4-d87c-4665-a132-d798b836d415
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaJbLHEOoAMFfxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a55e0-614faff31425ff183b7ca4dd;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 03:24:16 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: d1LCc44Gj_0Je8adu7Iv3I9MwkaDPgWqlNHI96UAtZub22l210J65A==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:53:07 GMT
age: 50494
etag: "612b6dbd4ba895c167964ff7e6d9263013b52b0a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3585
Md5:    5d7d7df8d4c440f9db445c3d99e818d6
Sha1:   612b6dbd4ba895c167964ff7e6d9263013b52b0a
Sha256: bf527a814c78f9e010cce4ba593c9146d54a2137d1f147f7a6250fbad81956ac
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78bf691d-76e8-4176-884d-dbc06604dded.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8816
x-amzn-requestid: b9f3ec8a-f478-4405-b275-e21f2d7d89d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKK7gFPJIAMF-7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f1e3-250348e6140f3c74762263ea;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:04:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8f83Wv7OrO7NOd1y1LXjfphRmJjdwrkcAxrxUN4A4qSgsEzIQMq81g==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 22:38:40 GMT
age: 72961
etag: "5261a6c2ee6d6cc87e91ee82e32d8be234db393e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8816
Md5:    100559d746bedd7c3802661c875c35ee
Sha1:   5261a6c2ee6d6cc87e91ee82e32d8be234db393e
Sha256: ff06f31267ddcc9a0d84ddc68932872bfed29d072783c3a1dd3790d41c280aec
                                        
                                            GET /city.com/img/f(3).txt HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Date: Wed, 05 Oct 2022 18:54:39 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1029
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1687), with no line terminators
Size:   1029
Md5:    e6bb6c7134f032b8832e06f8ca34671d
Sha1:   f3115032259f52fca13cc557da48682fb47df48c
Sha256: 351931952c69a2387a9c1f2c571a99af29efb9c543d729105b1e362803119380

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8857940-5ca2-44ba-8a66-f396a605d5b4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7021
x-amzn-requestid: 2e30bdac-360e-4d0a-8bb7-c3144e074abe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8ucHb1oAMFjYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7f5-18ba6bc50cb32b1e14c882bd;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: UPEhTwAYEIRy-Cnb0ITefEotLyg3rFe_NaGy92xwWe_7hrdo6UQLwQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:56:53 GMT
age: 75468
etag: "6b5db8fbfb56f083d54b13e7660d0e4bc866aa00"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7021
Md5:    229c99cfb655a8c9f1a22de69fdff73c
Sha1:   6b5db8fbfb56f083d54b13e7660d0e4bc866aa00
Sha256: f4099e9153c3dc481add95b0f24dbb8f6d65cc74ad5631d9cb6c6f2a0351843d
                                        
                                            GET /id?d_visid_ver=3.1.2&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=61834D9B5228A7430A490D45%40AdobeOrg&d_nsid=0&ts=1664996081383 HTTP/1.1 
Host: dpm.demdex.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://acadplus.in
Connection: keep-alive
Referer: https://acadplus.in/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.49.126.217
HTTP/1.1 302 Found
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://acadplus.in
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v044-027b6770c.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/id/rd?d_visid_ver=3.1.2&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=61834D9B5228A7430A490D45%40AdobeOrg&d_nsid=0&ts=1664996081383
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=39253062972723882083275351779278946187; Max-Age=15552000; Expires=Mon, 03 Apr 2023 18:54:41 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: qCncoJpsRvw=
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /city.com/img/f(4).txt HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1028
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1687), with no line terminators
Size:   1028
Md5:    c671c874c379aa20886bb407dc3ed02d
Sha1:   4d9871480b56ff84625bea6fd18a4b41d15a1317
Sha256: c4b15f8a829e17033fcb0f636684bda313321d63b1422b80bac65612e4ac3ac4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/f(5).txt HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1028
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1687), with no line terminators
Size:   1028
Md5:    2fad7d3a36c3cdb2bddb79302907d36d
Sha1:   59d3adf7aff60daebb3df7d2843fa34f615a9d9b
Sha256: 9a864c6dca0a20d38c7882125d8e99dcc8fb3c777c0b09daffce936d6f40dc46

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /id/rd?d_visid_ver=3.1.2&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=61834D9B5228A7430A490D45%40AdobeOrg&d_nsid=0&ts=1664996081383 HTTP/1.1 
Host: dpm.demdex.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://acadplus.in
Content-Type: application/x-www-form-urlencoded
Referer: https://acadplus.in/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.49.126.217
HTTP/1.1 200 OK
Content-Type: application/json;charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://acadplus.in
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
DCS: dcs-prod-irl1-2-v044-066fbe967.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-Error: 172
X-TID: 20AkIpDUR9k=
Content-Length: 124
Connection: keep-alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   124
Md5:    1f6783349ac4177ec3b3845fd520dca6
Sha1:   d84e7a43a8c8ff6f1a568ad6cb4162767f5b32b7
Sha256: 64bc30aa6a9d9e5396bb67c6af32c31f5ca6610641f0bdea10d759281df6adca
                                        
                                            GET /city.com/img/f(6).txt HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1029
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1687), with no line terminators
Size:   1029
Md5:    a80de54c80ad3681234349c17b60fb97
Sha1:   c915a16d75f628a27f5103f54074e89b1c22e517
Sha256: 05110e11f13f21ad8c5fc914be1c38d2a087873e9668de6b7c16e162ec5f1597

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/f(7).txt HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1040
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1706), with no line terminators
Size:   1040
Md5:    857305e1625df88982ee173b3c5a59dc
Sha1:   c3a2c95afb3f45b6c1fe0913398449a33c7a00fb
Sha256: 113c6a2f238ba25b581d70f93ea0de4ac2613816f8520e83838d2b7e0b34e73f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/f(8).txt HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1030
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1687), with no line terminators
Size:   1030
Md5:    fb91fc2bad1c3ec132eb6d3f3c841279
Sha1:   f69b2c2cb6975671b36ae0640a2a4500719bcb1f
Sha256: b7f269982fad22d55914c1820e4c47079cdfdb26f2898c350a83002bd2a22f6a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/bat.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   36
Md5:    6a83fd075b3bf9a252aec307795c05b4
Sha1:   993d53f565edcb12f46eaa6a9e8b4c1639ef7185
Sha256: 4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/logo.js HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Cookie: _dpm_ses.b4c6=*; _dpm_id.b4c6=c61d2778-9d0a-4f1c-b43b-c8fb304522c8.1664996081.1.1664996081.1664996081.b20398ff-f98d-4f97-adad-099fa3ec40d5; AMCV_61834D9B5228A7430A490D45%40AdobeOrg=-330454231%7CMCIDTS%7C19271%7CvVersion%7C3.1.2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   36
Md5:    6a83fd075b3bf9a252aec307795c05b4
Sha1:   993d53f565edcb12f46eaa6a9e8b4c1639ef7185
Sha256: 4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1583
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 18:54:41 GMT
Last-Modified: Wed, 05 Oct 2022 18:28:18 GMT
Server: ECS (amb/6BBE)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3736
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 18:54:41 GMT
Last-Modified: Wed, 05 Oct 2022 17:52:25 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /city.com/img/social-media_facebook@3x.png HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Content-Length: 445
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 27 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size:   445
Md5:    1f627e41e84a3b87f57c9de2e3a722d0
Sha1:   a7d350d9d267149f60b46a454f021920f89df877
Sha256: 695788dc05d94be3b32060ffea15c1a4d74897bd32e5da7811e7ca76d82fc86b
                                        
                                            GET /city.com/img/social-media_youtube@3x.png HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Content-Length: 1175
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 72 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size:   1175
Md5:    3541c5442b1b90b4efe20ab4b2802323
Sha1:   ad778d35efc7b9950d2158d800b61966204b75d8
Sha256: be9b5382b4526ffd3306d0292122ce3599123f1cd543f52f3035b4f24fbf9de8
                                        
                                            GET /city.com/img/social-media_twitter@3x.png HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Content-Length: 1277
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 66 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size:   1277
Md5:    60b0fec951727b4762fabc2570a1317f
Sha1:   56f9ed9699233f4cef1317a9a2c83179070b5e8a
Sha256: 5394d11ec8ad7a5494bcdb65cd95f885388532e14fb45a747e249112389bd837
                                        
                                            GET /city.com/img/appStore@3x.png HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Content-Length: 20047
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 351 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size:   20047
Md5:    d461f4d2e32e339372869b3f4be72007
Sha1:   d8e3a847a7d18c3948617f75622f6cd27bd4cd54
Sha256: 87c763c6b05015e55915d0a1e6647e4e5d0b996e78d79e1afe228dd33b68e65b
                                        
                                            GET /id?d_visid_ver=3.1.2&d_fieldgroup=MC&mcorgid=61834D9B5228A7430A490D45%40AdobeOrg&ts=1664996081614 HTTP/1.1 
Host: metrics1.citi.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://acadplus.in
Connection: keep-alive
Referer: https://acadplus.in/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         15.236.176.210
HTTP/2 200 OK
content-type: application/x-javascript;charset=utf-8
                                        
access-control-allow-origin: https://acadplus.in
access-control-allow-credentials: true
date: Wed, 05 Oct 2022 18:54:41 GMT
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_vi=[CS]v1|319EE9789E6317CF-60000AE4A071E2F9[CE]; Path=/; Domain=citi.com; Max-Age=63072000; Expires=Fri, 04 Oct 2024 18:54:54 GMT; SameSite=None; Secure AMCV_61834D9B5228A7430A490D45%40AdobeOrg=0%7CMCMID%7C76270789850655157011331792400302488566; Path=/; Domain=citi.com; Max-Age=63072000; Expires=Fri, 04 Oct 2024 18:54:54 GMT; SameSite=None; Secure s_ecid=MCMID%7C76270789850655157011331792400302488566; Path=/; Domain=citi.com; Max-Age=63072000; Expires=Fri, 04 Oct 2024 18:54:54 GMT; SameSite=None; Secure
vary: Origin
content-length: 89
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   89
Md5:    d6285d1d42587c4673991251b0e19ae0
Sha1:   250e984a46ba2334be6ff3802ce52990d23a2b03
Sha256: d2bd66400e06d39d1e31f49657efbe66da386a1552c07700f4428ef30a2d73df
                                        
                                            GET /city.com/img/citilogoredesign.png HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Content-Length: 1799
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 89 x 89, 8-bit/color RGBA, non-interlaced\012- data
Size:   1799
Md5:    b8c9db53b866a0120618cd396e1513f1
Sha1:   5cfe9732c78e4eb7365681834cdd682b977a0232
Sha256: 102503acef6077fcf8e42a856fb4904fcd74224a32d5d8efcd13236ac6309fed
                                        
                                            GET /city.com/img/050-location@2x.svg HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 758
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (785)
Size:   758
Md5:    2b7cfe76b3d07bceb495d2dcc63dafa3
Sha1:   dd9a3e5c21135454fb20655caf55b7269a06a579
Sha256: b1fff2f946232e402a12ac7b4f262d09a3268446dbb829ffc6a22eb89dd3360f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/icon_globe_med-grey@2x.svg HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1419
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (2189)
Size:   1419
Md5:    ebcbe76ba2da728d84c6a76b3541919d
Sha1:   cacffc8e5130f938cc86399ba1b9fe379ba65b3b
Sha256: a2f31bb6f70cfc842d1e8d3709aac9a8dd58fc4adebdc4cd2556051eb49d2bd8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/EqualHousing.png HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Content-Length: 1606
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 29 x 29, 8-bit/color RGBA, non-interlaced\012- data
Size:   1606
Md5:    83a5bb8d054fc7b4adab0615c487dc25
Sha1:   8a26d8e39da754c8f63d2a3122ed87a6e4a7f369
Sha256: f23485e8b9c368f28f18a0bb110573df79c00ac3a2ca71d68017db100207639d
                                        
                                            GET /city.com/img/googlePlay@3x.png HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Content-Length: 25077
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 390 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size:   25077
Md5:    27b0482f8ebba1e3cc92d2eee497497e
Sha1:   379e9e2ed883250c02736c151a47d38248285572
Sha256: a079bb0d5590826bcc664715122004dff51e76c79608bc29f586c9388b623b77
                                        
                                            GET /nga-lite-signon/LSO_4959.jpg HTTP/1.1 
Host: online.citi.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.13.42.166
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Mon, 25 Apr 2022 13:54:04 GMT
accept-ranges: bytes
content-length: 108233
x-akamai-citisite: SWDC
strict-transport-security: max-age=300
p3p: policyref="/w3c/p3p.xml", CP="CAO DSP CUR ADM DEV OUR NOR STP UNIo NAV STA PREi TAI"
date: Wed, 05 Oct 2022 18:54:41 GMT
set-cookie: AKMTLTSID=03F668BF858D0C9587BAD900C9AD9C36; path=/; domain=citi.com; secure
x-webkit-csp: frame-ancestors https://*.citi.com https://*.citigroup.net https://*.nsroot.net
x-content-security-policy: frame-ancestors https://*.citi.com https://*.citigroup.net https://*.nsroot.net
content-security-policy: frame-ancestors https://*.citi.com https://*.citigroup.net https://*.nsroot.net
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, progressive, precision 8, 2160x600, components 3\012- data
Size:   108233
Md5:    7dd9aa1bc81d1bf0e77e3e08de814096
Sha1:   0e251835579aa147fd88c76b85b74359856c6de9
Sha256: dbdebfcc2ed9932006edcfc7f8190ca5c9a04ff737e990645712ccc33e5ce070
                                        
                                            GET /cbol-pre-login-static-assets/commonui-assets/fonts/interstate/Interstate-Bold.woff HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Cookie: _dpm_ses.b4c6=*; _dpm_id.b4c6=c61d2778-9d0a-4f1c-b43b-c8fb304522c8.1664996081.1.1664996081.1664996081.b20398ff-f98d-4f97-adad-099fa3ec40d5; AMCV_61834D9B5228A7430A490D45%40AdobeOrg=-330454231%7CMCIDTS%7C19271%7CvVersion%7C3.1.2; cdContextId=1; bmuid=1664996081754-58231D4C-B2F3-4492-AE94-6F74CD06A761
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=15
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /cbol-pre-login-static-assets/commonui-assets/fonts/interstate/Interstate-Light.woff HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Cookie: _dpm_ses.b4c6=*; _dpm_id.b4c6=c61d2778-9d0a-4f1c-b43b-c8fb304522c8.1664996081.1.1664996081.1664996081.b20398ff-f98d-4f97-adad-099fa3ec40d5; AMCV_61834D9B5228A7430A490D45%40AdobeOrg=-330454231%7CMCIDTS%7C19271%7CvVersion%7C3.1.2; cdContextId=1; bmuid=1664996081754-58231D4C-B2F3-4492-AE94-6F74CD06A761
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=15
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/cds-assets/fonts/interstate/Interstate-Bold.woff HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://acadplus.in/city.com/img/styles.a4a9307b7b034ca614a7.css
Cookie: _dpm_ses.b4c6=*; _dpm_id.b4c6=c61d2778-9d0a-4f1c-b43b-c8fb304522c8.1664996081.1.1664996081.1664996081.b20398ff-f98d-4f97-adad-099fa3ec40d5; AMCV_61834D9B5228A7430A490D45%40AdobeOrg=-330454231%7CMCIDTS%7C19271%7CvVersion%7C3.1.2; cdContextId=1; bmuid=1664996081754-58231D4C-B2F3-4492-AE94-6F74CD06A761
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=15
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /cbol-pre-login-static-assets/assets/partner-login/qr/images/qrsignon-1.png HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Cookie: _dpm_ses.b4c6=*; _dpm_id.b4c6=c61d2778-9d0a-4f1c-b43b-c8fb304522c8.1664996081.1.1664996081.1664996081.b20398ff-f98d-4f97-adad-099fa3ec40d5; AMCV_61834D9B5228A7430A490D45%40AdobeOrg=-330454231%7CMCIDTS%7C19271%7CvVersion%7C3.1.2; cdContextId=1; bmuid=1664996081754-58231D4C-B2F3-4492-AE94-6F74CD06A761
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   36
Md5:    6a83fd075b3bf9a252aec307795c05b4
Sha1:   993d53f565edcb12f46eaa6a9e8b4c1639ef7185
Sha256: 4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26
                                        
                                            GET /city.com/img/phone.png HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Content-Length: 9873
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 396 x 270, 8-bit/color RGBA, non-interlaced\012- data
Size:   9873
Md5:    448436abd4bc903abc9a9c53cdd2fe5e
Sha1:   1f3731747ded20c04b25009d3a570d1164ddf1ed
Sha256: 5df469ee4da2bc124065cb8df0e24173c5cbc8b9e0c807960fc39c93ffb640c8
                                        
                                            GET /city.com/img/qrsignon.png HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Content-Length: 741
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Size:   741
Md5:    a5ee9c25c190474a2efe66a609a2ca19
Sha1:   890832b6a7115abd51f480dce8e74206f06a428a
Sha256: dc876f814074650acde84db7a7f34c583f043b83130e5de49de65f18d1ee2683
                                        
                                            GET /city.com/img/laptop-and-phone-success.png HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:26 GMT
Accept-Ranges: bytes
Content-Length: 2544
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 132 x 84, 8-bit/color RGBA, non-interlaced\012- data
Size:   2544
Md5:    d63ac8356aa91fa9f070d79dadaed88f
Sha1:   7990f46b70c992de92c29e2361ddf9f0bf369869
Sha256: e5c725c5a6510cd7323ff66fa032e69cfe7aec1dd042911cae0607d071670eec
                                        
                                            GET /city.com/img/laptop-and-phone-pairing.png HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 11:08:28 GMT
Accept-Ranges: bytes
Content-Length: 3044
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 132 x 84, 8-bit/color RGBA, non-interlaced\012- data
Size:   3044
Md5:    b046a1c58205ebfbee7886df2de485b5
Sha1:   05a4dd6b988a6c55afa3225780e341e5db52a787
Sha256: a9a43473908fb995ecdc6bd80d80fd42d3e43bf31687aff0978d7389de2573aa
                                        
                                            GET /cbol-pre-login-static-assets/commonui-assets/fonts/interstate/Interstate-Bold.ttf HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Cookie: _dpm_ses.b4c6=*; _dpm_id.b4c6=c61d2778-9d0a-4f1c-b43b-c8fb304522c8.1664996081.1.1664996081.1664996081.b20398ff-f98d-4f97-adad-099fa3ec40d5; AMCV_61834D9B5228A7430A490D45%40AdobeOrg=-330454231%7CMCIDTS%7C19271%7CvVersion%7C3.1.2; cdContextId=1; bmuid=1664996081754-58231D4C-B2F3-4492-AE94-6F74CD06A761
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   36
Md5:    6a83fd075b3bf9a252aec307795c05b4
Sha1:   993d53f565edcb12f46eaa6a9e8b4c1639ef7185
Sha256: 4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /id?d_visid_ver=3.1.2&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=61834D9B5228A7430A490D45%40AdobeOrg&d_nsid=0&d_mid=76270789850655157011331792400302488566&d_cid_ic=AVID%01319EE9789E6317CF-60000AE4A071E2F9&ts=1664996082117 HTTP/1.1 
Host: dpm.demdex.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://acadplus.in
Connection: keep-alive
Referer: https://acadplus.in/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.49.126.217
HTTP/1.1 200 OK
Content-Type: application/json;charset=utf-8
                                        
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://acadplus.in
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
DCS: dcscanary-prod-irl1-1-v051-0d443fb62.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=69522316285711122142006600029372023381; Max-Age=15552000; Expires=Mon, 03 Apr 2023 18:54:42 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: hl9ri2DEQts=
Content-Length: 300
Connection: keep-alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (358), with no line terminators
Size:   300
Md5:    887130f7e6712bf21b4c2a39683788a1
Sha1:   f1ee38397dc343ef9698375e698826a77ccbbfb0
Sha256: 23c96e5bccf5046bb752a8ef35b58d72da8479675dda87981a11e01f0446b2ef
                                        
                                            GET /cbol-pre-login-static-assets/commonui-assets/fonts/interstate/Interstate-Light.ttf HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/
Cookie: _dpm_ses.b4c6=*; _dpm_id.b4c6=c61d2778-9d0a-4f1c-b43b-c8fb304522c8.1664996081.1.1664996081.1664996081.b20398ff-f98d-4f97-adad-099fa3ec40d5; AMCV_61834D9B5228A7430A490D45%40AdobeOrg=-330454231%7CMCIDTS%7C19271%7CvVersion%7C3.1.2; cdContextId=1; bmuid=1664996081754-58231D4C-B2F3-4492-AE94-6F74CD06A761
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   36
Md5:    6a83fd075b3bf9a252aec307795c05b4
Sha1:   993d53f565edcb12f46eaa6a9e8b4c1639ef7185
Sha256: 4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/cds-assets/fonts/interstate/Interstate-Bold.ttf HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/img/styles.a4a9307b7b034ca614a7.css
Cookie: _dpm_ses.b4c6=*; _dpm_id.b4c6=c61d2778-9d0a-4f1c-b43b-c8fb304522c8.1664996081.1.1664996081.1664996081.b20398ff-f98d-4f97-adad-099fa3ec40d5; AMCV_61834D9B5228A7430A490D45%40AdobeOrg=-330454231%7CMCIDTS%7C19271%7CvVersion%7C3.1.2; cdContextId=1; bmuid=1664996081754-58231D4C-B2F3-4492-AE94-6F74CD06A761
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   36
Md5:    6a83fd075b3bf9a252aec307795c05b4
Sha1:   993d53f565edcb12f46eaa6a9e8b4c1639ef7185
Sha256: 4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4257
Cache-Control: 'max-age=158059'
Date: Wed, 05 Oct 2022 18:54:42 GMT
Last-Modified: Wed, 05 Oct 2022 17:43:45 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /city.com/img/commonui-assets/fonts/interstate/Interstate-Bold.woff HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://acadplus.in/city.com/img/styles.a4a9307b7b034ca614a7.css
Cookie: _dpm_ses.b4c6=*; _dpm_id.b4c6=c61d2778-9d0a-4f1c-b43b-c8fb304522c8.1664996081.1.1664996081.1664996081.b20398ff-f98d-4f97-adad-099fa3ec40d5; AMCV_61834D9B5228A7430A490D45%40AdobeOrg=-330454231%7CMCIDTS%7C19271%7CMCMID%7C76270789850655157011331792400302488566%7CMCAID%7C319EE9789E6317CF-60000AE4A071E2F9%7CMCOPTOUT-1665003282s%7CNONE%7CvVersion%7C3.1.2; cdContextId=1; bmuid=1664996081754-58231D4C-B2F3-4492-AE94-6F74CD06A761; AMCVS_61834D9B5228A7430A490D45%40AdobeOrg=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=15
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/cds-assets/fonts/interstate/Interstate-Bold.woff HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://acadplus.in/city.com/img/styles.a4a9307b7b034ca614a7.css
Cookie: _dpm_ses.b4c6=*; _dpm_id.b4c6=c61d2778-9d0a-4f1c-b43b-c8fb304522c8.1664996081.1.1664996081.1664996081.b20398ff-f98d-4f97-adad-099fa3ec40d5; AMCV_61834D9B5228A7430A490D45%40AdobeOrg=-330454231%7CMCIDTS%7C19271%7CMCMID%7C76270789850655157011331792400302488566%7CMCAID%7C319EE9789E6317CF-60000AE4A071E2F9%7CMCOPTOUT-1665003282s%7CNONE%7CvVersion%7C3.1.2; cdContextId=1; bmuid=1664996081754-58231D4C-B2F3-4492-AE94-6F74CD06A761; AMCVS_61834D9B5228A7430A490D45%40AdobeOrg=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=15
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/commonui-assets/fonts/interstate/Interstate-Light.woff HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://acadplus.in/city.com/img/styles.a4a9307b7b034ca614a7.css
Cookie: _dpm_ses.b4c6=*; _dpm_id.b4c6=c61d2778-9d0a-4f1c-b43b-c8fb304522c8.1664996081.1.1664996081.1664996081.b20398ff-f98d-4f97-adad-099fa3ec40d5; AMCV_61834D9B5228A7430A490D45%40AdobeOrg=-330454231%7CMCIDTS%7C19271%7CMCMID%7C76270789850655157011331792400302488566%7CMCAID%7C319EE9789E6317CF-60000AE4A071E2F9%7CMCOPTOUT-1665003282s%7CNONE%7CMCAAMLH-1665600882%7C6%7CMCAAMB-1665600882%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C3.1.2; cdContextId=1; bmuid=1664996081754-58231D4C-B2F3-4492-AE94-6F74CD06A761; AMCVS_61834D9B5228A7430A490D45%40AdobeOrg=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=15
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/cds-assets/fonts/interstate/Interstate-Light.woff HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://acadplus.in/city.com/img/styles.a4a9307b7b034ca614a7.css
Cookie: _dpm_ses.b4c6=*; _dpm_id.b4c6=c61d2778-9d0a-4f1c-b43b-c8fb304522c8.1664996081.1.1664996081.1664996081.b20398ff-f98d-4f97-adad-099fa3ec40d5; AMCV_61834D9B5228A7430A490D45%40AdobeOrg=-330454231%7CMCIDTS%7C19271%7CMCMID%7C76270789850655157011331792400302488566%7CMCAID%7C319EE9789E6317CF-60000AE4A071E2F9%7CMCOPTOUT-1665003282s%7CNONE%7CMCAAMLH-1665600882%7C6%7CMCAAMB-1665600882%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C3.1.2; cdContextId=1; bmuid=1664996081754-58231D4C-B2F3-4492-AE94-6F74CD06A761; AMCVS_61834D9B5228A7430A490D45%40AdobeOrg=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=15
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text
Size:   16
Md5:    4845f01eaa8068384625e302e9a4eb05
Sha1:   fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
Sha256: 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /dest5.html?d_nsid=0 HTTP/1.1 
Host: citi.demdex.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         52.49.126.217
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
date: Wed, 5 Oct 2022 18:54:42 GMT
DCS: dcs-prod-irl1-1-v044-06a78a427.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Thu, 29 Sep 2022 16:18:56 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: nwbH/Hw4Ttg=
Content-Length: 2791
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Size:   2791
Md5:    ccbdcb1e84c241950763ec4cd516cdfc
Sha1:   55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
Sha256: de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
                                        
                                            POST /client/v3.1/web/wup?cid=cedric HTTP/1.1 
Host: contents2.00110.citi.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 172
Origin: https://acadplus.in
Connection: keep-alive
Referer: https://acadplus.in/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         52.154.174.214
HTTP/2 200 OK
content-type: application/json
                                        
content-length: 1317
date: Wed, 05 Oct 2022 18:54:41 GMT
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: 494bf0b2-e65e-41a7-a603-6ce5b127e63c
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1317), with no line terminators
Size:   1317
Md5:    8174bcd9e2edca05183a46e1476b0d1d
Sha1:   acc52a8f5bb45eef8d64751ea34fba18dde9198c
Sha256: 4febd85cfd8b6654b394401015150cfbf6b8d3ef87db7fb54a15f908fc82074f
                                        
                                            GET /city.com/img/cds-assets/fonts/interstate/Interstate-Bold.ttf HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/img/styles.a4a9307b7b034ca614a7.css
Cookie: _dpm_ses.b4c6=*; _dpm_id.b4c6=c61d2778-9d0a-4f1c-b43b-c8fb304522c8.1664996081.1.1664996081.1664996081.b20398ff-f98d-4f97-adad-099fa3ec40d5; AMCV_61834D9B5228A7430A490D45%40AdobeOrg=-330454231%7CMCIDTS%7C19271%7CMCMID%7C76270789850655157011331792400302488566%7CMCAID%7C319EE9789E6317CF-60000AE4A071E2F9%7CMCOPTOUT-1665003282s%7CNONE%7CMCAAMLH-1665600882%7C6%7CMCAAMB-1665600882%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C3.1.2; cdContextId=1; bmuid=1664996081754-58231D4C-B2F3-4492-AE94-6F74CD06A761; AMCVS_61834D9B5228A7430A490D45%40AdobeOrg=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   36
Md5:    6a83fd075b3bf9a252aec307795c05b4
Sha1:   993d53f565edcb12f46eaa6a9e8b4c1639ef7185
Sha256: 4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/commonui-assets/fonts/interstate/Interstate-Bold.ttf HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/img/styles.a4a9307b7b034ca614a7.css
Cookie: _dpm_ses.b4c6=*; _dpm_id.b4c6=c61d2778-9d0a-4f1c-b43b-c8fb304522c8.1664996081.1.1664996081.1664996081.b20398ff-f98d-4f97-adad-099fa3ec40d5; AMCV_61834D9B5228A7430A490D45%40AdobeOrg=-330454231%7CMCIDTS%7C19271%7CMCMID%7C76270789850655157011331792400302488566%7CMCAID%7C319EE9789E6317CF-60000AE4A071E2F9%7CMCOPTOUT-1665003282s%7CNONE%7CMCAAMLH-1665600882%7C6%7CMCAAMB-1665600882%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C3.1.2; cdContextId=1; bmuid=1664996081754-58231D4C-B2F3-4492-AE94-6F74CD06A761; AMCVS_61834D9B5228A7430A490D45%40AdobeOrg=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   36
Md5:    6a83fd075b3bf9a252aec307795c05b4
Sha1:   993d53f565edcb12f46eaa6a9e8b4c1639ef7185
Sha256: 4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/cds-assets/fonts/interstate/Interstate-Light.ttf HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/img/styles.a4a9307b7b034ca614a7.css
Cookie: _dpm_ses.b4c6=*; _dpm_id.b4c6=c61d2778-9d0a-4f1c-b43b-c8fb304522c8.1664996081.1.1664996081.1664996081.b20398ff-f98d-4f97-adad-099fa3ec40d5; AMCV_61834D9B5228A7430A490D45%40AdobeOrg=-330454231%7CMCIDTS%7C19271%7CMCMID%7C76270789850655157011331792400302488566%7CMCAID%7C319EE9789E6317CF-60000AE4A071E2F9%7CMCOPTOUT-1665003282s%7CNONE%7CMCAAMLH-1665600882%7C6%7CMCAAMB-1665600882%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C3.1.2; cdContextId=1; bmuid=1664996081754-58231D4C-B2F3-4492-AE94-6F74CD06A761; AMCVS_61834D9B5228A7430A490D45%40AdobeOrg=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   36
Md5:    6a83fd075b3bf9a252aec307795c05b4
Sha1:   993d53f565edcb12f46eaa6a9e8b4c1639ef7185
Sha256: 4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /city.com/img/commonui-assets/fonts/interstate/Interstate-Light.ttf HTTP/1.1 
Host: acadplus.in
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/city.com/img/styles.a4a9307b7b034ca614a7.css
Cookie: _dpm_ses.b4c6=*; _dpm_id.b4c6=c61d2778-9d0a-4f1c-b43b-c8fb304522c8.1664996081.1.1664996081.1664996081.b20398ff-f98d-4f97-adad-099fa3ec40d5; AMCV_61834D9B5228A7430A490D45%40AdobeOrg=-330454231%7CMCIDTS%7C19271%7CMCMID%7C76270789850655157011331792400302488566%7CMCAID%7C319EE9789E6317CF-60000AE4A071E2F9%7CMCOPTOUT-1665003282s%7CNONE%7CMCAAMLH-1665600882%7C6%7CMCAAMB-1665600882%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C3.1.2; cdContextId=1; bmuid=1664996081754-58231D4C-B2F3-4492-AE94-6F74CD06A761; AMCVS_61834D9B5228A7430A490D45%40AdobeOrg=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         119.18.52.62
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 05 Oct 2022 18:54:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36
Keep-Alive: timeout=15
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   36
Md5:    6a83fd075b3bf9a252aec307795c05b4
Sha1:   993d53f565edcb12f46eaa6a9e8b4c1639ef7185
Sha256: 4722dc6df5613dc5eaf3fb32338c0aa8b2d4f811b926453790272c1a0a117e26

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 18:54:42 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 03 Oct 2022 11:15:49 GMT
Expires: Mon, 10 Oct 2022 11:15:48 GMT
Etag: "7433bbeedf74d56d11c65176e40f27caedf8bc84"
Cache-Control: max-age=403865,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75585e0bcf91b511-OSL

                                        
                                            GET /scripts/prod/crossdomain.html HTTP/1.1 
Host: 1.b406929acabac9b095f124c81bdfcf57f.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.46
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 221
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 21:37:13 GMT
etag: "21e34cf6a03f570df49e212018a567d0"
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1n0ttIhASEv9ltps1r5r2ltas1ljk9PMLznES5kD6gb1mw_E5H7uFQ==
age: 76650
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   221
Md5:    21e34cf6a03f570df49e212018a567d0
Sha1:   f0be4058936850ae0163f5137600d14b6632bbb3
Sha256: 0a23512ea579554af1f2614d6dea6120d38660028fc7624c71a978478fae0eb6
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 18:54:42 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 04 Oct 2022 06:00:06 GMT
Expires: Tue, 11 Oct 2022 06:00:05 GMT
Etag: "9e25cf2459e15db62592b4083d03ac6f8e7472e0"
Cache-Control: max-age=471322,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75585e0bdd720b41-OSL

                                        
                                            GET /scripts/prod/crossdomain.html HTTP/1.1 
Host: 1.c81358859121583b7adf2ace89cb39f44.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.64
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 221
date: Wed, 05 Oct 2022 06:56:55 GMT
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
etag: "21e34cf6a03f570df49e212018a567d0"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: odlPEHEz8y0uvuTt-790ROBV3tDnQdQe102pTEKSdZesbXri7Hx9RQ==
age: 43068
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   221
Md5:    21e34cf6a03f570df49e212018a567d0
Sha1:   f0be4058936850ae0163f5137600d14b6632bbb3
Sha256: 0a23512ea579554af1f2614d6dea6120d38660028fc7624c71a978478fae0eb6
                                        
                                            GET /scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js HTTP/1.1 
Host: 1.b406929acabac9b095f124c81bdfcf57f.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.46
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 3227
date: Wed, 05 Oct 2022 07:00:57 GMT
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
etag: "9ee48a4da9c402e8a23ad085fb71f28f"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Phg6haA7VZX1nQHKDbhkY75L2M0-virC1qqqqFuzWFdqwfeqmntKPA==
age: 42826
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3227), with no line terminators
Size:   3227
Md5:    9ee48a4da9c402e8a23ad085fb71f28f
Sha1:   f0c59306d6313f9bee02b53ca8903991bd24bfd7
Sha256: 9cdad69a4b967c882c3d8e9cb054e7334b7f8870e96427a5d20ae2d17eff2622
                                        
                                            GET /scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js HTTP/1.1 
Host: 1.c81358859121583b7adf2ace89cb39f44.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.64
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 3227
date: Tue, 04 Oct 2022 21:22:18 GMT
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
etag: "9ee48a4da9c402e8a23ad085fb71f28f"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Wzq7eSYAIq2-fRHVJCDG4N7aznkPvddJvH81xqOgqsabuFMco6C4Hg==
age: 77545
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3227), with no line terminators
Size:   3227
Md5:    9ee48a4da9c402e8a23ad085fb71f28f
Sha1:   f0c59306d6313f9bee02b53ca8903991bd24bfd7
Sha256: 9cdad69a4b967c882c3d8e9cb054e7334b7f8870e96427a5d20ae2d17eff2622
                                        
                                            GET /citi/na_prod/perf.rnc?cid=1129&ns=1664996078742&ce=671&cs=389&dc=0&dclee=0&dcles=3098&di=3032&dl=833&dle=389&dls=388&fs=380&lee=0&les=0&rede=0&reds=0&reqs=671&resps=807&respe=1089&scs=528&ues=0&uee=0 HTTP/1.1 
Host: nexus.ensighten.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.74
HTTP/2 204 No Content
                                        
server: CloudFront
date: Tue, 04 Oct 2022 21:47:21 GMT
cache-control: no-cache, no-store
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wH3FC3pARHhSa7pc6qxQH90KLJPh1IjoV9x1FKLTItpS-tl6D4ReqA==
age: 76042
X-Firefox-Spdy: h2

                                        
                                            GET /error/e.gif?msg=_dl%20is%20not%20defined&lnn=481&fn=https%3A%2F%2Facadplus.in%2Fcity.com%2Fimg%2FBootstrap.js&cid=1129&client=citi&publishPath=na_prod&rid=3092996&did=622672&errorName=ReferenceError HTTP/1.1 
Host: nexus.ensighten.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.74
HTTP/2 204 No Content
                                        
server: CloudFront
date: Wed, 05 Oct 2022 01:05:18 GMT
cache-control: no-cache, no-store
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dirRljJ71HBowkeC4uofFHk0lrTzKKKruDvAWMRStMy9JTpEjgYgmg==
age: 64165
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Wed, 05 Oct 2022 18:54:43 GMT
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 04 Oct 2022 23:17:07 GMT
Expires: Wed, 05 Oct 2022 23:17:07 GMT
ETag: "f7e008c013fa96f6c694879a440fa896b60f7f7d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1778
Md5:    7b0dbb377b16f7fbde7a70abdbf1cf7f
Sha1:   f7e008c013fa96f6c694879a440fa896b60f7f7d
Sha256: 43c862fe9430972ed263786d8b2f6535782454de7c450f263a92fb3073ce9a42
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 18:54:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 18:54:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 18:54:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 05 Oct 2022 18:54:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/1p-user-list/916451471/?random=1645199688127&cv=9&fst=1645196400000&num=1&bg=ffffff&guid=ON&eid=376635470&u_h=768&u_w=1366&u_ah=768&u_aw=1366&u_cd=24&u_his=2&u_tz=60&u_java=false&u_nplug=5&u_nmime=2&gtm=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.citi.com%2Flogin&tiba=Sign%20On%20to%20Your%20Citi%20Account%20-%20Citibank&async=1&fmt=3&is_vtc=1&random=1013547421&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 05 Oct 2022 18:54:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-user-list/819500023/?random=1645199688162&cv=9&fst=1645196400000&num=1&bg=ffffff&guid=ON&eid=376635471&u_h=768&u_w=1366&u_ah=768&u_aw=1366&u_cd=24&u_his=2&u_tz=60&u_java=false&u_nplug=5&u_nmime=2&gtm=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.citi.com%2Flogin&tiba=Sign%20On%20to%20Your%20Citi%20Account%20-%20Citibank&async=1&fmt=3&is_vtc=1&random=934572699&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 05 Oct 2022 18:54:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-user-list/830907969/?random=1645199688154&cv=9&fst=1645196400000&num=1&bg=ffffff&guid=ON&u_h=768&u_w=1366&u_ah=768&u_aw=1366&u_cd=24&u_his=2&u_tz=60&u_java=false&u_nplug=5&u_nmime=2&gtm=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.citi.com%2Flogin&tiba=Sign%20On%20to%20Your%20Citi%20Account%20-%20Citibank&async=1&fmt=3&is_vtc=1&random=3929776891&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 05 Oct 2022 18:54:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-user-list/959299794/?random=1645199688176&cv=9&fst=1645196400000&num=1&bg=ffffff&guid=ON&u_h=768&u_w=1366&u_ah=768&u_aw=1366&u_cd=24&u_his=2&u_tz=60&u_java=false&u_nplug=5&u_nmime=2&gtm=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.citi.com%2Flogin&tiba=Sign%20On%20to%20Your%20Citi%20Account%20-%20Citibank&async=1&fmt=3&is_vtc=1&random=2969722864&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acadplus.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 05 Oct 2022 18:54:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /pagead/1p-user-list/975701947/?random=1645199688158&cv=9&fst=1645196400000&num=1&bg=ffffff&guid=ON&u_h=768&u_w=1366&u_ah=768&u_aw=1366&u_cd=24&u_his=2&u_tz=60&u_java=false&u_nplug=5&u_nmime=2&gtm=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.citi.com%2Flogin&tiba=Sign%20On%20to%20Your%20Citi%20Account%20-%20Citibank&async=1&fmt=3&is_vtc=1&random=3742915801&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*