Overview

URL manomav.com/
IP92.42.110.125
ASNHost Europe GmbH
Location France
Report completed2022-10-06 17:59:46 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-10-06 2 manomav.com/ Malware
2022-10-06 2 www.manomav.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4 Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/contact-form-7/includes/css/styles.css?v (...) Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ve (...) Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/photo-gallery/css/jquery.mCustomScrollba (...) Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3 Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/related-youtube-videos/css/themes.css?ve (...) Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/service-box/assets/css/owl.carousel.min. (...) Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widg (...) Malware
2022-10-06 2 www.manomav.com/wp-content/themes/manomav/genericons/genericons.css?ver=3.2 Malware
2022-10-06 2 www.manomav.com/wp-content/themes/manomav/style.css?ver=5.9.4 Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/business-directory-plugin/assets/css/wid (...) Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/business-directory-plugin/themes/default (...) Malware
2022-10-06 2 www.manomav.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.j (...) Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ve (...) Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.j (...) Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/service-box/assets/js/owl.carousel.min.j (...) Malware
2022-10-06 2 www.manomav.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Wi (...) Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.anythingsli (...) Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/slider-images/Scripts/jquery.colorbox-mi (...) Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.3 Malware
2022-10-06 2 www.manomav.com/wp-content/themes/manomav/js/device.min.js Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/data-tables-generator-by-supsystic/app/a (...) Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4w (...) Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.j (...) Malware
2022-10-06 2 www.manomav.com/wp-content/themes/manomav/js/jquery.js Malware
2022-10-06 2 www.manomav.com/wp-content/themes/manomav/js/jquery-migrate-1.2.1.js Malware
2022-10-06 2 www.manomav.com/wp-content/themes/manomav/js/script.js Malware
2022-10-06 2 www.manomav.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4 Malware
2022-10-06 2 www.manomav.com/wp-content/themes/manomav//js/jquery.cookie.js Malware
2022-10-06 2 www.manomav.com/wp-content/themes/manomav//js/jquery.easing.1.3.js Malware
2022-10-06 2 www.manomav.com/wp-content/themes/manomav//js/tmstickup.js Malware
2022-10-06 2 www.manomav.com/font-awesome/4.3.0/fonts/fontawesome-webfont.woff Malware
2022-10-06 2 www.manomav.com/wp-content/themes/manomav//js/jquery.ui.totop.js Malware
2022-10-06 2 www.manomav.com/wp-content/themes/manomav//js/superfish.js Malware
2022-10-06 2 www.manomav.com/wp-content/themes/manomav//js/jquery.rd-navbar.js Malware
2022-10-06 2 www.manomav.com/wp-content/themes/manomav//js/wow.js Malware
2022-10-06 2 www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox.js Malware
2022-10-06 2 www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-media.js Malware
2022-10-06 2 www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-buttons.js Malware
2022-10-06 2 www.manomav.com/font-awesome/4.3.0/fonts/fontawesome-webfont.ttf Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/slider-images/Scripts/fonts/fontawesome- (...) Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/service-box/assets/css/font-awesome/font (...) Malware
2022-10-06 2 www.manomav.com/wp-content/plugins/slider-images/Scripts/fonts/fontawesome- (...) Malware
2022-10-06 2 www.manomav.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 Malware
2022-10-06 2 manomav.com/ Malware
2022-10-06 2 www.manomav.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (24)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-06 05:02:20 UTC 52.41.253.170
mnemonic passive DNS fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-10-06 11:38:37 UTC 142.250.74.10
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-10-06 13:55:28 UTC 142.250.74.174
mnemonic passive DNS sumo.com (3) 11861 2017-02-08 05:12:34 UTC 2022-10-06 06:17:16 UTC 52.38.14.212
mnemonic passive DNS ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2022-10-06 14:49:11 UTC 93.184.220.29
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-06 04:46:50 UTC 34.117.237.239
mnemonic passive DNS fonts.gstatic.com (9) 0 2014-08-29 13:43:22 UTC 2022-10-06 04:51:09 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS ocsp.sectigo.com (1) 487 2018-12-17 11:31:55 UTC 2022-10-06 12:08:41 UTC 172.64.155.188
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-10-06 06:32:55 UTC 142.250.74.3
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-10-06 17:18:03 UTC 54.230.111.65
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-10-06 15:33:49 UTC 34.120.237.76
mnemonic passive DNS www.manomav.com (85) 0 2013-07-20 07:14:16 UTC 2022-09-27 14:33:25 UTC 92.42.110.125 Unknown ranking
mnemonic passive DNS ocsp.pki.goog (13) 175 2017-06-14 07:23:31 UTC 2022-10-06 04:46:05 UTC 142.250.74.3
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-10-06 14:48:50 UTC 142.250.74.164
mnemonic passive DNS connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2022-10-06 04:46:20 UTC 31.13.72.12
mnemonic passive DNS googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-10-06 11:49:48 UTC 172.217.21.162
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-10-06 06:27:32 UTC 173.194.73.157
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-10-06 04:55:14 UTC 34.160.144.191
mnemonic passive DNS manomav.com (2) 0 2013-07-20 07:14:16 UTC 2022-10-06 15:28:35 UTC 92.42.110.125 Unknown ranking
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-10-06 08:32:24 UTC 142.250.74.168
mnemonic passive DNS load.sumo.com (13) 11214 2017-02-08 07:18:28 UTC 2022-10-06 06:17:14 UTC 194.242.11.186
mnemonic passive DNS www.gstatic.com (1) 0 2016-07-26 09:37:06 UTC 2022-10-06 08:25:50 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS www.facebook.com (1) 99 2017-01-30 05:00:00 UTC 2022-10-06 04:46:20 UTC 31.13.72.36
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-10-06 04:46:31 UTC 23.36.77.32


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 92.42.110.125

Date UQ / IDS / BL URL IP
2022-11-25 10:11:28 +0000
0 - 0 - 47 www.manomav.com/ 92.42.110.125
2022-11-23 18:31:59 +0000
0 - 0 - 48 manomav.com/12/TrdngAnr6339.exe 92.42.110.125
2022-11-23 18:31:55 +0000
0 - 0 - 48 manomav.com/12/TrdngAnlzr9949.exe 92.42.110.125
2022-11-23 05:51:02 +0000
0 - 0 - 48 manomav.com/12/TrdngAnlzr479932.exe 92.42.110.125
2022-11-23 04:37:06 +0000
0 - 0 - 47 manomav.com/12/TrdngAnr6339.exe 92.42.110.125

Last 5 reports on ASN: Host Europe GmbH

Date UQ / IDS / BL URL IP
2022-12-01 07:59:10 +0000
0 - 0 - 2 oyfixer.com/ 134.119.176.19
2022-12-01 07:56:26 +0000
0 - 0 - 1 oyfixer.com/ 134.119.176.19
2022-11-30 20:33:51 +0000
0 - 0 - 2 134.119.181.13/600/vbc.exe 134.119.181.13
2022-11-30 13:11:34 +0000
0 - 0 - 17 789ff.aa.am/ 151.106.26.11
2022-11-30 05:31:41 +0000
0 - 0 - 8 www.dgreetings.com/invitation-cards/messages.html 134.119.176.30

Last 5 reports on domain: manomav.com

Date UQ / IDS / BL URL IP
2022-11-25 10:11:28 +0000
0 - 0 - 47 www.manomav.com/ 92.42.110.125
2022-11-23 18:31:59 +0000
0 - 0 - 48 manomav.com/12/TrdngAnr6339.exe 92.42.110.125
2022-11-23 18:31:55 +0000
0 - 0 - 48 manomav.com/12/TrdngAnlzr9949.exe 92.42.110.125
2022-11-23 05:51:02 +0000
0 - 0 - 48 manomav.com/12/TrdngAnlzr479932.exe 92.42.110.125
2022-11-23 04:37:06 +0000
0 - 0 - 47 manomav.com/12/TrdngAnr6339.exe 92.42.110.125

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-22 18:31:40 +0000
0 - 0 - 49 manomav.com/12/TrdngAnr6339.exe 92.42.110.125
2022-11-22 18:31:34 +0000
0 - 0 - 47 manomav.com/12/TrdngAnlzr9949.exe 92.42.110.125
2022-11-16 18:25:04 +0000
0 - 0 - 47 manomav.com/12/TrdngAnlzr479932.exe 92.42.110.125
2022-11-15 18:31:29 +0000
0 - 0 - 47 manomav.com/12/TrdngAnlzr9949.exe 92.42.110.125
2022-10-26 17:35:03 +0000
0 - 0 - 49 manomav.com/12/TrdngAnlzr472032.exe 92.42.110.125


JavaScript

Executed Scripts (87)


Executed Evals (5)

#1 JavaScript::Eval (size: 18525, repeated: 1) - SHA256: ca2176ef7fd94b3e220ad24366ca185ef9d355a66eb36c1eab6251a442a0c83a

                                        (function() {
    var pT = function(B, M, I, K, r, p) {
            if (!M.I) {
                M.G++;
                try {
                    for (r = (I = 0, void 0), K = M.i; --B;) try {
                        if ((p = void 0, M).V) r = MF(M, M.V);
                        else {
                            if ((I = v(M, 479), I) >= K) break;
                            r = (p = (l(236, M, I), Y)(M), v(M, p))
                        }
                        y(false, M, (r && r[BS] & 2048 ? r(M, B) : m([b, 21, p], M, 0), B), false)
                    } catch (n) {
                        v(M, 492) ? m(n, M, 22) : l(492, M, n)
                    }
                    if (!B) {
                        if (M.Nh) {
                            pT(136739882349, (M.G--, M));
                            return
                        }
                        m([b, 33], M, 0)
                    }
                } catch (n) {
                    try {
                        m(n, M, 22)
                    } catch (E) {
                        S(M, E)
                    }
                }
                M.G--
            }
        },
        $M = function(B, M, I, K) {
            function r() {}
            return K = void 0, I = im(B, function(p) {
                r && (M && q(M), K = p, r(), r = void 0)
            }, !!M)[0], {
                invoke: function(p, n, E, U) {
                    function c() {
                        K(function(e) {
                            q(function() {
                                p(e)
                            })
                        }, E)
                    }
                    if (!n) return n = I(E), p && p(n), n;
                    K ? c() : (U = r, r = function() {
                        q((U(), c))
                    })
                }
            }
        },
        Ie = function(B) {
            return B
        },
        im = function(B, M, I, K) {
            return (K = J[B.substring(0, 3) + "_"]) ? K(B.substring(3), M, I) : KT(B, M)
        },
        y = function(B, M, I, K, r, p, n, E, U) {
            if (M.u += (M.g = (r = (p = (U = 0 < (K || M.h++, M.F) && M.P && M.d1 && 1 >= M.G && !M.V && !M.v && (!K || 1 < M.O - I) && 0 == document.hidden, n = 4 == M.h) || U ? M.T() : M.A, E = p - M.A, E) >> 14, M.Y && (M.Y ^= r * (E << 2)), r) || M.g, r), n || U) M.A = p, M.h = 0;
            if (!U || p - M.Z < M.F - (B ? 255 : K ? 5 : 2)) return false;
            return ((B = v(M, (M.O = I, K) ? 236 : 479), l(479, M, M.i), M).S.push([nT, B, K ? I + 1 : I]), M).v = q, true
        },
        N = function(B, M, I) {
            (l(B, I, M), M)[Ew] = 2796
        },
        rJ = function(B, M, I, K) {
            g(a(v(B, (K = (I = Y(B), Y(B)), I)), M), B, K)
        },
        Uw = function(B, M) {
            l(479, ((M.I7.push(M.L.slice()), M.L)[479] = void 0, M), B)
        },
        jj = function(B, M) {
            return X[B](X.prototype, {
                parent: M,
                document: M,
                prototype: M,
                stack: M,
                splice: M,
                floor: M,
                length: M,
                replace: M,
                console: M,
                call: M,
                propertyIsEnumerable: M,
                pop: M
            })
        },
        vS = function(B, M, I, K, r) {
            ((K = v(M, (r = Y((K = (I = B & 3, B &= 4, Y(M)), M)), K)), B) && (K = sw("" + K)), I && g(a(K.length, 2), M, r), g)(K, M, r)
        },
        Y = function(B, M) {
            if (B.V) return MF(B, B.B);
            return M = L(true, B, 8), M & 128 && (M ^= 128, B = L(true, B, 2), M = (M << 2) + (B | 0)), M
        },
        KT = function(B, M) {
            return M(function(I) {
                I(B)
            }), [function() {
                return B
            }]
        },
        lm = function(B, M, I) {
            return B.o(function(K) {
                I = K
            }, false, M), I
        },
        S = function(B, M) {
            B.I = ((B.I ? B.I + "~" : "E:") + M.message + ":" + M.stack).slice(0, 2048)
        },
        YM = function(B, M) {
            if ((B = (M = null, P.trustedTypes), !B) || !B.createPolicy) return M;
            try {
                M = B.createPolicy("bg", {
                    createHTML: Ie,
                    createScript: Ie,
                    createScriptURL: Ie
                })
            } catch (I) {
                P.console && P.console.error(I.message)
            }
            return M
        },
        m = function(B, M, I, K, r, p) {
            if (!M.X) {
                if (B = v(M, (0 == (r = v(M, ((K = void 0, B && B[0] === b) && (I = B[1], K = B[2], B = void 0), 107)), r.length) && (p = v(M, 236) >> 3, r.push(I, p >> 8 & 255, p & 255), void 0 != K && r.push(K & 255)), I = "", B && (B.message && (I += B.message), B.stack && (I += ":" + B.stack)), 253)), 3 < B) {
                    K = (I = (B -= (I = I.slice(0, (B | 0) - 3), (I.length | 0) + 3), sw)(I), M).g, M.g = M;
                    try {
                        g(a(I.length, 2).concat(I), M, 115, 9)
                    } finally {
                        M.g = K
                    }
                }
                l(253, M, B)
            }
        },
        v = function(B, M) {
            if (void 0 === (B = B.L[M], B)) throw [b, 30, M];
            if (B.value) return B.create();
            return (B.create(5 * M * M + -16 * M + 80), B).prototype
        },
        u = function(B, M, I) {
            I = this;
            try {
                ej(M, this, B)
            } catch (K) {
                S(this, K), B(function(r) {
                    r(I.I)
                })
            }
        },
        f = {
            passive: true,
            capture: true
        },
        g = function(B, M, I, K, r, p) {
            if (M.g == M)
                for (r = v(M, I), 115 == I ? (I = function(n, E, U, c) {
                        if ((U = ((E = r.length, E) | 0) - 4 >> 3, r.iH) != U) {
                            U = (U << 3) - (c = [0, 0, p[r.iH = U, 1], p[2]], 4);
                            try {
                                r.kb = Fm(oe(r, (U | 0) + 4), c, oe(r, U))
                            } catch (e) {
                                throw e;
                            }
                        }
                        r.push(r.kb[E & 7] ^ n)
                    }, p = v(M, 133)) : I = function(n) {
                        r.push(n)
                    }, K && I(K & 255), M = B.length, K = 0; K < M; K++) I(B[K])
        },
        oe = function(B, M) {
            return B[M] << 24 | B[(M | 0) + 1] << 16 | B[(M | 0) + 2] << 8 | B[(M | 0) + 3]
        },
        R = function(B) {
            return B.V ? MF(B, B.B) : L(true, B, 8)
        },
        TP = function(B, M, I, K, r) {
            if ((K = M[0], K) == V) B.K = 25, B.l(M);
            else if (K == d) {
                I = M[1];
                try {
                    r = B.I || B.l(M)
                } catch (p) {
                    S(B, p), r = B.I
                }
                I(r)
            } else if (K == nT) B.l(M);
            else if (K == O) B.l(M);
            else if (K == mp) {
                try {
                    for (r = 0; r < B.H.length; r++) try {
                        I = B.H[r], I[0][I[1]](I[2])
                    } catch (p) {}
                } catch (p) {}(0, M[1])((B.H = [], function(p, n) {
                    B.o(p, true, n)
                }), function(p) {
                    (C(B, (p = !B.S.length, [BS])), p) && G(true, B, false)
                })
            } else {
                if (K == h) return r = M[2], l(452, B, M[6]), l(67, B, r), B.l(M);
                K == BS ? (B.s = [], B.L = null, B.j = []) : K == Ew && "loading" === P.document.readyState && (B.v = function(p, n) {
                    function E() {
                        n || (n = true, p())
                    }
                    P.document.addEventListener("DOMContentLoaded", E, (n = false, f)), P.addEventListener("load", E, f)
                })
            }
        },
        kM = function(B, M, I) {
            if (3 == B.length) {
                for (I = 0; 3 > I; I++) M[I] += B[I];
                for (I = (B = [13, 8, 13, 12, 16, 5, 3, 10, 15], 0); 9 > I; I++) M[3](M, I % 3, B[I])
            }
        },
        bm = function(B, M, I) {
            if (M = typeof B, "object" == M)
                if (B) {
                    if (B instanceof Array) return "array";
                    if (B instanceof Object) return M;
                    if ("[object Window]" == (I = Object.prototype.toString.call(B), I)) return "object";
                    if ("[object Array]" == I || "number" == typeof B.length && "undefined" != typeof B.splice && "undefined" != typeof B.propertyIsEnumerable && !B.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == I || "undefined" != typeof B.call && "undefined" != typeof B.propertyIsEnumerable && !B.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == M && "undefined" == typeof B.call) return "object";
            return M
        },
        HS = function(B, M, I, K, r, p) {
            function n() {
                if (B.g == B) {
                    if (B.L) {
                        var E = [h, K, M, void 0, r, p, arguments];
                        if (2 == I) var U = G(false, B, (C(B, E), false));
                        else if (1 == I) {
                            var c = !B.S.length;
                            C(B, E), c && G(false, B, false)
                        } else U = TP(B, E);
                        return U
                    }
                    r && p && r.removeEventListener(p, n, f)
                }
            }
            return n
        },
        Sj = function(B, M, I, K, r, p, n, E) {
            return (p = X[M.N]((K = [90, -16, -(E = B & 7, 75), -(n = y3, 71), 41, 45, K, -100, 22, -83], M.g1)), p[M.N] = function(U) {
                E += 6 + 7 * (r = U, B), E &= 7
            }, p).concat = function(U) {
                return (r = (U = (U = I % 16 + 1, -2640 * r - U * r - -528 * I * r + 5 * I * I * U + (n() | 0) * U - 165 * I * I * r) + 33 * r * r + K[E + 35 & 7] * I * U + E, void 0), U = K[U], K)[(E + 21 & 7) + (B & 2)] = U, K[E + (B & 2)] = -16, U
            }, p
        },
        qF = function(B, M, I) {
            return I = X[M.N](M.TA), I[M.N] = function() {
                return B
            }, I.concat = function(K) {
                B = K
            }, I
        },
        l = function(B, M, I) {
            if (479 == B || 236 == B) M.L[B] ? M.L[B].concat(I) : M.L[B] = qF(I, M);
            else {
                if (M.X && 333 != B) return;
                28 == B || 115 == B || 229 == B || 107 == B || 133 == B ? M.L[B] || (M.L[B] = Sj(30, M, B, I)) : M.L[B] = Sj(137, M, B, I)
            }
            333 == B && (M.Y = L(false, M, 32), M.U = void 0)
        },
        ej = function(B, M, I, K, r) {
            for (r = (M.TA = ((M.U_ = M[d], M).a7 = (M.BT = xM, Q3), M.g1 = jj(M.N, {get: function() {
                        return this.concat()
                    }
                }), X)[M.N](M.g1, {
                    value: {
                        value: {}
                    }
                }), []), K = 0; 128 > K; K++) r[K] = String.fromCharCode(K);
            G((C(M, (C(M, (C((l(185, (N(410, (l(28, M, [160, 0, (N(0, function(p, n, E) {
                y(false, p, n, true) || (n = Y(p), E = Y(p), l(E, p, function(U) {
                    return eval(U)
                }(J6(v(p.g, n)))))
            }, (N(405, (N(97, function(p, n, E, U, c, e, k, T, F, W, x, H) {
                function w(Q, t) {
                    for (; c < Q;) k |= R(p) << c, c += 8;
                    return k >>= (t = (c -= Q, k & (1 << Q) - 1), Q), t
                }
                for (F = (T = (W = (e = ((k = (U = Y(p), c = 0), w(3)) | 0) + 1, w)(5), []), H = 0); F < W; F++) E = w(1), T.push(E), H += E ? 0 : 1;
                for (x = (F = (H = ((H | 0) - 1).toString(2).length, 0), []); F < W; F++) T[F] || (x[F] = w(H));
                for (H = 0; H < W; H++) T[H] && (x[H] = Y(p));
                for (n = []; e--;) n.push(v(p, Y(p)));
                N(U, function(Q, t, z, A, cS) {
                    for (t = 0, z = [], cS = []; t < W; t++) {
                        if (A = x[t], !T[t]) {
                            for (; A >= z.length;) z.push(Y(Q));
                            A = z[A]
                        }
                        cS.push(A)
                    }
                    Q.B = (Q.V = qF(n.slice(), Q), qF(cS, Q))
                }, p)
            }, (l((N(53, (N(75, (N((M.ZP = (N(85, (l((N(480, function(p, n, E, U) {
                l((E = (n = (U = Y((n = (E = Y(p), Y)(p), p)), v)(p, n), v(p, E) == n), U), p, +E)
            }, ((N(124, (l(115, M, (((N(247, (N(286, function(p, n, E, U) {
                if (E = p.I7.pop()) {
                    for (U = R(p); 0 < U; U--) n = Y(p), E[n] = p.L[n];
                    E[253] = p.L[E[107] = p.L[107], 253], p.L = E
                } else l(479, p, p.i)
            }, (l(133, M, (N(27, function(p, n, E, U) {
                (E = (U = (E = Y(p), Y)(p), n = Y(p), v(p, E)), U = v(p, U), l)(n, p, E in U | 0)
            }, (l(492, M, (N(338, (N(149, function(p) {
                rJ(p, 4)
            }, ((N(80, function(p) {
                vS(3, p)
            }, (N(143, (l(107, (N(90, function(p, n, E, U, c, e) {
                if (!y(true, p, n, true)) {
                    if (p = v((U = (c = (n = v((E = Y((n = Y((c = (U = Y(p), Y)(p), p)), p)), p), n), v(p, c)), v)(p, U), p), E), "object" == bm(U)) {
                        for (e in E = [], U) E.push(e);
                        U = E
                    }
                    for (n = 0 < n ? n : 1, e = U.length, E = 0; E < e; E += n) c(U.slice(E, (E | 0) + (n | 0)), p)
                }
            }, (N(280, function(p, n, E, U) {
                U = v(p, (n = Y((U = Y(p), p)), U)), E = v(p, n), l(n, p, E + U)
            }, (l(367, M, ((N((l(253, (N((N(453, function() {}, (N(210, function(p, n, E, U) {
                (U = (E = Y(p), n = Y(p), Y(p)), p.g) == p && (U = v(p, U), n = v(p, n), v(p, E)[n] = U, 333 == E && (p.U = void 0, 2 == n && (p.Y = L(false, p, 32), p.U = void 0)))
            }, (N(220, function(p, n, E, U) {
                n = v((E = v(p, (U = (n = (E = Y(p), Y(p)), Y(p)), E)), p), n), l(U, p, E[n])
            }, (N(186, function(p, n) {
                (n = v(p, Y(p)), Uw)(n, p.g)
            }, (l(236, M, ((M.mp = (M.K = 25, (M.F = 0, M.B = (M.Z = (K = window.performance || {}, 0), M.lH = (M.h = void 0, M.O = 8001, (M.D = 0, M.P = false, M).G = (M.I7 = [], 0), M.U = (M.H = [], void 0), M.A = 0, M.S = [], M.V6 = (M.I = void 0, function(p) {
                this.g = p
            }), (M.d1 = !(M.X = false, 1), M).u = (M.s = (M.R = void 0, M.V = void 0, M.v = null, M.j = (M.Y = void 0, []), []), 1), M.i = 0, M.L = [], 0), void 0), M).g = M, K.timeOrigin) || (K.timing || {}).navigationStart || 0, l)(479, M, 0), 0)), M)), M)), l(67, M, {}), M)), M)), 202), function(p, n, E, U, c) {
                for (n = (c = NF((U = Y(p), p)), E = 0, []); E < c; E++) n.push(R(p));
                l(U, p, n)
            }, M), M), 2048), 510), function(p, n, E) {
                l((n = bm((n = v(p, (n = Y(p), E = Y(p), n)), n)), E), p, n)
            }, M), N)(318, function(p) {
                WS(p, 4)
            }, M), 0)), M)), M)), M), []), function(p, n, E, U, c, e, k) {
                for (U = (n = (k = v((c = (e = NF((E = Y(p), p)), ""), p), 98), k.length), 0); e--;) U = ((U | 0) + (NF(p) | 0)) % n, c += r[k[U]];
                l(E, p, c)
            }), M), M)), N)(436, function(p, n) {
                (p = v((n = Y(p), p.g), n), p[0]).removeEventListener(p[1], p[2], f)
            }, M), M.Ae = 0, M)), function(p, n, E, U, c) {
                l((n = v(p, (E = (n = (c = (E = (U = Y(p), Y(p)), Y(p)), Y(p)), c = v(p, c), v)(p, E), n)), U), p, HS(p, c, n, E))
            }), M), 971)), M)), [0, 0, 0])), M)), function(p, n, E, U, c, e) {
                y(false, p, n, true) || (e = t6(p.g), U = e.po, c = e.C, n = e.Lo, e = e.J, E = e.length, U = 0 == E ? new U[c] : 1 == E ? new U[c](e[0]) : 2 == E ? new U[c](e[0], e[1]) : 3 == E ? new U[c](e[0], e[1], e[2]) : 4 == E ? new U[c](e[0], e[1], e[2], e[3]) : 2(), l(n, p, U))
            }), M), l)(9, M, M), M).w1 = 0, Z)(4)), function(p, n, E, U) {
                n = (E = (U = Y(p), R(p)), Y(p)), l(n, p, v(p, U) >>> E)
            }), M), N)(14, function(p, n, E) {
                n = v(p, (E = 0 != v((n = (E = Y(p), Y(p)), p), E), n)), E && l(479, p, n)
            }, M), M)), 229), M, []), function(p) {
                vS(4, p)
            }), M), 0), 264), function(p, n, E, U) {
                !y(false, p, n, true) && (n = t6(p), E = n.C, U = n.po, p.g == p || E == p.V6 && U == p) && (l(n.Lo, p, E.apply(U, n.J)), p.A = p.T())
            }, M), function(p, n, E) {
                l((n = Y(p), E = Y(p), E), p, "" + v(p, n))
            }), M), function(p) {
                rJ(p, 1)
            }), M), 371), M, 0), M)), function(p, n, E, U, c) {
                (n = v(p, (c = v(p, (E = v(p, (U = (E = (n = Y((U = Y(p), c = Y(p), p)), Y(p)), v(p.g, U)), E)), c)), n)), 0) !== U && (n = HS(p, E, 1, n, U, c), U.addEventListener(c, n, f), l(367, p, [U, c, n]))
            }), M), M)), 0)]), function(p, n, E, U) {
                l((U = Y((E = (n = Y(p), Y(p)), p)), U), p, v(p, n) || v(p, E))
            }), M), M), P), M), [Ew]), [O, B])), [mp, I])), true), M, true)
        },
        a = function(B, M, I, K) {
            for (I = (K = (M | 0) - 1, []); 0 <= K; K--) I[(M | 0) - 1 - (K | 0)] = B >> 8 * K & 255;
            return I
        },
        t6 = function(B, M, I, K, r, p) {
            for (p = (r = Y((M = (I = (K = B[gJ] || {}, Y)(B), K.Lo = Y(B), K.J = [], B.g) == B ? (R(B) | 0) - 1 : 1, B)), 0); p < M; p++) K.J.push(Y(B));
            for (K.po = v(B, r), K.C = v(B, I); M--;) K.J[M] = v(B, K.J[M]);
            return K
        },
        P = this || self,
        J, G = function(B, M, I, K, r, p) {
            if (M.S.length) {
                M.P = (M.d1 = (M.P && 0(), B), true);
                try {
                    p = M.T(), M.Z = p, M.A = p, M.h = 0, K = ae(B, M), r = M.T() - M.Z, M.D += r, r < (I ? 0 : 10) || 0 >= M.K-- || (r = Math.floor(r), M.j.push(254 >= r ? r : 254))
                } finally {
                    M.P = false
                }
                return K
            }
        },
        D, Xm = function(B, M, I, K) {
            return v((l(479, (pT((K = v(M, 479), M.s && K < M.i ? (l(479, M, M.i), Uw(B, M)) : l(479, M, B), I), M), M), K), M), 67)
        },
        L = function(B, M, I, K, r, p, n, E, U, c, e, k, T, F) {
            if ((c = v(M, 479), c) >= M.i) throw [b, 31];
            for (E = (r = (U = 0, M.U_).length, F = I, c); 0 < F;) n = E >> 3, K = E % 8, T = 8 - (K | 0), T = T < F ? T : F, k = M.s[n], B && (e = M, e.U != E >> 6 && (e.U = E >> 6, p = v(e, 333), e.R = Fm(e.U, [0, 0, p[1], p[2]], e.Y)), k ^= M.R[n & r]), U |= (k >> 8 - (K | 0) - (T | 0) & (1 << T) - 1) << (F | 0) - (T | 0), E += T, F -= T;
            return l(479, (B = U, M), (c | 0) + (I | 0)), B
        },
        Z = function(B, M) {
            for (M = []; B--;) M.push(255 * Math.random() | 0);
            return M
        },
        WS = function(B, M, I, K) {
            for (I = Y(B), K = 0; 0 < M; M--) K = K << 8 | R(B);
            l(I, B, K)
        },
        MF = function(B, M) {
            return M = M.create().shift(), B.V.create().length || B.B.create().length || (B.V = void 0, B.B = void 0), M
        },
        sw = function(B, M, I, K, r) {
            for (K = (B = B.replace(/\r\n/g, "\n"), I = [], M = 0); K < B.length; K++) r = B.charCodeAt(K), 128 > r ? I[M++] = r : (2048 > r ? I[M++] = r >> 6 | 192 : (55296 == (r & 64512) && K + 1 < B.length && 56320 == (B.charCodeAt(K + 1) & 64512) ? (r = 65536 + ((r & 1023) << 10) + (B.charCodeAt(++K) & 1023), I[M++] = r >> 18 | 240, I[M++] = r >> 12 & 63 | 128) : I[M++] = r >> 12 | 224, I[M++] = r >> 6 & 63 | 128), I[M++] = r & 63 | 128);
            return I
        },
        NF = function(B, M) {
            return (M = R(B), M) & 128 && (M = M & 127 | R(B) << 7), M
        },
        ae = function(B, M, I, K) {
            for (; M.S.length;) {
                I = (M.v = null, M.S).pop();
                try {
                    K = TP(M, I)
                } catch (r) {
                    S(M, r)
                }
                if (B && M.v) {
                    B = M.v, B(function() {
                        G(true, M, true)
                    });
                    break
                }
            }
            return K
        },
        q = P.requestIdleCallback ? function(B) {
            requestIdleCallback(function() {
                B()
            }, {
                timeout: 4
            })
        } : P.setImmediate ? function(B) {
            setImmediate(B)
        } : function(B) {
            setTimeout(B, 0)
        },
        LT = function(B, M) {
            (M.push(B[0] << 24 | B[1] << 16 | B[2] << 8 | B[3]), M.push(B[4] << 24 | B[5] << 16 | B[6] << 8 | B[7]), M).push(B[8] << 24 | B[9] << 16 | B[10] << 8 | B[11])
        },
        wJ = function(B, M, I, K) {
            try {
                K = B[((M | 0) + 2) % 3], B[M] = (B[M] | 0) - (B[((M | 0) + 1) % 3] | 0) - (K | 0) ^ (1 == M ? K << I : K >>> I)
            } catch (r) {
                throw r;
            }
        },
        C = function(B, M) {
            B.S.splice(0, 0, M)
        },
        Fm = function(B, M, I, K, r) {
            for (M = M[K = M[3] | 0, 2] | 0, r = 0; 14 > r; r++) B = B >>> 8 | B << 24, B += I | 0, I = I << 3 | I >>> 29, B ^= M + 3462, I ^= B, K = K >>> 8 | K << 24, K += M | 0, K ^= r + 3462, M = M << 3 | M >>> 29, M ^= K;
            return [I >>> 24 & 255, I >>> 16 & 255, I >>> 8 & 255, I >>> 0 & 255, B >>> 24 & 255, B >>> 16 & 255, B >>> 8 & 255, B >>> 0 & 255]
        },
        gJ = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        d = [],
        BS = [],
        mp = (u.prototype.Nh = (u.prototype.W = "toString", !(u.prototype.GA = (u.prototype.y6 = void 0, void 0), 1)), []),
        h = [],
        b = {},
        O = [],
        V = [],
        Ew = [],
        nT = [],
        X = ((((D = ((LT, Z, function() {})(wJ), kM, u).prototype, D.Yb = function(B, M, I) {
            return B ^ ((M = (M ^= M << 13, M ^= M >> 17, (M ^ M << 5) & I)) || (M = 1), M)
        }, D).cT = function(B, M, I, K, r) {
            for (K = r = 0; K < B.length; K++) r += B.charCodeAt(K), r += r << 10, r ^= r >> 6;
            return (B = (r += r << 3, r ^= r >> 11, r + (r << 15)) >>> 0, r = new Number(B & (1 << M) - 1), r)[0] = (B >>> M) % I, r
        }, D.o = function(B, M, I, K, r) {
            if ((I = "array" === bm(I) ? I : [I], this).I) B(this.I);
            else try {
                r = [], K = !this.S.length, C(this, [V, r, I]), C(this, [d, B, r]), M && !K || G(M, this, true)
            } catch (p) {
                S(this, p), B(this.I)
            }
        }, D).Je = function() {
            return Math.floor(this.T())
        }, u.prototype.N = "create", D.T = (window.performance || {}).now ? function() {
            return this.mp + window.performance.now()
        } : function() {
            return +new Date
        }, D.vT = function() {
            return Math.floor(this.D + (this.T() - this.Z))
        }, D).s_ = function(B, M, I, K, r, p) {
            for (p = [], I = 0, r = 0; r < B.length; r++)
                for (I += M, K = K << M | B[r]; 7 < I;) I -= 8, p.push(K >> I & 255);
            return p
        }, b.constructor),
        y3 = void 0;
    u.prototype.l = function(B, M) {
        return y3 = (M = {}, function() {
                return B == M ? 80 : 117
            }), B = {},
            function(I, K, r, p, n, E, U, c, e, k, T, F, W, x, H) {
                W = B, B = M;
                try {
                    if (c = I[0], c == O) {
                        p = I[1];
                        try {
                            for (F = (T = [], n = atob(p), K = 0, 0); F < n.length; F++) k = n.charCodeAt(F), 255 < k && (T[K++] = k & 255, k >>= 8), T[K++] = k;
                            l((this.i = (this.s = T, this.s.length << 3), 333), this, [0, 0, 0])
                        } catch (w) {
                            m(w, this, 17);
                            return
                        }
                        pT(8001, this)
                    } else if (c == V) I[1].push(v(this, 229).length, v(this, 115).length, v(this, 28).length, v(this, 253)), l(67, this, I[2]), this.L[381] && Xm(v(this, 381), this, 8001);
                    else {
                        if (c == d) {
                            e = (H = a((v((T = I[2], this), 28).length | 0) + 2, 2), this).g, this.g = this;
                            try {
                                E = v(this, 107), 0 < E.length && g(a(E.length, 2).concat(E), this, 28, 10), g(a(this.u, 1), this, 28, 109), g(a(this[d].length, 1), this, 28), n = 0, n += v(this, 371) & 2047, n -= (v(this, 28).length | 0) + 5, x = v(this, 115), 4 < x.length && (n -= (x.length | 0) + 3), 0 < n && g(a(n, 2).concat(Z(n)), this, 28, 15), 4 < x.length && g(a(x.length, 2).concat(x), this, 28, 156)
                            } finally {
                                this.g = e
                            }
                            if (r = (F = Z(2).concat(v(this, 28)), F[1] = F[0] ^ 6, F[3] = F[1] ^ H[0], F[4] = F[1] ^ H[1], this).S6(F)) r = "!" + r;
                            else
                                for (n = 0, r = ""; n < F.length; n++) U = F[n][this.W](16), 1 == U.length && (U = "0" + U), r += U;
                            return l(253, this, (v((v(this, ((K = r, v)(this, 229).length = T.shift(), 115)).length = T.shift(), this), 28).length = T.shift(), T.shift())), K
                        }
                        if (c == nT) Xm(I[1], this, I[2]);
                        else if (c == h) return Xm(I[1], this, 8001)
                    }
                } finally {
                    B = W
                }
            }
    }();
    var xM, Q3 = (((u.prototype[mp] = [0, 0, 1, 1, 0, 1, 1], u.prototype.PT = 0, u).prototype.bH = 0, u).prototype.S6 = function(B, M, I, K) {
            if (I = window.btoa) {
                for (M = 0, K = ""; M < B.length; M += 8192) K += String.fromCharCode.apply(null, B.slice(M, M + 8192));
                B = I(K).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
            } else B = void 0;
            return B
        }, /./),
        PS = O.pop.bind(u.prototype[V]),
        J6 = (xM = jj(u.prototype.N, (Q3[u.prototype.W] = PS, {get: PS
        })), u.prototype.Mh = void 0, function(B, M) {
            return (M = YM()) && 1 === B.eval(M.createScript("1")) ? function(I) {
                return M.createScript(I)
            } : function(I) {
                return "" + I
            }
        })(P);
    (J = P.botguard || (P.botguard = {}), 40) < J.m || (J.m = 41, J.bg = $M, J.a = im), J.TBf_ = function(B, M, I) {
        return I = new u(M, B), [function(K) {
            return lm(I, K)
        }]
    };
}).call(this);
                                    

#2 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 46803f53adbea35f28f34cfbbccddebf6ae29454b5d15cde348e4c577386337d

                                        0,
function(p) {
    WS(p, 1)
}
                                    

#3 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 973d9bb2938645d67a00f9ca20209eea3bbe8b556d0b25d5caf313f1644ad067

                                        0,
function(p) {
    WS(p, 2)
}
                                    

#4 JavaScript::Eval (size: 15544, repeated: 1) - SHA256: 785368f80392fac2588fe98c4a61181ce777d15a35bd5572d7740f4124fe8f65

                                        /* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var I = function(M) {
            return M
        },
        n = function(M, B) {
            if ((M = (B = K.trustedTypes, null), !B) || !B.createPolicy) return M;
            try {
                M = B.createPolicy("bg", {
                    createHTML: I,
                    createScript: I,
                    createScriptURL: I
                })
            } catch (p) {
                K.console && K.console.error(p.message)
            }
            return M
        },
        K = this || self;
    (0, eval)(function(M, B) {
        return (B = n()) && 1 === M.eval(B.createScript("1")) ? function(p) {
            return B.createScript(p)
        } : function(p) {
            return "" + p
        }
    }(K)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var pT=function(B,M,I,K,r,p){if(!M.I){M.G++;try{for(r=(I=0,void 0),K=M.i;--B;)try{if((p=void 0,M).V)r=MF(M,M.V);else{if((I=v(M,479),I)>=K)break;r=(p=(l(236,M,I),Y)(M),v(M,p))}y(false,M,(r&&r[BS]&2048?r(M,B):m([b,21,p],M,0),B),false)}catch(n){v(M,492)?m(n,M,22):l(492,M,n)}if(!B){if(M.Nh){pT(136739882349,(M.G--,M));return}m([b,33],M,0)}}catch(n){try{m(n,M,22)}catch(E){S(M,E)}}M.G--}},$M=function(B,M,I,K){function r(){}return K=void 0,I=im(B,function(p){r&&(M&&q(M),K=p,r(),r=void 0)},!!M)[0],{invoke:function(p,n,E,U){function c(){K(function(e){q(function(){p(e)})},E)}if(!n)return n=I(E),p&&p(n),n;K?c():(U=r,r=function(){q((U(),c))})}}},Ie=function(B){return B},im=function(B,M,I,K){return(K=J[B.substring(0,3)+"_"])?K(B.substring(3),M,I):KT(B,M)},y=function(B,M,I,K,r,p,n,E,U){if(M.u+=(M.g=(r=(p=(U=0<(K||M.h++,M.F)&&M.P&&M.d1&&1>=M.G&&!M.V&&!M.v&&(!K||1<M.O-I)&&0==document.hidden,n=4==M.h)||U?M.T():M.A,E=p-M.A,E)>>14,M.Y&&(M.Y^=r*(E<<2)),r)||M.g,r),n||U)M.A=p,M.h=0;if(!U||p-M.Z<M.F-(B?255:K?5:2))return false;return((B=v(M,(M.O=I,K)?236:479),l(479,M,M.i),M).S.push([nT,B,K?I+1:I]),M).v=q,true},N=function(B,M,I){(l(B,I,M),M)[Ew]=2796},rJ=function(B,M,I,K){g(a(v(B,(K=(I=Y(B),Y(B)),I)),M),B,K)},Uw=function(B,M){l(479,((M.I7.push(M.L.slice()),M.L)[479]=void 0,M),B)},jj=function(B,M){return X[B](X.prototype,{parent:M,document:M,prototype:M,stack:M,splice:M,floor:M,length:M,replace:M,console:M,call:M,propertyIsEnumerable:M,pop:M})},vS=function(B,M,I,K,r){((K=v(M,(r=Y((K=(I=B&3,B&=4,Y(M)),M)),K)),B)&&(K=sw(""+K)),I&&g(a(K.length,2),M,r),g)(K,M,r)},Y=function(B,M){if(B.V)return MF(B,B.B);return M=L(true,B,8),M&128&&(M^=128,B=L(true,B,2),M=(M<<2)+(B|0)),M},KT=function(B,M){return M(function(I){I(B)}),[function(){return B}]},lm=function(B,M,I){return B.o(function(K){I=K},false,M),I},S=function(B,M){B.I=((B.I?B.I+"~":"E:")+M.message+":"+M.stack).slice(0,2048)},YM=function(B,M){if((B=(M=null,P.trustedTypes),!B)||!B.createPolicy)return M;try{M=B.createPolicy("bg",{createHTML:Ie,createScript:Ie,createScriptURL:Ie})}catch(I){P.console&&P.console.error(I.message)}return M},m=function(B,M,I,K,r,p){if(!M.X){if(B=v(M,(0==(r=v(M,((K=void 0,B&&B[0]===b)&&(I=B[1],K=B[2],B=void 0),107)),r.length)&&(p=v(M,236)>>3,r.push(I,p>>8&255,p&255),void 0!=K&&r.push(K&255)),I="",B&&(B.message&&(I+=B.message),B.stack&&(I+=":"+B.stack)),253)),3<B){K=(I=(B-=(I=I.slice(0,(B|0)-3),(I.length|0)+3),sw)(I),M).g,M.g=M;try{g(a(I.length,2).concat(I),M,115,9)}finally{M.g=K}}l(253,M,B)}},v=function(B,M){if(void 0===(B=B.L[M],B))throw[b,30,M];if(B.value)return B.create();return(B.create(5*M*M+-16*M+80),B).prototype},u=function(B,M,I){I=this;try{ej(M,this,B)}catch(K){S(this,K),B(function(r){r(I.I)})}},f={passive:true,capture:true},g=function(B,M,I,K,r,p){if(M.g==M)for(r=v(M,I),115==I?(I=function(n,E,U,c){if((U=((E=r.length,E)|0)-4>>3,r.iH)!=U){U=(U<<3)-(c=[0,0,p[r.iH=U,1],p[2]],4);try{r.kb=Fm(oe(r,(U|0)+4),c,oe(r,U))}catch(e){throw e;}}r.push(r.kb[E&7]^n)},p=v(M,133)):I=function(n){r.push(n)},K&&I(K&255),M=B.length,K=0;K<M;K++)I(B[K])},oe=function(B,M){return B[M]<<24|B[(M|0)+1]<<16|B[(M|0)+2]<<8|B[(M|0)+3]},R=function(B){return B.V?MF(B,B.B):L(true,B,8)},TP=function(B,M,I,K,r){if((K=M[0],K)==V)B.K=25,B.l(M);else if(K==d){I=M[1];try{r=B.I||B.l(M)}catch(p){S(B,p),r=B.I}I(r)}else if(K==nT)B.l(M);else if(K==O)B.l(M);else if(K==mp){try{for(r=0;r<B.H.length;r++)try{I=B.H[r],I[0][I[1]](I[2])}catch(p){}}catch(p){}(0,M[1])((B.H=[],function(p,n){B.o(p,true,n)}),function(p){(C(B,(p=!B.S.length,[BS])),p)&&G(true,B,false)})}else{if(K==h)return r=M[2],l(452,B,M[6]),l(67,B,r),B.l(M);K==BS?(B.s=[],B.L=null,B.j=[]):K==Ew&&"loading"===P.document.readyState&&(B.v=function(p,n){function E(){n||(n=true,p())}P.document.addEventListener("DOMContentLoaded",E,(n=false,f)),P.addEventListener("load",E,f)})}},kM=function(B,M,I){if(3==B.length){for(I=0;3>I;I++)M[I]+=B[I];for(I=(B=[13,8,13,12,16,5,3,10,15],0);9>I;I++)M[3](M,I%3,B[I])}},bm=function(B,M,I){if(M=typeof B,"object"==M)if(B){if(B instanceof Array)return"array";if(B instanceof Object)return M;if("[object Window]"==(I=Object.prototype.toString.call(B),I))return"object";if("[object Array]"==I||"number"==typeof B.length&&"undefined"!=typeof B.splice&&"undefined"!=typeof B.propertyIsEnumerable&&!B.propertyIsEnumerable("splice"))return"array";if("[object Function]"==I||"undefined"!=typeof B.call&&"undefined"!=typeof B.propertyIsEnumerable&&!B.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==M&&"undefined"==typeof B.call)return"object";return M},HS=function(B,M,I,K,r,p){function n(){if(B.g==B){if(B.L){var E=[h,K,M,void 0,r,p,arguments];if(2==I)var U=G(false,B,(C(B,E),false));else if(1==I){var c=!B.S.length;C(B,E),c&&G(false,B,false)}else U=TP(B,E);return U}r&&p&&r.removeEventListener(p,n,f)}}return n},Sj=function(B,M,I,K,r,p,n,E){return(p=X[M.N]((K=[90,-16,-(E=B&7,75),-(n=y3,71),41,45,K,-100,22,-83],M.g1)),p[M.N]=function(U){E+=6+7*(r=U,B),E&=7},p).concat=function(U){return(r=(U=(U=I%16+1,-2640*r-U*r- -528*I*r+5*I*I*U+(n()|0)*U-165*I*I*r)+33*r*r+K[E+35&7]*I*U+E,void 0),U=K[U],K)[(E+21&7)+(B&2)]=U,K[E+(B&2)]=-16,U},p},qF=function(B,M,I){return I=X[M.N](M.TA),I[M.N]=function(){return B},I.concat=function(K){B=K},I},l=function(B,M,I){if(479==B||236==B)M.L[B]?M.L[B].concat(I):M.L[B]=qF(I,M);else{if(M.X&&333!=B)return;28==B||115==B||229==B||107==B||133==B?M.L[B]||(M.L[B]=Sj(30,M,B,I)):M.L[B]=Sj(137,M,B,I)}333==B&&(M.Y=L(false,M,32),M.U=void 0)},ej=function(B,M,I,K,r){for(r=(M.TA=((M.U_=M[d],M).a7=(M.BT=xM,Q3),M.g1=jj(M.N,{get:function(){return this.concat()}}),X)[M.N](M.g1,{value:{value:{}}}),[]),K=0;128>K;K++)r[K]=String.fromCharCode(K);G((C(M,(C(M,(C((l(185,(N(410,(l(28,M,[160,0,(N(0,function(p,n,E){y(false,p,n,true)||(n=Y(p),E=Y(p),l(E,p,function(U){return eval(U)}(J6(v(p.g,n)))))},(N(405,(N(97,function(p,n,E,U,c,e,k,T,F,W,x,H){function w(Q,t){for(;c<Q;)k|=R(p)<<c,c+=8;return k>>=(t=(c-=Q,k&(1<<Q)-1),Q),t}for(F=(T=(W=(e=((k=(U=Y(p),c=0),w(3))|0)+1,w)(5),[]),H=0);F<W;F++)E=w(1),T.push(E),H+=E?0:1;for(x=(F=(H=((H|0)-1).toString(2).length,0),[]);F<W;F++)T[F]||(x[F]=w(H));for(H=0;H<W;H++)T[H]&&(x[H]=Y(p));for(n=[];e--;)n.push(v(p,Y(p)));N(U,function(Q,t,z,A,cS){for(t=0,z=[],cS=[];t<W;t++){if(A=x[t],!T[t]){for(;A>=z.length;)z.push(Y(Q));A=z[A]}cS.push(A)}Q.B=(Q.V=qF(n.slice(),Q),qF(cS,Q))},p)},(l((N(53,(N(75,(N((M.ZP=(N(85,(l((N(480,function(p,n,E,U){l((E=(n=(U=Y((n=(E=Y(p),Y)(p),p)),v)(p,n),v(p,E)==n),U),p,+E)},((N(124,(l(115,M,(((N(247,(N(286,function(p,n,E,U){if(E=p.I7.pop()){for(U=R(p);0<U;U--)n=Y(p),E[n]=p.L[n];E[253]=p.L[E[107]=p.L[107],253],p.L=E}else l(479,p,p.i)},(l(133,M,(N(27,function(p,n,E,U){(E=(U=(E=Y(p),Y)(p),n=Y(p),v(p,E)),U=v(p,U),l)(n,p,E in U|0)},(l(492,M,(N(338,(N(149,function(p){rJ(p,4)},((N(80,function(p){vS(3,p)},(N(143,(l(107,(N(90,function(p,n,E,U,c,e){if(!y(true,p,n,true)){if(p=v((U=(c=(n=v((E=Y((n=Y((c=(U=Y(p),Y)(p),p)),p)),p),n),v(p,c)),v)(p,U),p),E),"object"==bm(U)){for(e in E=[],U)E.push(e);U=E}for(n=0<n?n:1,e=U.length,E=0;E<e;E+=n)c(U.slice(E,(E|0)+(n|0)),p)}},(N(280,function(p,n,E,U){U=v(p,(n=Y((U=Y(p),p)),U)),E=v(p,n),l(n,p,E+U)},(l(367,M,((N((l(253,(N((N(453,function(){},(N(210,function(p,n,E,U){(U=(E=Y(p),n=Y(p),Y(p)),p.g)==p&&(U=v(p,U),n=v(p,n),v(p,E)[n]=U,333==E&&(p.U=void 0,2==n&&(p.Y=L(false,p,32),p.U=void 0)))},(N(220,function(p,n,E,U){n=v((E=v(p,(U=(n=(E=Y(p),Y(p)),Y(p)),E)),p),n),l(U,p,E[n])},(N(186,function(p,n){(n=v(p,Y(p)),Uw)(n,p.g)},(l(236,M,((M.mp=(M.K=25,(M.F=0,M.B=(M.Z=(K=window.performance||{},0),M.lH=(M.h=void 0,M.O=8001,(M.D=0,M.P=false,M).G=(M.I7=[],0),M.U=(M.H=[],void 0),M.A=0,M.S=[],M.V6=(M.I=void 0,function(p){this.g=p}),(M.d1=!(M.X=false,1),M).u=(M.s=(M.R=void 0,M.V=void 0,M.v=null,M.j=(M.Y=void 0,[]),[]),1),M.i=0,M.L=[],0),void 0),M).g=M,K.timeOrigin)||(K.timing||{}).navigationStart||0,l)(479,M,0),0)),M)),M)),l(67,M,{}),M)),M)),202),function(p,n,E,U,c){for(n=(c=NF((U=Y(p),p)),E=0,[]);E<c;E++)n.push(R(p));l(U,p,n)},M),M),2048),510),function(p,n,E){l((n=bm((n=v(p,(n=Y(p),E=Y(p),n)),n)),E),p,n)},M),N)(318,function(p){WS(p,4)},M),0)),M)),M)),M),[]),function(p,n,E,U,c,e,k){for(U=(n=(k=v((c=(e=NF((E=Y(p),p)),""),p),98),k.length),0);e--;)U=((U|0)+(NF(p)|0))%n,c+=r[k[U]];l(E,p,c)}),M),M)),N)(436,function(p,n){(p=v((n=Y(p),p.g),n),p[0]).removeEventListener(p[1],p[2],f)},M),M.Ae=0,M)),function(p,n,E,U,c){l((n=v(p,(E=(n=(c=(E=(U=Y(p),Y(p)),Y(p)),Y(p)),c=v(p,c),v)(p,E),n)),U),p,HS(p,c,n,E))}),M),971)),M)),[0,0,0])),M)),function(p,n,E,U,c,e){y(false,p,n,true)||(e=t6(p.g),U=e.po,c=e.C,n=e.Lo,e=e.J,E=e.length,U=0==E?new U[c]:1==E?new U[c](e[0]):2==E?new U[c](e[0],e[1]):3==E?new U[c](e[0],e[1],e[2]):4==E?new U[c](e[0],e[1],e[2],e[3]):2(),l(n,p,U))}),M),l)(9,M,M),M).w1=0,Z)(4)),function(p,n,E,U){n=(E=(U=Y(p),R(p)),Y(p)),l(n,p,v(p,U)>>>E)}),M),N)(14,function(p,n,E){n=v(p,(E=0!=v((n=(E=Y(p),Y(p)),p),E),n)),E&&l(479,p,n)},M),M)),229),M,[]),function(p){vS(4,p)}),M),0),264),function(p,n,E,U){!y(false,p,n,true)&&(n=t6(p),E=n.C,U=n.po,p.g==p||E==p.V6&&U==p)&&(l(n.Lo,p,E.apply(U,n.J)),p.A=p.T())},M),function(p,n,E){l((n=Y(p),E=Y(p),E),p,""+v(p,n))}),M),function(p){rJ(p,1)}),M),371),M,0),M)),function(p,n,E,U,c){(n=v(p,(c=v(p,(E=v(p,(U=(E=(n=Y((U=Y(p),c=Y(p),p)),Y(p)),v(p.g,U)),E)),c)),n)),0)!==U&&(n=HS(p,E,1,n,U,c),U.addEventListener(c,n,f),l(367,p,[U,c,n]))}),M),M)),0)]),function(p,n,E,U){l((U=Y((E=(n=Y(p),Y(p)),p)),U),p,v(p,n)||v(p,E))}),M),M),P),M),[Ew]),[O,B])),[mp,I])),true),M,true)},a=function(B,M,I,K){for(I=(K=(M|0)-1,[]);0<=K;K--)I[(M|0)-1-(K|0)]=B>>8*K&255;return I},t6=function(B,M,I,K,r,p){for(p=(r=Y((M=(I=(K=B[gJ]||{},Y)(B),K.Lo=Y(B),K.J=[],B.g)==B?(R(B)|0)-1:1,B)),0);p<M;p++)K.J.push(Y(B));for(K.po=v(B,r),K.C=v(B,I);M--;)K.J[M]=v(B,K.J[M]);return K},P=this||self,J,G=function(B,M,I,K,r,p){if(M.S.length){M.P=(M.d1=(M.P&&0(),B),true);try{p=M.T(),M.Z=p,M.A=p,M.h=0,K=ae(B,M),r=M.T()-M.Z,M.D+=r,r<(I?0:10)||0>=M.K--||(r=Math.floor(r),M.j.push(254>=r?r:254))}finally{M.P=false}return K}},D,Xm=function(B,M,I,K){return v((l(479,(pT((K=v(M,479),M.s&&K<M.i?(l(479,M,M.i),Uw(B,M)):l(479,M,B),I),M),M),K),M),67)},L=function(B,M,I,K,r,p,n,E,U,c,e,k,T,F){if((c=v(M,479),c)>=M.i)throw[b,31];for(E=(r=(U=0,M.U_).length,F=I,c);0<F;)n=E>>3,K=E%8,T=8-(K|0),T=T<F?T:F,k=M.s[n],B&&(e=M,e.U!=E>>6&&(e.U=E>>6,p=v(e,333),e.R=Fm(e.U,[0,0,p[1],p[2]],e.Y)),k^=M.R[n&r]),U|=(k>>8-(K|0)-(T|0)&(1<<T)-1)<<(F|0)-(T|0),E+=T,F-=T;return l(479,(B=U,M),(c|0)+(I|0)),B},Z=function(B,M){for(M=[];B--;)M.push(255*Math.random()|0);return M},WS=function(B,M,I,K){for(I=Y(B),K=0;0<M;M--)K=K<<8|R(B);l(I,B,K)},MF=function(B,M){return M=M.create().shift(),B.V.create().length||B.B.create().length||(B.V=void 0,B.B=void 0),M},sw=function(B,M,I,K,r){for(K=(B=B.replace(/\\r\\n/g,"\\n"),I=[],M=0);K<B.length;K++)r=B.charCodeAt(K),128>r?I[M++]=r:(2048>r?I[M++]=r>>6|192:(55296==(r&64512)&&K+1<B.length&&56320==(B.charCodeAt(K+1)&64512)?(r=65536+((r&1023)<<10)+(B.charCodeAt(++K)&1023),I[M++]=r>>18|240,I[M++]=r>>12&63|128):I[M++]=r>>12|224,I[M++]=r>>6&63|128),I[M++]=r&63|128);return I},NF=function(B,M){return(M=R(B),M)&128&&(M=M&127|R(B)<<7),M},ae=function(B,M,I,K){for(;M.S.length;){I=(M.v=null,M.S).pop();try{K=TP(M,I)}catch(r){S(M,r)}if(B&&M.v){B=M.v,B(function(){G(true,M,true)});break}}return K},q=P.requestIdleCallback?function(B){requestIdleCallback(function(){B()},{timeout:4})}:P.setImmediate?function(B){setImmediate(B)}:function(B){setTimeout(B,0)},LT=function(B,M){(M.push(B[0]<<24|B[1]<<16|B[2]<<8|B[3]),M.push(B[4]<<24|B[5]<<16|B[6]<<8|B[7]),M).push(B[8]<<24|B[9]<<16|B[10]<<8|B[11])},wJ=function(B,M,I,K){try{K=B[((M|0)+2)%3],B[M]=(B[M]|0)-(B[((M|0)+1)%3]|0)-(K|0)^(1==M?K<<I:K>>>I)}catch(r){throw r;}},C=function(B,M){B.S.splice(0,0,M)},Fm=function(B,M,I,K,r){for(M=M[K=M[3]|0,2]|0,r=0;14>r;r++)B=B>>>8|B<<24,B+=I|0,I=I<<3|I>>>29,B^=M+3462,I^=B,K=K>>>8|K<<24,K+=M|0,K^=r+3462,M=M<<3|M>>>29,M^=K;return[I>>>24&255,I>>>16&255,I>>>8&255,I>>>0&255,B>>>24&255,B>>>16&255,B>>>8&255,B>>>0&255]},gJ=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),d=[],BS=[],mp=(u.prototype.Nh=(u.prototype.W="toString",!(u.prototype.GA=(u.prototype.y6=void 0,void 0),1)),[]),h=[],b={},O=[],V=[],Ew=[],nT=[],X=((((D=((LT,Z,function(){})(wJ),kM,u).prototype,D.Yb=function(B,M,I){return B^((M=(M^=M<<13,M^=M>>17,(M^M<<5)&I))||(M=1),M)},D).cT=function(B,M,I,K,r){for(K=r=0;K<B.length;K++)r+=B.charCodeAt(K),r+=r<<10,r^=r>>6;return(B=(r+=r<<3,r^=r>>11,r+(r<<15))>>>0,r=new Number(B&(1<<M)-1),r)[0]=(B>>>M)%I,r},D.o=function(B,M,I,K,r){if((I="array"===bm(I)?I:[I],this).I)B(this.I);else try{r=[],K=!this.S.length,C(this,[V,r,I]),C(this,[d,B,r]),M&&!K||G(M,this,true)}catch(p){S(this,p),B(this.I)}},D).Je=function(){return Math.floor(this.T())},u.prototype.N="create",D.T=(window.performance||{}).now?function(){return this.mp+window.performance.now()}:function(){return+new Date},D.vT=function(){return Math.floor(this.D+(this.T()-this.Z))},D).s_=function(B,M,I,K,r,p){for(p=[],I=0,r=0;r<B.length;r++)for(I+=M,K=K<<M|B[r];7<I;)I-=8,p.push(K>>I&255);return p},b.constructor),y3=void 0;u.prototype.l=function(B,M){return y3=(M={},function(){return B==M?80:117}),B={},function(I,K,r,p,n,E,U,c,e,k,T,F,W,x,H){W=B,B=M;try{if(c=I[0],c==O){p=I[1];try{for(F=(T=[],n=atob(p),K=0,0);F<n.length;F++)k=n.charCodeAt(F),255<k&&(T[K++]=k&255,k>>=8),T[K++]=k;l((this.i=(this.s=T,this.s.length<<3),333),this,[0,0,0])}catch(w){m(w,this,17);return}pT(8001,this)}else if(c==V)I[1].push(v(this,229).length,v(this,115).length,v(this,28).length,v(this,253)),l(67,this,I[2]),this.L[381]&&Xm(v(this,381),this,8001);else{if(c==d){e=(H=a((v((T=I[2],this),28).length|0)+2,2),this).g,this.g=this;try{E=v(this,107),0<E.length&&g(a(E.length,2).concat(E),this,28,10),g(a(this.u,1),this,28,109),g(a(this[d].length,1),this,28),n=0,n+=v(this,371)&2047,n-=(v(this,28).length|0)+5,x=v(this,115),4<x.length&&(n-=(x.length|0)+3),0<n&&g(a(n,2).concat(Z(n)),this,28,15),4<x.length&&g(a(x.length,2).concat(x),this,28,156)}finally{this.g=e}if(r=(F=Z(2).concat(v(this,28)),F[1]=F[0]^6,F[3]=F[1]^H[0],F[4]=F[1]^H[1],this).S6(F))r="!"+r;else for(n=0,r="";n<F.length;n++)U=F[n][this.W](16),1==U.length&&(U="0"+U),r+=U;return l(253,this,(v((v(this,((K=r,v)(this,229).length=T.shift(),115)).length=T.shift(),this),28).length=T.shift(),T.shift())),K}if(c==nT)Xm(I[1],this,I[2]);else if(c==h)return Xm(I[1],this,8001)}}finally{B=W}}}();var xM,Q3=(((u.prototype[mp]=[0,0,1,1,0,1,1],u.prototype.PT=0,u).prototype.bH=0,u).prototype.S6=function(B,M,I,K){if(I=window.btoa){for(M=0,K="";M<B.length;M+=8192)K+=String.fromCharCode.apply(null,B.slice(M,M+8192));B=I(K).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else B=void 0;return B},/./),PS=O.pop.bind(u.prototype[V]),J6=(xM=jj(u.prototype.N,(Q3[u.prototype.W]=PS,{get:PS})),u.prototype.Mh=void 0,function(B,M){return(M=YM())&&1===B.eval(M.createScript("1"))?function(I){return M.createScript(I)}:function(I){return""+I}})(P);(J=P.botguard||(P.botguard={}),40)<J.m||(J.m=41,J.bg=$M,J.a=im),J.TBf_=function(B,M,I){return I=new u(M,B),[function(K){return lm(I,K)}]};}).call(this);'));
}).call(this);
                                    

#5 JavaScript::Eval (size: 62, repeated: 1) - SHA256: ac0459c568af29bd816e7904e26a2f614a0d16ee451bbad2e29ef2f5a4eb566c

                                        0,
function(p, n, E) {
    l((n = (n = Y(p), E = Y(p), p.L)[n] && v(p, n), E), p, n)
}
                                    

Executed Writes (11)

#1 JavaScript::Write (size: 96, repeated: 1) - SHA256: 694e64a09eedc49db88af9874d60a500dbf5717aad3895c7d785eb86e909399b

                                        < script src = "https://www.manomav.com/wp-content/themes/manomav//js/jquery.ui.totop.js" > < /script>
                                    

#2 JavaScript::Write (size: 90, repeated: 1) - SHA256: be0ac4016689d5df626670733a3dfaa3aa638603b4d6800023aa8b2a4c8a39aa

                                        < script src = "https://www.manomav.com/wp-content/themes/manomav//js/superfish.js" > < /script>
                                    

#3 JavaScript::Write (size: 85, repeated: 1) - SHA256: 401afd8c45c5f8a736590a0a32b3e51d579d10effae2855759741e5da7c5e6ce

                                        < meta name = "viewport"
content = "width=device-width,initial-scale=1.0,user-scalable=0" >
                                    

#4 JavaScript::Write (size: 96, repeated: 1) - SHA256: d3370614e01351e84b43d5f6855c58c0c1321ada16aa508a16501c48011da980

                                        < script src = "https://www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox.js" > < /script>
                                    

#5 JavaScript::Write (size: 94, repeated: 1) - SHA256: 1b5435dbc1ccccd48422eb5235733c6099fcc3184a81579c371a3219b19802b7

                                        < script src = "https://www.manomav.com/wp-content/themes/manomav//js/jquery.cookie.js" > < /script>
                                    

#6 JavaScript::Write (size: 90, repeated: 1) - SHA256: 8e05006f556aee5d0dc95161324968473632f8aa20804521e78788d2c5ac2d34

                                        < script src = "https://www.manomav.com/wp-content/themes/manomav//js/tmstickup.js" > < /script>
                                    

#7 JavaScript::Write (size: 84, repeated: 1) - SHA256: 210cb59038a1a9713f12f38faa65c4a28fbb835d59349e8afd74a511298b1963

                                        < script src = "https://www.manomav.com/wp-content/themes/manomav//js/wow.js" > < /script>
                                    

#8 JavaScript::Write (size: 102, repeated: 1) - SHA256: 208680c3911b3349b06d5ddf40a4c6a4c91aa353d745952291252f09c04bb033

                                        < script src = "https://www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-media.js" > < /script>
                                    

#9 JavaScript::Write (size: 104, repeated: 1) - SHA256: 229efb2c4ab92bc8987d241068d1b2c01bfa8d0e1e98676e68df45a3ed3a0bf2

                                        < script src = "https://www.manomav.com/wp-content/themes/manomav//js/jquery.fancybox-buttons.js" > < /script>
                                    

#10 JavaScript::Write (size: 98, repeated: 1) - SHA256: ed6b72aa8c730c9c4144c60ce33756648a93d2cd54f079f00547afb62aef0616

                                        < script src = "https://www.manomav.com/wp-content/themes/manomav//js/jquery.easing.1.3.js" > < /script>
                                    

#11 JavaScript::Write (size: 97, repeated: 1) - SHA256: c8243086a963ae6cd202c96119687aab530b2cc223fea0619dc31c6fbd086528

                                        < script src = "https://www.manomav.com/wp-content/themes/manomav//js/jquery.rd-navbar.js" > < /script>
                                    


HTTP Transactions (156)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8214
Expires: Thu, 06 Oct 2022 20:16:28 GMT
Date: Thu, 06 Oct 2022 17:59:34 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 74XVfhoOT2xUv3X_WMnhCPVxfjnQ0YXUfaV7__m5OTA08ebo4I1DHw==
Age: 94336


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2542
Expires: Thu, 06 Oct 2022 18:41:56 GMT
Date: Thu, 06 Oct 2022 17:59:34 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: s/tzFayVCiuvePXxHs1JbwH4721Rsw+QGvU3qPSMDEK2gtlOnTI99X2xR5SXsMcWPWK6jIe1wbM=
x-amz-request-id: 7GQ5ZBJ04J82VMY0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 17:58:50 GMT
age: 44
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 06 Oct 2022 17:59:34 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 06 Oct 2022 17:29:41 GMT
Expires: Thu, 06 Oct 2022 17:53:49 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wU-X315UilrnpOe8NwckDXh5z_AmaJAUzXG11yQPGEDd3O2uudN_EQ==
Age: 1793


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6005
Cache-Control: max-age=143240
Date: Thu, 06 Oct 2022 17:59:35 GMT
Etag: "633e8c9a-1d7"
Expires: Sat, 08 Oct 2022 09:46:55 GMT
Last-Modified: Thu, 06 Oct 2022 08:06:50 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: N7oCYi50zQ3Ez//Kx47Hlw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.41.253.170
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kTRZAvQczLVcwS5nunhEde9V9qg=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7306
Expires: Thu, 06 Oct 2022 20:01:22 GMT
Date: Thu, 06 Oct 2022 17:59:36 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7306
Expires: Thu, 06 Oct 2022 20:01:22 GMT
Date: Thu, 06 Oct 2022 17:59:36 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7306
Expires: Thu, 06 Oct 2022 20:01:22 GMT
Date: Thu, 06 Oct 2022 17:59:36 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7270
x-amzn-requestid: e5d0bb7a-b9d5-49b1-b51c-8db019da641f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQOGEQloAMFjgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa5a-519d91fb0b83920960da479d;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:42:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: l1HGT5ycH36vVojsOPFptRSU1YJFvLbBsgiWJqzRlRIGgm2o5vf6jg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:58:56 GMT
etag: "447cbf348ef10d0136a1811e843c46937defbba1"
age: 72040
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7270
Md5:    e238ccaa3b9fa88476a8514855e8232f
Sha1:   447cbf348ef10d0136a1811e843c46937defbba1
Sha256: 43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11080
x-amzn-requestid: 8fa4d19d-87a5-46c5-96c5-4aec793daad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO7xE5eoAMFQLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84b-5c422c7a168c014f57559037;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: LySueW1si-yWLwecUILV1s57IEV2FdcQ9_pH1Aoe4AYISi7QXXfd3A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:39:28 GMT
age: 73208
etag: "531d9e4ec9078cd2d7376a19fcb287084af36c82"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11080
Md5:    2277f8f2d93b4bc3b05d348343177892
Sha1:   531d9e4ec9078cd2d7376a19fcb287084af36c82
Sha256: 62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7511
x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uG70IAMFjBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: BddSUzh-PKiFmfw2p9gPW-B0qtrXWxCXfee29Pk-wLqN7RO21Yic6g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
age: 73350
etag: "69ad212cb7ae309d4f02019552887135bfae67da"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7511
Md5:    9e520f87cae411cfc2ed1c8a14184385
Sha1:   69ad212cb7ae309d4f02019552887135bfae67da
Sha256: 723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10809
x-amzn-requestid: db4d1d2a-05b8-403e-a7ca-8b8a6a0a4087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQb-HrTIAMFtNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfab2-74f184406a48e42c0ecc4ec9;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: tv80OXQUu13gDuuFESnEnXMuFdNBmGc1y592euL7QnfZW5PwJym9-g==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:53:39 GMT
etag: "8c7ecefe6908387e2128dc849a6ba857991ba0ab"
age: 72357
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10809
Md5:    a508ac9cd743bec987b2a24454418265
Sha1:   8c7ecefe6908387e2128dc849a6ba857991ba0ab
Sha256: afb2c2b51f2ce445ada599068901551beee594b15c152ed7551ab7a8835dde6d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aeOU8fGkf5uHuYZ79k17EzxiFnwm0_z7SeZJElgwECzRyhR2N_SYJA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 03:50:38 GMT
age: 50938
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10158
Md5:    4fc2ddd86450d64d3fb659ab4e78be58
Sha1:   bbe71936b78a8c34d03ab87948dc840b35c6948f
Sha256: 84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4140
x-amzn-requestid: f3cb33c4-26b6-4fd8-9293-dfb42be34600
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZiEZ4IAMFvLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-424459547db8b3d721d75e54;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: q70sezhl0h-lASzUDh5_WQ6KraRa3fWYl_tO0iuE0CpbJ5GeiihgMw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
etag: "26694f34166345ee5693653e0101db6b910e68ba"
age: 73350
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4140
Md5:    dbba56f647bf5989ca51863632bbebfc
Sha1:   26694f34166345ee5693653e0101db6b910e68ba
Sha256: ec5cc38f2a77e8e655aeeb7a376cf882ccb7163e4ef9d1ce4633ab4754e48765
                                        
                                            GET / HTTP/1.1 
Host: manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         92.42.110.125
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
X-Redirect-By: WordPress
Location: https://manomav.com/
Content-Length: 0
Date: Thu, 06 Oct 2022 17:59:37 GMT


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.4 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:19:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10549
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (39791)
Size:   10549
Md5:    3cc7696f4c8caa2b1c7acab0c2ae1515
Sha1:   2df12fe5d820c9c8129c9276e2bb94f9df860331
Sha256: 5ec052aed0f32fed1fc31c9be24e1cd03a7bcdede8ae098af3d1997fdfb51a6a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   848
Md5:    c962ba8e7d42ff9da18392b41dad5151
Sha1:   7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
Sha256: 322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts.css?ver=0.0.1 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 791
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   791
Md5:    70803413c9597ee8c0d1014c24614132
Sha1:   ebcf83176e785a74666e9a6f6237509f11e6dcca
Sha256: fd2994ae20595548eaaf7b3071ced4b3ed29db6d87940a6a1c9672a10ae399e6

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/photo-gallery/css/sumoselect.min.css?ver=3.3.24 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1660
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6794)
Size:   1660
Md5:    9bb930afefcd08578e40d87e6cf74366
Sha1:   c2a096ebbc4a5e7400bb4d4294d5c011eb975a27
Sha256: 5c85203c7d95fbc0a76522a933408c07fe6e362c8094e514ec3c0bcb9e6bbd34
                                        
                                            GET /wp-content/plugins/photo-gallery/css/jquery.mCustomScrollbar.min.css?ver=3.1.5 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3806
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (42839), with no line terminators
Size:   3806
Md5:    0f2a1830a2eb3452fe698134828443d4
Sha1:   4d04d53d82c38785c13e1aa7cf012cb9dbf3db28
Sha256: a037316b9cce9cab96056fd1797693e625fda9cfcd5337f5412b9aa8b6aae3ad

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6791
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (45348), with no line terminators
Size:   6791
Md5:    ac86c46c81a26a9b2dddfaff693e20ed
Sha1:   bcab73993780f26ad845347f3930b629cccbdfc2
Sha256: cdc2f8852d087adb339f2813bb8663c5ef58722ac581ee64b5ea6751a74612b4

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/related-youtube-videos/css/themes.css?ver=5.9.4 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 299
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   299
Md5:    b4b641c8dd35d1a192ac30e5b99e4fed
Sha1:   061d040bb66758a4cc0d23ae1961e1863c02cddc
Sha256: 533d451b0804ee878b1fe48fc359d6e5a6c126f7535453ac3e84ba92bdddfe35

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/service-box/assets/css/font-awesome/css/font-awesome.min.css?ver=5.9.4 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:14:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6657
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   6657
Md5:    5dbbe85d6a3308dceb97d91b740b0f11
Sha1:   3f70abf9963371962665167f98ba52365481496d
Sha256: 751d4fdd16bd33cc9c93bcaadcd316922ca9bbd74cb6a9e1705c8bef4330dabf
                                        
                                            GET /wp-content/plugins/service-box/assets/css/bootstrap-front.css?ver=5.9.4 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:14:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1513
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  assembler source, ASCII text, with very long lines (780)
Size:   1513
Md5:    2450779d95988cbe3c194d0f237670a8
Sha1:   e4af4b0e996b3697247d61f69d22f2273bd2b502
Sha256: f1d88e4d468177db9f7fee176aa747ff09b992e73c4646cac2f3ef1afb584de9
                                        
                                            GET /wp-content/plugins/service-box/assets/css/owl.carousel.min.css?ver=5.9.4 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:14:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1219
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1219
Md5:    ed801a1ee20bd6fd608be655cb07414e
Sha1:   6d6e3bdcd175b935d5344fb88e81a179a950f0c8
Sha256: 70edd720e30cc3723648f94458c7f0a990ddb8736c2400a201f03bc969a0dce1

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/slider-images/Style/Rich-Web-Slider-Widget.css?ver=5.9.4 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:15:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2060
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1332), with CRLF line terminators
Size:   2060
Md5:    f0638c8e827007a1f336d2d6a0322b86
Sha1:   5302f4e9c29b18011f6dc53d15386676c55fad8c
Sha256: 84a8a5ed9f1590af4e0377b5003ab886cb049c639c45b24b9bde37fd2f2863de

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/slider-images/Style/richwebicons.css?ver=5.9.4 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:15:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6633
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (412), with CRLF line terminators
Size:   6633
Md5:    30d7ed83122fd22771242fe54d4d8d5a
Sha1:   2cda87a11934256a1c1d83f6d1a668204a8f87b8
Sha256: 307b245e22943e5e4d6e105a69d3babd867a89f08cad2f94ccd7dd12c58697cc
                                        
                                            GET /wp-content/plugins/recent-facebook-posts/assets/css/default.min.css?ver=2.0.13 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 627
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2339), with no line terminators
Size:   627
Md5:    1a1871d6af0a277a4d7639e3e300fd9e
Sha1:   650e0b90196359669cf8590659b0f7c205375d12
Sha256: 4ad1e09185368fe44a670a5770d413b8665150b0ba206d05c17f93feca54cdce
                                        
                                            GET /wp-content/themes/manomav/genericons/genericons.css?ver=3.2 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16120
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19226), with CRLF line terminators
Size:   16120
Md5:    20f23c9697d6cc3fe3bee8fb8c0a8a68
Sha1:   08f4902584fd5a3048108387833104418e220cd0
Sha256: 5ee3fbfe65bb5c9cea06a44a3962ff4241b33fffa6a8d63ba6abc8b32f9af5dc

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/manomav/style.css?ver=5.9.4 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 575
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (403)
Size:   575
Md5:    ac2e554d3dbf718e78606ede087cc049
Sha1:   01665beced7abf0e74306ffc4988657a98160997
Sha256: 93b8c3c40df3c91b35ab315213170cd3539922538f662b7645281831b0e3ba3c

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/business-directory-plugin/assets/css/widgets.min.css?ver=6.1 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:12:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 467
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3439), with no line terminators
Size:   467
Md5:    04772b9a0d585dfb3c5761d2d3e8fd1a
Sha1:   1e5bd07f0138eafe870044ed503ac4e70970dd47
Sha256: 86c487538e95f949bc90d27f9db5fbfd5ea625fd8ad54e5972b87be7500c4f32

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/business-directory-plugin/themes/default/assets/styles.css?ver=6.1 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:12:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 308
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   308
Md5:    2475dc1856a51066526df1559de3dc3f
Sha1:   5a8f5901fd85da4e9dbdebfd6414b4ee5d251945
Sha256: 9461e6eb400fba6ff730e74e1e64bcd071e7a23fe123bf1c116cf95e5e6578f9

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30273
Md5:    34f918ada1fe4f01c5a4b90065bbc37a
Sha1:   a731f6ce2d413805e39ae45994012b1bd5ea1e2b
Sha256: eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   3995
Md5:    7e058b51f939eacfa31cdface14dded5
Sha1:   9d732e5afdeb42edef9e1b9631b7e95e054787cc
Sha256: 4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
                                        
                                            GET /wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js?ver=3.3.24 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7419
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1518)
Size:   7419
Md5:    7d2b4b55e04a6146c2b720c9d0a13d67
Sha1:   383c540478a21bc16b9a2c717a2ed28037fc3434
Sha256: 5f54b010dad731bceeeaa543a4767f3ca865cdb705c9d645068d35214e49970a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/photo-gallery/js/jquery.mobile.min.js?ver=1.4.5 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8752
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (25075)
Size:   8752
Md5:    1bc242a2555501251f4581a861d273b5
Sha1:   8182ba41622cb62f0b476c7f0f93aa835c6c9ec2
Sha256: 1834970e62778a993bf85b79b67c3e9687a2721f187722bdc1dc5f45605119b4

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/photo-gallery/js/jquery.mCustomScrollbar.concat.min.js?ver=3.1.5 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12358
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32001)
Size:   12358
Md5:    e37dc9214e778f86c6dd07ca57bfe23d
Sha1:   2e1092d6634e370f97d3f7682e540f024fe9d80c
Sha256: 0c0f613b62e2faf3bdb93c389f666914323e163f757e4fed41bd9754602a7555
                                        
                                            GET /wp-content/plugins/photo-gallery/js/jquery.fullscreen.min.js?ver=0.6.0 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:14:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2017
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (5661)
Size:   2017
Md5:    02411584ba4f45db9c42a9944b4387f6
Sha1:   6536a6c1bd50cec302906246bfcb26796cee78c8
Sha256: 900005aa2f419bb5d3232695ab1fb3fd350586937dedc1ade84aeb40be6cdbff

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/service-box/assets/js/owl.carousel.min.js?ver=1 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:14:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11139
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31997)
Size:   11139
Md5:    3cb10c6c01ef15e7d2c5ef33c6f06ee5
Sha1:   561a0008fd649a946ff6cdba379547c998cb4582
Sha256: 2107b826f18f7f10f78a38641124da03dad389704816a86136488123a0f01f3d

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:19:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6599
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (8189)
Size:   6599
Md5:    4186472f300b89625cba0a93ba482c2c
Sha1:   19053e54644720b5dcfd71e24381347da7bc7cc9
Sha256: a411ccc7d565d73b533d894b9972460cc5ea81743da6c2c7ee0877050ed8005d

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/slider-images/Scripts/Rich-Web-Slider-Widget.js?ver=5.9.4 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-length: 0
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/slider-images/Scripts/jquery.easing.1.2.js?ver=5.9.4 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 837
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (408)
Size:   837
Md5:    24979d6f0439bd29a296a15a0af37440
Sha1:   d3936e7582eed7085442653449ed2f5bf991eeae
Sha256: 62b83c18b7f291559532f0061d9562d7a941198fe82b851c20fa135f96160cb3
                                        
                                            GET /wp-content/plugins/slider-images/Scripts/jquery.anythingslider.min.js?ver=5.9.4 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-length: 188
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   188
Md5:    ab146f4e02cf2813634d311b1d9141ba
Sha1:   47fa96bd2c56803cb6b6d0a85442d8cf927fcc0b
Sha256: fe2f780b72df154bac9018fe4baa456963cefb7249f0c1a4ec111fe1b8368fde

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/slider-images/Scripts/jquery.colorbox-min.js?ver=5.9.4 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:15:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4103
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9604)
Size:   4103
Md5:    b3adc1a7f7dd023c2494e3834421bc89
Sha1:   3cb62b9faa35f4a7dba45a984406fb3f1bd75190
Sha256: d26ac67d779d67d2ff53113c5972807ee79c76f47a810b5bbb6140b137ec476b

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/manomav/css/grid.css HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1329
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1329
Md5:    ac2c35e1b949f8154133fb4468d3d5cf
Sha1:   5374c530e8a62f448e826f3677b3bbfc9f727c09
Sha256: f22d52ff425aef56c61abd727de012968c449a36de2f0a238f83c2f1dd264289
                                        
                                            GET /wp-content/themes/manomav/css/style.css HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5588
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   5588
Md5:    c9d6de9b3da4e1bd1f8b601269de456f
Sha1:   151d0eb4f001c63314709d57c596303ee47d9bd9
Sha256: b1d971443f8f1db1f34b1a14c6ac1e21bff7987bd37c4e856398d93cce5c111d
                                        
                                            GET /wp-content/themes/manomav/css/search.css HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1569
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   1569
Md5:    7355ef7b9168aae08f682ae45afc5941
Sha1:   75e8172962f7a2a7dfad2d96f2c8d7ec65ec7006
Sha256: 7037ec382a90222c29992ee657592996b500e88ec2aa3be15efd4d40851ee48e
                                        
                                            GET /wp-content/plugins/photo-gallery/js/scripts.min.js?ver=1.6.3 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:14:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 31363
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   31363
Md5:    954aad693c0471a47f7a5438eabaf004
Sha1:   744c122858868545722250cbedf4a20c4e8ab07b
Sha256: ded172a5737b0a1ed127c10d69f43be4087f2dbceaf851807c403863db7268d0

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/manomav/css/camera.css HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1159
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   1159
Md5:    75f4f7c39dad79e31a958f1c7eded89d
Sha1:   d08426e2b95ecfab3892710be8202e8a9f1865f8
Sha256: 768ea26c96921cb2f931879b5fc661c6f69e589772e0b5eb0476b2fa2d35517f
                                        
                                            GET /wp-content/themes/manomav/css/jquery.fancybox.css HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1282
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1282
Md5:    37110acaee335e72e0712f7152823006
Sha1:   1beabc4c70adca4de893be66c147fe435cb00b55
Sha256: 4bc71a992d1743fc76b0307fe1c4b625705fbf9af9efa31803bba81e7c049dce
                                        
                                            GET /wp-content/themes/manomav/css/google-map.css HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 174
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   174
Md5:    d269908f072f380ea45b133c503b2ce0
Sha1:   b2f9f143c16a858df0afed0316487d15ee8e1553
Sha256: 2d1cca22aadb4f3e063e370cb31a8dfa475b387be75552271dfb659f9cdc7072
                                        
                                            GET /wp-content/themes/manomav/css/contact-form.css HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3099
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2096)
Size:   3099
Md5:    511bef2a86c236383f0c58811367e697
Sha1:   df18f686b763cf2d353d689ad8efe8375e3adfa2
Sha256: 4d3fb8684f0b3f6559d3b564f755921c16c27d3bade8fc75965f751c3996241b
                                        
                                            GET /wp-content/themes/manomav/js/device.min.js HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 868
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (645), with CRLF line terminators
Size:   868
Md5:    5090a07e86b65c91c0f8523dbd961ab3
Sha1:   defbd6761de94fe1efcfecd36b4084300885ad12
Sha256: 82ae7f744c08401d562664f09e436403446aa40b3c81b5e1f7219c0eb359bca4

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/data-tables-generator-by-supsystic/app/assets/js/dtgsnonce.js?ver=0.01 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:13:09 GMT
accept-ranges: bytes
content-length: 41
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   41
Md5:    29a98c4f5edd4ec8249f165ffcfbfd37
Sha1:   20c6a355a13d953617d6e7c50c91432a03917d43
Sha256: 2e599dfaffe056d6e6f7f19cd3e1d47169ac4468bd9fb2f9f4033940f7fc7584

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3050
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (9720), with no line terminators
Size:   3050
Md5:    7b3d5adb95a380672e7d5da68b57b3c0
Sha1:   58db2566c56407e29d4557d912663b36ec328b14
Sha256: aaa8914b936896ede7bb53ba3a4273d63bf82ed918efe0cfac6f2b3f4641a423

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.15 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:13:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 287
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   287
Md5:    b549377103ff5923af6a2bda22756d18
Sha1:   a4c00dace4932f712d63f67f2af4c5ea9d97d823
Sha256: 5518b4e3dc40d0172dab6d1c8e5babda33e6a59bb600677ab2c314ce3a9cb1e5

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:13:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8563
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (24733), with no line terminators
Size:   8563
Md5:    68595c6cc0dcbfdacf99bc94ff77ad86
Sha1:   2b2719f3d55566841af05dacf068dc2d3c10dcce
Sha256: 5ce4baf7eead42a8568d54a21c089360bb8667b592908350c1d8cb454844e2ce

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:12:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 439
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (999), with no line terminators
Size:   439
Md5:    941c9d44f1c480a37006540de948ef9a
Sha1:   29bc99b84660341fc37d60774b3083025a19147c
Sha256: d297692ee1e68d1e2499576903508be06859340a25eded15b2565631a592851e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/manomav/js/jquery.js HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32304
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32086), with CRLF line terminators
Size:   32304
Md5:    06a2b2c3ee18a2c3846e756c2e2b2cb4
Sha1:   5088db61206ef8a341da7e358bc182c2d28a4c75
Sha256: f3b18f58b0161082f9f2d1441cd1c969efd18c4826c29c6525de52ee4af61b03

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/manomav/js/jquery-migrate-1.2.1.js HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5559
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   5559
Md5:    04c400ba07fddcda3018399d7181fff4
Sha1:   5215c06557983bb8897812522eefb300f3be9b14
Sha256: cd2799411ea3af1cb3f953b06c15da3cc4054a0faa8e6ae0f59d26a48a7f0618

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/manomav/js/script.js HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2374
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   2374
Md5:    5fcb47dadd3297ac861a4fe8656cc30c
Sha1:   7e00652626d70125b3cb5743a11c00885162ab4d
Sha256: 14dc1ef50af74df54ff7b59fa69ed99b6f83381596d68da4943f8b7ffbba2730

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/manomav/images/mepl.png HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 6859
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 286 x 284, 8-bit/color RGB, non-interlaced\012- data
Size:   6859
Md5:    abe4ddf571667a910a00df0e92f67c19
Sha1:   c60d14f2e841073caf32c084a54af1837fad443c
Sha256: b8aa99a10991b257a5ef2ffccb6bb86e5b7edacbcf2ccedc93016cdf84251c07
                                        
                                            GET //wp-content/uploads/page-1_img06.png HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 1041
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 75 x 74, 8-bit colormap, non-interlaced\012- data
Size:   1041
Md5:    0936d25b5f0c880c758f834f5ff657af
Sha1:   665fb53da09cc0305e4af9f9d618b8ef95a45e31
Sha256: b3241198cf470de3ecf19c7e5d6d5c1611504eed1faa54c723d75075a38a907d
                                        
                                            GET //wp-content/uploads/constructions-analysis.jpg HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 16757
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 370x247, components 3\012- data
Size:   16757
Md5:    dace8485e254d259575929c33e9edbfd
Sha1:   637a6995a59734474006907df651352c6774a894
Sha256: b150508454d6d1b33b6bc0dd99f3b38cb725bb949e546984425426eb88509ce1
                                        
                                            GET //wp-content/uploads/page-1_img05.png HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 837
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 75 x 74, 8-bit colormap, non-interlaced\012- data
Size:   837
Md5:    496303110421a9ba99d696965b1af3ec
Sha1:   c7a660708c506099abb8d2b4dac5851aac8df6f3
Sha256: b60b9e8dd0a9172871cb8f9c0e628b6ccd13d79d6dff1b3c16441eda70428aa5
                                        
                                            GET //wp-content/uploads/TECHNOLOGY-ADVANCE.jpg HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 13523
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 370x245, components 3\012- data
Size:   13523
Md5:    77df0a6308453dd3f8c3128a534815ba
Sha1:   21b7f5979e84ba135638dc1eb01b94eb8ebee067
Sha256: ff57a4151e0d4d5413b21122dc6f4fbde486df5b02e0c3d31d7960ceadaeda5e
                                        
                                            GET //wp-content/uploads/page-1_img04.png HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 976
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 75 x 74, 8-bit colormap, non-interlaced\012- data
Size:   976
Md5:    b16a8668230f6f41b82bc03669b39bf1
Sha1:   2457c8a555d93e88d70c0f7c809719a1851a5ec5
Sha256: 56410a1989ec35d1575ded12f1f6b1954c416b8f3c851647b9dae5b77679254d
                                        
                                            GET //wp-content/uploads/Knowledge-Sharing-1.jpg HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 20878
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 370x246, components 3\012- data
Size:   20878
Md5:    06cc248bfe6d3fd9f92ed1015102f9b7
Sha1:   f996ea896de5e30b393fec41b7b5c9ac54d3b8ea
Sha256: 8cabfa97d5842afd288e5c2726ee2768ab472a42901d754b1a91e7677593a23f
                                        
                                            GET /wp-content/themes/manomav/images/page-1_img08.png HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 2034
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 80 x 61, 8-bit/color RGBA, non-interlaced\012- data
Size:   2034
Md5:    ceb41965553f18f73f8409c3030ea8cc
Sha1:   a6cf9929f2bc85f9ddeb3188eb15279407bde432
Sha256: d9dff2f6cc6ceb2bead6dd1b2f488be068ecf5608c93410b339cba16b8a29e41
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.4 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Tue, 08 Jun 2021 22:15:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4539
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15224)
Size:   4539
Md5:    3c05cdbb96f694e86b05c7a3e5c6703f
Sha1:   615a7094f3210830bd5e6f08f845c101be2eefeb
Sha256: 371bb131cc739b177f4c90f67535f020d0bbee092e2ff1bad6ac38e978da3092

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/manomav/css/animate.css HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4425
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   4425
Md5:    09ea38bbdd5d82125e69048cbb9067ae
Sha1:   17e771fd58069275493a18dc80bf14b4ab191a56
Sha256: 9c0f6b7c3f54797bf48d128737920cd2c5d705edea21ed68370cbf54ed053524
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 17:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 17:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5089
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (23502)
Size:   5089
Md5:    7826f5087340a4cd319f2f3789cdd95a
Sha1:   cdcc88c38b1ce8fe1dda21dfdcd3b8b29aa47b6c
Sha256: 04a0fef17dabf0233d639fb47758824276bafb3286a63b888ea363f75a1339c0
                                        
                                            GET /recaptcha/api.js?render=6LeU98IfAAAAAD2zMRBHKynflTKmFsNAw_XYzNxE&ver=3.0 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Thu, 06 Oct 2022 17:59:40 GMT
date: Thu, 06 Oct 2022 17:59:40 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (884), with no line terminators
Size:   586
Md5:    9c5b368a2c17345ecfd77c34dc1bc8e9
Sha1:   67bac81daf1948e96303736852d05f66acb56aa4
Sha256: d025f8409a50f16acdfdb2a073e562125d0bf26868a3f5f5ede1dc13f6d6803a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 17:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 17:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 17:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/manomav//js/jquery.cookie.js HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1340
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1340
Md5:    b8922e4804dbd0e23f774988a1c23d4f
Sha1:   5385ed7ddb2e70318b1630948c67979bc64b0ab3
Sha256: 09b27d742e6b54386eb3c93d6526d6742a5759ff8cc14c2445bf0deb24650fdf

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/manomav//js/jquery.easing.1.3.js HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1903
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   1903
Md5:    2caffc7a73cc9190fe3b124cc781a42e
Sha1:   46ad6641d1ebf8e091bde798a73d175d4c9facab
Sha256: 3e40e775308d772a7b0312d951db5db75105184d893cb92acf6e8ba1e338104d

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/manomav//js/tmstickup.js HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 779
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   779
Md5:    c0c4de491cc3f43583e42eb6a7ba8f64
Sha1:   830c1e66d8447ef834b9dca2b68f5d1a0deec6cc
Sha256: 4914d9aa236670673ae668ba22d198eb283998adb8edf260f15728d83aa45e5d

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/manomav/images/page-1_img07.png HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 58983
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 523 x 279, 8-bit/color RGBA, non-interlaced\012- data
Size:   58983
Md5:    b17b9c5d84e23303a9e4192a2dfe13a3
Sha1:   b8c9f0f7526204ad8a4e6f5e58b2621b148c5846
Sha256: 874f9ca80a4b8d85470b9d70e7afdd6f05c4db1183bc116402525f9eff185580
                                        
                                            GET /wp-content/plugins/photo-gallery/images/ajax_loader.png HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/plugins/photo-gallery/css/styles.min.css?ver=1.6.3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-length: 10388
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size:   10388
Md5:    87b180d6f33ba5c4a931c2877484c5c3
Sha1:   76c99bb0eef2610b0b0c7a30fa3b20ab9c6dce59
Sha256: 5b13155d5e5495ecbd27b9fabc7b64d08cf8eaee2a83cb790d7c376fb1fc84a7
                                        
                                            GET /wp-content/plugins/photo-gallery/images/blank.gif HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-length: 43
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            GET /wp-content/themes/manomav/images/primary-bg.jpg HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/wp-content/themes/manomav/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:30 GMT
accept-ranges: bytes
content-length: 104067
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2015:04:28 14:19:02], baseline, precision 8, 1000x1000, components 3\012- data
Size:   104067
Md5:    33179044aa898ce83b0aa3fc7b5ef629
Sha1:   3459f02efa6b32aae7546d00d16aaba7a187d433
Sha256: 643bd15b632853388d44a19b19b2fcca9af0d07fee4d33d040b0090d2122445c
                                        
                                            GET /gtm.js?id=GTM-N27W84R HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 06 Oct 2022 17:59:40 GMT
expires: Thu, 06 Oct 2022 17:59:40 GMT
cache-control: private, max-age=900
last-modified: Thu, 06 Oct 2022 16:38:19 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 56840
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3702)
Size:   56840
Md5:    7ff14f0aa9d86ba2669a7b428f8bfaa7
Sha1:   e92b6e680ef9c6c74e5ea6748d6a69761a3ea3ee
Sha256: 2a6f6c0fbc20cc02cfecd2184dabd46c7a73a5f9d102ab097122d6121148e44e
                                        
                                            GET /font-awesome/4.3.0/fonts/fontawesome-webfont.woff HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: font/woff
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:32 GMT
accept-ranges: bytes
content-length: 56780
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Size:   56780
Md5:    97493d3f11c0a3bd5cbd959f5d19b699
Sha1:   1075231650f579955905bb2f6527148a8e2b4b16
Sha256: aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/manomav//js/jquery.ui.totop.js HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 521
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with CRLF line terminators
Size:   521
Md5:    61f8dcda919aab860cfb126c145390b0
Sha1:   82356eb7d64c90583fd975c1c82a203ec49534dc
Sha256: 61177932bfa875a6ad4cb6ef709b97821d610d45d9d77233864b7ffb3360566c

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 17:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 17:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/manomav//js/superfish.js HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2604
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   2604
Md5:    d5a50923fec57fc00cf76026094d6e20
Sha1:   645422233ad47b65e96d2f0dd8ccf46f76eb6084
Sha256: 2a892227b0f6b165380e8365222ca51e48725b963763d183f60d4133ff5b69a3

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/manomav//js/jquery.rd-navbar.js HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1488
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1488
Md5:    ba84d20a0e659888094b4fd6af4e3c7d
Sha1:   04ea110dca487ee4b61795abcd0266fc7cfa62c4
Sha256: 25c05adf736a47e42c84ce9ae73eaea98e09a056d5a839705c7bb392faf63574

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/manomav//js/wow.js HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2630
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   2630
Md5:    2fd30581ab54d111e16cfed38983162f
Sha1:   7a5f473ca305b14177415829aa17176ad79a0bcd
Sha256: 3b902ea2e5ade7cd8c3742fc7acf92d823e743cf2134ddbda0ef555e1b5aef0c

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/manomav//js/jquery.fancybox.js HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13997
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF, CR line terminators
Size:   13997
Md5:    47b8b47f3065d7c1a7e41b8284656b67
Sha1:   fb5128734e13dc3a2dbe06604f4583d3dd72b7d9
Sha256: 28f74b55d6c059b9cb2fe7d9df4d5a51f6ae92a28721fecc709b1386327eeef3

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /s/cutive/v17/NaPZcZ_fHOhV3IpLSPJC.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23176
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 03:15:00 GMT
expires: Sat, 30 Sep 2023 03:15:00 GMT
cache-control: public, max-age=31536000
age: 571480
last-modified: Thu, 21 Apr 2022 16:50:37 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23176, version 1.0\012- data
Size:   23176
Md5:    1a46e43cdc6a2aa4db72a144956d324b
Sha1:   a262bb0c7203a615e67005881cb863062de96db6
Sha256: c8e606c88b52a4176eaf5d9612001876d15d15a0c8aa1f436e86ca5681d62b36
                                        
                                            GET /wp-content/themes/manomav//js/jquery.fancybox-media.js HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1881
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1881
Md5:    6e0eb49957743e04b5fbcb713068b239
Sha1:   3914094ae05d176832ec2f594ccedb2b9330d0b4
Sha256: 202c4298ebfc56b14e6a4e929c175683f241f2f758c16617138b8ba1b635974a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17508
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:44:31 GMT
expires: Thu, 05 Oct 2023 19:44:31 GMT
cache-control: public, max-age=31536000
age: 80109
last-modified: Wed, 11 May 2022 19:24:41 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 17508, version 1.0\012- data
Size:   17508
Md5:    7fbdfaab6bd8b191496ffe1ef1b9e748
Sha1:   e9e592f8498d489d8000f3a4cfb1bb447f251edd
Sha256: bb8007225d94a099cddbade7ea904667c0dd0b68d5e30778e5c6257589ab94d1
                                        
                                            GET /wp-content/themes/manomav//js/jquery.fancybox-buttons.js HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Sun, 17 Apr 2016 18:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 994
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (411), with CRLF line terminators
Size:   994
Md5:    a3732175d4e9b44383f144d5ef77ca52
Sha1:   002cc74393490c7d8ff12d689082987f36c3f9ad
Sha256: c9e6d91b7df0781566516f9c2ef9f3c7db9cff41521eb3a96f9f9b7f99400c8d

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /css?family=Lato:300|Roboto:400,500,300,300italic,900,900italic,700|Cutive HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 06 Oct 2022 17:59:40 GMT
date: Thu, 06 Oct 2022 17:59:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   16702
Md5:    e94f4bb0f2ff5115b34dc77d95109f9f
Sha1:   a490f0ea514b3b9b5b035c30344fd29bc3fd350d
Sha256: 6d917139d6c7329266eb89a0b17f97945c8520088aac80f5a91db224ac82406b
                                        
                                            GET /wp-content/plugins/photo-gallery/css/bwg-fonts/fonts/bwg.woff?qy18kk HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: font/woff
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:14:18 GMT
accept-ranges: bytes
content-length: 14224
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 14224, version 1.0\012- data
Size:   14224
Md5:    88e8cd34e48eb14d213cd2c5f90fbf1e
Sha1:   ff2e5ecfc85a3f2f4a14da95dd54fcafb9845219
Sha256: f38e44aa6c304d5b837cbec176eb23cdaca7b63dbc712c371cf904f8be0ce420
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 80732
last-modified: Wed, 11 May 2022 19:24:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size:   15860
Md5:    e9f5aaf547f165386cd313b995dddd8e
Sha1:   acdef5603c2387b0e5bffd744b679a24a8bc1968
Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 17:59:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 14:07:32 GMT
expires: Thu, 05 Oct 2023 14:07:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
age: 100328
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size:   15920
Md5:    3a44e06eb954b96aa043227f3534189d
Sha1:   23cef6993ddb2b2979e8e7647fc3763694e2ba7d
Sha256: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
                                        
                                            GET /font-awesome/4.3.0/fonts/fontawesome-webfont.ttf HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: font/ttf
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 30 Mar 2022 15:49:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 69972
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 14 tables, 1st "FFTM", 17 names, Microsoft, language 0x409, Copyright Dave Gandy 2015. All rights reserved.FontAwesomeRegularpyrs: FontAwesome: 2012FontAwes\012- data
Size:   69972
Md5:    299e7be385150b633e3f40c577c9f53d
Sha1:   e1bed900bcca9cb58a03d05ea16ab53c110f78e6
Sha256: 0e38a39ca1dcdb095d1ebd4c5240f5c6396757885d517cc64c8dc76af0221b98

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:21 GMT
expires: Thu, 05 Oct 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 80719
last-modified: Wed, 11 May 2022 19:24:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size:   15740
Md5:    b9c29351c46f3e8c8631c4002457f48a
Sha1:   e57e59c5780995ff2937ab2b511a769212974a87
Sha256: f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://manomav.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:40:23 GMT
expires: Thu, 05 Oct 2023 19:40:23 GMT
cache-control: public, max-age=31536000
age: 80358
last-modified: Wed, 11 May 2022 19:24:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Size:   15752
Md5:    b20371a6daf29d4a1f2e85dbbf40fb20
Sha1:   0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
Sha256: 7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 17:59:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/slider-images/Scripts/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:40 GMT
last-modified: Wed, 04 May 2022 12:15:06 GMT
accept-ranges: bytes
content-length: 71896
date: Thu, 06 Oct 2022 17:59:40 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Size:   71896
Md5:    e6cf7c6ec7c2d6f670ae9d762604cb0b
Sha1:   97e438cc545714309882fbceadbf344fcaddcec5
Sha256: 7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 17:59:41 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 04 Oct 2022 07:31:19 GMT
Expires: Tue, 11 Oct 2022 07:31:18 GMT
Etag: "36bbf156380a13476923d8d127b3ae103cbc60f5"
Cache-Control: max-age=393696,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75604ad15c6bb4f7-OSL

                                        
                                            GET /wp-content/plugins/service-box/assets/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: font/woff2
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:41 GMT
last-modified: Wed, 04 May 2022 12:14:58 GMT
accept-ranges: bytes
content-length: 77160
date: Thu, 06 Oct 2022 17:59:41 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/photo-gallery/pmcHome.jpg HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:41 GMT
last-modified: Sat, 19 Aug 2017 10:40:55 GMT
accept-ranges: bytes
content-length: 45232
date: Thu, 06 Oct 2022 17:59:41 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Size:   45232
Md5:    31c25d4abf593439281ec7d1901d2e37
Sha1:   11ae8ec356a433d00bca1b503e1f0b97de26f271
Sha256: 54c692448b2292ddbddfb689e1e96a3c215fc9a553a3158c627f4bf367ee8970
                                        
                                            GET /wp-content/uploads/photo-gallery/qsHome.jpg HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:41 GMT
last-modified: Sat, 19 Aug 2017 10:40:56 GMT
accept-ranges: bytes
content-length: 34551
date: Thu, 06 Oct 2022 17:59:41 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Size:   34551
Md5:    f4dbe5e0f58442c89ea6e2a24a35154c
Sha1:   2fefb02e6afa44e11bd6338c2df40237e0a5491a
Sha256: 75f568ae74d726b3c18d85f78fd17c0e077c27c68fc0cc103985996c3a34ba49
                                        
                                            GET /wp-content/uploads/photo-gallery/bbsHome.jpg HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:41 GMT
last-modified: Sat, 19 Aug 2017 10:40:30 GMT
accept-ranges: bytes
content-length: 80516
date: Thu, 06 Oct 2022 17:59:41 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Size:   80516
Md5:    320b350237ff8de359326619d852ac17
Sha1:   768f352ef58f9d4aa8283e0cd893bed18f370b6d
Sha256: cf8ff002d0dc615c8e8c2c4614ac442428e0407b5d006c411dc7177f98ef253a
                                        
                                            GET /wp-content/uploads/photo-gallery/bimHome.jpg HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:41 GMT
last-modified: Sat, 19 Aug 2017 10:40:54 GMT
accept-ranges: bytes
content-length: 53571
date: Thu, 06 Oct 2022 17:59:41 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 1200x300, components 3\012- data
Size:   53571
Md5:    d1b55265a9c929812723f8ba7c386ec4
Sha1:   6e7c65ef9a961d44dd598caa64c23ba10b67e521
Sha256: f9e0106f4c433d265f5b88b807c221c6380e85068337e1fb1823c7f4a66aa13e
                                        
                                            GET / HTTP/1.1 
Host: load.sumo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         194.242.11.186
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 06 Oct 2022 17:59:41 GMT
vary: Accept-Encoding
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=600
etag: W/"415c9608bc47ee8a16b3a2f2c0aee7b0"
last-modified: Wed, 05 Oct 2022 16:50:13 GMT
x-amz-id-2: //9GtIIj7XfJWlnGAXvWQuh3kEYQVruxwT0ZriBgdSUUqnuEx6zyQN1LE79UOLi7heLAo+HR4XQ=
x-amz-request-id: KC4FFY849WG1X9XS
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/05/2022 16:50:13
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 706eaeaf725463ee81142c7ee81a4723
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2192), with no line terminators
Size:   1962
Md5:    1ec61f86c2f290810b63d47b791ca7fa
Sha1:   1e646d5ee004c5b119078cd3004c15ef031f6de9
Sha256: bf85fb144d43c414c288e9087bd56c18934d0e58f96339dc3386fb82552650c1
                                        
                                            GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://manomav.com
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:02:07 GMT
expires: Thu, 05 Oct 2023 21:02:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
age: 75454
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (711)
Size:   158844
Md5:    b4ed95d4318e3b78b936c9c0f1ffa96e
Sha1:   b53c9376b1459afb07fb4b5c2e8d8dad776d3a02
Sha256: 3c21880cb7be6bec40f9d40c23ad39c9758999cf950cec07b86c83b21fde175f
                                        
                                            GET /wp-content/plugins/slider-images/Scripts/fonts/fontawesome-webfont.woff?v=4.6.3 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: font/woff
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:41 GMT
last-modified: Wed, 04 May 2022 12:15:06 GMT
accept-ranges: bytes
content-length: 90412
date: Thu, 06 Oct 2022 17:59:41 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 90412, version 1.0\012- data
Size:   90412
Md5:    c8ddf1e5e5bf3682bc7bebf30f394148
Sha1:   6d7e6a5fc802b13694d8820fc0138037c0977d2e
Sha256: adbc4f95eb6d7f2738959cf0ecbc374672fce47e856050a8e9791f457623ac2c

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/slider-images/Scripts/fonts/fontawesome-webfont.ttf?v=4.6.3 HTTP/1.1 
Host: www.manomav.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://manomav.com
Connection: keep-alive
Referer: https://www.manomav.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         92.42.110.125
HTTP/2 200 OK
content-type: font/ttf
                                        
cache-control: public, max-age=604800
expires: Thu, 13 Oct 2022 17:59:41 GMT
last-modified: Wed, 04 May 2022 12:15:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 88387
date: Thu, 06 Oct 2022 17:59:41 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 14 tables, 1st "FFTM", 17 names, Microsoft, language 0x409, Copyright Dave Gandy 2016. All rights reserved.FontAwesomeRegularFONTLAB:OTFEXPORTFontAwesome Re\012- data
Size:   88387
Md5:    8dfc8613618aeecc266b5430ff9ee329
Sha1:   abd8c21e417a0b73554ecdd1ed5ed6841c1bbd39
Sha256: ce8b7aa3ad97c185812f097c47e86bb9c3c3420b97bd9ca6d9bd081f88327e4a
                                        
                                            GET /72.0a035390359aab65eb82.js HTTP/1.1 
Host: load.sumo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         194.242.11.186
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 06 Oct 2022 17:59:41 GMT
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"a1c4ecc2ca5bc12d61068cd427f9729f"
last-modified: Mon, 01 Aug 2022 17:37:14 GMT
x-amz-id-2: yncNVLF2WNTvfJNP5kgASaiZWLNa84vsckpGLCsBd0rTvIK+s4Z1y1Nb+RCG+2BivC/7SoYE1tk=
x-amz-request-id: ARECMNYEHV1MDN3P
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/09/2022 20:15:00
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 53ba7ea52e44b53fd0503ea160b6cd19
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (31962)
Size:   139753
Md5:    83c76bd634d0523028e638e640e31ffc
Sha1:   89d7b66d4da91e91878b1969a6c8dda2d2e0e16c
Sha256: e99b2322360689f19e0dbf450090197d1cb8f7b72c9c344a2ce5f24ffd6cdd52
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 06 Oct 2022 16:41:09 GMT
expires: Thu, 06 Oct 2022 18:41:09 GMT
cache-control: public, max-age=7200
age: 4712
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20039
Md5:    47e6f374ca946fddd5b59871b325736c
Sha1:   baa9282efc8785e84d247c3bff518eaa45f101c4
Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5821
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 17:59:41 GMT
Last-Modified: Thu, 06 Oct 2022 16:22:40 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: dGUQjRPoz3AcpzyRyjEQ0e1W/f16SbXmeR9ieD1wZq/6ej5GPMk3FtjlVKAnMuXzkd672vSDk3Mdu70NQj6hIg==
priority: u=3,i
content-length: 26840
x-fb-trip-id: 1904183273
date: Thu, 06 Oct 2022 17:59:41 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64348)
Size:   26840
Md5:    e1327a02d76346c7e23d114e4e508b30
Sha1:   195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
Sha256: 331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
                                        
                                            GET /css?family=Noto+Sans%3A400italic%2C700italic%2C400%2C700%7CNoto+Serif%3A400italic%2C700italic%2C400%2C700%7CInconsolata%3A400%2C700&subset=latin%2Clatin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 06 Oct 2022 17:59:40 GMT
date: Thu, 06 Oct 2022 17:59:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (34639)
Size:   23314
Md5:    7b7420d17f0445ac71a4be8347eb3218
Sha1:   cc68c337b355f0589a6b3cc355647056671e46b2
Sha256: 456cea65d811d31ee864e24c1edb1e25814903b99c4af09053eb81b74b3128ca
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5821
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 17:59:41 GMT
Last-Modified: Thu, 06 Oct 2022 16:22:40 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 17:59:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/viewthroughconversion/961138791/?random=1665079181419&cv=9&fst=1665079181419&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wga50&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fmanomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.217.21.162
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 17:59:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1058
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 06-Oct-2022 18:14:41 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2368), with no line terminators
Size:   1058
Md5:    d1760e5b82effcbe0f8c90efae1e91a4
Sha1:   0cfc0eeca8dfb8be5cb3bdf77c4a84f653f635c6
Sha256: 2b63eb3b791b6e0fe6d80bfe5a4fee58a44d688261b1f4dff51381d72d9b4fd5
                                        
                                            GET /73.0a035390359aab65eb82.js HTTP/1.1 
Host: load.sumo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         194.242.11.186
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Thu, 06 Oct 2022 17:59:41 GMT
server: BunnyCDN-NO-830
cdn-pullzone: 53731
cdn-uid: a61f2e95-f685-45ef-9e80-35f4adfb29cb
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=31536000
etag: W/"ad6f2454f01de902ffd473d51c1207bf"
last-modified: Mon, 01 Aug 2022 17:37:15 GMT
x-amz-id-2: OOvxH0wmydvCCpb9NHH6caPdDxPK5MEQ+WKSX/GLdPxShJclDaUyJkuQ+K1KKMlliOAzmXxVnj4=
x-amz-request-id: VQBXKHDA6AE3DC4A
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/03/2022 19:27:38
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: cb6d830c180feeadaf07533c10c57af3
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (40498)
Size:   103162
Md5:    980d4e5fbfda4e0c990bff1de76d0f78
Sha1:   b208f10a6ddb66a9cf7478420275a3129d33fe53
Sha256: 41bec6c74b80b69368e0dc09bc568566d2ed96378fe9d5f0e7dedf12975a678e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 17:59:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 17:59:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/1p-user-list/961138791/?random=1665079181419&cv=9&fst=1665075600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wga50&sendb=1&frm=0&url=https%3A%2F%2Fmanomav.com%2F&tiba=Building%20Construction%20Consultancy%2C%20Construction%20Management%20Company%20in%20Delhi%20NCR%2C%20India%20-%20Manomav&async=1&fmt=3&is_vtc=1&random=261070087&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://manomav.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 06 Oct 2022 17:59:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 06 Oct 2022 17:59:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN