divyaroadlines.com/
103.224.23.227302 Found 215 B IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6ba9a734ba975b31dffd4eba90059588
1e5b44622f85fb33e65810aadc9f99978a12770a
b70f956215d0c63861f1ad7dafad932e02dc9fe80fc111d88b9fd8b67e6effe9
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sun, 27 Nov 2022 12:53:31 GMT
Server: Apache
Location: https://www.divyaroadlines.com/
Content-Length: 215
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5626
Expires: Sun, 27 Nov 2022 14:27:17 GMT
Date: Sun, 27 Nov 2022 12:53:31 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3506
Cache-Control: max-age=167767
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 12:53:32 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 11:29:39 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5517
Expires: Sun, 27 Nov 2022 14:25:29 GMT
Date: Sun, 27 Nov 2022 12:53:32 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 12:19:22 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2050
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ePqpk0OHzv8+b+H2Bjfl/9fQWCwzXm7TIIahlDKpfC/E9YEepPXLCUMfQ9xUETjfelZ+DhE8bQU=
x-amz-request-id: 9H0E68YQH0SQ99RC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 12:41:38 GMT
age: 714
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 12:53:32 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 12:11:12 GMT
cache-control: public,max-age=3600
age: 2540
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5307
Cache-Control: max-age=164507
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 12:53:32 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:35:19 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ebed87c2caeb00f3daca76b91f1d5856
0b524def376f7bf90143e8c002fbbdc776d4b457
9d50a898f0edaf6c38ef9827dcfc72de00b8afd71fde693644c3e7424f6efaa4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2924
Cache-Control: max-age=116419
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 12:53:32 GMT
Etag: "63827623-118"
Expires: Mon, 28 Nov 2022 21:13:51 GMT
Last-Modified: Sat, 26 Nov 2022 20:25:07 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 280
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.6.1/css/font-awesome.css
104.17.24.14200 OK 5.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.6.1/css/font-awesome.css
IP 104.17.24.14:0
File type troff or preprocessor input, ASCII text, with very long lines (372)
Hash 8ec4dbc9aece872881ee458c08d5085a
43255a9bb7bf24e8e26c08a88944e266ce34115a
10e4fef652840d529f3bf46f5032e3be35e639118411638470312c0cc56c5074
GET /ajax/libs/font-awesome/4.6.1/css/font-awesome.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.divyaroadlines.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 12:53:32 GMT
content-type: text/css; charset=utf-8
content-length: 5516
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-87db"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1140186
expires: Fri, 17 Nov 2023 12:53:32 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r8UvqY7ENxF3uyHiocEiQLFF5STlkCefBzL%2F5C57PUyQf4HibPS%2BTOxZ7%2FunMrrwWnVjpVcvGAHFhK3G8zx6vZ%2BJvVIsNRdanfaWt60CR4GD%2FFiFJwTt4Ry0mihYg6urj0MVYwe3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 770b01dfbc1f1c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.divyaroadlines.com/
103.224.23.227200 OK 42 kB IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (748)
Hash b370f779c793177fb0faab8f4baaf5ec
21d6d35424a7a5abb4014148ffe836fad35af653
fabf18639cc76d3417d2c26454983e889aa121c542e351ba561a29bc054d5011
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:31 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 10:43:37 GMT
Accept-Ranges: bytes
Content-Length: 41636
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ebed87c2caeb00f3daca76b91f1d5856
0b524def376f7bf90143e8c002fbbdc776d4b457
9d50a898f0edaf6c38ef9827dcfc72de00b8afd71fde693644c3e7424f6efaa4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2924
Cache-Control: max-age=116419
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 12:53:32 GMT
Etag: "63827623-118"
Expires: Mon, 28 Nov 2022 21:13:51 GMT
Last-Modified: Sat, 26 Nov 2022 20:25:07 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f79de44e08c43da30a3c6c5291fdc427
1a07b622d844d4793fe4767199f5f33f0f3229e2
d536b31b46e283bf64ff0c3e3bf29c706f1d5c2b63d82bc41c76e15bf4a06fe2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6428
Cache-Control: max-age=142574
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 12:53:33 GMT
Etag: "6382ce9f-1d7"
Expires: Tue, 29 Nov 2022 04:29:47 GMT
Last-Modified: Sun, 27 Nov 2022 02:42:39 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.42.74.230101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.74.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: J74BgjYnRC/tXUQJ7MmDWg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zezGgMd05W6J/WX20C0Lqg9eJCU=
www.divyaroadlines.com/stylesheets/bootstrap.css
103.224.23.227200 OK 146 kB URL HTTP/1.1 www.divyaroadlines.com/stylesheets/bootstrap.css
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (540)
Size 146 kB (146025 bytes)
Hash 7bea8a6adaa0d75c6f85c00abeec43fe
c9cca763ed87f14fc8c24e5ca293334596771c74
02c3e37c5c3894eb1c736b56733ac76136bf58e8bbb7d9c4b1af35b57ca2849f
GET /stylesheets/bootstrap.css HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:32 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:10:38 GMT
Accept-Ranges: bytes
Content-Length: 146025
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f79de44e08c43da30a3c6c5291fdc427
1a07b622d844d4793fe4767199f5f33f0f3229e2
d536b31b46e283bf64ff0c3e3bf29c706f1d5c2b63d82bc41c76e15bf4a06fe2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6428
Cache-Control: max-age=142574
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 12:53:33 GMT
Etag: "6382ce9f-1d7"
Expires: Tue, 29 Nov 2022 04:29:47 GMT
Last-Modified: Sun, 27 Nov 2022 02:42:39 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
www.divyaroadlines.com/stylesheets/responsive.css
103.224.23.227200 OK 12 kB URL HTTP/1.1 www.divyaroadlines.com/stylesheets/responsive.css
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 391642299df4c47a0d513d681aafc283
3abc026b43c7fea4405cfcb876e35d2c4878599f
258bf9663f76984ba73916fe854806291c3960557469497b0b83b73d759290a4
GET /stylesheets/responsive.css HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:32 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:10:44 GMT
Accept-Ranges: bytes
Content-Length: 12089
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
static.xx.fbcdn.net/rsrc.php/v3/yQ/l/0,cross/DECkNS4_9EQ.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yQ/l/0,cross/DECkNS4_9EQ.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4431)
Hash f3bcc1fb838bb9772b11f60669dfd282
889a8267a1c097f8c6aefc0993ff69ff93e60d82
6e9a28865d31f886213a779e9472362e8c7a2542e466551b1ff4f5d817d5ae3f
GET /rsrc.php/v3/yQ/l/0,cross/DECkNS4_9EQ.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 26 Nov 2023 18:28:57 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 87zB+4OLuXcrEfYGad/Sgg==
x-fb-debug: NXL4d97CGiVcyXVK+wuMOiJ0g0THfv4oZ6MiY+8V3GQ242SmsNH0Ar2JswXtT+JpCDTf7OTYaLBNJCB1bqpyoQ==
content-length: 5372
x-fb-trip-id: 1904183273
date: Sun, 27 Nov 2022 12:53:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.divyaroadlines.com/stylesheets/shortcodes.css
103.224.23.227200 OK 32 kB URL HTTP/1.1 www.divyaroadlines.com/stylesheets/shortcodes.css
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash fc242d115d8de481edb15fe70e3a6bde
26da7cb347ba9deac810997fda65fa9f017f8678
00b6b3384488fe9b10f3d8b35bd6c285c2c0fe6030824e1203206d259fe173ab
GET /stylesheets/shortcodes.css HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:32 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:10:41 GMT
Accept-Ranges: bytes
Content-Length: 31705
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.divyaroadlines.com/revolution/css/settings.css
103.224.23.227200 OK 30 kB URL HTTP/1.1 www.divyaroadlines.com/revolution/css/settings.css
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (29286)
Hash 41b3d6e5f52d0beff3b438bd28bfa5b5
f5539c5ea9f0cacef20f9c88333a3a0353dee68c
32a7ac68e797d3fd00741a3955c76a457474bdc985559ad3d843c6a151ffd3d0
GET /revolution/css/settings.css HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:32 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:14:19 GMT
Accept-Ranges: bytes
Content-Length: 29648
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.divyaroadlines.com/stylesheets/style.css
103.224.23.227200 OK 83 kB URL HTTP/1.1 www.divyaroadlines.com/stylesheets/style.css
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (391)
Hash 40b801cdc2f712241c0c1845aff8a9c5
087667bc13b028c7d2a80405e4a2057ace288dc1
87512979a601a598a1b6808d9ed29219e044a47b47627f7d082f2ffb1b8ea1cf
GET /stylesheets/style.css HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:32 GMT
Server: Apache
Last-Modified: Sun, 21 Aug 2022 13:42:57 GMT
Accept-Ranges: bytes
Content-Length: 82567
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.divyaroadlines.com/stylesheets/colors/color1.html
103.224.23.227404 Not Found 315 B URL HTTP/1.1 www.divyaroadlines.com/stylesheets/colors/color1.html
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Malware
GET /stylesheets/colors/color1.html HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 27 Nov 2022 12:53:32 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 12:53:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 12:53:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 12:53:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.divyaroadlines.com/javascript/bootstrap.min.js
103.224.23.227200 OK 38 kB URL HTTP/1.1 www.divyaroadlines.com/javascript/bootstrap.min.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32025)
Hash 2e20e83e3d5476dc6642385d1d194819
0c3cfe8982950f124d3a82c8d0f97918d91b75bf
a48fa303ced4b11ba46ac38c09c357fddb51f2200c162e588b726a60c794e5c2
Analyzer Verdict Alert fortinet Malware
GET /javascript/bootstrap.min.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:32 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:09:17 GMT
Accept-Ranges: bytes
Content-Length: 37743
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/stylesheets/animate.css
103.224.23.227200 OK 70 kB URL HTTP/1.1 www.divyaroadlines.com/stylesheets/animate.css
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (460)
Hash 1da8ecf18cc02092ea0687a50cb687ae
54a6b630ed66f3eef377caa2dc91e174a5c32bb6
2bef1ae08b4a64aedceae965dda9bfd0d5aa81115f06432733514e75bd2d3b14
GET /stylesheets/animate.css HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:32 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:10:37 GMT
Accept-Ranges: bytes
Content-Length: 69747
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.divyaroadlines.com/javascript/jquery.easing.js
103.224.23.227200 OK 6.5 kB URL HTTP/1.1 www.divyaroadlines.com/javascript/jquery.easing.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1795)
Hash af181384bae732515972661dc6f80016
fb0961911f02ab7b352d52b1221ec95202f44d4f
055cdc1a6fe39ab7791dc7f09dbdfa1d973d1e04772f24b925fed223ed1841d0
Analyzer Verdict Alert fortinet Malware
GET /javascript/jquery.easing.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:32 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:09:26 GMT
Accept-Ranges: bytes
Content-Length: 6517
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/stylesheets/flexslider.css
103.224.23.227200 OK 5.3 kB URL HTTP/1.1 www.divyaroadlines.com/stylesheets/flexslider.css
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 344a99faa67a555f5301b3b88df19771
6907bc3136b554f95c3ed6c459f69dad7334f107
46790aceb06c9d4a3fe264cf2b645f92cab8d160580246784ec9c99ddeeeac88
GET /stylesheets/flexslider.css HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/stylesheets/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:32 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:10:38 GMT
Accept-Ranges: bytes
Content-Length: 5343
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.divyaroadlines.com/stylesheets/owl.carousel.css
103.224.23.227200 OK 6.8 kB URL HTTP/1.1 www.divyaroadlines.com/stylesheets/owl.carousel.css
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash a6f11a6458cc2b08e128ea556b11e5a1
97f520cfc2e429ab4805de1f5325849d9b1bcb0a
6d6e1af3ad3b9ef754372eb0891eaff77a9326d1b0476a74bff611b9b4b218eb
GET /stylesheets/owl.carousel.css HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/stylesheets/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:32 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:10:41 GMT
Accept-Ranges: bytes
Content-Length: 6752
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 12:53:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.divyaroadlines.com/javascript/owl.carousel.js
103.224.23.227200 OK 81 kB URL HTTP/1.1 www.divyaroadlines.com/javascript/owl.carousel.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 94032242ba1c7cc5271b083ab8cb9498
f40d586086b169c31413156db49c06de33835caa
e504d74565a2d2f93ff2532f746c1eb0e317e7ee0d71a5cf854a69df954e6c23
Analyzer Verdict Alert fortinet Malware
GET /javascript/owl.carousel.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:09:33 GMT
Accept-Ranges: bytes
Content-Length: 80944
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/javascript/jquery-waypoints.js
103.224.23.227200 OK 9.9 kB URL HTTP/1.1 www.divyaroadlines.com/javascript/jquery-waypoints.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (9620)
Hash ad3d9ae1ba68c855a54ec08fa4844e05
d1a676033b683e317c7514d708099937070ee716
c3f40658ee2b66077f2e51e19441c14281a49f7cf9d6468ce3aa4a940fbfcf97
Analyzer Verdict Alert fortinet Malware
GET /javascript/jquery-waypoints.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:09:23 GMT
Accept-Ranges: bytes
Content-Length: 9856
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/javascript/parallax.js
103.224.23.227200 OK 3.7 kB URL HTTP/1.1 www.divyaroadlines.com/javascript/parallax.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1803)
Hash 1c314e6ce1cebfa28412ee79ec86fb17
245a472036e4e698f94d7fd7e4263ebec837b430
43e7554df1f46dd6f1abbf5941bb421bd5a7b3cc1fa9ba2ad9403935b8875cdc
Analyzer Verdict Alert fortinet Malware
GET /javascript/parallax.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:09:33 GMT
Accept-Ranges: bytes
Content-Length: 3654
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/javascript/jquery-countTo.js
103.224.23.227200 OK 4.3 kB URL HTTP/1.1 www.divyaroadlines.com/javascript/jquery-countTo.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1792)
Hash a14a550cfbfdd3f7a18b5e036638d622
3957e9eaacbaafc73d15a0d4dfba49ecf61eafe6
ad08dc7ad8df3114c7072153043c1fd1b685c416ca0ca22f466c97cfe30142ff
Analyzer Verdict Alert fortinet Malware
GET /javascript/jquery-countTo.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:09:23 GMT
Accept-Ranges: bytes
Content-Length: 4293
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/javascript/jquery.min.js
103.224.23.227200 OK 98 kB URL HTTP/1.1 www.divyaroadlines.com/javascript/jquery.min.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32047)
Hash 3f048de75354888b935f3de1456573e9
c524a89e69a368f4f345c93c1534af8648f360c5
25bb7f83b606d26ab8a9a70248e356434876ccf96ba75c08cc47b438c8b46e7c
Analyzer Verdict Alert fortinet Malware
GET /javascript/jquery.min.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:32 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:09:30 GMT
Accept-Ranges: bytes
Content-Length: 97723
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/javascript/jquery.cookie.js
103.224.23.227200 OK 2.8 kB URL HTTP/1.1 www.divyaroadlines.com/javascript/jquery.cookie.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2645)
Hash ee25b0d104c8b7b6f1fff0f0e5e53709
603a6443cbbe5b4df4ded77ab0d5de4797dfbb00
c7790e10e86111a2e1ef2f7df30377679ce19b6b64d2732e6f73bcec12befddd
Analyzer Verdict Alert fortinet Malware
GET /javascript/jquery.cookie.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:09:27 GMT
Accept-Ranges: bytes
Content-Length: 2791
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/javascript/jquery-validate.js
103.224.23.227200 OK 23 kB URL HTTP/1.1 www.divyaroadlines.com/javascript/jquery-validate.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (22757)
Hash 65cd022f5a88e35541bb483df82cc359
1457aba8b455daddfc7346d6d8453b5f04b2b937
dbda7ffec200220c683dcceaea2ef33004940d2e6cf79105a08a48e395e6b182
Analyzer Verdict Alert fortinet Malware
GET /javascript/jquery-validate.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:09:23 GMT
Accept-Ranges: bytes
Content-Length: 22860
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/revolution/js/jquery.themepunch.revolution.min.js
103.224.23.227200 OK 64 kB URL HTTP/1.1 www.divyaroadlines.com/revolution/js/jquery.themepunch.revolution.min.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32108)
Hash 7cf7cf6b4f866c084b13a41e4196083a
fa3265ce2a861d081a10e7425bc5a21fd90ec3bb
d03923dae4a5d4ac8f2464f5cf4089a74133fefeb96640ef1af0874b58b3cbd1
Analyzer Verdict Alert fortinet Malware
GET /revolution/js/jquery.themepunch.revolution.min.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:14:23 GMT
Accept-Ranges: bytes
Content-Length: 64441
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/revolution/js/slider.js
103.224.23.227200 OK 4.9 kB URL HTTP/1.1 www.divyaroadlines.com/revolution/js/slider.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1805)
Hash 209d5453dcacfd5183f613b40c54f1d8
6a2bcfe1e5ce79aaa865d2962911649888f5e4bb
aa8f761a3732a9860834549622bffedb65ddf993fb97662083725052fb1deb69
Analyzer Verdict Alert fortinet Malware
GET /revolution/js/slider.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:14:23 GMT
Accept-Ranges: bytes
Content-Length: 4883
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/revolution/js/extensions/revolution.extension.actions.min.js
103.224.23.227200 OK 11 kB URL HTTP/1.1 www.divyaroadlines.com/revolution/js/extensions/revolution.extension.actions.min.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (10457)
Hash ac72c1a4c83daef229e1c8a4ebbdcfdd
21fadfbc4681e2748925154928d6b885205708e1
19a2cccb1d0d19cddf6e3a059c384fc02a7458f82b8006c5ac79ccd4fab69307
Analyzer Verdict Alert fortinet Malware
GET /revolution/js/extensions/revolution.extension.actions.min.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:14:43 GMT
Accept-Ranges: bytes
Content-Length: 10687
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/javascript/main.js
103.224.23.227200 OK 24 kB URL HTTP/1.1 www.divyaroadlines.com/javascript/main.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1803)
Hash a40f053b9dee386935f8aaac9b1112b4
f437697bb09d7bf1871f131533a480336820cb7b
883331af6a8eba3ff0e0e57cec975ec149b35dc03d80e0a2f083752fe1872607
Analyzer Verdict Alert fortinet Malware
GET /javascript/main.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:09:30 GMT
Accept-Ranges: bytes
Content-Length: 24106
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/revolution/js/jquery.themepunch.tools.min.js
103.224.23.227200 OK 109 kB URL HTTP/1.1 www.divyaroadlines.com/revolution/js/jquery.themepunch.tools.min.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (27184)
Size 109 kB (109174 bytes)
Hash 901639aea0e23316da24e8b504ac2b92
36c6ebf855bf670bbd14d51fe770a42f46393c1f
05d2840a16e787551ac2ccd9a9dde378a323337165720c4ee8df226a8592297d
Analyzer Verdict Alert fortinet Malware
GET /revolution/js/jquery.themepunch.tools.min.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:14:20 GMT
Accept-Ranges: bytes
Content-Length: 109174
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/revolution/js/extensions/revolution.extension.carousel.min.js
103.224.23.227200 OK 9.4 kB URL HTTP/1.1 www.divyaroadlines.com/revolution/js/extensions/revolution.extension.carousel.min.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (9162)
Hash c2418aa0422ce0b103f8396c5aad8532
45370d956fdba80cc354e1e603140a6594b915a7
46a31f03a809c2d73c9687e8c8cc9f58674c539e17e0f28931d33b43f2663f7a
Analyzer Verdict Alert fortinet Malware
GET /revolution/js/extensions/revolution.extension.carousel.min.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:14:37 GMT
Accept-Ranges: bytes
Content-Length: 9393
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/revolution/js/extensions/revolution.extension.layeranimation.min.js
103.224.23.227200 OK 52 kB URL HTTP/1.1 www.divyaroadlines.com/revolution/js/extensions/revolution.extension.layeranimation.min.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32005)
Hash 2529a8abd9fe8889db972b0c9d84601f
86d318bdb5dd63b86f49d38dc8ae52936d4fb0bd
fc26675800e807c9e1f94bd8d2b3a21e6ed7153ff0c0e65573ef1964322161c9
Analyzer Verdict Alert fortinet Malware
GET /revolution/js/extensions/revolution.extension.layeranimation.min.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:14:40 GMT
Accept-Ranges: bytes
Content-Length: 51961
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/revolution/js/extensions/revolution.extension.migration.min.js
103.224.23.227200 OK 7.9 kB URL HTTP/1.1 www.divyaroadlines.com/revolution/js/extensions/revolution.extension.migration.min.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (7484)
Hash b70e63d74cc169199102297f3e38d1ca
5de05f3a8d52a4c583a31f60c5b6026b81029760
b62dbe2bc38dc10595eb876c2ab192383fe513b9fe3f7d2b702918fba4ef3131
Analyzer Verdict Alert fortinet Malware
GET /revolution/js/extensions/revolution.extension.migration.min.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:14:41 GMT
Accept-Ranges: bytes
Content-Length: 7896
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/revolution/js/extensions/revolution.extension.kenburn.min.js
103.224.23.227200 OK 5.2 kB URL HTTP/1.1 www.divyaroadlines.com/revolution/js/extensions/revolution.extension.kenburn.min.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (4942)
Hash 08b117883daff3e7763b39a508f443c2
df6479ef639812162845e0c51d6c50add69406fb
da9f010b8d3e060e45964e809007fab532751c5678000726fec49e1a8ab41244
Analyzer Verdict Alert fortinet Malware
GET /revolution/js/extensions/revolution.extension.kenburn.min.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:14:40 GMT
Accept-Ranges: bytes
Content-Length: 5170
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/revolution/js/extensions/revolution.extension.navigation.min.js
103.224.23.227200 OK 28 kB URL HTTP/1.1 www.divyaroadlines.com/revolution/js/extensions/revolution.extension.navigation.min.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (27624)
Hash 1cdb249aa5e771aa2d19c64b310a36aa
9a1612408f2a7d687d493697ea468763868022b2
b0af6764511edfcf01d558ceeaf44ae7f2c8235ace8d7eb7927652a5856c98ef
Analyzer Verdict Alert fortinet Malware
GET /revolution/js/extensions/revolution.extension.navigation.min.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:14:44 GMT
Accept-Ranges: bytes
Content-Length: 27857
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/revolution/js/extensions/revolution.extension.parallax.min.js
103.224.23.227200 OK 12 kB URL HTTP/1.1 www.divyaroadlines.com/revolution/js/extensions/revolution.extension.parallax.min.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (12232)
Hash 6468f1367d2a669eed21d6edc8594466
972fd88eedcafae064446faeb9aea3f50e48183b
70ab169f4226fd6796a9e825aa6bffb5d65b495a67a28bd0065409bb291ae2fc
Analyzer Verdict Alert fortinet Malware
GET /revolution/js/extensions/revolution.extension.parallax.min.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:14:46 GMT
Accept-Ranges: bytes
Content-Length: 12465
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/revolution/css/layers.css
103.224.23.227200 OK 142 kB URL HTTP/1.1 www.divyaroadlines.com/revolution/css/layers.css
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Size 142 kB (142090 bytes)
Hash ae6a2472af88f27f9739a5ff6ea93f94
381e745db52271df1249e3d1bcc8c398bbb0e940
bafdc6fd68c7f5adb1aa67e6426e4deae32f2882691cb180d14ad126e2e5809d
GET /revolution/css/layers.css HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:32 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:14:19 GMT
Accept-Ranges: bytes
Content-Length: 142090
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.divyaroadlines.com/revolution/js/extensions/revolution.extension.slideanims.min.js
103.224.23.227200 OK 30 kB URL HTTP/1.1 www.divyaroadlines.com/revolution/js/extensions/revolution.extension.slideanims.min.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (29960)
Hash 72e427cbf6ba20106cb1ef6e090ccad7
e02d25b2d59ebb70996ea90d9c51f914e68b5cdf
daca168c444a55bab73f7169db106cfb483b1f9f214ca7a4f2e43f4889f685a0
Analyzer Verdict Alert fortinet Malware
GET /revolution/js/extensions/revolution.extension.slideanims.min.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:14:47 GMT
Accept-Ranges: bytes
Content-Length: 30204
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.divyaroadlines.com/revolution/js/extensions/revolution.extension.video.min.js
103.224.23.227200 OK 26 kB URL HTTP/1.1 www.divyaroadlines.com/revolution/js/extensions/revolution.extension.video.min.js
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (25413)
Hash 53550c6851a1282cb7cec19929952a3c
9491d29d372841903417541d1fbd9d6884b98bb9
26e657cab035a0f7408fe81be6273a219543888d5ffb0459de0f9a5d06d91d07
Analyzer Verdict Alert fortinet Malware
GET /revolution/js/extensions/revolution.extension.video.min.js HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:14:46 GMT
Accept-Ranges: bytes
Content-Length: 25655
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.6.1/fonts/fontawesome-webfont.woff2?v=4.6.1
104.17.24.14200 OK 71 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.6.1/fonts/fontawesome-webfont.woff2?v=4.6.1
IP 104.17.24.14:0
File type Web Open Font Format (Version 2), TrueType, length 70728, version 4.393\012- data
Hash 926c93d201fe51c8f351e858468980c3
977357f82830f57fbdac2492dd421e5dcce44a1a
d3ebb498192527b985939ae62cc4e5eb5c108efc1896184126b45d866868e73d
GET /ajax/libs/font-awesome/4.6.1/fonts/fontawesome-webfont.woff2?v=4.6.1 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.divyaroadlines.com
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 12:53:34 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 70728
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-11448"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3350726
expires: Fri, 17 Nov 2023 12:53:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I9F%2BKpkwaSAyd1owvp8nUs%2B92kGcuTrlG3UQCRYrZ%2FhefL%2BsHwisPanfTLIyOG%2BdIeqw%2FWI1YgNjIDJcZmkjUcbaT7hrrYDRl4%2BXcncrsW3JxG28f6fPsP3M7rrpPj769nJ9g1a0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 770b01e97cf91c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 12:53:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.divyaroadlines.com/images/icon/c2.png
103.224.23.227200 OK 1.3 kB URL HTTP/1.1 www.divyaroadlines.com/images/icon/c2.png
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 150 x 178, 8-bit colormap, non-interlaced\012- data
Hash 1267491485b2b2954a682b38cd485bb2
86983dfe7a16e4945a81230b22dbc139c5cfa71a
9f9002ae2c42b9c39b4a59f223d7334274af04585d81a1a27d26d92d85ce28ad
GET /images/icon/c2.png HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:12:13 GMT
Accept-Ranges: bytes
Content-Length: 1321
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
www.divyaroadlines.com/images/icon/c4.png
103.224.23.227200 OK 4.1 kB URL HTTP/1.1 www.divyaroadlines.com/images/icon/c4.png
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 150 x 178, 8-bit colormap, non-interlaced\012- data
Hash 9fb99fbe4528603e0bf7d9488ec409fb
c48173e7e2c746d0caefdcb957465858c227aa68
184ce790f2bae2269f7d233bb6dea67fe094dc8e9a426edcadad76fda14b5b48
GET /images/icon/c4.png HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:12:16 GMT
Accept-Ranges: bytes
Content-Length: 4080
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
www.divyaroadlines.com/images/icon/c3.png
103.224.23.227200 OK 3.4 kB URL HTTP/1.1 www.divyaroadlines.com/images/icon/c3.png
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 150 x 178, 8-bit colormap, non-interlaced\012- data
Hash 9bbf0f67a2fddc2a653b72b1caa9dbf5
f10030f3b933b895992e5f7792bf411ea33eb1c4
02ccae4258862e0869e40519e36535607795529f62d24f6538fb61dc4d66deec
GET /images/icon/c3.png HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:12:16 GMT
Accept-Ranges: bytes
Content-Length: 3404
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.divyaroadlines.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 21:48:50 GMT
expires: Thu, 23 Nov 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 313484
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.divyaroadlines.com/upload/149631647968221901764l.jpg
103.224.23.227404 Not Found 315 B URL HTTP/1.1 www.divyaroadlines.com/upload/149631647968221901764l.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /upload/149631647968221901764l.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.divyaroadlines.com/upload/download%20(1).jpg
103.224.23.227200 OK 11 kB URL HTTP/1.1 www.divyaroadlines.com/upload/download%20(1).jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 299x168, components 3\012- data
Hash 5a592d17039c59a1aebcb59cc54ef890
0d20150e2c4ac87d165bd632b211b133949fbff9
4ef71a3d7c93e6a52a7802b62a1e7f7aeff832b55d35d8e8678ba545b565af1c
GET /upload/download%20(1).jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:11:05 GMT
Accept-Ranges: bytes
Content-Length: 10690
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
216.58.207.195200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.divyaroadlines.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 14:43:52 GMT
expires: Wed, 22 Nov 2023 14:43:52 GMT
cache-control: public, max-age=31536000
age: 425382
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:300,400,500,600,700%27%20rel=%27stylesheet%27%20type=%27text/css
142.250.74.10200 OK 31 kB URL HTTP/2 fonts.googleapis.com/css?family=Poppins:300,400,500,600,700%27%20rel=%27stylesheet%27%20type=%27text/css
IP 142.250.74.10:0
Hash 7462bb14b33a7f86c1bd337eb9ae6a8c
995762b8ed2242a0c609afb46d404611a18699b6
947dc9db83336df2b0d20b5c1ad9ec8bca858c2343032b5c7516d025a5481746
GET /css?family=Poppins:300,400,500,600,700%27%20rel=%27stylesheet%27%20type=%27text/css HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 12:53:33 GMT
date: Sun, 27 Nov 2022 12:53:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
216.58.207.195200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.divyaroadlines.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:30:59 GMT
expires: Thu, 23 Nov 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 321755
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
216.58.207.195200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.divyaroadlines.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 08:32:10 GMT
expires: Thu, 23 Nov 2023 08:32:10 GMT
cache-control: public, max-age=31536000
age: 361284
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 12:53:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
216.58.207.195200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Hash 8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb
GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.divyaroadlines.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:31:06 GMT
expires: Thu, 23 Nov 2023 19:31:06 GMT
cache-control: public, max-age=31536000
age: 321748
last-modified: Wed, 27 Apr 2022 16:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.divyaroadlines.com/images/icon/c5.png
103.224.23.227200 OK 2.1 kB URL HTTP/1.1 www.divyaroadlines.com/images/icon/c5.png
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 150 x 178, 8-bit colormap, non-interlaced\012- data
Hash 8ee3554a864a093349fc80ab6038182c
e90cf81cb9da0330030e91ac1db48dc3278cc434
cb7b3b7316e9c7ae0984df3f96be7a055d1507e7f61d64b014643270409ebff2
GET /images/icon/c5.png HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:12:16 GMT
Accept-Ranges: bytes
Content-Length: 2086
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
www.divyaroadlines.com/masteradmin/uploads/logo.png
103.224.23.227200 OK 10 kB URL HTTP/1.1 www.divyaroadlines.com/masteradmin/uploads/logo.png
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 800 x 238, 8-bit colormap, non-interlaced\012- data
Hash 9cfae0051e06fc8520e0133c59e91920
75db91ac974d4c00d6df82ca8fd55de4defdb1d9
1d268bcc4630000e87e6410d3bfe7b20cf9796aaf6467ac6f547dc68d66ae40a
GET /masteradmin/uploads/logo.png HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 12 May 2022 05:55:51 GMT
Accept-Ranges: bytes
Content-Length: 10436
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
www.divyaroadlines.com/images/parallax/bg-parallax1.jpg
103.224.23.227404 Not Found 315 B URL HTTP/1.1 www.divyaroadlines.com/images/parallax/bg-parallax1.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /images/parallax/bg-parallax1.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/stylesheets/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.divyaroadlines.com/images/about/inner.jpg
103.224.23.227200 OK 36 kB URL HTTP/1.1 www.divyaroadlines.com/images/about/inner.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x614, components 3\012- data
Hash 67c3b5ab354adc1765c0a6a7ffca84ce
20628a7d2f1d42b969e9b94ec0772a1937031276
dcfdc55ec4cb594523f56e34043fbdeba70316c67699e4b25dba5ed5137e2b93
GET /images/about/inner.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/stylesheets/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:11:45 GMT
Accept-Ranges: bytes
Content-Length: 35914
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/upload/service1.jpg
103.224.23.227200 OK 70 kB URL HTTP/1.1 www.divyaroadlines.com/upload/service1.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=200, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=300], progressive, precision 8, 300x200, components 3\012- data
Hash bb546031c721eca8b9526169413ab61f
96e0213cc7b517dfe00aa07456aaa63534f0f069
2c090306048ac56872a0192fc44601635481713f770ce864c79b01fc51406725
GET /upload/service1.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:11:34 GMT
Accept-Ranges: bytes
Content-Length: 70041
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/revolution/fonts/revicons/revicons90c6.woff?5510888
103.224.23.227200 OK 7.5 kB URL HTTP/1.1 www.divyaroadlines.com/revolution/fonts/revicons/revicons90c6.woff?5510888
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert fortinet Malware
GET /revolution/fonts/revicons/revicons90c6.woff?5510888 HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.divyaroadlines.com/revolution/css/settings.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:14:31 GMT
Accept-Ranges: bytes
Content-Length: 7536
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff
www.divyaroadlines.com/images/about/about.jpg
103.224.23.227200 OK 557 kB URL HTTP/1.1 www.divyaroadlines.com/images/about/about.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x1000, components 3\012- data
Size 557 kB (557083 bytes)
Hash 5170e691549c93211bd0cf4f9f1732a8
88ba57e84576dbbe102970e429ca6a90c2af60e0
cf465ef0610f2db2b3e64fdbc263a1342a042458ddea39f2913b32c14645b07f
GET /images/about/about.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:33 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:11:42 GMT
Accept-Ranges: bytes
Content-Length: 557083
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/upload/service4.jpg
103.224.23.227200 OK 70 kB URL HTTP/1.1 www.divyaroadlines.com/upload/service4.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=200, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=300], progressive, precision 8, 300x200, components 3\012- data
Hash b81e343b8b32295d37c41a6ff2ca4e98
3f363057b4711b425884112c61cb34f3b45a343d
900f6f763efcf748f8fa5326d206c588854488a3686ec5efaf6eb13b0c90083c
GET /upload/service4.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:11:35 GMT
Accept-Ranges: bytes
Content-Length: 69851
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/upload/service2.jpg
103.224.23.227200 OK 87 kB URL HTTP/1.1 www.divyaroadlines.com/upload/service2.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=200, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=300], progressive, precision 8, 300x200, components 3\012- data
Hash 261b0a64abb621af6bc7a11204480b23
fb0f19b0f5567416d760ef105a1c8edcf43a28ba
bde99a7a7902c49b160cd52d4962ba83207be55fb26a0d8a87fc43036287e409
GET /upload/service2.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:11:35 GMT
Accept-Ranges: bytes
Content-Length: 87061
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9497
Expires: Sun, 27 Nov 2022 15:31:51 GMT
Date: Sun, 27 Nov 2022 12:53:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9497
Expires: Sun, 27 Nov 2022 15:31:51 GMT
Date: Sun, 27 Nov 2022 12:53:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9497
Expires: Sun, 27 Nov 2022 15:31:51 GMT
Date: Sun, 27 Nov 2022 12:53:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9497
Expires: Sun, 27 Nov 2022 15:31:51 GMT
Date: Sun, 27 Nov 2022 12:53:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9497
Expires: Sun, 27 Nov 2022 15:31:51 GMT
Date: Sun, 27 Nov 2022 12:53:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: K2eKLQhrsCdd4ASsfEibRuZAYW4CpPTlO3fZs7xdoKrw1HBxfTGkEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
age: 54680
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 116eb5028a206e55f758f3e34887c87e
10577d9fc19028a0e0303634ec16ad8b2d41fa7a
d5d0f5518f8346e78f00a57632efe36f3363cabfa9abb30b7bea60261b29910b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5103
x-amzn-requestid: 203eadee-9375-4290-ae0a-dd48e83df697
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFGzTE90oAMFTyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637eb814-2c32253b155d5dd0283fdd07;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 00:17:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mcJEBmwUhmWYAGJVngi2W0YHXEVdLlSREViZLePCgIlcY7Z755i17w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 14:36:46 GMT
age: 80208
etag: "10577d9fc19028a0e0303634ec16ad8b2d41fa7a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
age: 54680
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde03fed4-26de-4471-bc0e-a0c0483636ce.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde03fed4-26de-4471-bc0e-a0c0483636ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6ee5071a31d351c552aa651e40b16189
6fca9136030ea6f67be44e428ea39c34ff3e28e7
8d52f14267b8bd47119954796ff6c5d54eb6aa5d23c6e8bbd246108a5b89c1d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde03fed4-26de-4471-bc0e-a0c0483636ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8254
x-amzn-requestid: e12624ea-58c6-4f39-826c-8a1d87ebc5ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFySQGegIAMF-HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637efda7-2c5e216a0d8a1502615186a8;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 05:14:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0Ylris3tg94-66p8L5kYl2zgnVZ4mCc04ju96DslaB97Dfr-6nTyfA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
age: 54680
etag: "6fca9136030ea6f67be44e428ea39c34ff3e28e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 433875a1b1fef34e45f2d8ac344c07e3
f2129466436cbbdd58abe42a47fb7af19eba58e6
ab1e7b46f3804640c7dd94d70c8c31ec2dfc3e2f0f015a8556d04d9d9089c450
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5099
x-amzn-requestid: 57648043-7820-453d-9549-0f743b6c2557
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4jFBvoAMFl1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-53b59d607b82c264180f469d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: VsdLWuh4rCawI5V0YYGaHxEMl2YEVNgsbjfCwzDsrnCZhRK2FkCkVw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "f2129466436cbbdd58abe42a47fb7af19eba58e6"
content-type: image/jpeg
age: 54680
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.divyaroadlines.com/upload/service3.jpg
103.224.23.227200 OK 111 kB URL HTTP/1.1 www.divyaroadlines.com/upload/service3.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=200, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=300], progressive, precision 8, 300x200, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 28276-17955, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 0.000000, slope 3892262999552715390976.000000\012- data
Size 111 kB (110917 bytes)
Hash 6f32c2f933b7f8f4b747a861ed9b7a1c
a31475d3dd4d9acba7558b272c412a085ebd28e9
a66b02b680b3bc3986733122200809f821f5aa6cd766d5b020a4b8c1968536a9
GET /upload/service3.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:11:35 GMT
Accept-Ranges: bytes
Content-Length: 110917
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F661e728e-05a1-40d9-ae81-c058443324b3.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F661e728e-05a1-40d9-ae81-c058443324b3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 892849386662d30042f01ab952a3ec14
3b349ac17a00d68875e64bee110ec85d07cffda2
893797d55f15081d45af7a31af9fefe106ace9ba236e9b113787d07ab416faf9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F661e728e-05a1-40d9-ae81-c058443324b3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9926
x-amzn-requestid: 4e2c72af-2cce-4740-9962-6a7f9e217272
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b_cVCHwEoAMF3lQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c7420-51c2e04b4fae5b576a679db5;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 07:02:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rZTk5ONMhQB66WF0VWIRmlTOdzEJO-NJVl4TCibzbH2fZXY_9Mx9kQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 18:42:19 GMT
age: 65475
etag: "3b349ac17a00d68875e64bee110ec85d07cffda2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.divyaroadlines.com/images/icon/c1.png
103.224.23.227200 OK 1.7 kB URL HTTP/1.1 www.divyaroadlines.com/images/icon/c1.png
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 150 x 178, 8-bit colormap, non-interlaced\012- data
Hash 82f61d7b1fb471561393660c16a7e9bd
59cad716937a85b1a53d6eeb73cada9989743b3a
533a9810d55f70ecfca38830b81b668fa5e7c84e5649db38cc96939ebae8c847
GET /images/icon/c1.png HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:12:16 GMT
Accept-Ranges: bytes
Content-Length: 1687
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.divyaroadlines.com/upload/download.jpg
103.224.23.227200 OK 9.2 kB URL HTTP/1.1 www.divyaroadlines.com/upload/download.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 290x174, components 3\012- data
Hash 7491ba2ed98fc7771162186366e6d0c8
98d32109850121ba58a4a4382a88087871648d81
cd7f9fad56d8dd2eb6e79f41c3536e8f90c624d741ac103bde851937a854ed3c
GET /upload/download.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:11:08 GMT
Accept-Ranges: bytes
Content-Length: 9162
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/upload/1920_klm_cargo_open_nose_2-700x432.jpg
103.224.23.227200 OK 48 kB URL HTTP/1.1 www.divyaroadlines.com/upload/1920_klm_cargo_open_nose_2-700x432.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 700x432, components 3\012- data
Hash 229f2e162ccd996878888f8f0ea8851e
cc5b242dcbd087b982cd60823fb1812a5db46abe
e71f3c4910823a26af594683ce7e435e5fb17ac746fd517a2b5e67b07cd3e737
GET /upload/1920_klm_cargo_open_nose_2-700x432.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:10:45 GMT
Accept-Ranges: bytes
Content-Length: 47617
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/upload/6.jpg
103.224.23.227200 OK 23 kB URL HTTP/1.1 www.divyaroadlines.com/upload/6.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x250, components 3\012- data
Hash 8fa0326a1d5388984a2c8ec9b7bb2701
56a830432f514e4a34dc028a23e094b92c325440
517e761ccbede52bbc4cdd58e0b09b54f668d90ea89cce96b4ba7d64c3ed6dd5
GET /upload/6.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:10:46 GMT
Accept-Ranges: bytes
Content-Length: 23315
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/upload/7.jpg
103.224.23.227200 OK 14 kB URL HTTP/1.1 www.divyaroadlines.com/upload/7.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x250, components 3\012- data
Hash e0efc20aa42f142e889592ac3165daf2
3cf16f0d0710409a96e6a6f58c9108de7ec8f14f
8503596a3dd33ba0b9a282dec1c82b8a026a7ba1d227bc4dac8bcbc77e77f47c
GET /upload/7.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:10:46 GMT
Accept-Ranges: bytes
Content-Length: 13555
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/upload/slide03.jpg
103.224.23.227200 OK 573 kB URL HTTP/1.1 www.divyaroadlines.com/upload/slide03.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1923x854, components 3\012- data
Size 573 kB (573332 bytes)
Hash 645850c3788c9d25e04e5d6fbf954d1b
66543f99c4ae73e86ed9d9349f28a26fb6071f2f
9a25e3fe0c10c8de4ec9a7691c6ac1e2038493d4167b33ac628cdf1523dc51c4
GET /upload/slide03.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:11:39 GMT
Accept-Ranges: bytes
Content-Length: 573332
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/upload/8.jpg
103.224.23.227200 OK 32 kB URL HTTP/1.1 www.divyaroadlines.com/upload/8.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x250, components 3\012- data
Hash 694cc7a1e058739a04853a026ba9dcf7
ac122209a7cdbf84e9aa534c8da1574fea88ea50
5a0c0935044d1504d7f65ab0d5b1ed33127eabe1b5ddc9e53823e47f03941b3b
GET /upload/8.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:10:55 GMT
Accept-Ranges: bytes
Content-Length: 32070
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/upload/9.jpg
103.224.23.227200 OK 30 kB URL HTTP/1.1 www.divyaroadlines.com/upload/9.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x250, components 3\012- data
Hash 7e9e18f57e6dea918757ccf2e42ac678
656f37bd694e2c14ab184918316491aad9cad660
4eeb9c13e0db06febe7f9856abcc1758004ca6dbd5445d8d65c60a1a1f4b3c3a
GET /upload/9.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:10:51 GMT
Accept-Ranges: bytes
Content-Length: 29678
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/upload/5.jpg
103.224.23.227200 OK 29 kB URL HTTP/1.1 www.divyaroadlines.com/upload/5.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x250, components 3\012- data
Hash 6b180fe6436c86ac74087283ed67a714
18c228fadd4834d96668ad4c99c94ffe46ce55d3
8e05e324c2fbc3417f2766952a624ea8c86b3028e392df6d520c3f0a55544ef6
GET /upload/5.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:10:45 GMT
Accept-Ranges: bytes
Content-Length: 29146
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/upload/images%20(1).jpg
103.224.23.227200 OK 13 kB URL HTTP/1.1 www.divyaroadlines.com/upload/images%20(1).jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 367x137, components 3\012- data
Hash 1981a2bf8f75d5114836eeed2e724e90
4efa9a8024792067a0c53e39e78711689b0315db
5a859d11063e457873be8912f6b84a29c184ce0750b31edf19b4bb8b12901da3
GET /upload/images%20(1).jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:11:09 GMT
Accept-Ranges: bytes
Content-Length: 13135
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/upload/pooja709.webp
103.224.23.227200 OK 44 kB URL HTTP/1.1 www.divyaroadlines.com/upload/pooja709.webp
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 660x450, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7bf6ad295c0f1c4aa16fd39b17176e23
94ee65cc32cdfd30954c3ad35eb831ed986c91ea
5c0f89b52f5bf9ac00460091e6a103ae2f7185e082e4abdc8f0b503cbf079328
Analyzer Verdict Alert fortinet Malware
GET /upload/pooja709.webp HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:11:16 GMT
Accept-Ranges: bytes
Content-Length: 44278
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/webp
www.divyaroadlines.com/upload/road-cargo-services-1574676203-5170571.jpg
103.224.23.227404 Not Found 315 B URL HTTP/1.1 www.divyaroadlines.com/upload/road-cargo-services-1574676203-5170571.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /upload/road-cargo-services-1574676203-5170571.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.divyaroadlines.com/upload/air-cargo.png
103.224.23.227200 OK 449 kB URL HTTP/1.1 www.divyaroadlines.com/upload/air-cargo.png
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 678 x 382, 8-bit/color RGBA, non-interlaced\012- data
Size 449 kB (448622 bytes)
Hash 563aa26690a126906d7464d993309cfb
0f870763c4ff1582f861ae2fc5e49dd3a1082c9a
a9682c516bc634a48b16335c1460829048a07afd56809d738404c55ab2059587
GET /upload/air-cargo.png HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:10:58 GMT
Accept-Ranges: bytes
Content-Length: 448622
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
www.divyaroadlines.com/upload/download%20(4).jpg
103.224.23.227200 OK 7.8 kB URL HTTP/1.1 www.divyaroadlines.com/upload/download%20(4).jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 284x177, components 3\012- data
Hash b73d3798e32bdc88e2cd32a30a921ff6
94affee3387c8dac54e40a79c973e04ad9db9b5d
b6f451bcc77183705ffee4f58d7851822e8bbf2d0ad574fadb0677cd292e890b
GET /upload/download%20(4).jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:11:08 GMT
Accept-Ranges: bytes
Content-Length: 7781
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/images/footer_logo.png
103.224.23.227200 OK 9.8 kB URL HTTP/1.1 www.divyaroadlines.com/images/footer_logo.png
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 800 x 238, 8-bit colormap, non-interlaced\012- data
Hash 53ad5722c53c8db208d24f1149954777
df06e79399ad4dd8daf488a9c5f211f10c56323d
28bce037317d3e7826cade206dcf22a3856378e98a7f2174338c36a6c2ff1e40
GET /images/footer_logo.png HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:08:54 GMT
Accept-Ranges: bytes
Content-Length: 9810
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
www.divyaroadlines.com/upload/download%20(3).jpg
103.224.23.227200 OK 7.0 kB URL HTTP/1.1 www.divyaroadlines.com/upload/download%20(3).jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 194x259, components 3\012- data
Hash 0f10489fd8160ab25ddbf2f052346db9
03e5f35fee78a1b6e492923a555c5c536e042c48
c3d7bd0804afbd74e112513537e9fa93135c24ca0cf58cda3a9c94824cf1f9e6
GET /upload/download%20(3).jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:11:05 GMT
Accept-Ranges: bytes
Content-Length: 7024
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/images/about/text.jpg
103.224.23.227200 OK 32 kB URL HTTP/1.1 www.divyaroadlines.com/images/about/text.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x650, components 3\012- data
Hash 64f08b5a6bdc7e7f22508f63d4c9afc9
1a6830b1ba0fd6a64ccd704eb1c1ddd448ae1d70
7823f9641539ddf2d25862d9f8b5137dae230eb1f737792365cb7ddbe165c2e4
GET /images/about/text.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/stylesheets/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:11:45 GMT
Accept-Ranges: bytes
Content-Length: 32546
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/upload/set-train-cargo-wagons-tanks-cars-vector-8088296.jpg
103.224.23.227200 OK 251 kB URL HTTP/1.1 www.divyaroadlines.com/upload/set-train-cargo-wagons-tanks-cars-vector-8088296.jpg
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1000x1022, components 3\012- data
Size 251 kB (250694 bytes)
Hash 60b4f13ab1b5a4d9e162f676332df9c7
d50ed6fd6ce4248f1472188b865911e1edd76515
b38dba6e419b3d5f191c4bfa84e21b82b0b473055f7f763a822c3cd3e3cd4ba7
GET /upload/set-train-cargo-wagons-tanks-cars-vector-8088296.jpg HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:11:35 GMT
Accept-Ranges: bytes
Content-Length: 250694
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
www.divyaroadlines.com/images/index/testimonial-icon.png
103.224.23.227200 OK 3.1 kB URL HTTP/1.1 www.divyaroadlines.com/images/index/testimonial-icon.png
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 60 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 87109de3b13e63fef4ad7aecf5fc16e8
5806c55d47b3d3d0fbeff7cff771c35fa44eaab0
bd0a1cad9717eec6f872e23d0cb765c6fed2b93d3966acec3dbecfc7731bd2dc
GET /images/index/testimonial-icon.png HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/stylesheets/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:12:17 GMT
Accept-Ranges: bytes
Content-Length: 3051
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
www.divyaroadlines.com/icon/favicon.png
103.224.23.227200 OK 21 kB URL HTTP/1.1 www.divyaroadlines.com/icon/favicon.png
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 314 x 238, 8-bit/color RGBA, non-interlaced\012- data
Hash 33907d98d7912d6d993609fbe72c8cd3
ad35fc557a8bfb4d80fa673565134fa0132b0ac6
cf6e8c65e689e07c8279d25e2c79aa8247ea77feff4f878cc4e3a0b15e650006
GET /icon/favicon.png HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:08:53 GMT
Accept-Ranges: bytes
Content-Length: 21426
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
www.divyaroadlines.com/icon/apple-touch-icon-57-precomposed.png
103.224.23.227200 OK 21 kB URL HTTP/1.1 www.divyaroadlines.com/icon/apple-touch-icon-57-precomposed.png
IP 103.224.23.227:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 314 x 238, 8-bit/color RGBA, non-interlaced\012- data
Hash 33907d98d7912d6d993609fbe72c8cd3
ad35fc557a8bfb4d80fa673565134fa0132b0ac6
cf6e8c65e689e07c8279d25e2c79aa8247ea77feff4f878cc4e3a0b15e650006
GET /icon/apple-touch-icon-57-precomposed.png HTTP/1.1
Host: www.divyaroadlines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 12:53:34 GMT
Server: Apache
Last-Modified: Thu, 16 Sep 2021 12:08:53 GMT
Accept-Ranges: bytes
Content-Length: 21426
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png
fonts.googleapis.com/css?family=PT+Serif:400,400italic,700,700italic
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=PT+Serif:400,400italic,700,700italic
IP 142.250.74.10:0
GET /css?family=PT+Serif:400,400italic,700,700italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 12:53:33 GMT
date: Sun, 27 Nov 2022 12:53:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:400,700%27%20rel=%27stylesheet%27%20type=%27text/css
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:400,700%27%20rel=%27stylesheet%27%20type=%27text/css
IP 142.250.74.10:0
GET /css?family=Montserrat:400,700%27%20rel=%27stylesheet%27%20type=%27text/css HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 12:53:33 GMT
date: Sun, 27 Nov 2022 12:53:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fwebgodam&tabs=timeline&width=340&height=250&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=true&appId
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fwebgodam&tabs=timeline&width=340&height=250&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=true&appId
IP 31.13.72.36:0
GET /plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fwebgodam&tabs=timeline&width=340&height=250&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=true&appId HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.divyaroadlines.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: Ko6p+BMoyiBIe5nGP2tOU/zMmE/ZGzgSenMWhX0BITKnUO3YgpDRVvoVllUq2A9Pd1PalhdHufTiJML3HWc8Qw==
date: Sun, 27 Nov 2022 12:53:33 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2