r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 326898eb925368408f6f42ee173b9d89
b8b20ee34b7e7b139e7729b8e46a54ea25f54ac8
96c2c75f700ab55649882111713ca3cfb2eaf08e404c2bc245a641dc12ae168a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96C2C75F700AB55649882111713CA3CFB2EAF08E404C2BC245A641DC12AE168A"
Last-Modified: Wed, 04 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15628
Expires: Sat, 07 Jan 2023 01:48:07 GMT
Date: Fri, 06 Jan 2023 21:27:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ce8af3d72e7e9af609039abee59c8b87
8e1b16591fbc632df35f15e23da55ee86af31bc3
52edddbda4a3a3b778f61a491b21e6ea439e9d8024189e636b1f37b2dd7226fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52EDDDBDA4A3A3B778F61A491B21E6EA439E9D8024189E636B1F37B2DD7226FC"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14741
Expires: Sat, 07 Jan 2023 01:33:20 GMT
Date: Fri, 06 Jan 2023 21:27:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash da484f5e9c6805745e063b236fb81473
ae454bf4a7ae0e96935afc81ee0f89c049097b15
068d0da23acbe7f6b600c4e7dbe9c81d3ad78c8afd122255bbf3550e8a290686
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "068D0DA23ACBE7F6B600C4E7DBE9C81D3AD78C8AFD122255BBF3550E8A290686"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9960
Expires: Sat, 07 Jan 2023 00:13:39 GMT
Date: Fri, 06 Jan 2023 21:27:39 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 06 Jan 2023 20:41:22 GMT
content-type: application/json
age: 2777
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 09t5CeWGHndRrGC8j9NTrKKO5Mdom0x6f9K+p8s4PyYoQqUPIUAWoz+I3WcUJbwKoiDzwvHQKRk=
x-amz-request-id: 973YVSYR0M1AART7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 06 Jan 2023 21:00:08 GMT
age: 1651
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
hotelbasantresidency.com/
103.83.81.254301 Moved Permanently 334 B URL HTTP/1.1 hotelbasantresidency.com/
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 08c0543238bc0241f80db87823177b53
80c8521870fc0bf5b584c0095a0e0819477e159c
c3e1f2669e9b4db9aa8c451a31dc282bb018ba8f545ae610d0b11e42016ae7a6
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 06 Jan 2023 21:24:10 GMT
Server: Apache/2.4.10 (Ubuntu)
Location: http://www.hotelbasantresidency.com/
Content-Length: 334
Keep-Alive: timeout=20, max=250
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 06 Jan 2023 21:27:39 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 06 Jan 2023 21:08:12 GMT
age: 1167
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 43c8442b7447debab97b0f6bc973e23a
38a5f1869cff7f6ddbfd3a24e57a3da7851ba3b0
4eb7adc914570287dde1317395d1d95b07271c8fe20b97a8928025c292c47dba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4421
Cache-Control: max-age=132770
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 21:27:39 GMT
Etag: "63b7e4a8-1d7"
Expires: Sun, 08 Jan 2023 10:20:29 GMT
Last-Modified: Fri, 06 Jan 2023 09:06:48 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
www.hotelbasantresidency.com/
103.83.81.254200 OK 5.1 kB URL HTTP/1.1 www.hotelbasantresidency.com/
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (730), with CRLF, LF line terminators
Hash 90e50276ec2b4fdf44741c7b24607042
72cb336bca7bf44fb872d6b75bf0c67066379728
058ed037ac475e515fee8daf6d22b00209a69872d1c0bb9d633b0376b61a94fa
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:10 GMT
Server: Apache/2.4.10 (Ubuntu)
X-Powered-By: PHP/5.6.31-4+ubuntu14.04.1+deb.sury.org+4
Set-Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1; path=/
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5089
Keep-Alive: timeout=20, max=250
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
54.148.242.254101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.242.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: InNEXanZ5NqS5x2zDfK8+A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zJN7nP2XZXdbuaTKMbEz6Lbn8y8=
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 623e85ff33837eb6c59e11ae2759237a
cea1948490802e652e7f6678dc76694e0d6ab61a
1fb30f3579d3277435c860f472008bea3680db1202d838ad4669d943ec88ba65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 21:27:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/3.2.0/jquery.min.js
142.250.74.42200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.2.0/jquery.min.js
IP 142.250.74.42:0
File type ASCII text, with very long lines (32033)
Hash 7556a3f5497d3d7c16638a89ae2a7970
bcf358713c2c9b7fe6a6ea4ff3f7e3a6effdf8e0
d68af37a833fb796074b311adb4d7e62700ac2d6f238b2b07c193149e2918433
GET /ajax/libs/jquery/3.2.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30281
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 02:57:53 GMT
expires: Sat, 06 Jan 2024 02:57:53 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 66587
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 623e85ff33837eb6c59e11ae2759237a
cea1948490802e652e7f6678dc76694e0d6ab61a
1fb30f3579d3277435c860f472008bea3680db1202d838ad4669d943ec88ba65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 21:27:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15706
Expires: Sat, 07 Jan 2023 01:49:26 GMT
Date: Fri, 06 Jan 2023 21:27:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15706
Expires: Sat, 07 Jan 2023 01:49:26 GMT
Date: Fri, 06 Jan 2023 21:27:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15706
Expires: Sat, 07 Jan 2023 01:49:26 GMT
Date: Fri, 06 Jan 2023 21:27:40 GMT
Connection: keep-alive
www.jscache.com/wejs?wtype=linkingWidgetWAR&uniq=475&locationId=1028876&lang=en_IN&border=true
151.101.2.83301 Moved Permanently 0 B URL HTTP/1.1 www.jscache.com/wejs?wtype=linkingWidgetWAR&uniq=475&locationId=1028876&lang=en_IN&border=true
IP 151.101.2.83:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wejs?wtype=linkingWidgetWAR&uniq=475&locationId=1028876&lang=en_IN&border=true HTTP/1.1
Host: www.jscache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Server: Varnish
Retry-After: 0
Location: https://www.jscache.com/wejs?wtype=linkingWidgetWAR&uniq=475&locationId=1028876&lang=en_IN&border=true
Accept-Ranges: bytes
Date: Fri, 06 Jan 2023 21:27:40 GMT
Via: 1.1 varnish
X-Served-By: cache-bma1676-BMA
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1673040460.370182,VS0,VE0
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15706
Expires: Sat, 07 Jan 2023 01:49:26 GMT
Date: Fri, 06 Jan 2023 21:27:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb84dc300-436d-4ab6-93ff-5c34a5e8faa9.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb84dc300-436d-4ab6-93ff-5c34a5e8faa9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 905c01ccaa57e0ea71e9a2f58bbb2ca4
6cf4b068623644dd0ca790dbc75e3533e7759f8b
4b579d86c6b957bf5c777b44b474c1c8fac699ffe695757d43f9752b079ef42a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb84dc300-436d-4ab6-93ff-5c34a5e8faa9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4473
x-amzn-requestid: 4732a7f2-382c-41a0-a96a-dbd073af76dc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eScwQG6hoAMFQaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b7419b-4b3c3ebf3c06242b360e6421;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 21:31:07 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gwxWbkGIJgnJKjE2vGO2EtjwRrLcjtGcmG8CQ9cBa7-AYpGbCzZRnA==
via: 1.1 adc2002956acc4d61bfbf3b973fdf246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 22:05:44 GMT
age: 84116
etag: "6cf4b068623644dd0ca790dbc75e3533e7759f8b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F426acd7d-b225-4d35-a3be-10ba23ba69c9.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F426acd7d-b225-4d35-a3be-10ba23ba69c9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49cab8228badce0317f63284420a2a06
94abc863dc8ac54c9ab9e57a791b404a8a09729e
399c22a3adea805a2fa373f6a85d842f47798088593803b6b38034f942e092af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F426acd7d-b225-4d35-a3be-10ba23ba69c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8693
x-amzn-requestid: ae2b861d-87b8-4913-853a-64c76f410bf4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eNLADE-ZoAMFttw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b52533-6e5412c92f70fbd12a893047;Sampled=0
x-amzn-remapped-date: Wed, 04 Jan 2023 07:05:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6HQs9iy3yXcPaOn5KyltAMJ2wtx39O-H8AcL0rryuW44M-hBNiyIfw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 04:41:21 GMT
age: 60379
etag: "94abc863dc8ac54c9ab9e57a791b404a8a09729e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e832123ea0c92a446b5894e75efc86ae
bb438ca635b43819701067ef07a3d910ad29a0c7
e1b0c6cd873f304de15664f96af6b6914e13fbbfb3e2179ba43369e116446773
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5578
x-amzn-requestid: 93353c3e-1b26-424c-b4c6-0d113703edd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eFvpBFGvIAMFobw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b22c9f-1d07cff31ae39320693642f0;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 01:00:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vIFVXgt2RmoplkAVOtUrOkXj3LmhRw-XEPe7fugZ2-mv_iDY07XzUg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 00:24:30 GMT
age: 75790
etag: "bb438ca635b43819701067ef07a3d910ad29a0c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4210cd0d-e5ae-416b-b3b1-984a5c3f750c.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4210cd0d-e5ae-416b-b3b1-984a5c3f750c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e96507584bce9f14a50123fb78a8102
c45249ddffb15b9e957af8f5203d7d06ddf32cf8
118f62631c92e42b135046647e828eb80a54405603f5b461320b483bce0c55ba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4210cd0d-e5ae-416b-b3b1-984a5c3f750c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11746
x-amzn-requestid: dfac0548-1ee6-4eb6-8fb6-4be00f9cf601
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eRlO6Hc_IAMFT0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b6e8c5-4459ff7b3622ddff7dc3e3ff;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 15:12:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: P31AbiVmWqCAQfjCxt7iXE3RtDtZHNiXtBXcjBWKR_u-U_sHT1ZvTg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 15:14:11 GMT
age: 22409
etag: "c45249ddffb15b9e957af8f5203d7d06ddf32cf8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0cc6987-cb45-42f9-8b7e-1ec781513572.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0cc6987-cb45-42f9-8b7e-1ec781513572.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 884498828be14529bda4485a38b033c3
9443f22559b64c5861bbc50d0980dad8da158352
c48b1203e6b6e9468dc9a07934709f5ec2ba064fb2c9dd97f6cdc0e452a7dd77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0cc6987-cb45-42f9-8b7e-1ec781513572.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6268
x-amzn-requestid: 3674eb24-1902-4722-8ea0-63b5fb36b41e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eSdsIEtbIAMFYsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b7431a-1e840ef57d3fa7ab2362f37c;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 21:37:30 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jSI7UFknz6hbv5lG44ZUvaRg2ekHMRdi4NaLtpDGbpNrolofHvqbAQ==
via: 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 22:04:14 GMT
age: 84206
etag: "9443f22559b64c5861bbc50d0980dad8da158352"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F727b2cef-2229-487d-9623-29ccec44ab1f.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F727b2cef-2229-487d-9623-29ccec44ab1f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d256d063b2698bb9d915589a2c79fbce
d7c083857e9512ad3ecb3bbaf285409926473ceb
d4e5f901f62fa98b525fc1ecbe187032fd2d0e112c6f1b9534b742b2d6c05b08
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F727b2cef-2229-487d-9623-29ccec44ab1f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5809
x-amzn-requestid: 16b4843e-ac69-402f-87e7-66c24984cecb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eSeJoHgwIAMFhdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b743d7-507b52112e0f1176182e5d99;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 21:40:39 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JGGMyfzW2uwEbY-V22ZCWjFegXRLY-wAlWxSjLCM6C1A5kjXa2DTGw==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 22:03:31 GMT
age: 84249
etag: "d7c083857e9512ad3ecb3bbaf285409926473ceb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.hotelbasantresidency.com/js/jquery.min.js
103.83.81.254200 OK 20 kB URL HTTP/1.1 www.hotelbasantresidency.com/js/jquery.min.js
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type ASCII text, with very long lines (39660)
Hash 8d797e3cd945b73294043a9de4d5eb08
6028e4e770a7122cc0abc4df0071c5d3df568b29
f711657aa58433c19a49d9ff088cb03210d0d5376e4372bb89c878179304dfb1
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.min.js HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:11 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Wed, 18 Sep 2019 13:58:11 GMT
ETag: "dfb7-592d43a3e5318-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:11 GMT
Content-Length: 19755
Keep-Alive: timeout=20, max=249
Connection: Keep-Alive
Content-Type: application/javascript
www.hotelbasantresidency.com/pagecss/rnt-015/rnt-015-main-layout.css?timestamp=1616066848
103.83.81.254200 OK 1.6 kB URL HTTP/1.1 www.hotelbasantresidency.com/pagecss/rnt-015/rnt-015-main-layout.css?timestamp=1616066848
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type ASCII text, with very long lines (6918), with no line terminators
Hash 48c73423b59a9c97c8a42a8792c3da85
9652a7a1f0a9dbb1c9bef62cd3078e56b0434901
d4e23dfd160dad54c56d7bc6e35157b4faac18707992c260798151a64891c99d
GET /pagecss/rnt-015/rnt-015-main-layout.css?timestamp=1616066848 HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:11 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Wed, 04 Jan 2023 18:15:55 GMT
ETag: "1b06-5f1742ce43ffc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:11 GMT
Content-Length: 1599
Keep-Alive: timeout=20, max=250
Connection: Keep-Alive
Content-Type: text/css
www.hotelbasantresidency.com/pagecss/basantresidency/basantresidency-home-page.css
103.83.81.254200 OK 32 B URL HTTP/1.1 www.hotelbasantresidency.com/pagecss/basantresidency/basantresidency-home-page.css
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type ASCII text, with no line terminators
Hash ce6c4e695ff272621554aee983063cf4
ea0099b80d52feda67a863db25b189dd30d69d13
5caa1c1c9cf39b0b79eeaffaef60f21e180d3a6404fe2aa823b74b9cc67f98f9
GET /pagecss/basantresidency/basantresidency-home-page.css HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:11 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Thu, 18 Mar 2021 11:27:28 GMT
ETag: "20-5bdcde2692b7b"
Accept-Ranges: bytes
Content-Length: 32
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:11 GMT
Vary: User-Agent,Accept-Encoding
Keep-Alive: timeout=20, max=250
Connection: Keep-Alive
Content-Type: text/css
www.hotelbasantresidency.com/pagecss/basantresidency/full-css.css.cgz
103.83.81.254200 OK 8.6 kB URL HTTP/1.1 www.hotelbasantresidency.com/pagecss/basantresidency/full-css.css.cgz
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type ASCII text, with very long lines (38720), with no line terminators
Hash 5a5aebeef5ed3b1981dd92acc50de43e
7aca45d45d90e4977ec180cc4f5b26babed47252
fc30d27040b9d9619dd3a53503b75fbd2c81b3d777d75ec110d86fe1477c3c4d
Analyzer Verdict Alert fortinet Phishing
GET /pagecss/basantresidency/full-css.css.cgz HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:11 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Thu, 18 Mar 2021 11:28:15 GMT
ETag: "21a8-5bdcde54364fa"
Accept-Ranges: bytes
Content-Length: 8616
Vary: User-Agent,Accept-Encoding
Keep-Alive: timeout=20, max=250
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
Content-Encoding: gzip
www.jscache.com/wejs?wtype=linkingWidgetWAR&uniq=475&locationId=1028876&lang=en_IN&border=true
151.101.2.83301 Moved Permanently 0 B URL HTTP/2 www.jscache.com/wejs?wtype=linkingWidgetWAR&uniq=475&locationId=1028876&lang=en_IN&border=true
IP 151.101.2.83:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wejs?wtype=linkingWidgetWAR&uniq=475&locationId=1028876&lang=en_IN&border=true HTTP/1.1
Host: www.jscache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.hotelbasantresidency.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: envoy
location: https://www.tripadvisor.com/wejs?wtype=linkingWidgetWAR&uniq=475&locationId=1028876&lang=en_IN&border=true
expires: 0
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT DSP COR CAO PSA IDC ADM DEVi TAIi PSD IVAi IVDi CONi HIS CNT"
pragma: no-cache
cache-control: no-cache,no-store,must-revalidate
timing-allow-origin: https://www.tripadvisor.com
content-type: text/plain; charset=utf-8
accept-ranges: bytes
date: Fri, 06 Jan 2023 21:27:40 GMT
via: 1.1 varnish
x-served-by: cache-bma1636-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1673040460.447425,VS0,VE150
content-length: 0
X-Firefox-Spdy: h2
www.eglobe-solutions.com/mailer/IframeBookingEngine/caldateinput.js
69.0.194.234301 Moved Permanently 198 B URL HTTP/1.1 www.eglobe-solutions.com/mailer/IframeBookingEngine/caldateinput.js
IP 69.0.194.234:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 94f523f64d1ae91eb65bac457e12fd3a
7ce6885937f667226b6592e552a98f1317f3d856
ab4d3e77aaaa3dd6899e953e7ac606c3e29f7ffb1cb81bdfd4e85c87a2e3d41a
GET /mailer/IframeBookingEngine/caldateinput.js HTTP/1.1
Host: www.eglobe-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://www.eglobe-solutions.com/mailer/IframeBookingEngine/caldateinput.js
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 06 Jan 2023 21:27:40 GMT
Content-Length: 198
www.tripadvisor.com/wejs?wtype=linkingWidgetWAR&uniq=475&locationId=1028876&lang=en_IN&border=true
2.18.173.78200 OK 234 B URL HTTP/2 www.tripadvisor.com/wejs?wtype=linkingWidgetWAR&uniq=475&locationId=1028876&lang=en_IN&border=true
IP 2.18.173.78:0
Hash 3c8af3b58c59d4582c3c5c229a19eaaa
f50222547d0f40f1662a2358b3fcf9d9fc07f04a
0a6d8917f9f262d33ad5d8d0c7567c291ef286216985996ba57dbbd64c9aa619
GET /wejs?wtype=linkingWidgetWAR&uniq=475&locationId=1028876&lang=en_IN&border=true HTTP/1.1
Host: www.tripadvisor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.hotelbasantresidency.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: envoy
expires: 0
cache-control: no-cache,no-store,must-revalidate
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT DSP COR CAO PSA IDC ADM DEVi TAIi PSD IVAi IVDi CONi HIS CNT"
pragma: no-cache
timing-allow-origin: https://www.tripadvisor.com
vary: Accept-Encoding
content-type: application/x-javascript;charset=UTF-8
content-encoding: gzip
content-length: 234
date: Fri, 06 Jan 2023 21:27:41 GMT
set-cookie: TADCID=_xgMNOzIAr2xbGEVABQCFdpBzzOuRA-9xvCxaMyI13KztIHbsmxBEb-ztwH2FpRhLh-znJG4QXXPJ5AC4vEt7Z8GXGSPJ5S6JuE; Domain=www.tripadvisor.com; Expires=Mon, 03-Jan-2033 21:27:40 GMT; Path=/; Secure; HttpOnly
__vt=Bbzsj_F_NuJ0tG95ABQCIf6-ytF7QiW7ovfhqc-AvSKRVEc0EOgv1tmvMKVBb6G_O-dflP0OAX4u-mgEhGVbWIbuLu33FjLhz9mck5xzJZ0dRkA9h2Xr5N-JkZea-orJJnxWRgy3of3c9w5t4tcLBKIL0ZA; Domain=www.tripadvisor.com; Expires=Fri, 06-Jan-2023 22:27:40 GMT; Path=/; Secure; HttpOnly
_abck=25CF6122DBB6AD86DA368B1B4D0390B8~-1~YAAQpQplX3oJ6BiFAQAAyXz7iAl6jkJjV/S17282MD85Y1wv641jPylihftYgUls+JKT7nDQcnnbmeB00EIhYUF0WlxrZAZYePkMWlVZwIBVQPeF7svU9W/Dzvo7FfkPx0uWrDapob5ZUGiPJMHx7U9j3z8Oeswff+QrvgNNGOkxjmHQcZvwEjjlw4Ijgcj/6yf+KqqrqBZuAXnila0zQxEZ1HNQ8IVq3Xl52b1usZwBSYZbd4tMMKfsaEsyduH75i/w2vKeJtvIXoaZJ9dI2iPAPQSdzw682pOcpJCcBrsuuUCheN3+Ty1XzB1MxlK7gDaCTxEX5UmK83oAMoEaevA5JEahSJIdtdLWuV7K0Wc8M/B1AEqUSx7bwXh0KBMi9VI=~-1~-1~-1; Domain=.tripadvisor.com; Path=/; Expires=Sat, 06 Jan 2024 21:27:41 GMT; Max-Age=31536000; Secure
bm_sz=CCB19860E2E19FE7AD9DF31F82A1A54B~YAAQpQplX3sJ6BiFAQAAyXz7iBIZ813BtvBUOoFw0kPi37+DNtxAAIZhfcQGMDhHDyhzideWI1odJUmWIfIYtxkyFDMkcTiiRj/DxnfCXVSijHbuMlFNl/1mKVdFl4pg83BG16XxVXD+/yIrXX7VzGnB02aEwJ4n5lOrnk5aP+Vw9mPaHxcOT3xuAPcRbQmaSiK4hLKKxyHFvlkMZxwz+AUUKHkJPYRIzeXBoEZ0maZuBJ5xseKVDs0P6e9QOJq0rLcx4oZfNMCIiGT9xRrn22M8vMMi1DqVjknEWXrJpYTD3JEmDb/MCw==~4273732~4273219; Domain=.tripadvisor.com; Path=/; Expires=Sat, 07 Jan 2023 01:27:40 GMT; Max-Age=14399
X-Firefox-Spdy: h2
www.eglobe-solutions.com/mailer/IframeBookingEngine/caldateinput.js
69.0.194.234200 OK 8.1 kB URL HTTP/2 www.eglobe-solutions.com/mailer/IframeBookingEngine/caldateinput.js
IP 69.0.194.234:0
File type HTML document, ASCII text, with very long lines (538), with CRLF line terminators
Hash 7367698965c4322d02ac05ad714b6c4f
6e1522ada3994fcfe6f477eb82f249b852e8a7f7
7a1fa18e04941309bdd6a495c2433a0f629ce685b301cbec35f93219537fa92f
GET /mailer/IframeBookingEngine/caldateinput.js HTTP/1.1
Host: www.eglobe-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.hotelbasantresidency.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 24 Jan 2019 07:31:22 GMT
accept-ranges: bytes
etag: "0c1dfcdb6b3d41:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Fri, 06 Jan 2023 21:27:40 GMT
content-length: 8068
X-Firefox-Spdy: h2
www.hotelbasantresidency.com/pagejs/basantresidency/full-js.js.cgz
103.83.81.254200 OK 3.4 kB URL HTTP/1.1 www.hotelbasantresidency.com/pagejs/basantresidency/full-js.js.cgz
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type ASCII text, with very long lines (12252), with no line terminators
Hash 86a87efb3fb94140a4eaed5b179d9893
c65f6928f37aa364399a680584efdece87f7056e
b0c5cc468ec22f05aca6df46ba4ed438ed58a93a7f7f78ef53a9ad5aa3452771
Analyzer Verdict Alert fortinet Phishing
GET /pagejs/basantresidency/full-js.js.cgz HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:12 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Thu, 18 Mar 2021 11:28:15 GMT
ETag: "d63-5bdcde543d25a"
Accept-Ranges: bytes
Content-Length: 3427
Vary: User-Agent,Accept-Encoding
Keep-Alive: timeout=20, max=250
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
Content-Encoding: gzip
www.hotelbasantresidency.com/plugin-images/submitting.gif
103.83.81.254200 OK 1.3 kB URL HTTP/1.1 www.hotelbasantresidency.com/plugin-images/submitting.gif
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type GIF image data, version 89a, 400 x 200\012- data
Hash 5eff0680a0b298ae9e68883bd328c38d
629bf285fa196c8fffe1a6b76f4372fc41464cf9
d402726f9106b6c7fdf7be8f8fcad829fb31043466de92328e96324ece92baa7
GET /plugin-images/submitting.gif HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:12 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Wed, 18 Sep 2019 13:56:32 GMT
ETag: "518-592d4345e6b19"
Accept-Ranges: bytes
Content-Length: 1304
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:12 GMT
Vary: User-Agent
Keep-Alive: timeout=20, max=249
Connection: Keep-Alive
Content-Type: image/gif
www.hotelbasantresidency.com/images/icons/iconInformation.gif
103.83.81.254200 OK 138 B URL HTTP/1.1 www.hotelbasantresidency.com/images/icons/iconInformation.gif
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type GIF image data, version 89a, 14 x 13\012- data
Hash 1e25099e1d0287ecc522aa932f005b59
2f8d4855806a5b83b038326364288208976a171c
1c5360f6f9f709c0d93c10e78e4883eaaafb86e10d78cf56c1d8d4b25d20a3b4
GET /images/icons/iconInformation.gif HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:12 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Fri, 26 May 2017 06:36:00 GMT
ETag: "8a-550678cff12cc"
Accept-Ranges: bytes
Content-Length: 138
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:12 GMT
Vary: User-Agent
Keep-Alive: timeout=20, max=249
Connection: Keep-Alive
Content-Type: image/gif
www.hotelbasantresidency.com/uploads/basantresidency/loginicon1.jpg
103.83.81.254200 OK 888 B URL HTTP/1.1 www.hotelbasantresidency.com/uploads/basantresidency/loginicon1.jpg
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 27x25, components 3\012- data
Hash 15b6724160b0089bba9f47f96f4b32fc
e88267235c0be7ea001508200aebe1c8ab8eade9
cdf7325bc2d94c7031e241c46b42401dca37a68c75fd64c325a4cd7930a0703f
GET /uploads/basantresidency/loginicon1.jpg HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:12 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Wed, 04 Nov 2015 05:50:21 GMT
ETag: "378-523b095faa140"
Accept-Ranges: bytes
Content-Length: 888
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:12 GMT
Vary: User-Agent
Keep-Alive: timeout=20, max=248
Connection: Keep-Alive
Content-Type: image/jpeg
www.eglobe-solutions.com/images/calendar.jpg
69.0.194.234200 OK 1.1 kB URL HTTP/2 www.eglobe-solutions.com/images/calendar.jpg
IP 69.0.194.234:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 16x15, components 3\012- data
Hash ec1c2dde2879bca23fb232bdfb6459b1
9623e71c76f0f065f46caf6eee4124a111b9b18e
ccfc1b7a038e3cc6e8b83638a0424541b56a37a7efe5593e9cc79672bb7b7e43
GET /images/calendar.jpg HTTP/1.1
Host: www.eglobe-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Thu, 14 Feb 2008 19:20:00 GMT
accept-ranges: bytes
etag: "bc63ad973e6fc81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Fri, 06 Jan 2023 21:27:41 GMT
content-length: 1089
X-Firefox-Spdy: h2
www.eglobe-solutions.com/images/prev_mon.gif
69.0.194.234200 OK 827 B URL HTTP/2 www.eglobe-solutions.com/images/prev_mon.gif
IP 69.0.194.234:0
File type GIF image data, version 89a, 5 x 9\012- data
Hash d1dab45da5f0690fcaac4ce62f6bd04d
227d5ef5d8d1b4564d70c121a498d2ea8892270f
36bbdd7e3b2fb1cf28971c049400733bb8cab05df3e5cb95abe565a46d8c654c
GET /images/prev_mon.gif HTTP/1.1
Host: www.eglobe-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
last-modified: Wed, 10 Feb 2010 17:30:26 GMT
accept-ranges: bytes
etag: "06560bb76aaca1:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Fri, 06 Jan 2023 21:27:41 GMT
content-length: 827
X-Firefox-Spdy: h2
www.hotelbasantresidency.com/form/getcaptchaimage/formid/4151.html
103.83.81.254200 OK 226 B URL HTTP/1.1 www.hotelbasantresidency.com/form/getcaptchaimage/formid/4151.html
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type PNG image data, 30 x 25, 8-bit/color RGB, non-interlaced\012- data
Hash b951aae006a8408ca021862f6a2714e7
f634467ddeeaa1ca7a6d987b67637c72a56ef9a1
ec67359592d254c628468584caec21fa8920af23a4242e1cc27e1c9b2328d2cf
Analyzer Verdict Alert fortinet Phishing
GET /form/getcaptchaimage/formid/4151.html HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:12 GMT
Server: Apache/2.4.10 (Ubuntu)
X-Powered-By: PHP/5.6.31-4+ubuntu14.04.1+deb.sury.org+4
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 226
Keep-Alive: timeout=20, max=249
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.eglobe-solutions.com/images/next_mon.gif
69.0.194.234200 OK 827 B URL HTTP/2 www.eglobe-solutions.com/images/next_mon.gif
IP 69.0.194.234:0
File type GIF image data, version 89a, 5 x 9\012- data
Hash d4a145a07fa436e51cbaa4a28c14b622
f310b73bcc9af10bc40d0ea059293c8e777a53e9
ace95635d2c3d1c6260a948b55773720c2d1c520efe55f8a64fa891e8b24bbe3
GET /images/next_mon.gif HTTP/1.1
Host: www.eglobe-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
last-modified: Wed, 10 Feb 2010 17:30:23 GMT
accept-ranges: bytes
etag: "b83db3b976aaca1:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Fri, 06 Jan 2023 21:27:41 GMT
content-length: 827
X-Firefox-Spdy: h2
eglobe-solutions.com/mailer/images/best-rate-logo.png
69.0.194.234301 Moved Permanently 188 B URL HTTP/1.1 eglobe-solutions.com/mailer/images/best-rate-logo.png
IP 69.0.194.234:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash de6e9764afd4314374658c952f5b0cc5
106317a6707a964d0e6a608d39023736d6677d9a
37df2f47e0741c2b4dadbbd95857908cf5dc2a69d2453d5fc491d23b316a6708
GET /mailer/images/best-rate-logo.png HTTP/1.1
Host: eglobe-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://www.eglobe-solutions.com/mailer/images/best-rate-logo.png
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 06 Jan 2023 21:27:41 GMT
Content-Length: 188
eglobe-solutions.com/mailer/iframeBookingEngine/cards1.png
69.0.194.234301 Moved Permanently 193 B URL HTTP/1.1 eglobe-solutions.com/mailer/iframeBookingEngine/cards1.png
IP 69.0.194.234:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 2eb80284c63180cecc18a4859a9ca8a0
be6f300471016547942b9bdb5198cc250a1b4870
7132c25972b5f2523104d61554f569af3f4188137d9727d8325071b3db35e062
GET /mailer/iframeBookingEngine/cards1.png HTTP/1.1
Host: eglobe-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://www.eglobe-solutions.com/mailer/iframeBookingEngine/cards1.png
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 06 Jan 2023 21:27:41 GMT
Content-Length: 193
www.hotelbasantresidency.com/uploads/basantresidency/homeicon1.jpg
103.83.81.254200 OK 840 B URL HTTP/1.1 www.hotelbasantresidency.com/uploads/basantresidency/homeicon1.jpg
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 28x25, components 3\012- data
Hash 37963620ebcd0085bd3b5322bdea100d
4ac8941d12612cfa15974ac30a6f22a63552c0bd
7e243e9d4115da9ea935b99a59cf22dbfaee10d25bdb76517e8d1f91b3f18764
GET /uploads/basantresidency/homeicon1.jpg HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:12 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Wed, 04 Nov 2015 05:50:21 GMT
ETag: "348-523b095faa140"
Accept-Ranges: bytes
Content-Length: 840
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:12 GMT
Vary: User-Agent
Keep-Alive: timeout=20, max=248
Connection: Keep-Alive
Content-Type: image/jpeg
www.hotelbasantresidency.com/uploads/basantresidency/sitemapicon1.jpg
103.83.81.254200 OK 816 B URL HTTP/1.1 www.hotelbasantresidency.com/uploads/basantresidency/sitemapicon1.jpg
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 27x25, components 3\012- data
Hash cb69fb4c6e5044e2497d2186d9540f78
ba4df54b3c96a7d82ec96011fd3e2d6e8c8de198
f7fc5f1674e032c6e10dfa8fbc4aa708f4c193d9beef567954859564761b453a
GET /uploads/basantresidency/sitemapicon1.jpg HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:12 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Wed, 04 Nov 2015 05:50:22 GMT
ETag: "330-523b09609e380"
Accept-Ranges: bytes
Content-Length: 816
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:12 GMT
Vary: User-Agent
Keep-Alive: timeout=20, max=247
Connection: Keep-Alive
Content-Type: image/jpeg
www.hotelbasantresidency.com/uploads/basantresidency/111364a921e479b7f4e5d0b1eecb83db4d.gif
103.83.81.254200 OK 42 kB URL HTTP/1.1 www.hotelbasantresidency.com/uploads/basantresidency/111364a921e479b7f4e5d0b1eecb83db4d.gif
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type GIF image data, version 89a, 250 x 283\012- data
Hash fdd955a348989928148110d882fb5b3e
1c66d402fb8c6df9928ef47eb929d0cd796754d5
81c7e2308c8119daa717cb5d15e385c1732b7a1895458319cdf0480ebe35e8b1
GET /uploads/basantresidency/111364a921e479b7f4e5d0b1eecb83db4d.gif HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:12 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Wed, 04 Nov 2015 05:50:23 GMT
ETag: "a31c-523b0961925c0"
Accept-Ranges: bytes
Content-Length: 41756
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:12 GMT
Vary: User-Agent
Keep-Alive: timeout=20, max=249
Connection: Keep-Alive
Content-Type: image/gif
www.eglobe-solutions.com/mailer/images/best-rate-logo.png
69.0.194.234200 OK 18 kB URL HTTP/2 www.eglobe-solutions.com/mailer/images/best-rate-logo.png
IP 69.0.194.234:0
File type PNG image data, 126 x 58, 8-bit/color RGBA, non-interlaced\012- data
Hash 01940d5653e884729fff5bc866ddcf79
91c048195309161f863c38155118fc6892d0df9f
945f80790b3266d23d667d80666ba26b5d8b6424bcb4e43af2ddf0c34a2f6de0
GET /mailer/images/best-rate-logo.png HTTP/1.1
Host: www.eglobe-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.hotelbasantresidency.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 07 Dec 2015 07:24:50 GMT
accept-ranges: bytes
etag: "ca6db05bc030d11:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Fri, 06 Jan 2023 21:27:41 GMT
content-length: 18425
X-Firefox-Spdy: h2
www.eglobe-solutions.com/mailer/iframeBookingEngine/cards1.png
69.0.194.234200 OK 4.7 kB URL HTTP/2 www.eglobe-solutions.com/mailer/iframeBookingEngine/cards1.png
IP 69.0.194.234:0
File type PNG image data, 100 x 21, 8-bit colormap, non-interlaced\012- data
Hash 7c1c842fb40959f9d5ed269c3493edb9
321227cf2ec89260d84ce52abbd589728e3439db
b371ed7172c90ffee6385ecb38941136fb1c92898ecd8468c2a218499f73112d
GET /mailer/iframeBookingEngine/cards1.png HTTP/1.1
Host: www.eglobe-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.hotelbasantresidency.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Thu, 30 Mar 2017 12:13:38 GMT
accept-ranges: bytes
etag: "dd17f9f4fa9d21:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Fri, 06 Jan 2023 21:27:41 GMT
content-length: 4738
X-Firefox-Spdy: h2
www.hotelbasantresidency.com/uploads/basantresidency/basantlogo.png
103.83.81.254200 OK 23 kB URL HTTP/1.1 www.hotelbasantresidency.com/uploads/basantresidency/basantlogo.png
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type PNG image data, 300 x 125, 8-bit/color RGBA, non-interlaced\012- data
Hash 6d987a05d9163414541dee32c0d5984c
e4f7c55447779f9f7c5830aedddf7635c4bc1043
55ed4703503118992f4c5ec397f7c3c9e13cfa4bf29c9513324a74018f723b22
GET /uploads/basantresidency/basantlogo.png HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:12 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Wed, 04 Nov 2015 05:50:21 GMT
ETag: "592b-523b095faa140"
Accept-Ranges: bytes
Content-Length: 22827
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:12 GMT
Vary: User-Agent
Keep-Alive: timeout=20, max=248
Connection: Keep-Alive
Content-Type: image/png
www.hotelbasantresidency.com/images/RNT%20015/footer_left_bg.gif
103.83.81.254200 OK 187 B URL HTTP/1.1 www.hotelbasantresidency.com/images/RNT%20015/footer_left_bg.gif
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type GIF image data, version 89a, 10 x 49\012- data
Hash cc9e414e86cfbbc8d3fd8a44c8666695
25dfcc5db0701e0c783d107364c040babf0a7506
44cc0f41e1764b94c03014273266823a0366de8fecc3744ebd0237374ff70b79
GET /images/RNT%20015/footer_left_bg.gif HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/pagecss/rnt-015/rnt-015-main-layout.css?timestamp=1616066848
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:12 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Wed, 04 Nov 2015 07:06:25 GMT
ETag: "bb-523b1a603be40"
Accept-Ranges: bytes
Content-Length: 187
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:12 GMT
Vary: User-Agent
Keep-Alive: timeout=20, max=246
Connection: Keep-Alive
Content-Type: image/gif
www.hotelbasantresidency.com/images/RNT%20015/footer_mid_bg.gif
103.83.81.254200 OK 53 B URL HTTP/1.1 www.hotelbasantresidency.com/images/RNT%20015/footer_mid_bg.gif
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type GIF image data, version 89a, 4 x 49\012- data
Hash 1701174533834e713594c403bf32704a
c330d4a9c94ce078517e9b701576b0602df90ab6
722699dc41a9706fe2043552559f8975f16770526443dd8b38ded2062d053e64
GET /images/RNT%20015/footer_mid_bg.gif HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/pagecss/rnt-015/rnt-015-main-layout.css?timestamp=1616066848
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:12 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Wed, 04 Nov 2015 07:06:25 GMT
ETag: "35-523b1a603be40"
Accept-Ranges: bytes
Content-Length: 53
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:12 GMT
Vary: User-Agent
Keep-Alive: timeout=20, max=248
Connection: Keep-Alive
Content-Type: image/gif
www.hotelbasantresidency.com/uploads/basantresidency/basanth.jpg
103.83.81.254200 OK 28 kB URL HTTP/1.1 www.hotelbasantresidency.com/uploads/basantresidency/basanth.jpg
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 250x166, components 3\012- data
Hash e45ff7195394f6de5513e0104299944a
8a87b035427ff453098b7bd1587551b1576f71bb
08c364e488eb4813ae9c425e77a38d13aaa047bc0fe6447099071e6e5b6609ab
GET /uploads/basantresidency/basanth.jpg HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:12 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Wed, 04 Nov 2015 05:50:22 GMT
ETag: "6c2b-523b09609e380"
Accept-Ranges: bytes
Content-Length: 27691
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:12 GMT
Vary: User-Agent
Keep-Alive: timeout=20, max=248
Connection: Keep-Alive
Content-Type: image/jpeg
www.tripadvisor.in/WidgetEmbed-linkingWidgetWAR?border=true&lang=en_IN&locationId=1028876&uniq=475
2.18.173.78200 OK 3.2 kB URL HTTP/2 www.tripadvisor.in/WidgetEmbed-linkingWidgetWAR?border=true&lang=en_IN&locationId=1028876&uniq=475
IP 2.18.173.78:0
Hash 5e4f02de70e3a12898e72c60a1072125
4546b1e0feef9fc56379df7a6f00e89cffb89c9a
54ba1fe27aab07a799d5715c0d2cc8f3fe788fc506609470e2ca514c5c0c8722
GET /WidgetEmbed-linkingWidgetWAR?border=true&lang=en_IN&locationId=1028876&uniq=475 HTTP/1.1
Host: www.tripadvisor.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: envoy
content-language: en-IN
vary: User-Agent,Accept-Encoding
expires: 0
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT DSP COR CAO PSA IDC ADM DEVi TAIi PSD IVAi IVDi CONi HIS CNT"
pragma: no-cache
cache-control: no-cache,no-store,must-revalidate
timing-allow-origin: https://www.tripadvisor.com
content-type: text/javascript;charset=UTF-8
content-encoding: gzip
content-length: 3171
date: Fri, 06 Jan 2023 21:27:41 GMT
set-cookie: TADCID=vC8HXHWg_qmEEM4nABQCFdpBzzOuRA-9xvCxaMyI13KztK3H2zOkb3Tn__pXxC7-vPaIE_5N4wn6uj-BMnSN9xIekHWNTNguMv0; Domain=www.tripadvisor.in; Expires=Mon, 03-Jan-2033 21:27:41 GMT; Path=/; Secure; HttpOnly
TAUnique=%1%enc%3AXWPY91XvAYHk7nWhzVPS6nwPcNugYMg6SadGfwI41zc2jHwltRJPGQ%3D%3D; Domain=.tripadvisor.in; Expires=Sun, 05-Jan-2025 21:27:41 GMT; Path=/; HttpOnly
__vt=GL57Lhb88NV9EAA3ABQCIf6-ytF7QiW7ovfhqc-AvSKRVIhAeK-UHDItZRZibtAMKyAm29E3SzW1F5OwQ3QKF8U6PmAkEXRmGHpWKgsIku_gVcwUNyHhU9gY4Ev08TxefVwiNzPY5JNlYkT_ejZ0z7Mr_g; Domain=www.tripadvisor.in; Expires=Fri, 06-Jan-2023 22:27:41 GMT; Path=/; Secure; HttpOnly
TASSK=enc%3AANRWaHHlsBmXoI2wqHhynGjhoB8dt%2B3QKslxwJwZNk4j8CfSzx9%2BdqMK22IqrYcGMDXJbqArZY6QtW%2Bg30eU%2BTLkZs9mCZxuX1%2F2CcWr%2Bs5OyGMRlTtSKxlKQia%2FBHtvvg%3D%3D; Domain=www.tripadvisor.in; Expires=Wed, 05-Jul-2023 21:27:41 GMT; Path=/; HttpOnly
TASession=V2ID.30FF67B4BA0C4FDDA304747F59C1ED6F*SQ.1*LS.WidgetEmbed-linkingWidgetWAR*HS.recommended*ES.popularity*DS.5*SAS.popularity*FPS.oldFirst*FA.1*DF.0*TRA.true; Domain=.tripadvisor.in; Path=/
SRT=TART_SYNC; Domain=www.tripadvisor.in; Expires=Fri, 06-Jan-2023 21:57:41 GMT; Path=/
ServerPool=C; Domain=.tripadvisor.in; Path=/
PMC=V2*MS.85*MD.20230106*LD.20230106; Domain=www.tripadvisor.in; Expires=Sun, 05-Jan-2025 21:27:41 GMT; Path=/; Secure; HttpOnly
TART=%1%enc%3A5O51oc1T0ur7K43BLbutf%2FHFhetwFJDcNz9479aE15zXklqgkcU%2FCef%2Bd3vPEB2kjcUVV%2FjQ5bY%3D; Domain=www.tripadvisor.in; Expires=Wed, 11-Jan-2023 21:27:41 GMT; Path=/; HttpOnly
TATravelInfo=V2*A.2*MG.-1*HP.2*FL.3*RS.1; Domain=.tripadvisor.in; Expires=Fri, 20-Jan-2023 21:27:41 GMT; Path=/
TAUD=RDD-1673040461632-2023_01_06; Domain=.tripadvisor.in; Expires=Fri, 20-Jan-2023 21:27:41 GMT; Path=/
TASID=30FF67B4BA0C4FDDA304747F59C1ED6F; Domain=www.tripadvisor.in; Expires=Fri, 06-Jan-2023 21:57:41 GMT; Path=/; Secure
X-Firefox-Spdy: h2
www.hotelbasantresidency.com/images/RNT%20015/footer_right_bg.gif
103.83.81.254200 OK 188 B URL HTTP/1.1 www.hotelbasantresidency.com/images/RNT%20015/footer_right_bg.gif
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type GIF image data, version 89a, 10 x 49\012- data
Hash 5103339166b1a651c8156f9ea05a8591
64e63ecf27dbedd0238fb80dbe4d3e8ff8790981
728f63512248f59f3af01f103c7eb84698d574430a8b4e335eb56e5d3ffeb55c
GET /images/RNT%20015/footer_right_bg.gif HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/pagecss/rnt-015/rnt-015-main-layout.css?timestamp=1616066848
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:12 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Wed, 04 Nov 2015 07:06:25 GMT
ETag: "bc-523b1a603be40"
Accept-Ranges: bytes
Content-Length: 188
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:12 GMT
Vary: User-Agent
Keep-Alive: timeout=20, max=247
Connection: Keep-Alive
Content-Type: image/gif
static.tacdn.com/js3/build/concat/widget/cdswidgets_m-c-v22480917520a.js
151.101.2.83200 OK 4.6 kB URL HTTP/2 static.tacdn.com/js3/build/concat/widget/cdswidgets_m-c-v22480917520a.js
IP 151.101.2.83:0
File type ASCII text, with very long lines (13794)
Hash 08ebca29872d38bac5db15e89842ce54
1aa1db2be2f0d6538ca2d5aa8696391256eda62a
b1637b545eb89a5142710dacaf4e0b9c7e8af380acccbc9fe1678d26b4074ff0
GET /js3/build/concat/widget/cdswidgets_m-c-v22480917520a.js HTTP/1.1
Host: static.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: envoy
last-modified: Sun, 13 Nov 2022 12:30:06 GMT
cache-control: max-age=31536000, immutable
expires: Fri, 17 Nov 2023 23:42:26 GMT
timing-allow-origin: *
access-control-allow-origin: *
content-type: application/x-javascript
content-encoding: gzip
accept-ranges: bytes
date: Fri, 06 Jan 2023 21:27:41 GMT
via: 1.1 varnish
age: 4311916
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 23639
x-timer: S1673040462.919701,VS0,VE0
vary: Accept-Encoding
content-length: 4647
X-Firefox-Spdy: h2
static.tacdn.com/css2/build/concat/t4b_widget_linking_war-v22266218912a.css
151.101.2.83200 OK 1.3 kB URL HTTP/2 static.tacdn.com/css2/build/concat/t4b_widget_linking_war-v22266218912a.css
IP 151.101.2.83:0
File type ASCII text, with very long lines (4960)
Hash 18553a4286a148a5544a92b7ecea1477
1d2e08ce12bf32c55cca15a6333ddab7b9a2f2b7
a9d5335317b5898fc5968fde82bdf94639c6f3e4b8ba694a0381b3be6b256972
GET /css2/build/concat/t4b_widget_linking_war-v22266218912a.css HTTP/1.1
Host: static.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: envoy
last-modified: Fri, 30 Dec 2022 12:28:20 GMT
cache-control: max-age=31536000, immutable
expires: Thu, 04 Jan 2024 09:05:12 GMT
timing-allow-origin: *
access-control-allow-origin: *
content-type: text/css
content-encoding: gzip
accept-ranges: bytes
date: Fri, 06 Jan 2023 21:27:41 GMT
via: 1.1 varnish
age: 217349
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1673040462.919852,VS0,VE1
vary: Accept-Encoding
content-length: 1339
X-Firefox-Spdy: h2
www.hotelbasantresidency.com/uploads/basantresidency/aboutus2.jpg
103.83.81.254200 OK 84 kB URL HTTP/1.1 www.hotelbasantresidency.com/uploads/basantresidency/aboutus2.jpg
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 304x219, components 3\012- data
Hash 523214d2427fbef1cd622d893a770cdc
7f3a25df40f7876be27101cb92f1dad9210f954b
8e2a34b911008492aabb7580d89eb0f5979cc9bc0e1f6dbd5efa99748635549a
GET /uploads/basantresidency/aboutus2.jpg HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:12 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Wed, 04 Nov 2015 05:50:21 GMT
ETag: "1498a-523b095faa140"
Accept-Ranges: bytes
Content-Length: 84362
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:12 GMT
Vary: User-Agent
Keep-Alive: timeout=20, max=247
Connection: Keep-Alive
Content-Type: image/jpeg
www.hotelbasantresidency.com/uploads/basantresidency/welcome.jpg
103.83.81.254200 OK 21 kB URL HTTP/1.1 www.hotelbasantresidency.com/uploads/basantresidency/welcome.jpg
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 409x44, components 3\012- data
Hash 0701e6923ed4f9c256235ce823074588
defc6ecbbafdcec5784d6844b6c8e2da41868831
92ac7205fa2821a1d0d64b51395eacf5e859a2729a99b813152cd6b56a999ad1
GET /uploads/basantresidency/welcome.jpg HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:12 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Wed, 04 Nov 2015 05:50:22 GMT
ETag: "51a2-523b09609e380"
Accept-Ranges: bytes
Content-Length: 20898
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:12 GMT
Vary: User-Agent
Keep-Alive: timeout=20, max=245
Connection: Keep-Alive
Content-Type: image/jpeg
www.hotelbasantresidency.com/uploads/basantresidency/favicon.ico
103.83.81.254404 Not Found 1.5 kB URL HTTP/1.1 www.hotelbasantresidency.com/uploads/basantresidency/favicon.ico
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 8fefafa38cd0629d99e815d7d566ed49
7a5cfef69ca26ec0ae5966dc99da7c1b160541c0
92978dd51f713d21102c7260bd3d3fcbcd28bc7f6970f004ccab15241cb079b1
GET /uploads/basantresidency/favicon.ico HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 404 Not Found
Date: Fri, 06 Jan 2023 21:24:13 GMT
Server: Apache/2.4.10 (Ubuntu)
X-Powered-By: PHP/5.6.31-4+ubuntu14.04.1+deb.sury.org+4
Status: 404 Not Found
Vary: User-Agent
Content-Length: 1451
Keep-Alive: timeout=20, max=246
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8
www.hotelbasantresidency.com/uploads/basantresidency/lobby.jpg
103.83.81.254200 OK 248 kB URL HTTP/1.1 www.hotelbasantresidency.com/uploads/basantresidency/lobby.jpg
IP 103.83.81.254:0
ASN #135822 Ovi Hosting Pvt Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=14, height=2800, bps=0, compression=none, PhotometricIntepretation=RGB, orientation=upper-left, width=4954], baseline, precision 8, 800x600, components 3\012- data
Size 248 kB (247547 bytes)
Hash 505a5a81b40ee0a83519bed32111b9f3
8174ec381f2eab57e57bc71080772f267860cd88
909a6f5ba3a8ab3a4ad2763bdbba6d58c41fb143e3b91d5906072efa7e9e4133
GET /uploads/basantresidency/lobby.jpg HTTP/1.1
Host: www.hotelbasantresidency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Cookie: symfony=m2l9ln2cg0hbe9gami66e4p3q1
HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 21:24:12 GMT
Server: Apache/2.4.10 (Ubuntu)
Last-Modified: Wed, 04 Nov 2015 05:50:21 GMT
ETag: "3c6fb-523b095faa140"
Accept-Ranges: bytes
Content-Length: 247547
Cache-Control: public
Expires: Fri, 20 Jan 2023 21:24:12 GMT
Vary: User-Agent
Keep-Alive: timeout=20, max=250
Connection: Keep-Alive
Content-Type: image/jpeg
static.tacdn.com/img2/brand_refresh/Tripadvisor_lockup_horizontal_secondary_registered.svg
151.101.2.83200 OK 2.3 kB URL HTTP/2 static.tacdn.com/img2/brand_refresh/Tripadvisor_lockup_horizontal_secondary_registered.svg
IP 151.101.2.83:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash e8b5d8fed8c46e36ccce67599df9f8f9
2f91a70ad275d011758d3447042163757e0aa79e
4e96c4d8943fa1ca408a68c94d579ccd539bbfdfbf9195c694203786dcc4db0e
GET /img2/brand_refresh/Tripadvisor_lockup_horizontal_secondary_registered.svg HTTP/1.1
Host: static.tacdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hotelbasantresidency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: envoy
last-modified: Thu, 02 Jul 2020 16:01:49 GMT
cache-control: max-age=2592000
expires: Thu, 21 Jul 2022 02:09:22 GMT
timing-allow-origin: *
content-type: image/svg+xml
content-encoding: gzip
accept-ranges: bytes
date: Fri, 06 Jan 2023 21:27:42 GMT
via: 1.1 varnish
age: 1711089
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 39862
x-timer: S1673040463.686164,VS0,VE0
vary: Accept-Encoding
content-length: 2320
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e8ba788-1a7c-44bc-94f5-2c5158e0800f.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e8ba788-1a7c-44bc-94f5-2c5158e0800f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3fe18a7eaf39d6ccc34bc3429b37a3a3
64cd49800c086bcc9a504f25cbe93232fdbda592
3825900f64027baac24edc3c206436f0b8c1d3875633928289e5cb9613b3e972
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e8ba788-1a7c-44bc-94f5-2c5158e0800f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13766
x-amzn-requestid: 489d53be-df7d-40b2-936e-427a59f4f683
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eScvCGd5IAMFUQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b74193-22aa8d7045d49f9160bf3ef7;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 21:30:59 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ues1AFTPL9QZk0XE57gX-Ftr3o-NoiUtk8voEWu9lAfGZgLAOkLeag==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 22:05:27 GMT
age: 84140
etag: "64cd49800c086bcc9a504f25cbe93232fdbda592"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2