Overview

URL www.azimuthaero.com/login.php
IP172.104.17.207
ASNLinode, LLC
Location United States
Report completed2022-09-23 22:08:35 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-23 2 www.azimuthaero.com/login.php Generic/Spear Phishing
2022-09-23 2 www.azimuthaero.com/login.php Generic/Spear Phishing
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-23 2 www.azimuthaero.com/login.php Phishing
2022-09-23 2 www.azimuthaero.com/login.php Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (13)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-23 04:34:39 UTC 23.36.77.32
mnemonic passive DNS ocsp.pki.goog (7) 175 2017-06-14 07:23:31 UTC 2022-09-23 04:33:33 UTC 142.250.74.3
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-09-23 18:32:47 UTC 142.250.74.164
mnemonic passive DNS fonts.gstatic.com (1) 0 2014-08-29 13:43:22 UTC 2022-09-23 04:33:31 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS www.gstatic.com (1) 0 2016-07-26 09:37:06 UTC 2022-09-23 12:12:56 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-23 12:37:00 UTC 34.120.237.76
mnemonic passive DNS fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-09-23 17:07:29 UTC 142.250.74.10
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-23 16:32:04 UTC 18.165.201.103
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-23 04:33:41 UTC 34.117.237.239
mnemonic passive DNS www.azimuthaero.com (32) 0 2017-02-22 12:20:14 UTC 2022-09-23 00:27:25 UTC 172.104.17.207 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-23 13:41:12 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-23 05:02:25 UTC 34.218.159.206
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-23 04:49:01 UTC 34.160.144.191


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 172.104.17.207

Date UQ / IDS / BL URL IP
2022-11-24 10:07:38 +0000
0 - 0 - 2 notify-alerts.usps.com.davidlippert.com/ 172.104.17.207
2022-09-26 17:17:44 +0000
0 - 0 - 4 www.azimuthaero.com/login.php 172.104.17.207
2022-09-26 01:36:08 +0000
0 - 0 - 4 www.azimuthaero.com/login.php 172.104.17.207
2022-09-24 10:47:04 +0000
0 - 0 - 4 www.azimuthaero.com/login.php 172.104.17.207
2022-09-24 03:34:43 +0000
2 - 0 - 0 splonline-com-sa.duckdns.org/PHP71_TO_PHP74.zip 172.104.17.207

Last 5 reports on ASN: Linode, LLC

Date UQ / IDS / BL URL IP
2022-11-28 21:49:57 +0000
0 - 0 - 2 www.northwestemmutual.com/ 45.79.19.196
2022-11-28 21:19:33 +0000
0 - 0 - 2 click.diet-health-food.com/?t=c&ids=MTc5OTI2N (...) 170.187.185.18
2022-11-28 21:16:45 +0000
0 - 0 - 3 onegospel.com/mtm/direct/.eJxdiksOwjAMBe_iZYl (...) 198.58.118.167
2022-11-28 21:15:30 +0000
0 - 0 - 2 burgen.com/http:/burgen.com/mtm/direct/.eJyrV (...) 45.33.20.235
2022-11-28 21:15:30 +0000
0 - 0 - 2 burgen.com/http:/burgen.com/mtm/async 45.56.79.23

Last 5 reports on domain: azimuthaero.com

Date UQ / IDS / BL URL IP
2022-09-26 17:17:44 +0000
0 - 0 - 4 www.azimuthaero.com/login.php 172.104.17.207
2022-09-26 01:36:08 +0000
0 - 0 - 4 www.azimuthaero.com/login.php 172.104.17.207
2022-09-24 10:47:04 +0000
0 - 0 - 4 www.azimuthaero.com/login.php 172.104.17.207
2022-09-24 00:27:11 +0000
0 - 0 - 4 www.azimuthaero.com/login.php 172.104.17.207
2022-09-23 22:08:35 +0000
0 - 0 - 4 www.azimuthaero.com/login.php 172.104.17.207

Last 4 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-26 17:17:44 +0000
0 - 0 - 4 www.azimuthaero.com/login.php 172.104.17.207
2022-09-26 01:36:08 +0000
0 - 0 - 4 www.azimuthaero.com/login.php 172.104.17.207
2022-09-24 10:47:04 +0000
0 - 0 - 4 www.azimuthaero.com/login.php 172.104.17.207
2022-09-24 00:27:11 +0000
0 - 0 - 4 www.azimuthaero.com/login.php 172.104.17.207


JavaScript

Executed Scripts (23)


Executed Evals (5)

#1 JavaScript::Eval (size: 16181, repeated: 1) - SHA256: 177bcf99012c5249b38b9d0f4e4c49b8096ca37dccc10201bf7dc750d3ba5a3d

                                        (function() {
    var dr = function(W, d, V, X, x, w, a, f) {
            return ((W = [84, (f = (w = WB, V & 7), -53), 96, -24, 24, 43, W, 73, 2, 56], a = P[X.G](X.lM), a)[X.G] = function(v) {
                f += (x = v, 6 + 7 * V), f &= 7
            }, a).concat = function(v) {
                return ((x = (v = +W[f + 43 & 7] * d * (v = d % 16 + 1, v) + 3 * d * d * v + (w() | 0) * v - -2915 * d * x - 1155 * x + 55 * x * x + f - 165 * d * d * x - v * x, v = W[v], void 0), W)[(f + 53 & 7) + (V & 2)] = v, W)[f + (V & 2)] = -53, v
            }, a
        },
        Q = function(W, d, V, X, x, w, a, f, v) {
            if (((W.l = ((x = (v = (f = (X || W.P++, 0 < W.N && W.V && W.uM && 1 >= W.D && !W.C) && !W.R && (!X || 1 < W.i - V) && 0 == document.hidden, (w = 4 == W.P) || f ? W.h() : W.K), a = v - W.K, a >> 14), W).o && (W.o ^= x * (a << 2)), x) || W.l, W).W += x, w) || f) W.P = 0, W.K = v;
            if (!f || v - W.I < W.N - (d ? 255 : X ? 5 : 2)) return false;
            return !(W.R = (k(465, (W.i = V, d = K(W, X ? 510 : 465), W), W.B), W.u.push([iS, d, X ? V + 1 : V]), y), 0)
        },
        wr = function(W, d) {
            return (W = W.create().shift(), d.C.create().length) || d.g.create().length || (d.C = void 0, d.g = void 0), W
        },
        VV = function(W, d, V) {
            return V = P[W.G](W.Hn), V[W.G] = function() {
                return d
            }, V.concat = function(X) {
                d = X
            }, V
        },
        Xc = function(W, d) {
            return d[W] << 24 | d[(W | 0) + 1] << 16 | d[(W | 0) + 2] << 8 | d[(W | 0) + 3]
        },
        B = function(W, d) {
            W.u.splice(0, 0, d)
        },
        at = function(W, d, V, X) {
            function x() {}
            return X = fA(W, (V = void 0, function(w) {
                x && (d && y(d), V = w, x(), x = void 0)
            }), !!d)[0], {
                invoke: function(w, a, f, v) {
                    function l() {
                        V(function(H) {
                            y(function() {
                                w(H)
                            })
                        }, f)
                    }
                    if (!a) return a = X(f), w && w(a), a;
                    V ? l() : (v = x, x = function() {
                        (v(), y)(l)
                    })
                }
            }
        },
        D = function(W, d, V, X) {
            for (V = [], X = (W | 0) - 1; 0 <= X; X--) V[(W | 0) - 1 - (X | 0)] = d >> 8 * X & 255;
            return V
        },
        x_ = function(W, d, V, X) {
            try {
                X = W[((d | 0) + 2) % 3], W[d] = (W[d] | 0) - (W[((d | 0) + 1) % 3] | 0) - (X | 0) ^ (1 == d ? X << V : X >>> V)
            } catch (x) {
                throw x;
            }
        },
        vB = function(W, d) {
            return [(d(function(V) {
                V(W)
            }), function() {
                return W
            })]
        },
        lS = function(W) {
            return W
        },
        PB = function(W, d, V) {
            if (3 == W.length) {
                for (V = 0; 3 > V; V++) d[V] += W[V];
                for (V = [13, 8, 13, 12, 16, (W = 0, 5), 3, 10, 15]; 9 > W; W++) d[3](d, W % 3, V[W])
            }
        },
        r = {
            passive: true,
            capture: true
        },
        KA = function(W, d, V, X, x) {
            for (x = (V = (X = (W = W.replace(/\r\n/g, "\n"), 0), []), 0); X < W.length; X++) d = W.charCodeAt(X), 128 > d ? V[x++] = d : (2048 > d ? V[x++] = d >> 6 | 192 : (55296 == (d & 64512) && X + 1 < W.length && 56320 == (W.charCodeAt(X + 1) & 64512) ? (d = 65536 + ((d & 1023) << 10) + (W.charCodeAt(++X) & 1023), V[x++] = d >> 18 | 240, V[x++] = d >> 12 & 63 | 128) : V[x++] = d >> 12 | 224, V[x++] = d >> 6 & 63 | 128), V[x++] = d & 63 | 128);
            return V
        },
        L, k_ = function(W, d, V, X, x) {
            p(W, ((V = K(W, (x = (V = (d &= (X = d & 4, 3), Y(W)), Y(W)), V)), X && (V = KA("" + V)), d) && p(W, D(2, V.length), x), V), x)
        },
        yV = function(W, d, V) {
            if ("object" == (d = typeof W, d))
                if (W) {
                    if (W instanceof Array) return "array";
                    if (W instanceof Object) return d;
                    if ((V = Object.prototype.toString.call(W), "[object Window]") == V) return "object";
                    if ("[object Array]" == V || "number" == typeof W.length && "undefined" != typeof W.splice && "undefined" != typeof W.propertyIsEnumerable && !W.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == V || "undefined" != typeof W.call && "undefined" != typeof W.propertyIsEnumerable && !W.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == d && "undefined" == typeof W.call) return "object";
            return d
        },
        k = function(W, d, V) {
            if (465 == W || 510 == W) d.X[W] ? d.X[W].concat(V) : d.X[W] = VV(d, V);
            else {
                if (d.J && 435 != W) return;
                474 == W || 5 == W || 423 == W || 446 == W || 50 == W ? d.X[W] || (d.X[W] = dr(V, W, 62, d)) : d.X[W] = dr(V, W, 105, d)
            }
            435 == W && (d.o = t(d, false, 32), d.H = void 0)
        },
        T = function(W, d) {
            W.v = ((W.v ? W.v + "~" : "E:") + d.message + ":" + d.stack).slice(0, 2048)
        },
        zT = function(W, d) {
            if ((d = (W = M.trustedTypes, null), !W) || !W.createPolicy) return d;
            try {
                d = W.createPolicy("bg", {
                    createHTML: lS,
                    createScript: lS,
                    createScriptURL: lS
                })
            } catch (V) {
                M.console && M.console.error(V.message)
            }
            return d
        },
        Z_ = function(W, d, V, X, x, w) {
            if (!d.v) {
                d.D++;
                try {
                    for (V = (w = (X = d.B, void 0), 0); --W;) try {
                        if ((x = void 0, d).C) w = wr(d.C, d);
                        else {
                            if (V = K(d, 465), V >= X) break;
                            w = K(d, (k(510, d, V), x = Y(d), x))
                        }
                        Q(d, false, (w && w[jh] & 2048 ? w(d, W) : h(0, [U, 21, x], d), W), false)
                    } catch (a) {
                        K(d, 438) ? h(22, a, d) : k(438, d, a)
                    }
                    if (!W) {
                        if (d.Gg) {
                            Z_(417315765951, (d.D--, d));
                            return
                        }
                        h(0, [U, 33], d)
                    }
                } catch (a) {
                    try {
                        h(22, a, d)
                    } catch (f) {
                        T(d, f)
                    }
                }
                d.D--
            }
        },
        It = function(W, d) {
            (d.push(W[0] << 24 | W[1] << 16 | W[2] << 8 | W[3]), d.push(W[4] << 24 | W[5] << 16 | W[6] << 8 | W[7]), d).push(W[8] << 24 | W[9] << 16 | W[10] << 8 | W[11])
        },
        QV = function(W, d, V, X, x, w) {
            for (w = (V = (X = ((d = Y((x = W[mz] || {}, W)), x.vn = Y(W), x).T = [], W.l == W) ? (J(W) | 0) - 1 : 1, Y)(W), 0); w < X; w++) x.T.push(Y(W));
            for ((x.Xr = K(W, V), x).F = K(W, d); X--;) x.T[X] = K(W, x.T[X]);
            return x
        },
        h = function(W, d, V, X, x, w) {
            if (!V.J) {
                if ((W = (0 == (X = K(V, ((x = void 0, d) && d[0] === U && (W = d[1], x = d[2], d = void 0), 446)), X.length) && (w = K(V, 510) >> 3, X.push(W, w >> 8 & 255, w & 255), void 0 != x && X.push(x & 255)), ""), d) && (d.message && (W += d.message), d.stack && (W += ":" + d.stack)), d = K(V, 53), 3 < d) {
                    V.l = (x = (W = (d -= ((W = W.slice(0, (d | 0) - 3), W.length) | 0) + 3, KA)(W), V.l), V);
                    try {
                        p(V, D(2, W.length).concat(W), 5, 9)
                    } finally {
                        V.l = x
                    }
                }
                k(53, V, d)
            }
        },
        R = function(W, d, V) {
            (k(W, d, V), V)[CA] = 2796
        },
        D_ = function(W, d, V, X) {
            return (k(465, (Z_(d, ((X = K(V, 465), V.O) && X < V.B ? (k(465, V, V.B), BB(V, W)) : k(465, V, W), V)), V), X), K)(V, 87)
        },
        c, rr = function(W, d, V, X, x) {
            for (d = d[x = d[3] | (X = 0, 0), 2] | 0; 14 > X; X++) V = V >>> 8 | V << 24, V += W | 0, V ^= d + 1890, W = W << 3 | W >>> 29, W ^= V, x = x >>> 8 | x << 24, x += d | 0, x ^= X + 1890, d = d << 3 | d >>> 29, d ^= x;
            return [W >>> 24 & 255, W >>> 16 & 255, W >>> 8 & 255, W >>> 0 & 255, V >>> 24 & 255, V >>> 16 & 255, V >>> 8 & 255, V >>> 0 & 255]
        },
        Y = function(W, d) {
            if (W.C) return wr(W.g, W);
            return (d = t(W, true, 8), d) & 128 && (d ^= 128, W = t(W, true, 2), d = (d << 2) + (W | 0)), d
        },
        bS = function(W, d, V) {
            return d.S(function(X) {
                V = X
            }, false, W), V
        },
        fA = function(W, d, V, X) {
            return (X = L[W.substring(0, 3) + "_"]) ? X(W.substring(3), d, V) : vB(W, d)
        },
        LA = function(W, d, V, X, x, w) {
            function a() {
                if (X.l == X) {
                    if (X.X) {
                        var f = [E, V, d, void 0, x, w, arguments];
                        if (2 == W) var v = g(false, (B(X, f), false), X);
                        else if (1 == W) {
                            var l = !X.u.length;
                            B(X, f), l && g(false, false, X)
                        } else v = nA(f, X);
                        return v
                    }
                    x && w && x.removeEventListener(w, a, r)
                }
            }
            return a
        },
        Y_ = function(W, d, V, X) {
            for (V = (X = Y(W), 0); 0 < d; d--) V = V << 8 | J(W);
            k(X, W, V)
        },
        p = function(W, d, V, X, x, w) {
            if (W.l == W)
                for (w = K(W, V), 5 == V ? (V = function(a, f, v, l) {
                        if ((f = ((l = w.length, l) | 0) - 4 >> 3, w.hF) != f) {
                            f = [0, 0, x[1], (v = (f << 3) - (w.hF = f, 4), x[2])];
                            try {
                                w.Bn = rr(Xc(v, w), f, Xc((v | 0) + 4, w))
                            } catch (H) {
                                throw H;
                            }
                        }
                        w.push(w.Bn[l & 7] ^ a)
                    }, x = K(W, 50)) : V = function(a) {
                        w.push(a)
                    }, X && V(X & 255), W = d.length, X = 0; X < W; X++) V(d[X])
        },
        g = function(W, d, V, X, x, w) {
            if (V.u.length) {
                V.uM = (V.V = !(V.V && 0(), 0), W);
                try {
                    w = V.h(), V.K = w, V.P = 0, V.I = w, x = pA(W, V), X = V.h() - V.I, V.s += X, X < (d ? 0 : 10) || 0 >= V.j-- || (X = Math.floor(X), V.L.push(254 >= X ? X : 254))
                } finally {
                    V.V = false
                }
                return x
            }
        },
        e = function(W, d) {
            for (d = []; W--;) d.push(255 * Math.random() | 0);
            return d
        },
        nA = function(W, d, V, X, x) {
            if (V = W[0], V == O) d.j = 25, d.A(W);
            else if (V == A) {
                X = W[1];
                try {
                    x = d.v || d.A(W)
                } catch (w) {
                    T(d, w), x = d.v
                }
                X(x)
            } else if (V == iS) d.A(W);
            else if (V == q) d.A(W);
            else if (V == ot) {
                try {
                    for (x = 0; x < d.U.length; x++) try {
                        X = d.U[x], X[0][X[1]](X[2])
                    } catch (w) {}
                } catch (w) {}(0, W[1])(function(w, a) {
                    d.S(w, true, a)
                }, (d.U = [], function(w) {
                    B((w = !d.u.length, d), [jh]), w && g(true, false, d)
                }))
            } else {
                if (V == E) return x = W[2], k(82, d, W[6]), k(87, d, x), d.A(W);
                V == jh ? (d.L = [], d.X = null, d.O = []) : V == CA && "loading" === M.document.readyState && (d.R = function(w, a) {
                    function f() {
                        a || (a = true, w())
                    }(M.document.addEventListener("DOMContentLoaded", (a = false, f), r), M).addEventListener("load", f, r)
                })
            }
        },
        pA = function(W, d, V, X) {
            for (; d.u.length;) {
                d.R = null, X = d.u.pop();
                try {
                    V = nA(X, d)
                } catch (x) {
                    T(d, x)
                }
                if (W && d.R) {
                    (W = d.R, W)(function() {
                        g(true, true, d)
                    });
                    break
                }
            }
            return V
        },
        tE = function(W, d) {
            return d = J(W), d & 128 && (d = d & 127 | J(W) << 7), d
        },
        M = this || self,
        t = function(W, d, V, X, x, w, a, f, v, l, H, z, m, C) {
            if (f = K(W, 465), f >= W.B) throw [U, 31];
            for (x = (l = (X = (v = f, V), 0), W).RU.length; 0 < X;) w = v % 8, C = v >> 3, H = 8 - (w | 0), a = W.O[C], H = H < X ? H : X, d && (m = W, m.H != v >> 6 && (m.H = v >> 6, z = K(m, 435), m.Z = rr(m.o, [0, 0, z[1], z[2]], m.H)), a ^= W.Z[C & x]), l |= (a >> 8 - (w | 0) - (H | 0) & (1 << H) - 1) << (X | 0) - (H | 0), X -= H, v += H;
            return k(465, (d = l, W), (f | 0) + (V | 0)), d
        },
        y = M.requestIdleCallback ? function(W) {
            requestIdleCallback(function() {
                W()
            }, {
                timeout: 4
            })
        } : M.setImmediate ? function(W) {
            setImmediate(W)
        } : function(W) {
            setTimeout(W, 0)
        },
        BB = function(W, d) {
            k(465, W, ((W.ds.push(W.X.slice()), W).X[465] = void 0, d))
        },
        NR = function(W, d, V, X) {
            p((V = (X = Y(d), Y)(d), d), D(W, K(d, X)), V)
        },
        K = function(W, d) {
            if ((W = W.X[d], void 0) === W) throw [U, 30, d];
            if (W.value) return W.create();
            return (W.create(3 * d * d + -53 * d + 21), W).prototype
        },
        J = function(W) {
            return W.C ? wr(W.g, W) : t(W, true, 8)
        },
        TT = function(W, d) {
            return P[W](P.prototype, {
                splice: d,
                document: d,
                prototype: d,
                call: d,
                replace: d,
                stack: d,
                console: d,
                length: d,
                propertyIsEnumerable: d,
                parent: d,
                floor: d,
                pop: d
            })
        },
        G = function(W, d, V) {
            V = this;
            try {
                MR(this, d, W)
            } catch (X) {
                T(this, X), W(function(x) {
                    x(V.v)
                })
            }
        },
        MR = function(W, d, V, X, x) {
            for (x = (X = (W.lM = (W.RU = W[W.n_ = hE, A], W.DK = uS, TT(W.G, {get: function() {
                        return this.concat()
                    }
                })), W.Hn = P[W.G](W.lM, {
                    value: {
                        value: {}
                    }
                }), 0), []); 128 > X; X++) x[X] = String.fromCharCode(X);
            g(true, (B(W, [(B(W, (R(278, (R(184, W, (R((R(62, W, (k(474, (k(234, W, (k(87, W, (R((R(228, (R(38, W, (R(285, W, (W.f_ = (R(((R(389, W, (k(423, (R(483, W, (R(201, (k(446, W, (R(493, W, (R(349, (R(91, W, (k(438, (R(417, W, (R(111, W, (R(158, (W.Pn = ((R(354, W, ((k(121, W, (R(318, (R(374, (R(28, W, (R(488, W, (k(6, (R(104, W, (k(5, W, (k((k((k(510, W, (k(465, ((X = (W.V = ((W.W = 1, W).H = (W.N = (W.L = (W.P = void 0, []), W.R = null, W.g = void 0, 0), (W.K = 0, W).uM = false, (W.J = false, W).u = (W.j = 25, (W.l = (W.U = [], W.Z = void 0, W), W.C = ((W.X = (W.I = 0, []), W).v = void 0, void 0), W.bM = 0, W.eu = function(w) {
                this.l = w
            }, W).ds = [], []), W.O = [], (W.o = ((W.B = 0, W).i = (W.s = 0, 8001), void 0), W).D = 0, void 0), false), window.performance || {}), W).oU = X.timeOrigin || (X.timing || {}).navigationStart || 0, W), 0), 0)), 478), W, M), 50), W, [0, 0, 0]), e(4))), function(w, a, f, v, l, H, z, m, C, b, Z, I) {
                function u(n, N) {
                    for (; b < n;) C |= J(w) << b, b += 8;
                    return b -= n, C >>= (N = C & (1 << n) - 1, n), N
                }
                for (f = I = (z = ((b = (Z = Y(w), C = 0), u)(3) | 0) + 1, H = u(5), l = [], 0); I < H; I++) m = u(1), l.push(m), f += m ? 0 : 1;
                for (f = (I = ((f | 0) - 1).toString(2).length, v = [], 0); f < H; f++) l[f] || (v[f] = u(I));
                for (I = 0; I < H; I++) l[I] && (v[I] = Y(w));
                for (a = []; z--;) a.push(K(w, Y(w)));
                R(Z, w, function(n, N, S, HB, F) {
                    for (F = (N = [], HB = [], 0); F < H; F++) {
                        if (S = v[F], !l[F]) {
                            for (; S >= N.length;) N.push(Y(n));
                            S = N[S]
                        }
                        HB.push(S)
                    }
                    n.g = VV((n.C = VV(n, a.slice()), n), HB)
                })
            })), W), 0), function(w, a, f, v, l) {
                f = Y((a = (l = Y(w), Y)(w), w)), w.l == w && (f = K(w, f), v = K(w, l), a = K(w, a), v[a] = f, 435 == l && (w.H = void 0, 2 == a && (w.o = t(w, false, 32), w.H = void 0)))
            })), function(w) {
                Y_(w, 4)
            })), W), function(w, a, f, v) {
                k((f = Y((v = (a = Y(w), J(w)), w)), f), w, K(w, a) >>> v)
            }), W), function(w, a, f, v) {
                if (a = w.ds.pop()) {
                    for (f = J(w); 0 < f; f--) v = Y(w), a[v] = w.X[v];
                    a[53] = (a[446] = w.X[446], w).X[53], w.X = a
                } else k(465, w, w.B)
            }), 0)), R)(27, W, function(w, a, f, v) {
                a = K(w, (f = K(w, (v = (f = (a = Y(w), Y(w)), Y)(w), f)), a)) == f, k(v, w, +a)
            }), function(w) {
                k_(w, 4)
            })), R)(308, W, function(w, a, f) {
                k((a = (f = Y(w), Y(w)), a), w, "" + K(w, f))
            }), 0), W), function(w, a, f) {
                (a = K(w, (a = Y((f = Y(w), w)), a)), 0 != K(w, f)) && k(465, w, a)
            }), function(w, a, f, v, l, H) {
                Q(w, false, a, true) || (H = QV(w.l), f = H.T, a = H.vn, l = H.F, H = H.Xr, v = f.length, f = 0 == v ? new H[l] : 1 == v ? new H[l](f[0]) : 2 == v ? new H[l](f[0], f[1]) : 3 == v ? new H[l](f[0], f[1], f[2]) : 4 == v ? new H[l](f[0], f[1], f[2], f[3]) : 2(), k(a, w, f))
            })), function(w, a, f) {
                Q(w, false, a, true) || (a = Y(w), f = Y(w), k(f, w, function(v) {
                    return eval(v)
                }(Uv(K(w.l, a)))))
            })), W), 903), function(w, a, f, v) {
                k((f = K(w, (v = K((a = (v = Y(w), f = Y(w), Y(w)), w), v), f)), a), w, v[f])
            })), W), function(w, a, f, v) {
                (v = (f = K((a = Y((f = Y(w), v = Y(w), w)), w), f), K)(w, v), k)(a, w, f in v | 0)
            }), function() {})), [])), W), function(w, a, f, v) {
                f = (a = K(w, (v = Y((f = Y(w), w)), v)), K)(w, f), k(v, w, a + f)
            }), R(224, W, function(w, a, f, v, l, H, z) {
                for (z = (l = (H = K(w, (v = (a = tE((f = Y(w), w)), ""), 185)), H.length), 0); a--;) z = ((z | 0) + (tE(w) | 0)) % l, v += x[H[z]];
                k(f, w, v)
            }), function(w, a, f) {
                (a = yV((a = (a = Y(w), f = Y(w), K(w, a)), a)), k)(f, w, a)
            })), W), []), function(w, a, f, v) {
                f = Y(w), a = Y(w), v = Y(w), k(v, w, K(w, f) || K(w, a))
            })), k)(53, W, 2048), 420), W, function(w, a, f, v, l) {
                for (f = (v = tE((a = Y(w), w)), l = [], 0); f < v; f++) l.push(J(w));
                k(a, w, l)
            }), 0), function(w, a, f, v, l, H) {
                if (!Q(w, true, a, true)) {
                    if ("object" == yV((w = K((H = (a = K((H = (f = Y((v = (a = Y(w), Y)(w), w)), Y(w)), w), a), K(w, H)), f = K(w, f), w), v), a))) {
                        for (l in v = [], a) v.push(l);
                        a = v
                    }
                    for (v = (f = 0 < f ? f : 1, l = 0, a.length); l < v; l += f) w(a.slice(l, (l | 0) + (f | 0)), H)
                }
            })), function(w, a, f, v, l) {
                k((v = K((l = K((v = (a = Y((f = Y(w), l = Y(w), w)), Y(w)), w), l), w), v), a = K(w, a), f), w, LA(v, a, l, w))
            })), W), function(w) {
                NR(4, w)
            }), 381), W, function(w) {
                k_(w, 3)
            }), {})), W)), W), [160, 0, 0]), W.Wn = 0, R(369, W, function(w, a, f, v) {
                !Q(w, false, a, true) && (a = QV(w), v = a.F, f = a.Xr, w.l == w || v == w.eu && f == w) && (k(a.vn, w, v.apply(f, a.T)), w.K = w.h())
            }), function(w, a) {
                BB((a = K(w, Y(w)), w).l, a)
            })), 492), W, function(w, a) {
                a = Y(w), w = K(w.l, a), w[0].removeEventListener(w[1], w[2], r)
            }), function(w, a, f, v, l) {
                0 !== (f = K(w, (a = K((l = (v = K((v = (f = (l = (a = Y(w), Y(w)), Y(w)), Y)(w), w), v), K(w, l)), w).l, a), f)), a) && (f = LA(1, v, f, w, a, l), a.addEventListener(l, f, r), k(6, w, [a, l, f]))
            })), W), function(w) {
                NR(1, w)
            }), [CA])), B(W, [q, d]), ot), V]), true), W)
        },
        mz = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        ot = ((G.prototype.ws = void 0, G.prototype).Gg = false, []),
        jh = (G.prototype.Y = "toString", []),
        A = [],
        q = [],
        iS = [],
        U = (G.prototype.UF = void 0, {}),
        O = [],
        CA = [],
        E = [],
        P = ((It, function() {})(e), x_, PB, G.prototype.G = "create", c = G.prototype, U).constructor,
        WB = (c.IU = ((c.Tg = function(W, d, V) {
            return ((d ^= d << 13, d ^= d >> 17, d = (d ^ d << 5) & V) || (d = 1), W) ^ d
        }, c).K_ = function() {
            return Math.floor(this.h())
        }, c.h = (window.performance || {}).now ? function() {
            return this.oU + window.performance.now()
        } : function() {
            return +new Date
        }, c.V6 = function(W, d, V, X, x, w) {
            for (X = x = (V = [], 0); X < W.length; X++)
                for (w = w << d | W[X], x += d; 7 < x;) x -= 8, V.push(w >> x & 255);
            return V
        }, c.S = function(W, d, V, X, x) {
            if (V = "array" === yV(V) ? V : [V], this.v) W(this.v);
            else try {
                X = [], x = !this.u.length, B(this, [O, X, V]), B(this, [A, W, X]), d && !x || g(d, true, this)
            } catch (w) {
                T(this, w), W(this.v)
            }
        }, function(W, d, V, X, x) {
            for (x = X = 0; X < W.length; X++) x += W.charCodeAt(X), x += x << 10, x ^= x >> 6;
            return X = (W = (x += x << 3, x ^= x >> 11, x + (x << 15)) >>> 0, new Number(W & (1 << d) - 1)), X[0] = (W >>> d) % V, X
        }), c.OF = function() {
            return Math.floor(this.s + (this.h() - this.I))
        }, void 0);
    G.prototype.A = function(W, d) {
        return W = {}, WB = function() {
                return d == W ? 21 : 49
            }, d = {},
            function(V, X, x, w, a, f, v, l, H, z, m, C, b, Z, I) {
                d = (l = d, W);
                try {
                    if (v = V[0], v == q) {
                        f = V[1];
                        try {
                            for (w = (z = x = (Z = atob(f), 0), []); x < Z.length; x++) b = Z.charCodeAt(x), 255 < b && (w[z++] = b & 255, b >>= 8), w[z++] = b;
                            k(435, this, [0, 0, ((this.O = w, this).B = this.O.length << 3, 0)])
                        } catch (u) {
                            h(17, u, this);
                            return
                        }
                        Z_(8001, this)
                    } else if (v == O) V[1].push(K(this, 53), K(this, 5).length, K(this, 474).length, K(this, 423).length), k(87, this, V[2]), this.X[181] && D_(K(this, 181), 8001, this);
                    else {
                        if (v == A) {
                            this.l = (X = (H = D(2, (z = V[2], (K(this, 474).length | 0) + 2)), this).l, this);
                            try {
                                m = K(this, 446), 0 < m.length && p(this, D(2, m.length).concat(m), 474, 10), p(this, D(1, this.W), 474, 109), p(this, D(1, this[A].length), 474), Z = 0, Z -= (K(this, 474).length | 0) + 5, I = K(this, 5), Z += K(this, 121) & 2047, 4 < I.length && (Z -= (I.length | 0) + 3), 0 < Z && p(this, D(2, Z).concat(e(Z)), 474, 15), 4 < I.length && p(this, D(2, I.length).concat(I), 474, 156)
                            } finally {
                                this.l = X
                            }
                            if (C = ((w = e(2).concat(K(this, 474)), w[1] = w[0] ^ 6, w[3] = w[1] ^ H[0], w)[4] = w[1] ^ H[1], this).C_(w)) C = "!" + C;
                            else
                                for (C = "", Z = 0; Z < w.length; Z++) a = w[Z][this.Y](16), 1 == a.length && (a = "0" + a), C += a;
                            return K((K(((x = C, k)(53, this, z.shift()), K(this, 5).length = z.shift(), this), 474).length = z.shift(), this), 423).length = z.shift(), x
                        }
                        if (v == iS) D_(V[1], V[2], this);
                        else if (v == E) return D_(V[1], 8001, this)
                    }
                } finally {
                    d = l
                }
            }
    }();
    var hE, uS = /./,
        JE = q.pop.bind((((G.prototype.C_ = function(W, d, V, X) {
            if (d = window.btoa) {
                for (V = (X = 0, ""); X < W.length; X += 8192) V += String.fromCharCode.apply(null, W.slice(X, X + 8192));
                W = d(V).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
            } else W = void 0;
            return W
        }, G).prototype.gs = (G.prototype.aU = 0, 0), G).prototype[ot] = [0, 0, 1, 1, 0, 1, 1], G.prototype[O])),
        Uv = function(W, d) {
            return (d = zT()) && 1 === W.eval(d.createScript("1")) ? function(V) {
                return d.createScript(V)
            } : function(V) {
                return "" + V
            }
        }(((hE = TT((uS[G.prototype.Y] = JE, G.prototype.G), {get: JE
        }), G.prototype).AF = void 0, M));
    (40 < (L = M.botguard || (M.botguard = {}), L.m) || (L.m = 41, L.bg = at, L.a = fA), L).PBO_ = function(W, d, V) {
        return V = new G(d, W), [function(X) {
            return bS(X, V)
        }]
    };
}).call(this);
                                    

#2 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 44bc528d4e9f2adf94f881e61bbf1efeccc41f1205c42aa6ad8bf5d0a27f0f6f

                                        0,
function(w) {
    Y_(w, 1)
}
                                    

#3 JavaScript::Eval (size: 64, repeated: 1) - SHA256: fcc7b67fb6adf834de7be2636820960a9262992ec28780ddd797f42f9a7f0f18

                                        0,
function(w, a, f) {
    k((f = (a = Y((f = Y(w), w)), w).X[f] && K(w, f), a), w, f)
}
                                    

#4 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 0079de8c08c2e6f8fa95d7dcd5129c6c1893ad0c7d4243ff5e86c76962dc65bc

                                        0,
function(w) {
    Y_(w, 2)
}
                                    

#5 JavaScript::Eval (size: 15567, repeated: 1) - SHA256: 1ab48e1ef261ce98fb9bdb0ada2b59b7de6934d3a3b8f98bbeb3c794ec481d1a

                                        /* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var V = this || self,
        X = function(W) {
            return W
        },
        f = function(W, d) {
            if ((d = (W = null, V.trustedTypes), !d) || !d.createPolicy) return W;
            try {
                W = d.createPolicy("bg", {
                    createHTML: X,
                    createScript: X,
                    createScriptURL: X
                })
            } catch (w) {
                V.console && V.console.error(w.message)
            }
            return W
        };
    (0, eval)(function(W, d) {
        return (d = f()) && 1 === W.eval(d.createScript("1")) ? function(w) {
            return d.createScript(w)
        } : function(w) {
            return "" + w
        }
    }(V)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var dr=function(W,d,V,X,x,w,a,f){return((W=[84,(f=(w=WB,V&7),-53),96,-24,24,43,W,73,2,56],a=P[X.G](X.lM),a)[X.G]=function(v){f+=(x=v,6+7*V),f&=7},a).concat=function(v){return((x=(v=+W[f+43&7]*d*(v=d%16+1,v)+3*d*d*v+(w()|0)*v- -2915*d*x-1155*x+55*x*x+f-165*d*d*x-v*x,v=W[v],void 0),W)[(f+53&7)+(V&2)]=v,W)[f+(V&2)]=-53,v},a},Q=function(W,d,V,X,x,w,a,f,v){if(((W.l=((x=(v=(f=(X||W.P++,0<W.N&&W.V&&W.uM&&1>=W.D&&!W.C)&&!W.R&&(!X||1<W.i-V)&&0==document.hidden,(w=4==W.P)||f?W.h():W.K),a=v-W.K,a>>14),W).o&&(W.o^=x*(a<<2)),x)||W.l,W).W+=x,w)||f)W.P=0,W.K=v;if(!f||v-W.I<W.N-(d?255:X?5:2))return false;return!(W.R=(k(465,(W.i=V,d=K(W,X?510:465),W),W.B),W.u.push([iS,d,X?V+1:V]),y),0)},wr=function(W,d){return(W=W.create().shift(),d.C.create().length)||d.g.create().length||(d.C=void 0,d.g=void 0),W},VV=function(W,d,V){return V=P[W.G](W.Hn),V[W.G]=function(){return d},V.concat=function(X){d=X},V},Xc=function(W,d){return d[W]<<24|d[(W|0)+1]<<16|d[(W|0)+2]<<8|d[(W|0)+3]},B=function(W,d){W.u.splice(0,0,d)},at=function(W,d,V,X){function x(){}return X=fA(W,(V=void 0,function(w){x&&(d&&y(d),V=w,x(),x=void 0)}),!!d)[0],{invoke:function(w,a,f,v){function l(){V(function(H){y(function(){w(H)})},f)}if(!a)return a=X(f),w&&w(a),a;V?l():(v=x,x=function(){(v(),y)(l)})}}},D=function(W,d,V,X){for(V=[],X=(W|0)-1;0<=X;X--)V[(W|0)-1-(X|0)]=d>>8*X&255;return V},x_=function(W,d,V,X){try{X=W[((d|0)+2)%3],W[d]=(W[d]|0)-(W[((d|0)+1)%3]|0)-(X|0)^(1==d?X<<V:X>>>V)}catch(x){throw x;}},vB=function(W,d){return[(d(function(V){V(W)}),function(){return W})]},lS=function(W){return W},PB=function(W,d,V){if(3==W.length){for(V=0;3>V;V++)d[V]+=W[V];for(V=[13,8,13,12,16,(W=0,5),3,10,15];9>W;W++)d[3](d,W%3,V[W])}},r={passive:true,capture:true},KA=function(W,d,V,X,x){for(x=(V=(X=(W=W.replace(/\\r\\n/g,"\\n"),0),[]),0);X<W.length;X++)d=W.charCodeAt(X),128>d?V[x++]=d:(2048>d?V[x++]=d>>6|192:(55296==(d&64512)&&X+1<W.length&&56320==(W.charCodeAt(X+1)&64512)?(d=65536+((d&1023)<<10)+(W.charCodeAt(++X)&1023),V[x++]=d>>18|240,V[x++]=d>>12&63|128):V[x++]=d>>12|224,V[x++]=d>>6&63|128),V[x++]=d&63|128);return V},L,k_=function(W,d,V,X,x){p(W,((V=K(W,(x=(V=(d&=(X=d&4,3),Y(W)),Y(W)),V)),X&&(V=KA(""+V)),d)&&p(W,D(2,V.length),x),V),x)},yV=function(W,d,V){if("object"==(d=typeof W,d))if(W){if(W instanceof Array)return"array";if(W instanceof Object)return d;if((V=Object.prototype.toString.call(W),"[object Window]")==V)return"object";if("[object Array]"==V||"number"==typeof W.length&&"undefined"!=typeof W.splice&&"undefined"!=typeof W.propertyIsEnumerable&&!W.propertyIsEnumerable("splice"))return"array";if("[object Function]"==V||"undefined"!=typeof W.call&&"undefined"!=typeof W.propertyIsEnumerable&&!W.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==d&&"undefined"==typeof W.call)return"object";return d},k=function(W,d,V){if(465==W||510==W)d.X[W]?d.X[W].concat(V):d.X[W]=VV(d,V);else{if(d.J&&435!=W)return;474==W||5==W||423==W||446==W||50==W?d.X[W]||(d.X[W]=dr(V,W,62,d)):d.X[W]=dr(V,W,105,d)}435==W&&(d.o=t(d,false,32),d.H=void 0)},T=function(W,d){W.v=((W.v?W.v+"~":"E:")+d.message+":"+d.stack).slice(0,2048)},zT=function(W,d){if((d=(W=M.trustedTypes,null),!W)||!W.createPolicy)return d;try{d=W.createPolicy("bg",{createHTML:lS,createScript:lS,createScriptURL:lS})}catch(V){M.console&&M.console.error(V.message)}return d},Z_=function(W,d,V,X,x,w){if(!d.v){d.D++;try{for(V=(w=(X=d.B,void 0),0);--W;)try{if((x=void 0,d).C)w=wr(d.C,d);else{if(V=K(d,465),V>=X)break;w=K(d,(k(510,d,V),x=Y(d),x))}Q(d,false,(w&&w[jh]&2048?w(d,W):h(0,[U,21,x],d),W),false)}catch(a){K(d,438)?h(22,a,d):k(438,d,a)}if(!W){if(d.Gg){Z_(417315765951,(d.D--,d));return}h(0,[U,33],d)}}catch(a){try{h(22,a,d)}catch(f){T(d,f)}}d.D--}},It=function(W,d){(d.push(W[0]<<24|W[1]<<16|W[2]<<8|W[3]),d.push(W[4]<<24|W[5]<<16|W[6]<<8|W[7]),d).push(W[8]<<24|W[9]<<16|W[10]<<8|W[11])},QV=function(W,d,V,X,x,w){for(w=(V=(X=((d=Y((x=W[mz]||{},W)),x.vn=Y(W),x).T=[],W.l==W)?(J(W)|0)-1:1,Y)(W),0);w<X;w++)x.T.push(Y(W));for((x.Xr=K(W,V),x).F=K(W,d);X--;)x.T[X]=K(W,x.T[X]);return x},h=function(W,d,V,X,x,w){if(!V.J){if((W=(0==(X=K(V,((x=void 0,d)&&d[0]===U&&(W=d[1],x=d[2],d=void 0),446)),X.length)&&(w=K(V,510)>>3,X.push(W,w>>8&255,w&255),void 0!=x&&X.push(x&255)),""),d)&&(d.message&&(W+=d.message),d.stack&&(W+=":"+d.stack)),d=K(V,53),3<d){V.l=(x=(W=(d-=((W=W.slice(0,(d|0)-3),W.length)|0)+3,KA)(W),V.l),V);try{p(V,D(2,W.length).concat(W),5,9)}finally{V.l=x}}k(53,V,d)}},R=function(W,d,V){(k(W,d,V),V)[CA]=2796},D_=function(W,d,V,X){return(k(465,(Z_(d,((X=K(V,465),V.O)&&X<V.B?(k(465,V,V.B),BB(V,W)):k(465,V,W),V)),V),X),K)(V,87)},c,rr=function(W,d,V,X,x){for(d=d[x=d[3]|(X=0,0),2]|0;14>X;X++)V=V>>>8|V<<24,V+=W|0,V^=d+1890,W=W<<3|W>>>29,W^=V,x=x>>>8|x<<24,x+=d|0,x^=X+1890,d=d<<3|d>>>29,d^=x;return[W>>>24&255,W>>>16&255,W>>>8&255,W>>>0&255,V>>>24&255,V>>>16&255,V>>>8&255,V>>>0&255]},Y=function(W,d){if(W.C)return wr(W.g,W);return(d=t(W,true,8),d)&128&&(d^=128,W=t(W,true,2),d=(d<<2)+(W|0)),d},bS=function(W,d,V){return d.S(function(X){V=X},false,W),V},fA=function(W,d,V,X){return(X=L[W.substring(0,3)+"_"])?X(W.substring(3),d,V):vB(W,d)},LA=function(W,d,V,X,x,w){function a(){if(X.l==X){if(X.X){var f=[E,V,d,void 0,x,w,arguments];if(2==W)var v=g(false,(B(X,f),false),X);else if(1==W){var l=!X.u.length;B(X,f),l&&g(false,false,X)}else v=nA(f,X);return v}x&&w&&x.removeEventListener(w,a,r)}}return a},Y_=function(W,d,V,X){for(V=(X=Y(W),0);0<d;d--)V=V<<8|J(W);k(X,W,V)},p=function(W,d,V,X,x,w){if(W.l==W)for(w=K(W,V),5==V?(V=function(a,f,v,l){if((f=((l=w.length,l)|0)-4>>3,w.hF)!=f){f=[0,0,x[1],(v=(f<<3)-(w.hF=f,4),x[2])];try{w.Bn=rr(Xc(v,w),f,Xc((v|0)+4,w))}catch(H){throw H;}}w.push(w.Bn[l&7]^a)},x=K(W,50)):V=function(a){w.push(a)},X&&V(X&255),W=d.length,X=0;X<W;X++)V(d[X])},g=function(W,d,V,X,x,w){if(V.u.length){V.uM=(V.V=!(V.V&&0(),0),W);try{w=V.h(),V.K=w,V.P=0,V.I=w,x=pA(W,V),X=V.h()-V.I,V.s+=X,X<(d?0:10)||0>=V.j--||(X=Math.floor(X),V.L.push(254>=X?X:254))}finally{V.V=false}return x}},e=function(W,d){for(d=[];W--;)d.push(255*Math.random()|0);return d},nA=function(W,d,V,X,x){if(V=W[0],V==O)d.j=25,d.A(W);else if(V==A){X=W[1];try{x=d.v||d.A(W)}catch(w){T(d,w),x=d.v}X(x)}else if(V==iS)d.A(W);else if(V==q)d.A(W);else if(V==ot){try{for(x=0;x<d.U.length;x++)try{X=d.U[x],X[0][X[1]](X[2])}catch(w){}}catch(w){}(0,W[1])(function(w,a){d.S(w,true,a)},(d.U=[],function(w){B((w=!d.u.length,d),[jh]),w&&g(true,false,d)}))}else{if(V==E)return x=W[2],k(82,d,W[6]),k(87,d,x),d.A(W);V==jh?(d.L=[],d.X=null,d.O=[]):V==CA&&"loading"===M.document.readyState&&(d.R=function(w,a){function f(){a||(a=true,w())}(M.document.addEventListener("DOMContentLoaded",(a=false,f),r),M).addEventListener("load",f,r)})}},pA=function(W,d,V,X){for(;d.u.length;){d.R=null,X=d.u.pop();try{V=nA(X,d)}catch(x){T(d,x)}if(W&&d.R){(W=d.R,W)(function(){g(true,true,d)});break}}return V},tE=function(W,d){return d=J(W),d&128&&(d=d&127|J(W)<<7),d},M=this||self,t=function(W,d,V,X,x,w,a,f,v,l,H,z,m,C){if(f=K(W,465),f>=W.B)throw[U,31];for(x=(l=(X=(v=f,V),0),W).RU.length;0<X;)w=v%8,C=v>>3,H=8-(w|0),a=W.O[C],H=H<X?H:X,d&&(m=W,m.H!=v>>6&&(m.H=v>>6,z=K(m,435),m.Z=rr(m.o,[0,0,z[1],z[2]],m.H)),a^=W.Z[C&x]),l|=(a>>8-(w|0)-(H|0)&(1<<H)-1)<<(X|0)-(H|0),X-=H,v+=H;return k(465,(d=l,W),(f|0)+(V|0)),d},y=M.requestIdleCallback?function(W){requestIdleCallback(function(){W()},{timeout:4})}:M.setImmediate?function(W){setImmediate(W)}:function(W){setTimeout(W,0)},BB=function(W,d){k(465,W,((W.ds.push(W.X.slice()),W).X[465]=void 0,d))},NR=function(W,d,V,X){p((V=(X=Y(d),Y)(d),d),D(W,K(d,X)),V)},K=function(W,d){if((W=W.X[d],void 0)===W)throw[U,30,d];if(W.value)return W.create();return(W.create(3*d*d+-53*d+21),W).prototype},J=function(W){return W.C?wr(W.g,W):t(W,true,8)},TT=function(W,d){return P[W](P.prototype,{splice:d,document:d,prototype:d,call:d,replace:d,stack:d,console:d,length:d,propertyIsEnumerable:d,parent:d,floor:d,pop:d})},G=function(W,d,V){V=this;try{MR(this,d,W)}catch(X){T(this,X),W(function(x){x(V.v)})}},MR=function(W,d,V,X,x){for(x=(X=(W.lM=(W.RU=W[W.n_=hE,A],W.DK=uS,TT(W.G,{get:function(){return this.concat()}})),W.Hn=P[W.G](W.lM,{value:{value:{}}}),0),[]);128>X;X++)x[X]=String.fromCharCode(X);g(true,(B(W,[(B(W,(R(278,(R(184,W,(R((R(62,W,(k(474,(k(234,W,(k(87,W,(R((R(228,(R(38,W,(R(285,W,(W.f_=(R(((R(389,W,(k(423,(R(483,W,(R(201,(k(446,W,(R(493,W,(R(349,(R(91,W,(k(438,(R(417,W,(R(111,W,(R(158,(W.Pn=((R(354,W,((k(121,W,(R(318,(R(374,(R(28,W,(R(488,W,(k(6,(R(104,W,(k(5,W,(k((k((k(510,W,(k(465,((X=(W.V=((W.W=1,W).H=(W.N=(W.L=(W.P=void 0,[]),W.R=null,W.g=void 0,0),(W.K=0,W).uM=false,(W.J=false,W).u=(W.j=25,(W.l=(W.U=[],W.Z=void 0,W),W.C=((W.X=(W.I=0,[]),W).v=void 0,void 0),W.bM=0,W.eu=function(w){this.l=w},W).ds=[],[]),W.O=[],(W.o=((W.B=0,W).i=(W.s=0,8001),void 0),W).D=0,void 0),false),window.performance||{}),W).oU=X.timeOrigin||(X.timing||{}).navigationStart||0,W),0),0)),478),W,M),50),W,[0,0,0]),e(4))),function(w,a,f,v,l,H,z,m,C,b,Z,I){function u(n,N){for(;b<n;)C|=J(w)<<b,b+=8;return b-=n,C>>=(N=C&(1<<n)-1,n),N}for(f=I=(z=((b=(Z=Y(w),C=0),u)(3)|0)+1,H=u(5),l=[],0);I<H;I++)m=u(1),l.push(m),f+=m?0:1;for(f=(I=((f|0)-1).toString(2).length,v=[],0);f<H;f++)l[f]||(v[f]=u(I));for(I=0;I<H;I++)l[I]&&(v[I]=Y(w));for(a=[];z--;)a.push(K(w,Y(w)));R(Z,w,function(n,N,S,HB,F){for(F=(N=[],HB=[],0);F<H;F++){if(S=v[F],!l[F]){for(;S>=N.length;)N.push(Y(n));S=N[S]}HB.push(S)}n.g=VV((n.C=VV(n,a.slice()),n),HB)})})),W),0),function(w,a,f,v,l){f=Y((a=(l=Y(w),Y)(w),w)),w.l==w&&(f=K(w,f),v=K(w,l),a=K(w,a),v[a]=f,435==l&&(w.H=void 0,2==a&&(w.o=t(w,false,32),w.H=void 0)))})),function(w){Y_(w,4)})),W),function(w,a,f,v){k((f=Y((v=(a=Y(w),J(w)),w)),f),w,K(w,a)>>>v)}),W),function(w,a,f,v){if(a=w.ds.pop()){for(f=J(w);0<f;f--)v=Y(w),a[v]=w.X[v];a[53]=(a[446]=w.X[446],w).X[53],w.X=a}else k(465,w,w.B)}),0)),R)(27,W,function(w,a,f,v){a=K(w,(f=K(w,(v=(f=(a=Y(w),Y(w)),Y)(w),f)),a))==f,k(v,w,+a)}),function(w){k_(w,4)})),R)(308,W,function(w,a,f){k((a=(f=Y(w),Y(w)),a),w,""+K(w,f))}),0),W),function(w,a,f){(a=K(w,(a=Y((f=Y(w),w)),a)),0!=K(w,f))&&k(465,w,a)}),function(w,a,f,v,l,H){Q(w,false,a,true)||(H=QV(w.l),f=H.T,a=H.vn,l=H.F,H=H.Xr,v=f.length,f=0==v?new H[l]:1==v?new H[l](f[0]):2==v?new H[l](f[0],f[1]):3==v?new H[l](f[0],f[1],f[2]):4==v?new H[l](f[0],f[1],f[2],f[3]):2(),k(a,w,f))})),function(w,a,f){Q(w,false,a,true)||(a=Y(w),f=Y(w),k(f,w,function(v){return eval(v)}(Uv(K(w.l,a)))))})),W),903),function(w,a,f,v){k((f=K(w,(v=K((a=(v=Y(w),f=Y(w),Y(w)),w),v),f)),a),w,v[f])})),W),function(w,a,f,v){(v=(f=K((a=Y((f=Y(w),v=Y(w),w)),w),f),K)(w,v),k)(a,w,f in v|0)}),function(){})),[])),W),function(w,a,f,v){f=(a=K(w,(v=Y((f=Y(w),w)),v)),K)(w,f),k(v,w,a+f)}),R(224,W,function(w,a,f,v,l,H,z){for(z=(l=(H=K(w,(v=(a=tE((f=Y(w),w)),""),185)),H.length),0);a--;)z=((z|0)+(tE(w)|0))%l,v+=x[H[z]];k(f,w,v)}),function(w,a,f){(a=yV((a=(a=Y(w),f=Y(w),K(w,a)),a)),k)(f,w,a)})),W),[]),function(w,a,f,v){f=Y(w),a=Y(w),v=Y(w),k(v,w,K(w,f)||K(w,a))})),k)(53,W,2048),420),W,function(w,a,f,v,l){for(f=(v=tE((a=Y(w),w)),l=[],0);f<v;f++)l.push(J(w));k(a,w,l)}),0),function(w,a,f,v,l,H){if(!Q(w,true,a,true)){if("object"==yV((w=K((H=(a=K((H=(f=Y((v=(a=Y(w),Y)(w),w)),Y(w)),w),a),K(w,H)),f=K(w,f),w),v),a))){for(l in v=[],a)v.push(l);a=v}for(v=(f=0<f?f:1,l=0,a.length);l<v;l+=f)w(a.slice(l,(l|0)+(f|0)),H)}})),function(w,a,f,v,l){k((v=K((l=K((v=(a=Y((f=Y(w),l=Y(w),w)),Y(w)),w),l),w),v),a=K(w,a),f),w,LA(v,a,l,w))})),W),function(w){NR(4,w)}),381),W,function(w){k_(w,3)}),{})),W)),W),[160,0,0]),W.Wn=0,R(369,W,function(w,a,f,v){!Q(w,false,a,true)&&(a=QV(w),v=a.F,f=a.Xr,w.l==w||v==w.eu&&f==w)&&(k(a.vn,w,v.apply(f,a.T)),w.K=w.h())}),function(w,a){BB((a=K(w,Y(w)),w).l,a)})),492),W,function(w,a){a=Y(w),w=K(w.l,a),w[0].removeEventListener(w[1],w[2],r)}),function(w,a,f,v,l){0!==(f=K(w,(a=K((l=(v=K((v=(f=(l=(a=Y(w),Y(w)),Y(w)),Y)(w),w),v),K(w,l)),w).l,a),f)),a)&&(f=LA(1,v,f,w,a,l),a.addEventListener(l,f,r),k(6,w,[a,l,f]))})),W),function(w){NR(1,w)}),[CA])),B(W,[q,d]),ot),V]),true),W)},mz=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),ot=((G.prototype.ws=void 0,G.prototype).Gg=false,[]),jh=(G.prototype.Y="toString",[]),A=[],q=[],iS=[],U=(G.prototype.UF=void 0,{}),O=[],CA=[],E=[],P=((It,function(){})(e),x_,PB,G.prototype.G="create",c=G.prototype,U).constructor,WB=(c.IU=((c.Tg=function(W,d,V){return((d^=d<<13,d^=d>>17,d=(d^d<<5)&V)||(d=1),W)^d},c).K_=function(){return Math.floor(this.h())},c.h=(window.performance||{}).now?function(){return this.oU+window.performance.now()}:function(){return+new Date},c.V6=function(W,d,V,X,x,w){for(X=x=(V=[],0);X<W.length;X++)for(w=w<<d|W[X],x+=d;7<x;)x-=8,V.push(w>>x&255);return V},c.S=function(W,d,V,X,x){if(V="array"===yV(V)?V:[V],this.v)W(this.v);else try{X=[],x=!this.u.length,B(this,[O,X,V]),B(this,[A,W,X]),d&&!x||g(d,true,this)}catch(w){T(this,w),W(this.v)}},function(W,d,V,X,x){for(x=X=0;X<W.length;X++)x+=W.charCodeAt(X),x+=x<<10,x^=x>>6;return X=(W=(x+=x<<3,x^=x>>11,x+(x<<15))>>>0,new Number(W&(1<<d)-1)),X[0]=(W>>>d)%V,X}),c.OF=function(){return Math.floor(this.s+(this.h()-this.I))},void 0);G.prototype.A=function(W,d){return W={},WB=function(){return d==W?21:49},d={},function(V,X,x,w,a,f,v,l,H,z,m,C,b,Z,I){d=(l=d,W);try{if(v=V[0],v==q){f=V[1];try{for(w=(z=x=(Z=atob(f),0),[]);x<Z.length;x++)b=Z.charCodeAt(x),255<b&&(w[z++]=b&255,b>>=8),w[z++]=b;k(435,this,[0,0,((this.O=w,this).B=this.O.length<<3,0)])}catch(u){h(17,u,this);return}Z_(8001,this)}else if(v==O)V[1].push(K(this,53),K(this,5).length,K(this,474).length,K(this,423).length),k(87,this,V[2]),this.X[181]&&D_(K(this,181),8001,this);else{if(v==A){this.l=(X=(H=D(2,(z=V[2],(K(this,474).length|0)+2)),this).l,this);try{m=K(this,446),0<m.length&&p(this,D(2,m.length).concat(m),474,10),p(this,D(1,this.W),474,109),p(this,D(1,this[A].length),474),Z=0,Z-=(K(this,474).length|0)+5,I=K(this,5),Z+=K(this,121)&2047,4<I.length&&(Z-=(I.length|0)+3),0<Z&&p(this,D(2,Z).concat(e(Z)),474,15),4<I.length&&p(this,D(2,I.length).concat(I),474,156)}finally{this.l=X}if(C=((w=e(2).concat(K(this,474)),w[1]=w[0]^6,w[3]=w[1]^H[0],w)[4]=w[1]^H[1],this).C_(w))C="!"+C;else for(C="",Z=0;Z<w.length;Z++)a=w[Z][this.Y](16),1==a.length&&(a="0"+a),C+=a;return K((K(((x=C,k)(53,this,z.shift()),K(this,5).length=z.shift(),this),474).length=z.shift(),this),423).length=z.shift(),x}if(v==iS)D_(V[1],V[2],this);else if(v==E)return D_(V[1],8001,this)}}finally{d=l}}}();var hE,uS=/./,JE=q.pop.bind((((G.prototype.C_=function(W,d,V,X){if(d=window.btoa){for(V=(X=0,"");X<W.length;X+=8192)V+=String.fromCharCode.apply(null,W.slice(X,X+8192));W=d(V).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else W=void 0;return W},G).prototype.gs=(G.prototype.aU=0,0),G).prototype[ot]=[0,0,1,1,0,1,1],G.prototype[O])),Uv=function(W,d){return(d=zT())&&1===W.eval(d.createScript("1"))?function(V){return d.createScript(V)}:function(V){return""+V}}(((hE=TT((uS[G.prototype.Y]=JE,G.prototype.G),{get:JE}),G.prototype).AF=void 0,M));(40<(L=M.botguard||(M.botguard={}),L.m)||(L.m=41,L.bg=at,L.a=fA),L).PBO_=function(W,d,V){return V=new G(d,W),[function(X){return bS(X,V)}]};}).call(this);'));
}).call(this);
                                    

Executed Writes (0)



HTTP Transactions (62)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.165.201.103
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 22:05:16 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4dd28c7d9439664c66fbf62f5cd00636.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: 2Bp9-6WZCLqXD0ocMB_GPTifu1y4eU4WpkYuII-mj1b9YG-o08KbmQ==
Age: 188


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8005
Expires: Sat, 24 Sep 2022 00:21:49 GMT
Date: Fri, 23 Sep 2022 22:08:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "46E1A9E6C98245AFB7FA84BC6D9BA6844105024E2D3F56E28748E6C321475D02"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4566
Expires: Fri, 23 Sep 2022 23:24:30 GMT
Date: Fri, 23 Sep 2022 22:08:24 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: DC/bNczROHvDnIZI1YIac2t+Ef5pvpLLmyij/A3Tt7NjcA2dEDyTTo33CnJA5yBmm2Hs+Efm4pE=
x-amz-request-id: W3E3N331R95RV5QW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 23 Sep 2022 21:47:14 GMT
age: 1270
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 23 Sep 2022 22:08:24 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /login.php HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         172.104.17.207
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 23 Sep 2022 22:08:24 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Content-Encoding: gzip
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=7kgvkf3jcmli4viqcp6aiddj15; path=/
Upgrade: h2,h2c
Connection: Upgrade, close
location: https://www.azimuthaero.com/login.php
Cache-control: private, max-age=60, private, proxy-revalidate
Content-Length: 20


--- Additional Info ---
Magic:  data
Size:   20
Md5:    7029066c27ac6f5ef18d660d5741979a
Sha1:   46c6643f07aa7f6bfe7118de926b86defc5087c4
Sha256: 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Alerts:
  Blocklists:
    - openphish: Generic/Spear Phishing
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.165.201.103
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Fri, 23 Sep 2022 21:33:00 GMT
Expires: Fri, 23 Sep 2022 21:34:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 675c3f96928d591debc37b54f2b16dc2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: Bq0iQpCsMa2w-8ihzRZUNiZeAL04tHTXw3CfuYzq8Ku-cKYuxOQyIw==
Age: 2124


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 35
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 22:08:25 GMT
Last-Modified: Fri, 23 Sep 2022 22:07:50 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 22:08:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /recaptcha/api.js HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
expires: Fri, 23 Sep 2022 22:08:25 GMT
date: Fri, 23 Sep 2022 22:08:25 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 554
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (850), with no line terminators
Size:   554
Md5:    2311f1fa9653aad9f269b060d254e517
Sha1:   5616b0baad9134f8e12ab3fb911578740aa392fb
Sha256: 51f53051cf837a6d1e0de5e5db5bb5d5a2c1e4b23d4e7323ce306e24a80ba2b7
                                        
                                            GET /css/colors/blue.css HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sun, 26 Jan 2014 09:42:02 GMT
etag: "72ab3-f40-4f0dc67376e80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 1172
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  assembler source, ASCII text, with CRLF line terminators
Size:   1172
Md5:    b5f24427a7b0fe6d569f048b2e1afc70
Sha1:   49e9022ada9c8ac9dce19296aebc4358f676e5d6
Sha256: 5e67ba7cd52cd996f983230cbb0e3eb60332ef5e9adb11cb5f3c71022d290f65
                                        
                                            GET /css/animate.css HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Mon, 20 Jan 2014 12:00:40 GMT
etag: "66b92-99b3-4f065a3f5ca00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 2518
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2518
Md5:    3c4640fb163bab8b2349c7be183a04c8
Sha1:   62688b26eef7a33f10d06c9819f4e9dceb776e40
Sha256: 5fab9a61887922d20b04f134b99a4aa68ab9aba4586f970e9af2b6eb4cc4a38a
                                        
                                            GET /js/jquery.easing.min.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 24 Jun 2013 21:43:14 GMT
etag: "68bb7-15b3-4dfed4cb4c080-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 1859
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (3601)
Size:   1859
Md5:    364bf91ecdf809ba81a207c7a2cf8590
Sha1:   8029970d00382137cfc21cfd020149ad973268c7
Sha256: e1f35a72e9dd4cc13b172eed61a494bb0d7422b8b34cc8934aebdbaa95826aef
                                        
                                            GET /js/jquery.tooltips.min.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 24 Jun 2013 21:43:24 GMT
etag: "68bc5-1481-4dfed4d4d5700-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 1717
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (4415)
Size:   1717
Md5:    be7038f9b5f0e3c0944d56ed065dc812
Sha1:   64a30d9c874a282237003e60145e5906ab551280
Sha256: c5cc441df307d74955d37546cfd7a688dd9d56f4963ef735c93b05b63ab8ec32
                                        
                                            GET /js/jquery.themepunch.showbizpro.min.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 24 Jun 2013 21:43:24 GMT
etag: "68bc4-3080-4dfed4d4d5700-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 3327
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12093)
Size:   3327
Md5:    a92882becd1a1b8bfba1cfd5dabb4848
Sha1:   b5cd6a4716c9952a6e9b61991cfb2fb5e37e805a
Sha256: 2c7403bf5c5e24f19fb3696cee2123569167638f3f9d3208e5e109e1601c7a3b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 22:08:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/jquery.themepunch.revolution.min.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 24 Jun 2013 21:43:24 GMT
etag: "68bc3-dba4-4dfed4d4d5700-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 11238
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (55901)
Size:   11238
Md5:    d48a3b08b481f205499e4e24e6c2937c
Sha1:   f9ef18c11506e735415adfb85818675cf39eadaa
Sha256: ac52944cccc5e214904a754a490a559393b129235285825b6f356a234f823903
                                        
                                            GET /js/jquery.themepunch.plugins.min.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 24 Jun 2013 21:43:22 GMT
etag: "68bc2-b566-4dfed4d2ed280-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 12886
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ISO-8859 text, with very long lines (8325)
Size:   12886
Md5:    b45bf0a0fa4c908525e262dd1d7de8fb
Sha1:   a77cb04ef5f5daa8ef01ee24e883a77f1541d111
Sha256: c1ab9809b9105452a4254ebb6ea79628d5c2fd7f6d6d5c7c86ce844d8cce6992
                                        
                                            GET /js/jquery.magnific-popup.min.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 24 Jun 2013 21:43:18 GMT
etag: "68bbf-41ce-4dfed4cf1c980-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 6255
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16732)
Size:   6255
Md5:    beef70456f5fa1ed60e49659546850b6
Sha1:   b02c24a4492c07057019dd24a3164918961f02eb
Sha256: 5640d388d5098d73366862da3cbe552a28be62e31d89b28a20064fd20e37a2d2
                                        
                                            GET /css/style.css HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Fri, 11 Apr 2014 02:05:21 GMT
etag: "66b96-1f02c-4f6bac4167a40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 21586
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size:   21586
Md5:    b48fff4f1fb7b1b7e8388f0136d737ca
Sha1:   a7a1197fdce47a7e35b767ba438ca478a128881e
Sha256: 96d173c5aca2d1f4be1034539958d55d8c5f51010a1d724d2819a42891666049
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JQokZbFlK3mKP7Cs8A4jFA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.218.159.206
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cqjYh2vaCZclqQ0w5f6kTq92GPA=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 22:08:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/jquery.min.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 24 Jun 2013 21:43:22 GMT
etag: "68bc0-16dc4-4dfed4d2ed280-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 33430
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65483)
Size:   33430
Md5:    e91e59554aee90e6669ab58ecd3569ae
Sha1:   8a5d1d128233d5cb73667855c5f872d84de785bc
Sha256: 641fd55c94d3e20db08d8c8c1af5bea6fe6666a5e76cddeec4992fab87878de8
                                        
                                            GET /js/jquery.superfish.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 24 Jun 2013 21:43:20 GMT
etag: "68bc1-1678-4dfed4d104e00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 2065
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2065
Md5:    9505d0f9bedcef125426d17dbe73c326
Sha1:   b59ecba4fc7dfa02f74f0814bc24ce1283022e89
Sha256: 36ed9058a9cb707b338a2a113340de893f35da6956d6049a596a556ae7418b7b
                                        
                                            GET /js/jquery.twitter.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 24 Jun 2013 21:43:24 GMT
etag: "68bc6-66e-4dfed4d4d5700-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 702
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 (with BOM) text
Size:   702
Md5:    9b4ce39cec979ac73a5ba2cf7114f0e2
Sha1:   c636a45af07fb192e9d15d87c5dc99aa6215f8e5
Sha256: bacccd621b9542459fb6bc61ee6780000e8723808d72927f71b67fed27c16cce
                                        
                                            GET /js/jquery.flexslider.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 24 Jun 2013 21:43:16 GMT
etag: "68bbb-4215-4dfed4cd34500-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 5247
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (527)
Size:   5247
Md5:    f193a841e5bd642bf9123d8327cfb5bb
Sha1:   f17b5c511e454765eccc4e84de76050ea914eae7
Sha256: 5a7c8e488d31a499ee93a6dbc2257b894755aa0d3a32660e32a39741b49b49b3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 22:08:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/jquery.contact.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Sat, 01 Mar 2014 22:53:34 GMT
etag: "68bb6-b89-4f3936c909780-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 1046
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (318), with CRLF line terminators
Size:   1046
Md5:    3ccce9f244054e6f375cc90da8bfb1af
Sha1:   f2f38a6eea955c2dec8d3fee4cd4e4789b580a79
Sha256: ff77aade93961d0c134408af41b07b6dc7edaeb549fe7a507d9e6794633e3a15
                                        
                                            GET /js/jquery.easy-pie-chart.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 07 Jan 2014 18:01:12 GMT
etag: "68bba-16dc-4ef6529640a00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 1727
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1727
Md5:    688c5a6fd16a7da624b275ba940a4826
Sha1:   05bbd820f0926fcfdd2d0516de83b79aa5367c55
Sha256: 17ab24f669ec7879386311153c4f811d3e4eb9f1d8cc5dfb40de316bebfc5e4c
                                        
                                            GET /js/custom.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 26 Feb 2014 05:42:39 GMT
etag: "68bad-37d5-4f348ac3211c0-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 3791
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size:   3791
Md5:    17b7ad691e50d011a299c11106ef468c
Sha1:   a4d98e9cc25aa325d0144976e410f54c4ec016a2
Sha256: 882d32a4f261847b81d6c7fe8be750358c13df0332ad5dedcdca0bdab4eef2d1
                                        
                                            GET /js/jquery.validate.min.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Fri, 22 Mar 2013 20:20:16 GMT
etag: "68bc7-524c-4d8892ee94000-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 6362
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (20965)
Size:   6362
Md5:    0cfa72ba3f1a29f903eb6022239ea29c
Sha1:   14e920f067a5f469350f34e19ab3899771b840d5
Sha256: 7fad8f94a31f231be238b1fbd414811c6d54b0eb1c8cae493ef84c47234d5e77
                                        
                                            GET /images/bolt.png HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 10 Feb 2012 09:45:58 GMT
etag: "681ff-ae1-4b898fee80180"
accept-ranges: bytes
content-length: 2785
cache-control: max-age=604800, public
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 182 x 66, 8-bit/color RGBA, non-interlaced\012- data
Size:   2785
Md5:    867014886ec84428cb2e0aab17f641f8
Sha1:   dbe12c79bbeee716198ad6a0d47b9c162049966b
Sha256: fc6c9c9b0375dfbed8ea47919021a407288d73d127ec72254c375f214023bd20
                                        
                                            GET /js/modernizr.custom.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 18 Jun 2013 16:47:32 GMT
etag: "68bcb-2130-4df7078271100-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 3792
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (8357)
Size:   3792
Md5:    2c8c1048bef3e16f052b1c42fb3e7b27
Sha1:   0aab9847c2a9d9a16f0329063b157888d1adaa41
Sha256: 461e1d461b5f56082658db63a9b0a42559ae1e38a66b2c86c9671e34b9dd251f
                                        
                                            GET /js/jquery.isotope.min.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 24 Jun 2013 21:43:18 GMT
etag: "68bbd-3ea1-4dfed4cf1c980-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 5057
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (15714)
Size:   5057
Md5:    9891c860041ec43c750734a488ca84b8
Sha1:   337df6cb023f31b8c7bedddbad42feb410c11e0d
Sha256: 08225e59b66ff10b7fe386c58099d1b8b4a398911da105bf621094407bc23174
                                        
                                            GET /js/modules.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 20 Jan 2014 11:58:26 GMT
etag: "68bcc-1907c-4f0659bf91c80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 25799
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (21834)
Size:   25799
Md5:    68dc5de7707af207e5780fa86067ee4f
Sha1:   6f56b12b6c4d427899a6f1f9958ee0f8c8affbae
Sha256: 0521ca78802e0d32c7ea41ddda923d8a91c5cba0daaa9331afec82f1498ebf13
                                        
                                            GET /images/azimuth-aerospace-logo.png HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Sat, 22 Feb 2014 07:57:44 GMT
etag: "681d6-5530-4f2fa17ed0e00"
accept-ranges: bytes
content-length: 21808
cache-control: max-age=604800, public
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 363 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size:   21808
Md5:    c3f89083374e1aa862c1505cb1115cf0
Sha1:   ec2332b303e1e9371b668dc5c653b1d6db788023
Sha256: f713dc23d80890d010c5fe496f209e9be85952131c7e480618b659a9f82cd5c6
                                        
                                            GET /js/jquery.jpanelmenu.js HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 24 Jun 2013 21:43:20 GMT
etag: "68bbe-466a-4dfed4d104e00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 3346
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2

                                        
                                            GET /css/base.css HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/css/style.css
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Sat, 08 Mar 2014 18:18:40 GMT
etag: "66b93-18a3-4f41c6655c000-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 2124
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (493), with CRLF line terminators
Size:   2124
Md5:    e12c2adb66640478aa9d87c4c4705985
Sha1:   67725b2cdd17b633d05501cf8727dc1fdc0e329e
Sha256: 0c86ae06fef656520d9c595bb43c9fe0d3bd76c70b41744a641b695c3c5c93ae
                                        
                                            GET /css/responsive.css HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/css/style.css
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Wed, 26 Feb 2014 07:20:18 GMT
etag: "66b97-2f67-4f34a096b5080-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 1730
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size:   1730
Md5:    36f6b4e465068b3ae9af159ef0f6a8a2
Sha1:   ab27388bfe61c5c1bdd1da220d71b0ecf7a2a646
Sha256: dfef9a1970cbee8f1f20df99cb821d868cd18e5a4368d5b2d1b05a5491305f54
                                        
                                            GET /css/icons.css HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/css/style.css
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Mon, 24 Jun 2013 21:39:46 GMT
etag: "66b94-5e9a-4dfed404eec80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800, public
content-length: 4966
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text
Size:   4966
Md5:    5d592516e0a398ebe76fe69843dc7533
Sha1:   c916290f699886bf474471850152943547d0bb5b
Sha256: 07ac77a7c05ece4a43807fd9c2c77c4e31c74bcbff8c3290cc9362200fd8676e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 22:08:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 22:08:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.azimuthaero.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 08:31:01 GMT
expires: Wed, 20 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 308244
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 23 Sep 2022 22:08:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /font/fontawesome-webfont3294.woff?v=3.0.1 HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.azimuthaero.com/css/icons.css
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: font/woff
                                        
last-modified: Mon, 24 Jun 2013 21:40:04 GMT
etag: "68127-8674-4dfed41619500"
accept-ranges: bytes
content-length: 34420
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 34420, version 1.0\012- data
Size:   34420
Md5:    9434b081ed2d237abfe96e832592ef15
Sha1:   0198673fae4bd22a32a44790e94e702755ba18a9
Sha256: 4e58b78b5844a988d67532b4683a6e8b3235b3d56d319727e65f460805bbdec4
                                        
                                            GET /recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.azimuthaero.com
Connection: keep-alive
Referer: https://www.azimuthaero.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: text/javascript
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 07:11:34 GMT
expires: Fri, 22 Sep 2023 07:11:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 04:01:43 GMT
age: 140211
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (826)
Size:   158248
Md5:    db1b5789e9915e9c82f5df92e5982980
Sha1:   2e193e502995501c85f45fd89d9f83707a7f9573
Sha256: db9c82b18117d7cff0f674de758f5bbb39bc6dee969cee679c741090968b9206
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4520
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 22:08:26 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4520
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 22:08:26 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4520
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 22:08:26 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4520
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 22:08:26 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:59:08 GMT
age: 558
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8029
Md5:    02a682b4703bb9d6381c762726c05531
Sha1:   1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
Sha256: fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ca56e32-b483-4063-a12c-be8fa8c3d85e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8497
x-amzn-requestid: ab65ba93-aad5-4845-b471-c50c14057c47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YvqujEsIoAMF8sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632957f6-6d4635bf713fd25147948c7b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 06:04:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: SZ6p5NLxuGUoEOZujwPbDGwUO0dZgiITud8RWOaSW_VciGRgBidY2A==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 19:36:01 GMT
age: 9145
etag: "d47db5fcd83023b4a8de40a47d4510e183de387a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8497
Md5:    7606ff88f05062b66970d9805f38987a
Sha1:   d47db5fcd83023b4a8de40a47d4510e183de387a
Sha256: 20f89dd859e5715e27c289040fac6a121248e5b6c06da0a7f186984ffb029eb2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F155952bd-256a-4103-9017-437efcfb03bf.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7005
x-amzn-requestid: c805d882-7a00-4abd-a239-d8313d7df0c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4aBwEaMIAMF09A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd6d7-6d6a417f10c9628a16d438e1;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:42:47 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7edV0FJytVSpHH-WkCiYzhW1JP4L6i6bpPCq9MTxPdhwFQTryf06BQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:12:22 GMT
etag: "4584bff61bf4d5c9b8fd3b97c048a8e6975e4323"
age: 86164
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7005
Md5:    1985a957e6bc0c15d8489fa731e7f14e
Sha1:   4584bff61bf4d5c9b8fd3b97c048a8e6975e4323
Sha256: 9f3e1fd6e18d85d4f6645d077da643a3bc2cca611d5e85f534ba798102dca243
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac88c56-4515-47b4-9c1e-7745782bd306.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10127
x-amzn-requestid: 456e3c6a-e173-433e-8d54-d787cb50b7e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0sHmCoAMFVSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-7a07b336571396533e48b4cb;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KKYAef15NoI3It5UfVcqhPx50Fr6IK7O2VFasuAILVN9PP8CH1_7Ng==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:58:30 GMT
age: 596
etag: "48c10714503e8dfdd3e3c3d39b919ef2792f0d15"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10127
Md5:    b877ead4a15221fdd278ef27f281a7ec
Sha1:   48c10714503e8dfdd3e3c3d39b919ef2792f0d15
Sha256: f4a1d5abcfa4092828e004b6c0605a7a24e4133d275312f613dceff875971daf
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5340
x-amzn-requestid: b13bc974-e15d-43a4-a918-fbc35b09a36f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y19HljIAMFY8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4f2-2cb226ba4bd7c7e74d9ab2db;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: nIqFvjsG2ZB2cyQHHwtIn-AqcF0DfxqN_dw0Oo1DQ15ukMSmPglIkA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:04:45 GMT
age: 221
etag: "0264e73c4cfff0bb255757c7e1c760a5ad3ece80"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5340
Md5:    3b318ea5c36d2b22b925f7dfe382df5f
Sha1:   0264e73c4cfff0bb255757c7e1c760a5ad3ece80
Sha256: 0c2f58ea4f5f32bb327f292e1b8fb5a4a60230bffc3abc440a624df27ec0d6bc
                                        
                                            GET /includes/stateData.php?cid=254 HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
x-powered-by: PHP/5.6.40
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
content-encoding: gzip
vary: Accept-Encoding
cache-control: private, max-age=60, private, proxy-revalidate
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   15124
Md5:    2c22cd010ee0dba6d6bf0159dcc7e558
Sha1:   0802ec6442ef65b84453d82090155665157dbd6f
Sha256: 29cdfb6e64440e9cb56489bec3766c3421d3523781547be54f1935d34ce1d40b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56968ed0-3207-4af0-8229-5f3698c6c55f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5936
x-amzn-requestid: 39e79389-c158-4427-aae0-b1d0dc1d0377
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4VowElZoAMF2Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ccfd1-2da28eb66f876af76158b090;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:12:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: -DSp0__jaBzizsfagTtIpwhkPqkvjS1L6T17J0OS5W0QhZww03ywpw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:42:39 GMT
age: 84354
etag: "370d166426ad83fc04ccb6e300238d8cb6ab644a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5936
Md5:    61059307f07edc4e2ba9d07a258bca43
Sha1:   370d166426ad83fc04ccb6e300238d8cb6ab644a
Sha256: 55ec802097ab49f275686e99844ff4a3b554c8998213bb9c3f0380709297c55b
                                        
                                            GET /images/mouse.png HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Fri, 10 Feb 2012 09:43:25 GMT
etag: "68b66-4d29-4b898f5c96940"
accept-ranges: bytes
content-length: 19753
cache-control: max-age=604800, public
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /login.php HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         172.104.17.207
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
x-powered-by: PHP/5.6.40
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
content-encoding: gzip
vary: Accept-Encoding
set-cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5; path=/
cache-control: private, max-age=60, private, proxy-revalidate
date: Fri, 23 Sep 2022 22:08:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - openphish: Generic/Spear Phishing
    - fortinet: Phishing
                                        
                                            GET /css?family=Open+Sans:400,300,600,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 22:08:25 GMT
date: Fri, 23 Sep 2022 22:08:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.azimuthaero.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/login.php
Cookie: PHPSESSID=s7ih732afomi8r9d8boggr9rb5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         172.104.17.207
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
x-powered-by: PHP/5.6.40
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
content-encoding: gzip
vary: Accept-Encoding
cache-control: private, max-age=60, private, proxy-revalidate
date: Fri, 23 Sep 2022 22:08:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Raleway:800 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.azimuthaero.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 22:08:25 GMT
date: Fri, 23 Sep 2022 22:08:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---