Overview

URL imitrex-sumatriptan.com/
IP164.132.126.18
ASNOVH SAS
Location France
Report completed2022-09-25 23:31:11 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-25 2 imitrex-sumatriptan.com/ Phishing
2022-09-25 2 imitrex-sumatriptan.com/wp-includes/css/dist/block-library/style-rtl.min.cs (...) Phishing
2022-09-25 2 imitrex-sumatriptan.com/wp-content/themes/nokhbe-s1.0/style.css?ver=5.1.14 Phishing
2022-09-25 2 imitrex-sumatriptan.com/wp-content/themes/nokhbe-s1.0/css/font-awesome.min. (...) Phishing
2022-09-25 2 imitrex-sumatriptan.com/wp-content/themes/nokhbe-s1.0/css/foundation.min.cs (...) Phishing
2022-09-25 2 imitrex-sumatriptan.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 Phishing
2022-09-25 2 imitrex-sumatriptan.com/wp-content/themes/nokhbe-s1.0/js/what-input.js?ver= (...) Phishing
2022-09-25 2 imitrex-sumatriptan.com/wp-content/themes/nokhbe-s1.0/js/app.js?ver=5.1.14 Phishing
2022-09-25 2 imitrex-sumatriptan.com/wp-includes/js/jquery/jquery.js?ver=1.12.4 Phishing
2022-09-25 2 imitrex-sumatriptan.com/wp-includes/js/wp-embed.min.js?ver=5.1.14 Phishing
2022-09-25 2 imitrex-sumatriptan.com/wp-content/themes/nokhbe-s1.0/fonts/fontawesome-web (...) Phishing
2022-09-25 2 imitrex-sumatriptan.com/wp-content/themes/nokhbe-s1.0/fonts/Samim-FD.eot Phishing
2022-09-25 2 imitrex-sumatriptan.com/wp-content/themes/nokhbe-s1.0/fonts/Samim-Bold-FD.eot Phishing
2022-09-25 2 imitrex-sumatriptan.com/wp-content/themes/nokhbe-s1.0/fonts/Samim-FD.ttf Phishing
2022-09-25 2 imitrex-sumatriptan.com/wp-content/themes/nokhbe-s1.0/fonts/Samim-Bold-FD.ttf Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (9)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-25 05:02:41 UTC 23.36.77.32
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-25 05:42:52 UTC 143.204.55.35
mnemonic passive DNS backlink.behtarinseo.ir (2) 585800 2021-07-22 09:24:56 UTC 2022-09-17 19:44:57 UTC 145.239.228.221
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-25 19:39:53 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-25 05:07:25 UTC 44.236.232.139
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-25 04:26:31 UTC 34.120.237.76
mnemonic passive DNS imitrex-sumatriptan.com (21) 0 2017-11-05 02:36:49 UTC 2022-09-25 19:04:45 UTC 164.132.126.18 Unknown ranking
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-25 11:34:24 UTC 143.204.55.35
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-25 04:51:16 UTC 34.117.237.239


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 164.132.126.18

Date UQ / IDS / BL URL IP
2022-09-25 23:31:11 +0000
0 - 0 - 15 imitrex-sumatriptan.com/ 164.132.126.18

Last 5 reports on ASN: OVH SAS

Date UQ / IDS / BL URL IP
2022-12-07 15:28:34 +0000
0 - 0 - 0 www.club-furet.fr/ 87.98.154.146
2022-12-07 13:52:10 +0000
0 - 0 - 2 151.80.148.159/ 151.80.148.159
2022-12-07 13:29:25 +0000
0 - 0 - 3 t1.blowingwnd.com/l.php?p=c:wdbc86tklu8_nj_eu (...) 51.161.115.163
2022-12-07 13:29:23 +0000
0 - 0 - 5 ron.trffclb.com/f.php?p=c:9qopki6xwqp7b0yj1&d (...) 51.83.143.92
2022-12-07 12:46:20 +0000
0 - 0 - 1 ti9ni2012.yoo7.com/t1615-topic 178.33.44.177

Last 1 reports on domain: imitrex-sumatriptan.com

Date UQ / IDS / BL URL IP
2022-09-25 23:31:11 +0000
0 - 0 - 15 imitrex-sumatriptan.com/ 164.132.126.18

No other reports with similar screenshot



JavaScript

Executed Scripts (10)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (40)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
link: <http://imitrex-sumatriptan.com/wp-json/>; rel="https://api.w.org/"
etag: "5324327-1664148552;gz"
x-litespeed-cache: hit
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 8810
date: Sun, 25 Sep 2022 23:31:00 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2049), with CRLF, LF line terminators
Size:   8810
Md5:    28cbc1a4a142c0291801d54e28481396
Sha1:   bd04995f0d447f8e433c80cb708da43c47112964
Sha256: 9e1e23ce103112c5dcee6cbb0158703984930ee9730251796480d2558d4b6edc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 23:15:15 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TkC1AvwcTeYo6PqeLOUC4sDA4rSHLC7cUe5hgg6HjgDS-tfz8pQ-zQ==
Age: 945


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5676
Expires: Mon, 26 Sep 2022 01:05:36 GMT
Date: Sun, 25 Sep 2022 23:31:00 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pLLZ6Jk-0vCl09ozeXHmkPt9x2A5hok5RXRHzHZFNWhZWSM5tDfBGw==
age: 68146
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /wp-includes/css/dist/block-library/style-rtl.min.css?ver=5.1.14 HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:00 GMT
last-modified: Thu, 15 Apr 2021 05:10:46 GMT
etag: "6294-6077cad6-d2cbc3d792909538;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4251
date: Sun, 25 Sep 2022 23:31:00 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (25236), with no line terminators
Size:   4251
Md5:    90051307f3999be0153b6364633b1aa6
Sha1:   505cbe84f84ecbe3521014223b5bfb335000008e
Sha256: 08af4c108f7b7419827340980fc224e724e833fd3b53d01393584eb0f0af62ad

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/nokhbe-s1.0/style.css?ver=5.1.14 HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:00 GMT
last-modified: Wed, 08 Aug 2018 15:22:37 GMT
etag: "2a6c-5b6b0abd-70afd1cd01595cf1;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 2515
date: Sun, 25 Sep 2022 23:31:00 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  assembler source, ASCII text, with CRLF line terminators
Size:   2515
Md5:    784422270f80e509736d60de7c38e54d
Sha1:   5fd93513df57f1361411bae60c03c650834c766c
Sha256: ee4f4bf39b334a76b82b70d2dfcfb7d3c9e0cccdcf36cf4cf82be6c4d4ddf9cb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/nokhbe-s1.0/css/font-awesome.min.css?ver=5.1.14 HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:00 GMT
last-modified: Wed, 08 Aug 2018 15:22:37 GMT
etag: "7918-5b6b0abd-15f57392a676acfa;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 6989
date: Sun, 25 Sep 2022 23:31:00 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   6989
Md5:    73fafde2ed0b8af35533aef217310350
Sha1:   07ffb382423d12967d70ae85b36a6bbf16327678
Sha256: 8448460374395f6645aa937ab83a5b7eebd7b35cdc8f8e875fa4cb7a92a63eab

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 25 Sep 2022 23:31:00 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /wp-content/themes/nokhbe-s1.0/css/foundation.min.css?ver=5.1.14 HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: text/css
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:00 GMT
last-modified: Wed, 08 Aug 2018 15:22:37 GMT
etag: "1c97b-5b6b0abd-860c2d27058d0ac9;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 16838
date: Sun, 25 Sep 2022 23:31:00 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size:   16838
Md5:    337579babae386de57c35f9ba24b6430
Sha1:   357b261300339f65d996d8ec09a2cd5b016769c3
Sha256: 11aae253953c006edc16e866fbbbbcd6c9143a5dd52c1dc7950df50795d8f620

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:00 GMT
last-modified: Fri, 20 May 2016 06:11:28 GMT
etag: "2748-573eaa90-ebc33b542a765f4e;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4034
date: Sun, 25 Sep 2022 23:31:00 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (9959)
Size:   4034
Md5:    2f89b08855471c7476435ce0bec33ba7
Sha1:   970533f152623df03b5fc6fb793b21889e4e0349
Sha256: d200586b6dd1ff779b6c30947361ff736e076d8c7d502505ab3174ca33455ea0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/nokhbe-s1.0/js/what-input.js?ver=5.1.14 HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:00 GMT
last-modified: Wed, 08 Aug 2018 15:22:37 GMT
etag: "2771-5b6b0abd-4f4f066655488b7e;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 3181
date: Sun, 25 Sep 2022 23:31:00 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text
Size:   3181
Md5:    dc7521fb425f62c9c77e45d4ffb99041
Sha1:   aaec0e34f90649ae0bc0b2ca00bb15bafc3af8a3
Sha256: 9b59dcb8623b01d604f2b25353efe33f7a1b3b8f2cc1ed6f65e96a8eb0e724b2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/nokhbe-s1.0/js/app.js?ver=5.1.14 HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:00 GMT
last-modified: Wed, 08 Aug 2018 15:22:37 GMT
etag: "a6-5b6b0abd-55f2c11344558c8c;;;"
accept-ranges: bytes
content-length: 166
date: Sun, 25 Sep 2022 23:31:00 GMT
server: LiteSpeed
vary: User-Agent


--- Additional Info ---
Magic:  ASCII text
Size:   166
Md5:    3683a64f1f5bf134d1cd70191edc6518
Sha1:   a53072d7527f9d9e9949c093113218ba87ae340a
Sha256: 2f0f18b01542efc740ee080854a4849f1d806ba3c2f079a1860b9edab40449cb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.1.14 HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:00 GMT
last-modified: Thu, 15 Apr 2021 05:10:46 GMT
etag: "2eaf-6077cad6-308a5bc3d729603c;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4369
date: Sun, 25 Sep 2022 23:31:00 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (9071)
Size:   4369
Md5:    783f2bc6bc1277da038d5837eb5bfc2f
Sha1:   570768062dfc17fe7d9cdbe3a199e70c98dcbc08
Sha256: 94b01bcf6b6e25798eacd39178b60db17ccf420c2e1306dc722182b5e009a806
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:00 GMT
last-modified: Thu, 05 Sep 2019 05:51:16 GMT
etag: "17a69-5d70a254-dc6e8ac62e9242f2;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 33836
date: Sun, 25 Sep 2022 23:31:00 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (31997)
Size:   33836
Md5:    167b4b3aef1415384a1d72a851584464
Sha1:   7edb972190b2048300fb5eb1668e54ec049b91a2
Sha256: 2d29b6f8700dbeda5b83991887d89ef850f3d570946b8eef360a86b9adcb0fb3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.1.14 HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:00 GMT
last-modified: Thu, 15 Apr 2021 05:10:46 GMT
etag: "56f-6077cad6-f2062a490e7288ad;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 743
date: Sun, 25 Sep 2022 23:31:00 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (1391), with no line terminators
Size:   743
Md5:    b146105040f6faa62806b35ad455d121
Sha1:   14aa49ed4f29b666221a8de3fd17f04455f12b15
Sha256: 05f4d51649be6878352af6843f9a5ffc14bb96ca7a02db21a35a14f6a150b004

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/nokhbe-s1.0/js/foundation.min.js?ver=5.1.14 HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: application/javascript
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:00 GMT
last-modified: Wed, 08 Aug 2018 15:22:37 GMT
etag: "24582-5b6b0abd-d8624b5111530f34;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 32322
date: Sun, 25 Sep 2022 23:31:00 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  ASCII text, with very long lines (32028)
Size:   32322
Md5:    6636f9799e2c28fe2bf7e9e4163e0d80
Sha1:   8dc74160e6b71b9ee59b64985763ac20847df60b
Sha256: ccef59fd2ac322bcbacff9ba22f9d7fcc6d2ed286acc9d6747425f6b22a40924
                                        
                                            GET /ads/css/style-1.css HTTP/1.1 
Host: backlink.behtarinseo.ir
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/

                                         
                                         145.239.228.221
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-length: 707
date: Sun, 25 Sep 2022 23:31:00 GMT
server: LiteSpeed
location: https://backlink.behtarinseo.ir/ads/css/style-1.css
vary: User-Agent


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
                                        
                                            GET /wp-content/uploads/2020/09/%D8%B1%D8%B3%D9%85-%DB%8C%DA%A9-%D9%81%D9%84%D8%B4-%D8%AF%D8%B1-GIMP.jpg HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:00 GMT
last-modified: Tue, 08 Sep 2020 07:46:40 GMT
etag: "1b44c-5f5736e0-f0c8d7a6a03987d1;;;"
accept-ranges: bytes
content-length: 111692
date: Sun, 25 Sep 2022 23:31:00 GMT
server: LiteSpeed
vary: User-Agent


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, comment: "File source: http://www.wikihow.com/Image:Draw-an-Arrow-in-GIMP-Step-1.jpg", baseline, precision 8, 900x675, components 3\012- data
Size:   111692
Md5:    3408fee3304aa94267a802693bf29fb9
Sha1:   8e93d705aec49b77739d60491681140aea659dca
Sha256: a4d6d105be93aafc2c8745b6e3a938176c7f915927d8ea963e0c1c275fe18441
                                        
                                            GET /wp-content/uploads/2020/09/GIMP-2.jpg HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:00 GMT
last-modified: Tue, 08 Sep 2020 07:56:51 GMT
etag: "11340-5f573943-79b1ceac1e93687c;;;"
accept-ranges: bytes
content-length: 70464
date: Sun, 25 Sep 2022 23:31:00 GMT
server: LiteSpeed
vary: User-Agent


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, baseline, precision 8, 900x675, components 3\012- data
Size:   70464
Md5:    30103de17d945c64eb4f25320e9a7fb9
Sha1:   7c17396066e0f93280d5cd090f719b9d6ec1bdf3
Sha256: 7a705d1862029831667488a6a03f3dffd86174d7b4dc8024ec15df1d84503f5a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0987675F093716FAC6E3323FA917DE5BE56337EF3A925CBEBA1D9049D928DC47"
Last-Modified: Sat, 24 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21576
Expires: Mon, 26 Sep 2022 05:30:37 GMT
Date: Sun, 25 Sep 2022 23:31:01 GMT
Connection: keep-alive

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 25 Sep 2022 23:04:18 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 25 Sep 2022 23:20:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QmTJnogpEbWmbMwVfGhw-hyIWnKi7BTmx6ttEIqWr0PnZqv1i-d98g==
Age: 1604


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /ads/css/style-1.css HTTP/1.1 
Host: backlink.behtarinseo.ir
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://imitrex-sumatriptan.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         145.239.228.221
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: max-age=31536000, public
expires: Tue, 25 Oct 2022 23:31:01 GMT
last-modified: Thu, 11 Mar 2021 18:59:59 GMT
etag: "49d-604a68af-902c18c58fc275e2;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 275
date: Sun, 25 Sep 2022 23:31:01 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   275
Md5:    ad3e851d8f201fb77223a5742f7547e3
Sha1:   db64e3821bb384b80225c599869397f219172e08
Sha256: 2fc2e9a12b9d2f1aee238986b35c7b8a12b5212ab4538778b612e33011ff4c32
                                        
                                            GET /wp-content/themes/nokhbe-s1.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/wp-content/themes/nokhbe-s1.0/css/font-awesome.min.css?ver=5.1.14

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: font/woff2
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:01 GMT
last-modified: Wed, 08 Aug 2018 15:22:37 GMT
etag: "12d68-5b6b0abd-b6b8ab4d7411e8da;;;"
accept-ranges: bytes
content-length: 77160
date: Sun, 25 Sep 2022 23:31:01 GMT
server: LiteSpeed
vary: User-Agent


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/nokhbe-s1.0/fonts/Samim-FD.eot HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/wp-content/themes/nokhbe-s1.0/style.css?ver=5.1.14

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: application/vnd.ms-fontobject
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:01 GMT
last-modified: Wed, 08 Aug 2018 15:22:37 GMT
etag: "134d8-5b6b0abd-6fbecf7bb757b96f;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 45778
date: Sun, 25 Sep 2022 23:31:01 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  Embedded OpenType (EOT), Samim family\012- data
Size:   45778
Md5:    c2baa8a0d70d50863b6d709705467d52
Sha1:   1fa39dc2d32a493e150990a8f5a9081698552866
Sha256: 134e4e662acad3f59f8110aedca61f0f3c64d0e227ab3d4ba157d78eee58af43

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/nokhbe-s1.0/fonts/Samim-Bold-FD.eot HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/wp-content/themes/nokhbe-s1.0/style.css?ver=5.1.14

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: application/vnd.ms-fontobject
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:01 GMT
last-modified: Wed, 08 Aug 2018 15:22:37 GMT
etag: "13c70-5b6b0abd-c10b5b2a16131c0b;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 47710
date: Sun, 25 Sep 2022 23:31:01 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  Embedded OpenType (EOT), Samim family\012- data
Size:   47710
Md5:    5b817afbd7f704263cfaec63bed2254a
Sha1:   fc775c5cb4b4056de19b264ecf018b80374f73fd
Sha256: 0361cb4c65adfb6c38b2de795d6dc82d6ebb18afbdd70a3a9e49be9e3e03ba84

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/

                                         
                                         164.132.126.18
HTTP/1.1 404 Not Found
content-type: image/vnd.microsoft.icon
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:29:30 GMT
x-litespeed-cache: hit
content-length: 0
date: Sun, 25 Sep 2022 23:31:01 GMT
server: LiteSpeed
vary: User-Agent

                                        
                                            GET /wp-content/themes/nokhbe-s1.0/fonts/Samim-FD.ttf HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/wp-content/themes/nokhbe-s1.0/style.css?ver=5.1.14

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: application/x-font-ttf
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:01 GMT
last-modified: Wed, 08 Aug 2018 15:22:37 GMT
etag: "13438-5b6b0abd-28b13103a102725c;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 45693
date: Sun, 25 Sep 2022 23:31:01 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  TrueType Font data, 20 tables, 1st "FFTM", 24 names, Macintosh, Copyright (c) 2003 by Bitstream, Inc. All Rights Reserved.\012- data
Size:   45693
Md5:    786f02295d3e94491631ee3a720b1827
Sha1:   608bab293a3a276361a69ddac573066f8ad2f63f
Sha256: f6b2532c11f8d6b39e1322e2fd943fb2143cd9a6090d473f8fa7bb61c3f07148

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/nokhbe-s1.0/fonts/Samim-Bold-FD.ttf HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/wp-content/themes/nokhbe-s1.0/style.css?ver=5.1.14

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: application/x-font-ttf
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:01 GMT
last-modified: Wed, 08 Aug 2018 15:22:37 GMT
etag: "13bcc-5b6b0abd-610295efc702a14b;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 47614
date: Sun, 25 Sep 2022 23:31:01 GMT
server: LiteSpeed


--- Additional Info ---
Magic:  TrueType Font data, 20 tables, 1st "FFTM", 24 names, Macintosh, Copyright (c) 2003 by Bitstream, Inc. All Rights Reserved.\012- data
Size:   47614
Md5:    be3bfee029dd39ab92ed1b7ca8b0fdcb
Sha1:   9bfdbf3e3656a4bc9f69db107073f75020f225f6
Sha256: 5bf9b6cb024722c52663a9ba8d41ee87bf9125c0347ca4a07344ea18114ba2f7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3221
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 23:31:01 GMT
Last-Modified: Sun, 25 Sep 2022 22:37:20 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /?wordfence_lh=1&hid=3EC70DC37E1E0F9D612417B53177CC3E&r=0.4432013804874728 HTTP/1.1 
Host: imitrex-sumatriptan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://imitrex-sumatriptan.com/

                                         
                                         164.132.126.18
HTTP/1.1 200 OK
content-type: text/javascript;charset=UTF-8
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
link: <http://imitrex-sumatriptan.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache-control: public,max-age=86400
x-litespeed-tag: 42f_HTTP.200,42f_home,42f_URL.6666cd76f96956469e7be39d750cc7d9,42f_F,42f_
x-robots-tag: noindex
cache-control: public, max-age=86400
expires: Mon, 26 Sep 2022 23:31:01 GMT
content-length: 0
date: Sun, 25 Sep 2022 23:31:01 GMT
server: LiteSpeed
vary: User-Agent

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wNsD7ySNmjFOywxvaY9GMA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.236.232.139
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: w4R7D1ux8cfbuaPtbMQqtWhbXJQ=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8699
Expires: Mon, 26 Sep 2022 01:56:01 GMT
Date: Sun, 25 Sep 2022 23:31:02 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8699
Expires: Mon, 26 Sep 2022 01:56:01 GMT
Date: Sun, 25 Sep 2022 23:31:02 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8699
Expires: Mon, 26 Sep 2022 01:56:01 GMT
Date: Sun, 25 Sep 2022 23:31:02 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7998
x-amzn-requestid: beedf4d8-29c0-43c6-92d0-40af6b9ee9f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTibE5LoAMFXLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cc75-1be97f2a525b9a5e3146d4be;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:47:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: i8BwIohBNqfEavPXBqSWshg7G-WF9UkBBScnDcyH4qEYV9TzreLXWA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:03:29 GMT
age: 5253
etag: "5c4ee294c98e8fc9312a7d481b6ec165494cf852"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7998
Md5:    27d324b1fb661c318aced98468501b3c
Sha1:   5c4ee294c98e8fc9312a7d481b6ec165494cf852
Sha256: 937296b5da48df0495ebd0cb3509b7c00059725c00c5b97f475ba2382a0e5437
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5157
x-amzn-requestid: b5748f49-693f-4bc3-a850-cb68e770de24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG9GUHIAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-5d2aaa212cf1be2506593746;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4h9lb_7egxb2hBbxjcS_cpZ5lDq6Lx-c_WUZyRHdUA0YTwr6kgDuiQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:10:16 GMT
age: 4846
etag: "85e378d0fff856832a8dd01743516b9476fed8c6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5157
Md5:    2fe8c4f0c70fb6c1f4259eabedc7015e
Sha1:   85e378d0fff856832a8dd01743516b9476fed8c6
Sha256: 508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8637
x-amzn-requestid: 07dc23e0-000f-4f6c-8d2b-0e65d88be270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvvEenoAMFr0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-520803124760abc216152d7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HCJ483GPdpPhC7oYm1GrA02BqqST9sfqfCBSA93rZqaQYl-jezgP5Q==
via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:20:40 GMT
age: 4222
etag: "e49306a3713cb724be024a4ddb5e90645718a718"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8637
Md5:    d02ede0c964f3346fd53ae2950bf2a62
Sha1:   e49306a3713cb724be024a4ddb5e90645718a718
Sha256: c0e653d89656016c55aca9b198b9191620f1ae9a3c45742a90744bd74c4f9505
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:35 GMT
age: 6807
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Size:   12826
Md5:    b3a72e81317074689a71dac7059e4b6a
Sha1:   b6d56333d7f1ea7ddc8838d84de498ff913c5464
Sha256: e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6443
x-amzn-requestid: b6f3be01-6086-4fc1-8bec-c4caa1fe806c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSKMG04IAMFRxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca41-5452d1805d3f4d71303142c9;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tx-lL61dT3iakJd8VZw31hzMklubUDBQxE6LBhxsJUqyMM0bqCk73g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:28:23 GMT
age: 3759
etag: "36310320605833289e78cd248c45915363a0a0c3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6443
Md5:    3a75be68e82e6a0ba74932fbe74c7b30
Sha1:   36310320605833289e78cd248c45915363a0a0c3
Sha256: 56d709b77802037254b7922e3f85d1b1652b70dfc4b6c65b03e4149d3b1f22ca
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce85614e-743a-4f62-8caf-9fdeb86a1c45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4021
x-amzn-requestid: b265dc30-377d-42a7-93ce-9e6932febcbd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSJ5FMxoAMF4GQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca3f-58fbb5914e5ec38f6260893c;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i-pfWKLyt4Fhf-eCw-3Nu9PkxwaTY3hVyFqPxytgzICxUCd8SY9VLw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:19:29 GMT
age: 4293
etag: "43c5b52cd3fb56660d826916eaafff0901340787"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4021
Md5:    53e1460eb42e8f71ed179c3be0709333
Sha1:   43c5b52cd3fb56660d826916eaafff0901340787
Sha256: ec6de3d11b3c8d9743d8a91864a0c04a16259c206d87691591c2aa9b10edcd3c