firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 17 Sep 2022 09:11:16 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7BTflgVPQ7iSIDKbw80g4g9BrPuGFLtLX_po08NKYE_GcJaws5U_sA==
Age: 2024
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b0d651d83075c7a68e3c6a9204226150
294785e3f3a67cdd5f1a530b83a2cbd2c2cc0665
17cbb43fd6662576ba3fe8e06cf44247c903c1313cc419053599c41e286a2442
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17CBB43FD6662576BA3FE8E06CF44247C903C1313CC419053599C41E286A2442"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4899
Expires: Sat, 17 Sep 2022 11:06:39 GMT
Date: Sat, 17 Sep 2022 09:45:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 17 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OJ0OAyzF-lxtZ94G81o2IhkrB3v4YV6gbEJdNN3sPVnCN0D25Wmh5Q==
age: 22458
X-Firefox-Spdy: h2
www.bharatinside.com/craigslist.post304983283434/login.php?{*}
301 Moved Permanently 278 B URL HTTP/1.1 www.bharatinside.com/craigslist.post304983283434/login.php?{*}
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ee0757198e3846f006d231c77847fbed
a57f9cc4ec83e86c9f2f416b9ba75460d684fee8
82c67fe94b150611f1d0077eb8e83bd05c9d498b446f5ea6fcc93388a03c7db4
Analyzer Verdict Alert fortinet Phishing
GET /craigslist.post304983283434/login.php?{*} HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 17 Sep 2022 09:45:00 GMT
Server: Apache
Location: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Content-Length: 278
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 17 Sep 2022 09:45:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 17 Sep 2022 09:03:22 GMT
Cache-Control: max-age=3600
Expires: Sat, 17 Sep 2022 09:07:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Zu4soOZkwoByXbtOLA6HAvs6wbALV_4YyvZq2_Vc8azeqXKBCsj5Bw==
Age: 2498
ocsp.digicert.com/
200 OK 471 B IP
Hash 9bf3402af9fef57aa11ffe2943728de4
a3a443aab8226d212be9698623717dd06e46c720
54987a5417af4a99d78532e502cf4685dd3372c1e9f717a8907f3d2b7c8926eb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4015
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:00 GMT
Last-Modified: Sat, 17 Sep 2022 08:38:05 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: eOHJc4QS/ENIpyLspfsa5g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: clB6ms2Te7h+YADFbcIyVmVAjIY=
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bharatinside.com/craigslist.post304983283434/login.php?{*}
404 Not Found 99 kB URL HTTP/1.1 www.bharatinside.com/craigslist.post304983283434/login.php?{*}
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10872), with CRLF, LF line terminators
Hash 1b6e1877c66442ce070be2392c108442
0c20eb6fbf550c78681f1660faeed6680d9db728
f23d25753e4e2d4944fa382c52e59830b63381a62b3ddb8fea184ce4340f064e
Analyzer Verdict Alert fortinet Phishing
GET /craigslist.post304983283434/login.php?{*} HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Sat, 17 Sep 2022 09:45:00 GMT
Server: Apache
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.bharatinside.com/wp-json/>; rel="https://api.w.org/"
Set-Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bharatinside.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
200 OK 2.7 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:01 GMT
Server: Apache
Last-Modified: Mon, 11 Oct 2021 13:40:30 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bharatinside.com/wp-content/plugins/sneeit-framework/css/min/front-optimize-images.min.css?ver=6.6
200 OK 966 B URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/sneeit-framework/css/min/front-optimize-images.min.css?ver=6.6
IP
File type ASCII text, with very long lines (965)
Hash 40b6dcf8d9edb78bce1579d61181f57a
69b1351fce5dc5bba90a3d3dc549c4c0005cb744
cc79aaf81d25281bb9ee9485304910789fafd37c589f096a18028a214f028587
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sneeit-framework/css/min/front-optimize-images.min.css?ver=6.6 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:01 GMT
Server: Apache
Last-Modified: Wed, 25 Sep 2019 08:51:39 GMT
Accept-Ranges: bytes
Content-Length: 966
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.bharatinside.com/wp-content/plugins/sneeit-framework/css/min/front-menus-compact.min.css?ver=6.6
200 OK 4.7 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/sneeit-framework/css/min/front-menus-compact.min.css?ver=6.6
IP
File type ASCII text, with very long lines (4687)
Hash 22a3deb54e48821759baf0f5fca80b8c
e708d5dadade9b77ce8b01cfb6c532e59545dc67
a27eda603283a5df8b527067d87cbeb9cacefdf5fa708ce9987649805d01beaa
GET /wp-content/plugins/sneeit-framework/css/min/front-menus-compact.min.css?ver=6.6 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:01 GMT
Server: Apache
Last-Modified: Wed, 25 Sep 2019 08:51:39 GMT
Accept-Ranges: bytes
Content-Length: 4688
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.bharatinside.com/wp-includes/js/thickbox/thickbox.css?ver=80e84457baf2e03c0d23e4d7a236e75a
200 OK 2.7 kB URL HTTP/1.1 www.bharatinside.com/wp-includes/js/thickbox/thickbox.css?ver=80e84457baf2e03c0d23e4d7a236e75a
IP
Hash 37faeb50ef52da086e0f8c2c289e66d4
3b273af579e5e5fa7c276c32028abd6df566a995
b390a3efe231d9f38b3a706a5765a2a2f0817e761f60a27556171e9a276980e3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/thickbox/thickbox.css?ver=80e84457baf2e03c0d23e4d7a236e75a HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:01 GMT
Server: Apache
Last-Modified: Mon, 26 Oct 2020 11:55:10 GMT
Accept-Ranges: bytes
Content-Length: 2659
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.bharatinside.com/wp-content/plugins/sneeit-framework/css/min/front-responsive.min.css?ver=6.6
200 OK 724 B URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/sneeit-framework/css/min/front-responsive.min.css?ver=6.6
IP
File type ASCII text, with very long lines (723)
Hash 9711c0f0e07e47ea02eeffcd6ce4bceb
8c2d818916100a5d14d4d5f86ef847428259ed66
e9a35d96d72bce31a6bcbba4a9bf01c4374bf8a56e628310f585a3876a9b24cc
GET /wp-content/plugins/sneeit-framework/css/min/front-responsive.min.css?ver=6.6 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Wed, 25 Sep 2019 08:51:39 GMT
Accept-Ranges: bytes
Content-Length: 724
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.bharatinside.com/wp-content/plugins/sneeit-framework/fonts/font-awesome-5x/css/v4-shims.min.css?ver=6.6
200 OK 26 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/sneeit-framework/fonts/font-awesome-5x/css/v4-shims.min.css?ver=6.6
IP
File type ASCII text, with very long lines (26440), with no line terminators
Hash c217bda6dbb0d3e301283e4118777ac0
271a73480565cd495f819a393ef0b1e0653eb2bd
eaa1e58b3b0e585b241a5c1538aba7b3e0f59c1eacb19ac742b363d701a99477
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sneeit-framework/fonts/font-awesome-5x/css/v4-shims.min.css?ver=6.6 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Wed, 25 Sep 2019 08:51:39 GMT
Accept-Ranges: bytes
Content-Length: 26440
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.bharatinside.com/wp-includes/css/dist/block-library/style.min.css?ver=80e84457baf2e03c0d23e4d7a236e75a
200 OK 89 kB URL HTTP/1.1 www.bharatinside.com/wp-includes/css/dist/block-library/style.min.css?ver=80e84457baf2e03c0d23e4d7a236e75a
IP
File type ASCII text, with very long lines (43771)
Hash b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=80e84457baf2e03c0d23e4d7a236e75a HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:01 GMT
Server: Apache
Last-Modified: Wed, 13 Jul 2022 01:30:29 GMT
Accept-Ranges: bytes
Content-Length: 88932
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.bharatinside.com/wp-content/themes/flatnews/assets/css/min/main.min.css?ver=4.2
200 OK 62 kB URL HTTP/1.1 www.bharatinside.com/wp-content/themes/flatnews/assets/css/min/main.min.css?ver=4.2
IP
File type ASCII text, with very long lines (62274), with no line terminators
Hash 05df883ace64801338c5f76ba848cc88
b175d35a3d1eec4ee44204ea937031b7428895ca
760ad822c5f9e0d7d43628e5b81a98378d1214f24550b868658308f93962c215
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/flatnews/assets/css/min/main.min.css?ver=4.2 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:01 GMT
Server: Apache
Last-Modified: Wed, 25 Sep 2019 08:42:36 GMT
Accept-Ranges: bytes
Content-Length: 62274
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.bharatinside.com/wp-includes/css/dashicons.min.css?ver=80e84457baf2e03c0d23e4d7a236e75a
200 OK 59 kB URL HTTP/1.1 www.bharatinside.com/wp-includes/css/dashicons.min.css?ver=80e84457baf2e03c0d23e4d7a236e75a
IP
File type ASCII text, with very long lines (58981)
Hash d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=80e84457baf2e03c0d23e4d7a236e75a HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:01 GMT
Server: Apache
Last-Modified: Thu, 04 Mar 2021 07:46:22 GMT
Accept-Ranges: bytes
Content-Length: 59016
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.bharatinside.com/wp-content/plugins/sneeit-framework/css/min/front-rating.min.css?ver=6.6
200 OK 1.7 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/sneeit-framework/css/min/front-rating.min.css?ver=6.6
IP
File type ASCII text, with very long lines (1716), with CRLF line terminators
Hash 36d975ead7785ebec3274c75b0a29dcd
5ca61433fdf42f1abc546f35854b9ae60cafb73d
6a9b7b06799a9cc61c1172655b6eb192417908737e6198094a97c0378adea1c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sneeit-framework/css/min/front-rating.min.css?ver=6.6 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Wed, 25 Sep 2019 08:51:39 GMT
Accept-Ranges: bytes
Content-Length: 1718
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.bharatinside.com/wp-content/plugins/sneeit-framework/fonts/font-awesome-5x/css/all.min.css?ver=6.6
200 OK 54 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/sneeit-framework/fonts/font-awesome-5x/css/all.min.css?ver=6.6
IP
File type ASCII text, with very long lines (53592), with no line terminators
Hash dc93d584e41f8417f6b7163320d34329
07013bc45af8f3412ea2d15b874702aeb1df3350
481a0574246e281316ffa0e15399bf5388bb81ae550ce0401a0353b6bb2d1e5a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sneeit-framework/fonts/font-awesome-5x/css/all.min.css?ver=6.6 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Wed, 25 Sep 2019 08:51:39 GMT
Accept-Ranges: bytes
Content-Length: 53592
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.bharatinside.com/wp-content/uploads/master-slider/custom.css?ver=6.7
200 OK 433 B URL HTTP/1.1 www.bharatinside.com/wp-content/uploads/master-slider/custom.css?ver=6.7
IP
Hash a9f9b51cb59b1dfc97d4366b596873e7
48821c46a2ff0d560898f783fe9635c81a5b5ec4
d2813dd046b540ab28bfc1de4b7b7cc2e85360873419f4589f3e6e1c39572e51
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/master-slider/custom.css?ver=6.7 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Tue, 01 Mar 2022 06:00:44 GMT
Accept-Ranges: bytes
Content-Length: 433
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10066
Expires: Sat, 17 Sep 2022 12:32:48 GMT
Date: Sat, 17 Sep 2022 09:45:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10066
Expires: Sat, 17 Sep 2022 12:32:48 GMT
Date: Sat, 17 Sep 2022 09:45:02 GMT
Connection: keep-alive
fonts.googleapis.com/css2?display=swap&family=Rasa
200 OK 966 B URL HTTP/2 fonts.googleapis.com/css2?display=swap&family=Rasa
IP
Hash a52efd9db28579e3ee104100cb2389a9
2313d68a92c962f7d8859430898bfcfe8a337ea7
657d90017306ac9f7e09da75efdbad5a5df1f376663bf3e21690a451fa363a51
GET /css2?display=swap&family=Rasa HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 17 Sep 2022 09:45:01 GMT
date: Sat, 17 Sep 2022 09:45:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10066
Expires: Sat, 17 Sep 2022 12:32:48 GMT
Date: Sat, 17 Sep 2022 09:45:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d46a910081eb782408f1a2fa3c6aabba
28ac45ef155c66dd79a306f14d3b38f597b6a32e
d5787a6a12d275555c627e3245b37d4e751148345a09d5671b343cfebe7173b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e43d1ff-79bc-430f-826f-2af5ae602556.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: e1ca6cef-c033-4887-80cf-2014ab8e620c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ykn5cEnLIAMFrzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ed09-3afc16cf66fef0e62dd6f3cc;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:39:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BaRpWB_XOMxTJPufnSjd4KSfecRwLe9U5W7uEoXy7pgAa4KSC0n7eg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:03:28 GMT
age: 42094
etag: "28ac45ef155c66dd79a306f14d3b38f597b6a32e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14e8614f-d7d5-4a87-adf0-ab2cfcfb023b.jpeg
200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14e8614f-d7d5-4a87-adf0-ab2cfcfb023b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e963daffb462e89d9d67e6193944cc3
ff29c630c2ed8a67fe5cd4622dc9f1d23234b58c
cc24af0aedb89ab059b6706b8e51708547ea2ce2b2c2743425810b44af7c68c8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14e8614f-d7d5-4a87-adf0-ab2cfcfb023b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5956
x-amzn-requestid: 19032fea-67c3-404f-bf3e-9b436a61a7f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeNW4G30oAMFw0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63225c2b-3da099be3781af033658520f;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:56:43 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iITasHJYVP9sMCE7074VGGXwzKVd-0VdZqWYFuKPSt3G91Tq2vWExA==
via: 1.1 74aa91fe819001bcedd882694f52b436.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 23:32:44 GMT
age: 36738
etag: "ff29c630c2ed8a67fe5cd4622dc9f1d23234b58c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcaf888ee-3a5f-426b-9b83-8ea161780db3.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcaf888ee-3a5f-426b-9b83-8ea161780db3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9c807387d303abb2bca1ef14b14c9e26
428fe80d3f35758433a6b2cf25e6bcb5f63a6a63
277a74204dc8bec8a227ca43cdb840b5dda71f74e8aec56606e862e70a5ba19c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcaf888ee-3a5f-426b-9b83-8ea161780db3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5234
x-amzn-requestid: 55e23e9a-f85c-42f2-87b6-aff3646bf1fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yknn_EFzoAMF2Ag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec99-62f023426230c7b46116d4b7;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:37:29 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fb2wN0gTI9OKgDghf1u4DKwrADkYcS5_7LIxaLxmbo0OciwezGh_LA==
via: 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:41:22 GMT
etag: "428fe80d3f35758433a6b2cf25e6bcb5f63a6a63"
content-type: image/jpeg
age: 43420
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50373a4c-fa87-4ca5-b0b7-67ee2f12abd1.jpeg
200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50373a4c-fa87-4ca5-b0b7-67ee2f12abd1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f108cfb79dd8405677b7406910d11ba5
5ef30af418df5e44a0927361b679b8117c38c473
b4b973702c6c98eaf28345b019c8cf022e8056e07f508e17d156c9e136f11936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50373a4c-fa87-4ca5-b0b7-67ee2f12abd1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7305
x-amzn-requestid: 15096102-8ffe-47df-bfc7-ff1a1fb9fd1e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknUqFJmIAMF5Ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec1d-5c5ca26a24f39af979c17495;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:35:25 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5lUx834-NLHpKCxmdiAdNxCXqqNKGcDJlt9wmGR-XxdlroBfwVTrNg==
via: 1.1 e943d5f0cbb0d255d29da0ddf6639ba8.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:41:22 GMT
age: 43420
etag: "5ef30af418df5e44a0927361b679b8117c38c473"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a22ab7dcdf50f4a297b8e117d336eae
e139a0974317212f094fdbe59e26ca5cf6b9e56d
9b4c23c1bb2e4fcd140ce34bf83f315f09b45202c569cb74113c2e65c4031dcd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7788
x-amzn-requestid: 2cb48f87-8b72-4ff7-b041-a6e704b854a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIP2-HFHoAMFssA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319935f-693e2f2e5a0bcd9f690f21fa;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:01:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 65YRttsQYzjUMMZXrtAFPdgTPNQuRGnLFliXrcoc24iQgrdBCHolNQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 22:31:11 GMT
age: 40431
etag: "e139a0974317212f094fdbe59e26ca5cf6b9e56d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77aee3f-a7fb-4d87-92a7-6b33dd4ebf28.jpeg
200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77aee3f-a7fb-4d87-92a7-6b33dd4ebf28.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1b42bfa9fc6593b0444391dc260329a
b9c4cd422b818c859ac6ca928bc9e932a578ce30
89eee7200bf7a8bf100f64aee2208d7852265a85feb133fc87846b15cd96e842
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77aee3f-a7fb-4d87-92a7-6b33dd4ebf28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5983
x-amzn-requestid: ba84a9a2-3ebe-4dc9-9604-98d5cccb4f2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YknUqFxpoAMFrpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324ec1d-55cd6d0a6e39357c226dd21d;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 21:35:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kWRS1NfiK9etmIoDtGu3C6uf8oqrL3r-mkM6BaTFPyNb6z4lYB38pw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 21:53:58 GMT
age: 42664
etag: "b9c4cd422b818c859ac6ca928bc9e932a578ce30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.bharatinside.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 11 kB URL HTTP/1.1 www.bharatinside.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 19:36:06 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.bharatinside.com/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16
200 OK 1.5 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16
IP
File type ASCII text, with very long lines (1519), with no line terminators
Hash 73e46bbd8244a60086283f5fe275d682
b477443fbe8763c8f111877029b7aee9039ef64d
f93483f0aaf24aea4b5534bb8647d22cd9dfcb4d08d2fd1008787bdfb8a6cc47
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Tue, 20 Jul 2021 06:01:54 GMT
Accept-Ranges: bytes
Content-Length: 1519
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.bharatinside.com/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
200 OK 129 B URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
IP
File type ASCII text, with no line terminators
Hash 5ef26b5e47e6951f43ecf2b1fc645222
081afb52577f6f3bb044fdea6d34a632c3cce7e8
50679e0e3933c945348a2db0cc128bb14b57a60a74fabf8cae13acc14efbb2e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Thu, 13 Sep 2018 00:06:04 GMT
Accept-Ranges: bytes
Content-Length: 129
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.bharatinside.com/wp-content/plugins/master-slider/public/assets/css/masterslider.main.css?ver=3.8.1
200 OK 65 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/master-slider/public/assets/css/masterslider.main.css?ver=3.8.1
IP
Hash b451a096ff889c758f0337968beedbf2
2df45aec75d4d2335017789b14b8436d723ec88c
811883d8ada0d5fc173c61f5bb44a7e10da4591ce76eff605f94dd781eb2c208
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/master-slider/public/assets/css/masterslider.main.css?ver=3.8.1 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Thu, 10 Feb 2022 19:08:02 GMT
Accept-Ranges: bytes
Content-Length: 64689
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.bharatinside.com/wp-content/plugins/wonderplugin-video-embed/engine/wonderpluginvideoembed.js?ver=1.8
200 OK 21 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/wonderplugin-video-embed/engine/wonderpluginvideoembed.js?ver=1.8
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (599)
Hash f82fb29913ee3686dda3a7c55419c8b8
adb36f12c46cae91dc47f8611690a42c01cdc028
b84370df56d34322f5a2256d7ec6ba06c09ac58b347d591d12c1bd7b0a6b1cf2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wonderplugin-video-embed/engine/wonderpluginvideoembed.js?ver=1.8 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Sun, 18 Jul 2021 18:46:13 GMT
Accept-Ranges: bytes
Content-Length: 21042
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.bharatinside.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
200 OK 90 kB URL HTTP/1.1 www.bharatinside.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Thu, 11 Mar 2021 01:37:24 GMT
Accept-Ranges: bytes
Content-Length: 89521
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.bharatinside.com/wp-content/plugins/sneeit-framework/js/min/front-menus-compact.min.js?ver=6.6
200 OK 5.3 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/sneeit-framework/js/min/front-menus-compact.min.js?ver=6.6
IP
File type ASCII text, with very long lines (5266), with no line terminators
Hash a031af7b6bf3844e42c60083c51f93f9
779fa35722d568f9d012b3ec4c96f4e699ac0124
9946fdb0e9520378412582b3ed9bdeb5f10ef1d173df164a138f90f1725fa125
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sneeit-framework/js/min/front-menus-compact.min.js?ver=6.6 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Wed, 25 Sep 2019 08:51:39 GMT
Accept-Ranges: bytes
Content-Length: 5266
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.bharatinside.com/wp-content/plugins/sneeit-framework/js/min/front-optimize-images.min.js?ver=6.6
200 OK 6.9 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/sneeit-framework/js/min/front-optimize-images.min.js?ver=6.6
IP
File type ASCII text, with very long lines (690)
Hash b918c28ca363f0b2a44cc0166d3a0585
48ba0667050f3f79590ae22504ba138fa80b71d8
c3c3ee560626058745a8e19e9135796c5261c0446677daee92630f0af1c1e776
GET /wp-content/plugins/sneeit-framework/js/min/front-optimize-images.min.js?ver=6.6 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Wed, 25 Sep 2019 08:51:39 GMT
Accept-Ranges: bytes
Content-Length: 6900
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.bharatinside.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
200 OK 9.7 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP
File type ASCII text, with very long lines (9680), with no line terminators
Hash 490c29d6776fc430c23403fd845b34b0
817129906b7fef1011895a76f047c7693a852e21
29e8de26576208c07ba0845f604e65c9273b93f9f4d1d66214eb4c586f9938c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Thu, 01 Sep 2022 12:44:34 GMT
Accept-Ranges: bytes
Content-Length: 9680
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.bharatinside.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
200 OK 12 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash 3f3fc23f477a3849aa5677c585b2a2b4
ccf0865ebd37f76c450c7a377a86ff2448288db3
985fdd42398281348ca133a44750a56fe4909a806b9c075c9443a5d0bd6d2e51
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Thu, 01 Sep 2022 12:44:34 GMT
Accept-Ranges: bytes
Content-Length: 12211
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.bharatinside.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1
200 OK 17 kB URL HTTP/1.1 www.bharatinside.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1
IP
File type ASCII text, with very long lines (15439)
Hash aa5fef7b171510a2a430328d4a0f3b03
cf6377f9bd83d9ce5f18c3de8ac7e57c047168d4
5f030eda75a32de3b4f63e28a38e83642b8a723c84ae73bf3726b85cd411bfee
GET /wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Sat, 09 Apr 2022 05:37:18 GMT
Accept-Ranges: bytes
Content-Length: 17331
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
200 OK 26 kB IP
Hash 41c777919354200876816d1ca7bdd4ff
60330c1942cca0a63d60774f70d17f0bd7a7bca4
e80bb80ff16df9fc32a1d312ed9f52eaca12bc69b6f6a21950a5f075513a46d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bharatinside.com/wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.1
200 OK 901 B URL HTTP/1.1 www.bharatinside.com/wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.1
IP
File type ASCII text, with very long lines (715)
Hash e0b6ee7035469fab34982887e7ef21f7
8f38f75ae3db197142744524b6fcb8dc11efd577
f7f639c14daca92fe9f66f08d4ef076d2413eb99dbc35129158de1814d1d7c91
GET /wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.1 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Sat, 29 Jan 2022 03:14:06 GMT
Accept-Ranges: bytes
Content-Length: 901
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.bharatinside.com/wp-includes/js/thickbox/thickbox.js?ver=3.1-20121105
200 OK 13 kB URL HTTP/1.1 www.bharatinside.com/wp-includes/js/thickbox/thickbox.js?ver=3.1-20121105
IP
File type HTML document, ASCII text, with very long lines (597)
Hash d2da7c7dca1a638925d3ee396aa4e7a8
20d519ab0944c866b0e5c72d077b49f6f1485b2e
77a38ebee5730b70e36e9d5ddaa61456b06e905d98c5af6b86d7b7ca214583a4
GET /wp-includes/js/thickbox/thickbox.js?ver=3.1-20121105 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Tue, 23 Feb 2021 21:24:06 GMT
Accept-Ranges: bytes
Content-Length: 13194
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.bharatinside.com/wp-content/themes/flatnews/assets/js/min/main.min.js?ver=4.2
200 OK 58 kB URL HTTP/1.1 www.bharatinside.com/wp-content/themes/flatnews/assets/js/min/main.min.js?ver=4.2
IP
File type ASCII text, with very long lines (40509)
Hash 2c228a5434f7b57962c6053c81350977
62364602023c50cee1a7a6d2a4f7e58c304d0333
8f544c5934b44fca266be9b42cdb26164f06f2656541caf9d285a4a9b320730d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/flatnews/assets/js/min/main.min.js?ver=4.2 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Wed, 25 Sep 2019 08:42:36 GMT
Accept-Ranges: bytes
Content-Length: 57935
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bharatinside.com/wp-content/plugins/sneeit-framework/js/min/front-sticky-columns.min.js?ver=6.6
200 OK 3.5 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/sneeit-framework/js/min/front-sticky-columns.min.js?ver=6.6
IP
File type ASCII text, with very long lines (3516)
Hash 3ec197ac70e9ce90d93321121aedfaa5
106e10ce65413e9f06a624a858996e6f41b8989f
de39f53dac8fc955e47cc79109526380cb520847d3de40a99caa6fcfcde39ff4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sneeit-framework/js/min/front-sticky-columns.min.js?ver=6.6 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Wed, 25 Sep 2019 08:51:39 GMT
Accept-Ranges: bytes
Content-Length: 3517
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data
Hash fe424f96cb627d8b835cb001af17f56e
c5b4368fed99812a99036fba86d01367b5549505
35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1
GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bharatinside.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 21:14:35 GMT
expires: Tue, 12 Sep 2023 21:14:35 GMT
cache-control: public, max-age=31536000
age: 390627
last-modified: Mon, 18 Jul 2022 19:24:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/baloo2/v14/wXKrE3kTposypRyd51jcAA.woff2
200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/baloo2/v14/wXKrE3kTposypRyd51jcAA.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 32236, version 1.0\012- data
Hash 1605c58f41d2f8f2fffb99baca99e7b7
570fbd20d36c8911937eb1bf4bd660f36177d3dd
02dd1d26de4ba708bb1b24d4982e8c386bd488e7b59f399633e91f504ceacedc
GET /s/baloo2/v14/wXKrE3kTposypRyd51jcAA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bharatinside.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 22:56:53 GMT
expires: Tue, 12 Sep 2023 22:56:53 GMT
cache-control: public, max-age=31536000
age: 384489
last-modified: Fri, 24 Jun 2022 19:20:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.bharatinside.com/wp-content/plugins/sneeit-framework/js/min/front-responsive.min.js?ver=6.6
200 OK 2.0 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/sneeit-framework/js/min/front-responsive.min.js?ver=6.6
IP
File type ASCII text, with very long lines (1960)
Hash 9fb4f76b2f8b81af63d4ee2b7af7ceb7
85f3ca3d2d1b71ca4178317ffde2827ef6e00d91
b8e1203acfdc0821b267e08c99e59af4a7e436b3d4056b069ca2542fe508195a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sneeit-framework/js/min/front-responsive.min.js?ver=6.6 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Wed, 25 Sep 2019 08:51:39 GMT
Accept-Ranges: bytes
Content-Length: 1961
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.bharatinside.com/wp-content/plugins/featured-image-from-url/includes/html/js/image.js?ver=4.1.1
200 OK 3.8 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/featured-image-from-url/includes/html/js/image.js?ver=4.1.1
IP
Hash b27718aff74affd83d576672659ea188
06fb5d122016c11a5e404cdf878147dee60560c5
0891804a56327bacae315d5e5281bee36c729cabfe22697a28083eeb39eb8608
GET /wp-content/plugins/featured-image-from-url/includes/html/js/image.js?ver=4.1.1 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Sat, 10 Sep 2022 21:48:24 GMT
Accept-Ranges: bytes
Content-Length: 3826
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/baloo2/v14/wXKrE3kTposypRyd51ncANwr.woff2
200 OK 114 kB URL HTTP/2 fonts.gstatic.com/s/baloo2/v14/wXKrE3kTposypRyd51ncANwr.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 113820, version 1.0\012- data
Size 114 kB (113820 bytes)
Hash 376854af2aff18fbf91ab4280051d537
1e61877f55a1ae799dcb360407d947dc5aabe896
4afc775c9c15fd2e0735db7b50b601dd111a99ee087b56adf8383c3f75e04539
GET /s/baloo2/v14/wXKrE3kTposypRyd51ncANwr.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bharatinside.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 113820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 23:07:02 GMT
expires: Sat, 16 Sep 2023 23:07:02 GMT
cache-control: public, max-age=31536000
age: 38280
last-modified: Fri, 24 Jun 2022 19:21:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bharatinside.com/wp-content/plugins/master-slider/public/assets/js/jquery.easing.min.js?ver=3.8.1
200 OK 5.6 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/master-slider/public/assets/js/jquery.easing.min.js?ver=3.8.1
IP
File type Unicode text, UTF-8 text, with very long lines (3601)
Hash 3eac3c72434a0945b92dd4a01f7b6b4e
7767b356530e39cd76ec259320b0b2774b4097a8
ac3f3a757bfbfc9d92bc8f5e6e6362e5d4ae41dbf3cebacdda9b8f71afc82e5b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/master-slider/public/assets/js/jquery.easing.min.js?ver=3.8.1 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Thu, 10 Feb 2022 19:08:02 GMT
Accept-Ranges: bytes
Content-Length: 5555
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 12:31:58 GMT
expires: Sun, 10 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 594784
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9730b7d7d5f0481f65712991a899f4b8
facb4df5e4a4ac98b9bdd126c7dbb531cf0fe1e7
15d7d8acbcd94d9ca8579cc31a9ec621e76408663bc4b047e5e127acb14334a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/a97e97de/www-player.css
200 OK 49 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/www-player.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3a057d9fa48ad6b735e91c1f7fd7909a
e6a67ab82ccccef2ff9c2a9675549db921d86a4d
62ace094defa260545fd5dad61759df34fe0ae1a8dc1f0cf40a70d28a04ea905
GET /s/player/a97e97de/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/ZBCGhvkrmgE?autoplay=1&fs=0&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49363
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:04:24 GMT
expires: Sat, 16 Sep 2023 03:04:24 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/css
age: 110438
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.bharatinside.com/wp-content/plugins/master-slider/public/assets/js/masterslider.min.js?ver=3.8.1
200 OK 92 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/master-slider/public/assets/js/masterslider.min.js?ver=3.8.1
IP
File type Unicode text, UTF-8 text, with very long lines (32167)
Hash 8edcd96e84db08478c011773d92b286e
ef926827fcd411eb551d54aeeaaf5706ecfb9a97
a58b3d19fe20aff59420571b76182c0a7f2f0ba1aba3201e231b36f6c2d09049
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/master-slider/public/assets/js/masterslider.min.js?ver=3.8.1 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Thu, 10 Feb 2022 19:08:02 GMT
Accept-Ranges: bytes
Content-Length: 92171
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www.bharatinside.com/wp-content/plugins/sneeit-framework/js/min/front-articles-pagination.min.js?ver=6.6
200 OK 7.1 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/sneeit-framework/js/min/front-articles-pagination.min.js?ver=6.6
IP
File type ASCII text, with very long lines (7141)
Hash 67dce7b721e0b0ce5581ca0b55d4a9c1
e144516b1c84bdc60f78ca0979c955202f6a6649
dd980ce503971eb3f39900a1bb27eea11a35f511a85ca7e6e664bec04e69cbbc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sneeit-framework/js/min/front-articles-pagination.min.js?ver=6.6 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Wed, 25 Sep 2019 08:51:39 GMT
Accept-Ranges: bytes
Content-Length: 7142
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.youtube.com/s/player/a97e97de/www-embed-player.vflset/www-embed-player.js
200 OK 98 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/www-embed-player.vflset/www-embed-player.js
IP
File type ASCII text, with very long lines (570)
Hash 66779b8011cd9ebfa3cb7a6de301d00d
a85da451fc25564d8b0a7287ea67e644790d1a3e
75228478dd647670e9d3aeae17d741abd5f5a07d739127dfbfeded437927d7fa
GET /s/player/a97e97de/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/ZBCGhvkrmgE?autoplay=1&fs=0&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97939
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:04:24 GMT
expires: Sat, 16 Sep 2023 03:04:24 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/javascript
age: 110438
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/ZBCGhvkrmgE?autoplay=1&fs=0&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
200 OK 30 kB URL HTTP/2 www.youtube.com/embed/ZBCGhvkrmgE?autoplay=1&fs=0&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (60103)
Hash ad07001b599a726495adb52bb791696f
70ed927515cfc6019fd0fe67c8495c796356645f
901418293e1b1f8796a7285a3c7dd27a39e27affba467fd86093999a81081cb0
GET /embed/ZBCGhvkrmgE?autoplay=1&fs=0&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 17 Sep 2022 09:45:02 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=qsA-W3xhXA8; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=Zlthej2OFR4; Domain=.youtube.com; Expires=Thu, 16-Mar-2023 09:45:02 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+672; expires=Mon, 16-Sep-2024 09:45:02 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/a97e97de/player_ias.vflset/en_US/base.js
200 OK 590 kB URL HTTP/2 www.youtube.com/s/player/a97e97de/player_ias.vflset/en_US/base.js
IP
File type ASCII text, with very long lines (554)
Size 590 kB (589794 bytes)
Hash 2cf72d6908c8dfac7e8c8c5debe1bba0
69aef6123882a5df7a9460f8b69e16ef4312d757
b2beac7d81227b7916417f65959a82092770b53ab9f3add4d2603fbcf6838375
GET /s/player/a97e97de/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/ZBCGhvkrmgE?autoplay=1&fs=0&iv_load_policy=3&showinfo=0&rel=0&cc_load_policy=0&start=0&end=0&origin=https://youtubeembedcode.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 589794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 03:14:52 GMT
expires: Sat, 16 Sep 2023 03:14:52 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 21:54:27 GMT
content-type: text/javascript
age: 109810
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.bharatinside.com/wp-content/plugins/sneeit-framework/fonts/font-awesome-5x/webfonts/fa-brands-400.woff2
200 OK 74 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/sneeit-framework/fonts/font-awesome-5x/webfonts/fa-brands-400.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 74288, version 1.0\012- data
Hash eac60e8a656781e13d2a674b4d9051c0
0039be9d8a99d1e5cf200ca3e08757692020460e
eed474a49bdbf745c19e463f070e67977c1ab27835603eb749d9e5c249cf81f8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sneeit-framework/fonts/font-awesome-5x/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.bharatinside.com/wp-content/plugins/sneeit-framework/fonts/font-awesome-5x/css/all.min.css?ver=6.6
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Wed, 25 Sep 2019 08:51:39 GMT
Accept-Ranges: bytes
Content-Length: 74288
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/woff2
www.bharatinside.com/wp-content/uploads/2020/10/254x95.png
200 OK 17 kB URL HTTP/1.1 www.bharatinside.com/wp-content/uploads/2020/10/254x95.png
IP
File type PNG image data, 254 x 95, 8-bit/color RGBA, non-interlaced\012- data
Hash addd1d2210223d3013ade73e5804be61
7d19002a48401128e31bcf543897d25a10afddf3
35ffa8bd1548cf305791b9992a8d3fc90765342c338a7f0171698df4ab4abe99
GET /wp-content/uploads/2020/10/254x95.png HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Tue, 06 Oct 2020 07:27:11 GMT
Accept-Ranges: bytes
Content-Length: 16939
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
www.bharatinside.com/wp-content/uploads/2019/09/INSIDE-NETWORK.png
200 OK 68 kB URL HTTP/1.1 www.bharatinside.com/wp-content/uploads/2019/09/INSIDE-NETWORK.png
IP
File type PNG image data, 800 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 83207b4ed4bf59cf37a652277e90b315
fa70c3dba0a84de4503ad469dac3d730ed4991c8
05dd364c280d1d896f8aa889228b436a4172ab257c3fcccdaf02c8c9e5240b55
GET /wp-content/uploads/2019/09/INSIDE-NETWORK.png HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2021 13:38:39 GMT
Accept-Ranges: bytes
Content-Length: 68057
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
www.bharatinside.com/wp-content/plugins/sneeit-framework/fonts/font-awesome-5x/webfonts/fa-solid-900.woff2
200 OK 79 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/sneeit-framework/fonts/font-awesome-5x/webfonts/fa-solid-900.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 79100, version 1.0\012- data
Hash 5dc01cfcd5336f696cb85da7ce53fa9b
28a1f2fadc35c5343e0280389fe7955e3d1be607
f419ad7a4477f36ce73c74a23dce784150ca38fa5075a8e06109709cbb716903
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sneeit-framework/fonts/font-awesome-5x/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.bharatinside.com/wp-content/plugins/sneeit-framework/fonts/font-awesome-5x/css/all.min.css?ver=6.6
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Wed, 25 Sep 2019 08:51:39 GMT
Accept-Ranges: bytes
Content-Length: 79100
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/woff2
www.bharatinside.com/wp-content/themes/flatnews/assets/css/min/responsive.min.css?ver=4.2
200 OK 2.8 kB URL HTTP/1.1 www.bharatinside.com/wp-content/themes/flatnews/assets/css/min/responsive.min.css?ver=4.2
IP
File type ASCII text, with very long lines (2804)
Hash 2eb9f99d2843c88d254a46e4680435f0
87cdab52ec4381438d151403990bc00f412e1664
3998c4a89cd15fa10c172e0b1201b1d5726946d7b09d5e55f38d49054ca506f9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/flatnews/assets/css/min/responsive.min.css?ver=4.2 HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Wed, 25 Sep 2019 08:42:36 GMT
Accept-Ranges: bytes
Content-Length: 2805
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
www.bharatinside.com/wp-content/plugins/master-slider/public/assets/css/blank.gif
200 OK 43 B URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/master-slider/public/assets/css/blank.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /wp-content/plugins/master-slider/public/assets/css/blank.gif HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:02 GMT
Server: Apache
Last-Modified: Thu, 10 Feb 2022 19:08:02 GMT
Accept-Ranges: bytes
Content-Length: 43
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/gif
www.bharatinside.com/wp-content/uploads/2019/09/LOGO_GUJARAT_250-95.png
200 OK 17 kB URL HTTP/1.1 www.bharatinside.com/wp-content/uploads/2019/09/LOGO_GUJARAT_250-95.png
IP
File type PNG image data, 254 x 95, 8-bit/color RGBA, non-interlaced\012- data
Hash addd1d2210223d3013ade73e5804be61
7d19002a48401128e31bcf543897d25a10afddf3
35ffa8bd1548cf305791b9992a8d3fc90765342c338a7f0171698df4ab4abe99
GET /wp-content/uploads/2019/09/LOGO_GUJARAT_250-95.png HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:03 GMT
Server: Apache
Last-Modified: Tue, 06 Oct 2020 07:29:22 GMT
Accept-Ranges: bytes
Content-Length: 16939
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
ocsp.digicert.com/
200 OK 471 B IP
Hash 924cca70f1f5ba02eb6af21a65e0bdd1
3baa75b1ea32068f96cfd5060e4e1eda71c61da8
e55036d990bb7071b7e51e739b8650538ce67d821cc966b0baa99ff40220973b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5324
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:03 GMT
Last-Modified: Sat, 17 Sep 2022 08:16:19 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fa86a62c870c1ce23fd85f73e99d7964
81af6fd2507bb58c6b040fd5f494de01d22e7102
76bc6fffeb8593064820e909edc5e4991cb4a5c1b609916a6021974665b5286f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/sdk.js
200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP
File type ASCII text, with very long lines (1961)
Hash 45b3795c7dd4d251d56203a0ab8ee66a
40b2875ca3cd6c6f58fb332a6ca889588eb5bcff
616452adff9cc666262e37e018df2431f67760b775bd75b749fb5b79ceab6f55
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 44e68718fb733e6b90bd39792830dc32
etag: "5785329b53e949678a9371389f5f11ce"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 17 Sep 2022 09:56:04 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: RbN5XH3U0lHVYgOgq47mag==
x-fb-debug: KDPLxS0OKmSiQlK9GEnK7TWQmc3DePnj31ZnQMrfB1sQNqGvjaDDFB+WXdi65t+Rntl8Z/KXQ2jspUr758TfIQ==
priority: u=3,i
content-length: 1684
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 09:45:03 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 58 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
File type ASCII text, with very long lines (2903)
Hash ef216a0c2c71f6af56d2c514dc178c74
f04e090f1f5d98f9686c98392bd750cd93feca8d
4208a0da87680507ee2f378df3f58305d8332dea54e83667ff320153661d80f7
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Sat, 17 Sep 2022 09:45:03 GMT
expires: Sat, 17 Sep 2022 09:45:03 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 10426688738032409438
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 57999
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.bharatinside.com/wp-content/uploads/2021/01/cropped-gujfav-1-192x192.png
200 OK 14 kB URL HTTP/1.1 www.bharatinside.com/wp-content/uploads/2021/01/cropped-gujfav-1-192x192.png
IP
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash c296465cf2b237673d52988c6497df15
e1800314507ae56fcecab5c1a4f7af55e07506d1
1fa94b028bde005f96b4121bb31112b0a2d029071cb37040d521935a6e86b97e
GET /wp-content/uploads/2021/01/cropped-gujfav-1-192x192.png HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:03 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2021 12:04:18 GMT
Accept-Ranges: bytes
Content-Length: 14034
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
www.bharatinside.com/wp-content/uploads/2021/01/cropped-gujfav-1-32x32.png
200 OK 963 B URL HTTP/1.1 www.bharatinside.com/wp-content/uploads/2021/01/cropped-gujfav-1-32x32.png
IP
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash e2c09f10df085086c1783ee611000571
00aa1efc7b4a062e93f9b99cc248ff3c6ccc6884
5e22e2e862ec80c8aae4d990d1975f1448d5311a566f3fc604d85fc2551e0900
GET /wp-content/uploads/2021/01/cropped-gujfav-1-32x32.png HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:03 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2021 12:04:18 GMT
Accept-Ranges: bytes
Content-Length: 963
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
200 OK 875 B IP
Hash b066b7e9e95b26365f57980ae92bab8f
212e128b8171f7250500f110053fa3996b50f91e
4a4fc0b331eb4bd8881e04b3175000002129b2eaf38c34db550a8b1f8982c11c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
secure.statcounter.com/counter/counter.js
200 OK 18 kB URL HTTP/2 secure.statcounter.com/counter/counter.js
IP
File type ASCII text, with very long lines (43632), with no line terminators
Hash 959a2099cb5ee39458515398c0702a14
b1065c8a65b8e95e59aef61848e20849397d49f2
b74b7bf354ffd1e9026d9d5b4c6a0db8ed6c52e7a4f7c33c85470c101e58cbe6
GET /counter/counter.js HTTP/1.1
Host: secure.statcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 09:45:03 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 16 Sep 2022 13:17:32 GMT
etag: W/"6324776c-aa70"
expires: Sat, 17 Sep 2022 16:03:39 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20484
server: cloudflare
cf-ray: 74c0e8225e610b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.bharatinside.com/wp-content/uploads/2021/10/img_3708-150x73.jpg
200 OK 5.1 kB URL HTTP/1.1 www.bharatinside.com/wp-content/uploads/2021/10/img_3708-150x73.jpg
IP
Hash f933d418b001b48839f4d6b0d62e0834
e0e4b0536ae12d402f69b5dc331cb01e28bdf4d7
eae9867a4ff63e4b531190e5e522cd2520ac8b4394a10407aa99628b5e513456
GET /wp-content/uploads/2021/10/img_3708-150x73.jpg HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:03 GMT
Server: Apache
Last-Modified: Thu, 28 Oct 2021 22:23:57 GMT
Accept-Ranges: bytes
Content-Length: 2294
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.bharatinside.com/wp-content/uploads/2022/03/UP-Election-2n-100x56.jpg
200 OK 2.9 kB URL HTTP/1.1 www.bharatinside.com/wp-content/uploads/2022/03/UP-Election-2n-100x56.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x56, components 3\012- data
Hash b048dbeca95bd29df87d5aaa0b160a20
4242126b79403a151427971c6c1688a011b53a8c
7ebcc946cbb8b828130483397b3c9aae90b467a98bcb7b3936ed2bcc28f0e0ff
GET /wp-content/uploads/2022/03/UP-Election-2n-100x56.jpg HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:03 GMT
Server: Apache
Last-Modified: Wed, 02 Mar 2022 05:38:50 GMT
Accept-Ranges: bytes
Content-Length: 2870
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.bharatinside.com/wp-content/uploads/2021/02/Teen-Darwaja-Market-Ahmedabad-100x56.jpg
200 OK 3.2 kB URL HTTP/1.1 www.bharatinside.com/wp-content/uploads/2021/02/Teen-Darwaja-Market-Ahmedabad-100x56.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x56, components 3\012- data
Hash 62afc9c325190f7a36ea9783961791de
dee3a0604c26f910deadc29a222ad3dfcfd74481
1f04b117ee7bcba49b7f058b4b0331b1f1d9cdb7affb09487e0b94a9fbc7ca58
GET /wp-content/uploads/2021/02/Teen-Darwaja-Market-Ahmedabad-100x56.jpg HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:03 GMT
Server: Apache
Last-Modified: Fri, 26 Feb 2021 09:43:50 GMT
Accept-Ranges: bytes
Content-Length: 3247
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
www.bharatinside.com/wp-content/plugins/master-slider/public/assets/css/common/loading-2.gif
200 OK 5.4 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/master-slider/public/assets/css/common/loading-2.gif
IP
Hash c55a35fa5c21f0f9f784c8834e47fea6
9835ffff8e670dde68d84c0deaf61001c7b8050f
9ac72c3013c21035e1925f9f7c4cccc482e4cecb534b26b66b9e3b65ea94bb3d
GET /wp-content/plugins/master-slider/public/assets/css/common/loading-2.gif HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/wp-content/plugins/master-slider/public/assets/css/masterslider.main.css?ver=3.8.1
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:03 GMT
Server: Apache
Last-Modified: Thu, 10 Feb 2022 19:08:02 GMT
Accept-Ranges: bytes
Content-Length: 2707
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/gif
www.bharatinside.com/wp-content/uploads/2021/02/local-train-100x56.jpg
200 OK 3.0 kB URL HTTP/1.1 www.bharatinside.com/wp-content/uploads/2021/02/local-train-100x56.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x56, components 3\012- data
Hash 55eafbc945428687e51ee27711ff4294
fa96b22697586fd07e00bce446b63d5a639105f8
529c2f041ca35cd0dfd4fab60ae0a660e5b1b7b9395ff88a914730585621b971
GET /wp-content/uploads/2021/02/local-train-100x56.jpg HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:03 GMT
Server: Apache
Last-Modified: Fri, 26 Feb 2021 09:18:39 GMT
Accept-Ranges: bytes
Content-Length: 3013
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
www.bharatinside.com/wp-includes/js/thickbox/loadingAnimation.gif
200 OK 15 kB URL HTTP/1.1 www.bharatinside.com/wp-includes/js/thickbox/loadingAnimation.gif
IP
File type GIF image data, version 89a, 416 x 26\012- data
Hash ce2268030dd2151b63cdf4ffc2f626ba
15280f21eb43f5fa7838dcf011f67d79e301b15f
6a486bb6036ea984d293ab009566e99e522abc19f8833c5fd49630be7eba0135
GET /wp-includes/js/thickbox/loadingAnimation.gif HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e; sc_is_visitor_unique=rx12118469.1663407886.2A89DCF6E97B4FAEC488127514E9A742.1.1.1.1.1.1.1.1.1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:03 GMT
Server: Apache
Last-Modified: Tue, 06 Nov 2012 07:30:16 GMT
Accept-Ranges: bytes
Content-Length: 15238
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/gif
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 362089b1736455ea45e49a07c8901d6a
43a8bd5413ec595b873f959b69bade5aab25f6d3
b9eeb4bfc11976f62f9d53fd686c3ad4d699fdf7d14fad6d4916febcf60a3bf0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 09:44:23 GMT
expires: Sat, 17 Sep 2022 09:59:23 GMT
cache-control: public, max-age=900
age: 40
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js?hash=e21b01199d733ae4dfe0fe5a97de367f
200 OK 122 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=e21b01199d733ae4dfe0fe5a97de367f
IP
Size 122 kB (121996 bytes)
Hash 24c96b9f4049c2d7449e0fe371b681d1
7da60f2dd64a6306d021b6b571682b7489e277fe
44122c959e4cc763e945e41f37041e5b8733d5612b11bce86db24f9ecc579108
GET /en_US/sdk.js?hash=e21b01199d733ae4dfe0fe5a97de367f HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bharatinside.com
Connection: keep-alive
Referer: https://www.bharatinside.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 35fe70e0f22d608cdd829a652749d2f5
etag: "235093916b8860eadb48ba14c554f960"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 17 Sep 2023 05:45:45 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: xPJAx4bEGjLYt0UsUVihfA==
x-fb-debug: dQ9V00B4AEu/grC3aOKYP+e6/q5qSoK7M8g8ZM9LQa9S9xr/NhqEybvjt6rnoIz45dUyV04AnVJRbnMdzSfU4w==
priority: u=3,i
content-length: 88692
x-fb-trip-id: 1904183273
date: Sat, 17 Sep 2022 09:45:03 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Baloo+2%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic&ver=80e84457baf2e03c0d23e4d7a236e75a
200 OK 126 kB URL HTTP/2 fonts.googleapis.com/css?family=Baloo+2%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic&ver=80e84457baf2e03c0d23e4d7a236e75a
IP
File type ASCII text, with very long lines (1873)
Size 126 kB (126343 bytes)
Hash 7d5f50171dd40f335d5851bead3aef35
e32503196ef07842d07fdd2c5508b3d3a5e3b127
908ea435858e357b15d524ec527ea648c4b94e79309957509b7384c6ad8d7154
GET /css?family=Baloo+2%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic&ver=80e84457baf2e03c0d23e4d7a236e75a HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 17 Sep 2022 09:45:01 GMT
date: Sat, 17 Sep 2022 09:45:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 362089b1736455ea45e49a07c8901d6a
43a8bd5413ec595b873f959b69bade5aab25f6d3
b9eeb4bfc11976f62f9d53fd686c3ad4d699fdf7d14fad6d4916febcf60a3bf0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bharatinside.com/wp-content/uploads/2019/09/ADVT_SCROLL.jpg
200 OK 118 kB URL HTTP/1.1 www.bharatinside.com/wp-content/uploads/2019/09/ADVT_SCROLL.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Windows), datetime=2019:09:28 21:15:22], baseline, precision 8, 828x91, components 3\012- data
Size 118 kB (117781 bytes)
Hash b7888895ca214d74097b49e57700d7d6
63be60b70d531d3202f4b49e9f0949e1328b8ee9
497f697cf6b2d16e57158d3a6e69a70f4ef384a847fd4760bf811ca2070f53d5
GET /wp-content/uploads/2019/09/ADVT_SCROLL.jpg HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e; sc_is_visitor_unique=rx12118469.1663407886.2A89DCF6E97B4FAEC488127514E9A742.1.1.1.1.1.1.1.1.1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:03 GMT
Server: Apache
Last-Modified: Sat, 28 Sep 2019 16:45:05 GMT
Accept-Ranges: bytes
Content-Length: 117781
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 17 Sep 2022 09:45:03 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b4a24f9aebdfdb06d10cd53e92a70bb8
c4532479dbd9636d8f5206faa085c520651eb5f2
1d330af2b423e351355f710f14cb771fa9918e8b6638c5076aba7bcda6c30936
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 65708b91c1ba9fac3fc1a1211fde06fb
da15a9c4bd91b63780bbe270abf8c262ddc2df46
cf16ef7c3291ec6f1fa4a27d2fae4bb15d9d7158898d5c8234a385f485d00703
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 17 Sep 2022 09:45:03 GMT
server: ESF
cache-control: private
content-length: 30815
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/js/th/0Q0sPaTf27KkVV0qBrYI7cmJeSJkpG4CF1zVddAZEjs.js
200 OK 14 kB URL HTTP/2 www.google.com/js/th/0Q0sPaTf27KkVV0qBrYI7cmJeSJkpG4CF1zVddAZEjs.js
IP
File type ASCII text, with very long lines (36110)
Hash d348ea7c67cf70cc27add8ec15920c5f
46b2db74425f5c6c10c69831277b83c76c8c24b8
e9198b139add4e4683e04549366c63b57000c4e9d719c0e5820124d63d0fccff
GET /js/th/0Q0sPaTf27KkVV0qBrYI7cmJeSJkpG4CF1zVddAZEjs.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14308
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:09:26 GMT
expires: Thu, 14 Sep 2023 05:09:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Sep 2022 11:00:00 GMT
content-type: text/javascript
age: 275737
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1ed5276ce78dd7ec3e5d5612db66d478
b76defb0ef2cb1a47f7b7064b7ed7008eb219cbb
d7a41bc16c6193d184e995f54247002cfe75a74ff174810f18a4dc5384df3578
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AMLnZu-YRuNcwPf2cDiU7AcZfQ405OQ2tRYmuWDAtKHQwg=s68-c-k-c0x00ffffff-no-rj
200 OK 4.3 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu-YRuNcwPf2cDiU7AcZfQ405OQ2tRYmuWDAtKHQwg=s68-c-k-c0x00ffffff-no-rj
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash f7807302968fc98f234f731f1f7d80b9
1434c7da1a6cbfe7e6f3598b952424211585aa9c
c28487e8fb23934c8c27d545a6d6ad30cbd46c856e73097db6d6849b8a355be6
GET /ytc/AMLnZu-YRuNcwPf2cDiU7AcZfQ405OQ2tRYmuWDAtKHQwg=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4310
x-xss-protection: 0
date: Sat, 17 Sep 2022 09:21:53 GMT
expires: Sat, 17 Sep 2022 20:08:18 GMT
cache-control: public, max-age=86400, no-transform
age: 1390
etag: "v138"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.bharatinside.com
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.bharatinside.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.bharatinside.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 17 Sep 2022 09:45:03 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.bharatinside.com/wp-content/plugins/master-slider/public/assets/css/common/grab.png
200 OK 2.9 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/master-slider/public/assets/css/common/grab.png
IP
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash e659367c40a35b37ae64231785e70f68
d6a7b62e802d2a64d5132181997fd0da025b2500
6fce3743627cd0d4f89b035ae2fc9ea6bd3a569cc5ad12eeb977743e19f43c2c
GET /wp-content/plugins/master-slider/public/assets/css/common/grab.png HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/wp-content/plugins/master-slider/public/assets/css/masterslider.main.css?ver=3.8.1
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e; sc_is_visitor_unique=rx12118469.1663407886.2A89DCF6E97B4FAEC488127514E9A742.1.1.1.1.1.1.1.1.1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:03 GMT
Server: Apache
Last-Modified: Thu, 10 Feb 2022 19:08:02 GMT
Accept-Ranges: bytes
Content-Length: 2893
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1ed5276ce78dd7ec3e5d5612db66d478
b76defb0ef2cb1a47f7b7064b7ed7008eb219cbb
d7a41bc16c6193d184e995f54247002cfe75a74ff174810f18a4dc5384df3578
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 13fec77b59dae4bb9410a06357423a2f
086b7b536283f0a18742c3e43397762f78cdccf8
66b85a264ec591ece4c49e1f6a5da676436319845540139888e0b5e4906c5f16
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.bharatinside.com
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.bharatinside.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.bharatinside.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 17 Sep 2022 09:45:03 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 13fec77b59dae4bb9410a06357423a2f
086b7b536283f0a18742c3e43397762f78cdccf8
66b85a264ec591ece4c49e1f6a5da676436319845540139888e0b5e4906c5f16
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1a48bfc0777c56c0dc72cdb3c2ab287e
3c8024c9fbf3aac667bf4de6e0a131eba449b494
d4bb7bf940c050a5e344de93eb9de150d5cdd12f352233953d048f9d4f53e961
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=www.bharatinside.com&callback=_gfp_s_&client=ca-pub-8163236238674496
200 OK 204 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=www.bharatinside.com&callback=_gfp_s_&client=ca-pub-8163236238674496
IP
File type ASCII text, with no line terminators
Hash 8f1ad42702131870d07fbb2603b86394
936105eb609b69b453caa5cc6a5e0171ba69fe29
cc2fd32169c243a41f57e8743d9f293cf62ee4a78be39c8bce026f5369158fb5
GET /gampad/cookie.js?domain=www.bharatinside.com&callback=_gfp_s_&client=ca-pub-8163236238674496 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 17 Sep 2022 09:45:03 GMT
server: cafe
cache-control: private
content-length: 204
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1a48bfc0777c56c0dc72cdb3c2ab287e
3c8024c9fbf3aac667bf4de6e0a131eba449b494
d4bb7bf940c050a5e344de93eb9de150d5cdd12f352233953d048f9d4f53e961
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bharatinside.com/wp-content/plugins/master-slider/public/assets/css/skins/light-skin-4.png
200 OK 2.3 kB URL HTTP/1.1 www.bharatinside.com/wp-content/plugins/master-slider/public/assets/css/skins/light-skin-4.png
IP
File type PNG image data, 152 x 225, 8-bit/color RGBA, non-interlaced\012- data
Hash b213fe0b3a2776890538d906c6d632d7
cce35aacc06996ee4de3608d3f7439e1382e91d2
d09ba238b023cbee70fb7e70df920925d0310a181798313e281ae8b93a641887
GET /wp-content/plugins/master-slider/public/assets/css/skins/light-skin-4.png HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/wp-content/plugins/master-slider/public/assets/css/masterslider.main.css?ver=3.8.1
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e; sc_is_visitor_unique=rx12118469.1663407886.2A89DCF6E97B4FAEC488127514E9A742.1.1.1.1.1.1.1.1.1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 17 Sep 2022 09:45:04 GMT
Server: Apache
Last-Modified: Thu, 10 Feb 2022 19:08:02 GMT
Accept-Ranges: bytes
Content-Length: 2255
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/png
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 17 Sep 2022 09:45:04 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 5bbc821d4388bc3a8e732881266316b7
466a41dc3acb05f472d7b9c56443462a55c71c5f
3f1f61c098014a6febb51a657dadb2657a06812ab1ffef65324006147a94b9e3
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1139
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 17 Sep 2022 09:45:04 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1da05f1e53c3288b83e6144fe29a5e8d
1928c5fde910081f75611417dcfc2a434ef48429
80fba6e234ab5817429988319c996b037c6f091043787e9c1e7b083a280a1fc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1da05f1e53c3288b83e6144fe29a5e8d
1928c5fde910081f75611417dcfc2a434ef48429
80fba6e234ab5817429988319c996b037c6f091043787e9c1e7b083a280a1fc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1663429503&ei=H5clY4SAJYqJpAStwqWoBQ&ip=91.90.42.154&id=o-ALMhvGUBvpmvEZ9TOvCIjCHQde7mVhLOjW90_k3bQ6tF&itag=251&source=youtube&requiressl=yes&mh=Ll&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=u&mvi=2&pl=21&spc=yR2vpw6JgjoR7DSVTw8zHZlYzyT_gRY&vprv=1&mime=audio%2Fwebm&ns=BWDZr4inaAvNK29BlabLHbkI&gir=yes&clen=1490799&otfp=1&dur=96.021&lmt=1568089009949802&mt=1663406995&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&rbqsm=fr&txp=2201222&n=_UhxRkd9qnLs2Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=AG3C_xAwRgIhAOUBbJY1c-lblrt-1pdMZx6gQIKFV6eFY7-V5986qLUwAiEAhmUCOCw-Neu5GWPFuj_iWGhhZtb6olwQKiUPha63FmI%3D&alr=yes&sig=AOq0QJ8wRAIgCrA-US-YcM4BU5mwk5OPxoG6MED41J0m6_fw5NCEHv8CIDVFApl59Jzrs7AHoNWTBAqdq8bOkD8XFpC0YLxlYeza&cpn=1RYDal6r4zHWIjx1&cver=1.20220914.01.01&range=0-65968&rn=2&rbuf=0
200 OK 84 kB URL HTTP/1.1 rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1663429503&ei=H5clY4SAJYqJpAStwqWoBQ&ip=91.90.42.154&id=o-ALMhvGUBvpmvEZ9TOvCIjCHQde7mVhLOjW90_k3bQ6tF&itag=251&source=youtube&requiressl=yes&mh=Ll&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=u&mvi=2&pl=21&spc=yR2vpw6JgjoR7DSVTw8zHZlYzyT_gRY&vprv=1&mime=audio%2Fwebm&ns=BWDZr4inaAvNK29BlabLHbkI&gir=yes&clen=1490799&otfp=1&dur=96.021&lmt=1568089009949802&mt=1663406995&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&rbqsm=fr&txp=2201222&n=_UhxRkd9qnLs2Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=AG3C_xAwRgIhAOUBbJY1c-lblrt-1pdMZx6gQIKFV6eFY7-V5986qLUwAiEAhmUCOCw-Neu5GWPFuj_iWGhhZtb6olwQKiUPha63FmI%3D&alr=yes&sig=AOq0QJ8wRAIgCrA-US-YcM4BU5mwk5OPxoG6MED41J0m6_fw5NCEHv8CIDVFApl59Jzrs7AHoNWTBAqdq8bOkD8XFpC0YLxlYeza&cpn=1RYDal6r4zHWIjx1&cver=1.20220914.01.01&range=0-65968&rn=2&rbuf=0
IP
ASN #50304 Blix Solutions AS
Hash 37f1f57fb21560cadfa3ae1c91854131
b468ce1af483b0e835cbc556cd58ca43b485e9cb
cc6d1a8c048c2d46f72e34f2c4624e1f3dbb15cf549d09f12dcbced8c48c0927
GET /videoplayback?expire=1663429503&ei=H5clY4SAJYqJpAStwqWoBQ&ip=91.90.42.154&id=o-ALMhvGUBvpmvEZ9TOvCIjCHQde7mVhLOjW90_k3bQ6tF&itag=251&source=youtube&requiressl=yes&mh=Ll&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=u&mvi=2&pl=21&spc=yR2vpw6JgjoR7DSVTw8zHZlYzyT_gRY&vprv=1&mime=audio%2Fwebm&ns=BWDZr4inaAvNK29BlabLHbkI&gir=yes&clen=1490799&otfp=1&dur=96.021&lmt=1568089009949802&mt=1663406995&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&rbqsm=fr&txp=2201222&n=_UhxRkd9qnLs2Q&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cgir%2Cclen%2Cotfp%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=AG3C_xAwRgIhAOUBbJY1c-lblrt-1pdMZx6gQIKFV6eFY7-V5986qLUwAiEAhmUCOCw-Neu5GWPFuj_iWGhhZtb6olwQKiUPha63FmI%3D&alr=yes&sig=AOq0QJ8wRAIgCrA-US-YcM4BU5mwk5OPxoG6MED41J0m6_fw5NCEHv8CIDVFApl59Jzrs7AHoNWTBAqdq8bOkD8XFpC0YLxlYeza&cpn=1RYDal6r4zHWIjx1&cver=1.20220914.01.01&range=0-65968&rn=2&rbuf=0 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Tue, 10 Sep 2019 04:16:49 GMT
Content-Type: audio/webm
Date: Sat, 17 Sep 2022 09:45:04 GMT
Expires: Sat, 17 Sep 2022 09:45:04 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 65969
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1663429503&ei=H5clY4SAJYqJpAStwqWoBQ&ip=91.90.42.154&id=o-ALMhvGUBvpmvEZ9TOvCIjCHQde7mVhLOjW90_k3bQ6tF&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&mh=Ll&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=u&mvi=2&pl=21&spc=yR2vpw6JgjoR7DSVTw8zHZlYzyT_gRY&vprv=1&mime=video%2Fwebm&ns=BWDZr4inaAvNK29BlabLHbkI&otf=1&otfp=1&dur=0.000&lmt=1568088794602861&mt=1663406995&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&rbqsm=fr&n=_UhxRkd9qnLs2Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=AG3C_xAwRQIhAORc20KBgemaWov3db0zaStHeJVAEUX08Aeq6Eg_IDeRAiAk3Wjsn4xRgm3DCx-VLKyY9_yXQu8ejaKqZuOb0n-5ag%3D%3D&alr=yes&sig=AOq0QJ8wRAIgHXoAQw7dweYTqmTI96yAkdmxw91EmezcHc7_oSdvay8CIAIfKYQBPUMECz5BTRHche47kAN24nc5j1wP_oorMQag&cpn=1RYDal6r4zHWIjx1&cver=1.20220914.01.01&sq=0&rn=1&rbuf=0
200 OK 278 B URL HTTP/1.1 rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1663429503&ei=H5clY4SAJYqJpAStwqWoBQ&ip=91.90.42.154&id=o-ALMhvGUBvpmvEZ9TOvCIjCHQde7mVhLOjW90_k3bQ6tF&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&mh=Ll&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=u&mvi=2&pl=21&spc=yR2vpw6JgjoR7DSVTw8zHZlYzyT_gRY&vprv=1&mime=video%2Fwebm&ns=BWDZr4inaAvNK29BlabLHbkI&otf=1&otfp=1&dur=0.000&lmt=1568088794602861&mt=1663406995&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&rbqsm=fr&n=_UhxRkd9qnLs2Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=AG3C_xAwRQIhAORc20KBgemaWov3db0zaStHeJVAEUX08Aeq6Eg_IDeRAiAk3Wjsn4xRgm3DCx-VLKyY9_yXQu8ejaKqZuOb0n-5ag%3D%3D&alr=yes&sig=AOq0QJ8wRAIgHXoAQw7dweYTqmTI96yAkdmxw91EmezcHc7_oSdvay8CIAIfKYQBPUMECz5BTRHche47kAN24nc5j1wP_oorMQag&cpn=1RYDal6r4zHWIjx1&cver=1.20220914.01.01&sq=0&rn=1&rbuf=0
IP
ASN #50304 Blix Solutions AS
File type WebM\012- EBML file, creator webmB\20\012- data
Hash 9eb45e434e835f22474940885ce94151
a76f3073258b98c38a9ad575e8c434c6e5bd666a
d6dc64050c25c5470326bdd89996300b048ac7c3168cdddc815ad97132299835
GET /videoplayback?expire=1663429503&ei=H5clY4SAJYqJpAStwqWoBQ&ip=91.90.42.154&id=o-ALMhvGUBvpmvEZ9TOvCIjCHQde7mVhLOjW90_k3bQ6tF&itag=243&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C278&source=yt_otf&requiressl=yes&mh=Ll&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenes&ms=au%2Crdu&mv=u&mvi=2&pl=21&spc=yR2vpw6JgjoR7DSVTw8zHZlYzyT_gRY&vprv=1&mime=video%2Fwebm&ns=BWDZr4inaAvNK29BlabLHbkI&otf=1&otfp=1&dur=0.000&lmt=1568088794602861&mt=1663406995&fvip=3&keepalive=yes&fexp=24001373%2C24007246&c=WEB_EMBEDDED_PLAYER&rbqsm=fr&n=_UhxRkd9qnLs2Q&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cspc%2Cvprv%2Cmime%2Cns%2Cotf%2Cotfp%2Cdur%2Clmt&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpl&lsig=AG3C_xAwRQIhAORc20KBgemaWov3db0zaStHeJVAEUX08Aeq6Eg_IDeRAiAk3Wjsn4xRgm3DCx-VLKyY9_yXQu8ejaKqZuOb0n-5ag%3D%3D&alr=yes&sig=AOq0QJ8wRAIgHXoAQw7dweYTqmTI96yAkdmxw91EmezcHc7_oSdvay8CIAIfKYQBPUMECz5BTRHche47kAN24nc5j1wP_oorMQag&cpn=1RYDal6r4zHWIjx1&cver=1.20220914.01.01&sq=0&rn=1&rbuf=0 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sun, 11 Sep 2022 11:24:06 GMT
Content-Type: video/webm
Date: Sat, 17 Sep 2022 09:45:04 GMT
Expires: Sat, 17 Sep 2022 09:45:04 GMT
Cache-Control: private, max-age=21299
Accept-Ranges: bytes
Content-Length: 278
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1da05f1e53c3288b83e6144fe29a5e8d
1928c5fde910081f75611417dcfc2a434ef48429
80fba6e234ab5817429988319c996b037c6f091043787e9c1e7b083a280a1fc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5b430c292ae7f0e9b4462e645251d824
52dcac4cc5df39002209f35b64677b2d154017a3
0122901c3a3238b36177e2659bea7586d8341041aeedbfad022ba493582dcfac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5b430c292ae7f0e9b4462e645251d824
52dcac4cc5df39002209f35b64677b2d154017a3
0122901c3a3238b36177e2659bea7586d8341041aeedbfad022ba493582dcfac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/ZBCGhvkrmgE/default.webp
200 OK 1.9 kB URL HTTP/2 i.ytimg.com/vi_webp/ZBCGhvkrmgE/default.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 120x90, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 25175c144900dc7451365c59d08932b3
af5b63aec615e5df1c2e2d649f7162ab15d01bf6
5ef99c3082344fc33359a7b1a01997e4025aa9fdd04a7b263d0f2cd05792bc24
GET /vi_webp/ZBCGhvkrmgE/default.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 1850
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 09:21:54 GMT
expires: Sat, 17 Sep 2022 11:21:54 GMT
cache-control: public, max-age=7200
age: 1390
etag: "0"
content-type: image/webp
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/an/xVdfze1czLeaX6HYldkwiA/featured_channel.jpg?v=5d344995
200 OK 4.4 kB URL HTTP/2 i.ytimg.com/an/xVdfze1czLeaX6HYldkwiA/featured_channel.jpg?v=5d344995
IP
File type PNG image data, 150 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash b322a8cd10483cd4e37b11f9069d0da6
c5a6181bc65f69e4fae4c4e9f432c3d5525e6bb5
78bc6c0e208ead4a7c2bfa930b3321b9aa52d13b4731f3c95ea41ecde014e53f
GET /an/xVdfze1czLeaX6HYldkwiA/featured_channel.jpg?v=5d344995 HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 4385
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 09:21:54 GMT
expires: Sat, 17 Sep 2022 11:21:54 GMT
cache-control: public, max-age=7200
age: 1390
etag: "1563707797"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5b430c292ae7f0e9b4462e645251d824
52dcac4cc5df39002209f35b64677b2d154017a3
0122901c3a3238b36177e2659bea7586d8341041aeedbfad022ba493582dcfac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.statcounter.com/t.php?sc_project=12118469&u1=2A89DCF6E97B4FAEC488127514E9A742&java=1&security=b96a4f61&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//www.bharatinside.com/craigslist.post304983283434/login.php%3F%7B*%7D&t=Page%20not%20found%20-%20Bharat%20Inside&invisible=1&sc_rum_e_s=3188&sc_rum_e_e=3194&sc_rum_f_s=0&sc_rum_f_e=3134&get_config=true
200 OK 2.3 kB URL HTTP/2 c.statcounter.com/t.php?sc_project=12118469&u1=2A89DCF6E97B4FAEC488127514E9A742&java=1&security=b96a4f61&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//www.bharatinside.com/craigslist.post304983283434/login.php%3F%7B*%7D&t=Page%20not%20found%20-%20Bharat%20Inside&invisible=1&sc_rum_e_s=3188&sc_rum_e_e=3194&sc_rum_f_s=0&sc_rum_f_e=3134&get_config=true
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 7ba230fb80f67c086370fde046878b75
24216d2d16fe378febb188ff2063e29b10e723b0
9c2e0c1e30d698cdf2be4602309be03a1ad133073c7ef35e3678534780a29e81
GET /t.php?sc_project=12118469&u1=2A89DCF6E97B4FAEC488127514E9A742&java=1&security=b96a4f61&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//www.bharatinside.com/craigslist.post304983283434/login.php%3F%7B*%7D&t=Page%20not%20found%20-%20Bharat%20Inside&invisible=1&sc_rum_e_s=3188&sc_rum_e_e=3194&sc_rum_f_s=0&sc_rum_f_e=3134&get_config=true HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bharatinside.com
Connection: keep-alive
Referer: https://www.bharatinside.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 17 Sep 2022 09:45:03 GMT
content-type: application/json
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc12118469.1663407903.0; SameSite=None; Secure; Expires=Thursday, 16-Sep-2027 15:15:03 IST; Path=/; Domain=.statcounter.com
is_visitor_unique=1663407903275457768; SameSite=None; Secure; Expires=Monday, 16-Sep-2024 15:15:03 IST; Path=/; Domain=.statcounter.com
access-control-allow-origin: https://www.bharatinside.com
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74c0e824581c0b31-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8547fab5dc2d61283d8a636210b83732
1824489511f6a272be70fe2d6e2fb328f9eb5b23
45711202cb762a3df828fc3f6d50d6e16f71913a66a17ba2535a5caa3d57df21
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Sep 2022 09:45:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bharatinside.com/wp-content/uploads/2019/10/514003BD-15DB-45E3-BDD7-42FDFC53A2B7.jpeg
404 Not Found 148 kB URL HTTP/1.1 www.bharatinside.com/wp-content/uploads/2019/10/514003BD-15DB-45E3-BDD7-42FDFC53A2B7.jpeg
IP
Size 148 kB (148281 bytes)
Hash 33c8cb8433111a595d3227ec14f29409
fc09b32448a3faadd125cfa58dd10b3421e4644e
caa641725e00e3350510edcaae087e4142527141ca86a14ad1fdd34bf3a6c5a1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2019/10/514003BD-15DB-45E3-BDD7-42FDFC53A2B7.jpeg HTTP/1.1
Host: www.bharatinside.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/craigslist.post304983283434/login.php?{*}
Cookie: PHPSESSID=ab082b7c6b3843cc225b6bd74426b13e; sc_is_visitor_unique=rx12118469.1663407886.2A89DCF6E97B4FAEC488127514E9A742.1.1.1.1.1.1.1.1.1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 17 Sep 2022 09:45:04 GMT
Server: Apache
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.bharatinside.com/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sat, 17 Sep 2022 09:45:04 GMT
expires: Sat, 17 Sep 2022 09:45:04 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 12:27:00 GMT
expires: Wed, 13 Sep 2023 12:27:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 335884
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.addtoany.com/menu/page.js
200 OK 0 B URL HTTP/2 static.addtoany.com/menu/page.js
IP
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 09:45:01 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 38250
etag: W/"ba7-5e7bb5238fa5f"
last-modified: Sat, 03 Sep 2022 00:56:47 GMT
vary: Accept-Encoding
via: e2s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74c0e8195d8a1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=akhandgujarati-semib%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic&ver=80e84457baf2e03c0d23e4d7a236e75a
400 Bad Request 0 B URL HTTP/2 fonts.googleapis.com/css?family=akhandgujarati-semib%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic&ver=80e84457baf2e03c0d23e4d7a236e75a
IP
GET /css?family=akhandgujarati-semib%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic&ver=80e84457baf2e03c0d23e4d7a236e75a HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 17 Sep 2022 09:45:01 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pub.searchiq.co/js/container/siq-container-2.js?cb=926285&engineKey=e40fc298de8aac35b1d62fdccc1bf0ce
200 OK 0 B URL HTTP/2 pub.searchiq.co/js/container/siq-container-2.js?cb=926285&engineKey=e40fc298de8aac35b1d62fdccc1bf0ce
IP
GET /js/container/siq-container-2.js?cb=926285&engineKey=e40fc298de8aac35b1d62fdccc1bf0ce HTTP/1.1
Host: pub.searchiq.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Sep 2022 09:45:02 GMT
content-type: application/javascript
cache-control: public, max-age=5270400
expires: Wed, 2 Nov 2022 10:44:37 GMT
last-modified: Thu, 11 Aug 2022 21:04:39 GMT
vary: Accept-Encoding
etag: W/"37189452f83f0ebff9a27e7399192f4f-gzip"
cf-cache-status: HIT
age: 6586
set-cookie: __cf_bm=LPDEA0fJCHHrrJuj3FXwkW1QhM3sgEnOnqXPs4upT3s-1663407902-0-AcSxTcMQaeb2DQN7tbw3BGreC3tn4Ef1mIKrVP+U/FM9d5SMXYgyUCtnePCLmkdbpx5HIb0Zovs4oLNSWe76PyY=; path=/; expires=Sat, 17-Sep-22 10:15:02 GMT; domain=.searchiq.co; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZSPO%2BKHdRtzk39qFaG89fETz5pxbfHAPbD5gWTNPFm7kDZ%2Bz%2FC%2BdmDZcTSslYJVZoeRzuJAfbGRKXyRATnxHnodye7a0jiI%2B0c%2Bn2TKQQLQijFVjghwnKCHpiTW2ftsVLp4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74c0e81f2ce3b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald%3A400%2C300%2C700&ver=6.6
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald%3A400%2C300%2C700&ver=6.6
IP
GET /css?family=Oswald%3A400%2C300%2C700&ver=6.6 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bharatinside.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 17 Sep 2022 09:45:01 GMT
date: Sat, 17 Sep 2022 09:45:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
107.161.177.42
23.36.76.226
93.184.220.29
31.13.72.12
104.20.228.67