r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4708
Expires: Fri, 25 Nov 2022 14:54:52 GMT
Date: Fri, 25 Nov 2022 13:36:24 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3478
Cache-Control: max-age=165168
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:24 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 11:29:12 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7120
Expires: Fri, 25 Nov 2022 15:35:04 GMT
Date: Fri, 25 Nov 2022 13:36:24 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 13:17:26 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1138
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NOqHcoJ9IvCEDSKQoGLIchfAy0UpDv5Fnt2SrEISNKQSazaHtK8MPa2Z5BChhvYFGmxpFH4L5EQ=
x-amz-request-id: 7HC23VBZMKQ9E80K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 12:40:48 GMT
age: 3336
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 13:36:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 13:08:53 GMT
cache-control: public,max-age=3600
age: 1651
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6074
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:24 GMT
Last-Modified: Fri, 25 Nov 2022 11:55:10 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
192.185.35.95200 OK 35 kB URL HTTP/1.1 amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3459), with CRLF, LF line terminators
Hash bcd1460c1f5b99c10e28c107bda3428c
dfcb1a0e36e11434860e476c64e9f98b2e0cf8a0
cb9aa7111d38424b8a3dbb5748d7ce645473c10de1fe5173b32dff09fb41ccbc
Analyzer Verdict Alert fortinet Malware
GET /inacquaintance4xc-kpuf1qr4z.html/ HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:24 GMT
Server: Apache
Link: <https://amaderprotidin.com/index.php?rest_route=/>; rel="https://api.w.org/", <https://amaderprotidin.com/index.php?rest_route=/wp/v2/pages/4121>; rel="alternate"; type="application/json", <https://amaderprotidin.com/>; rel=shortlink
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
fonts.googleapis.com/css?family=Autour+One|Meie+Script|Armata|Rum+Raisin|Sonsie+One|Kavoon|Denk+One|Gravitas+One|Racing+Sans+One|Nosifer|Ropa+Sans|Offside|Titan+One|Paytone+One|Audiowide|Righteous|Faster+One|Russo+One|Germania+One|Krona+One|Emblema+One|Creepster|Delius+Unicase|Wallpoet|Sansita+One|Monoton|Kenia|Monofett
142.250.74.10200 OK 1.7 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Autour+One|Meie+Script|Armata|Rum+Raisin|Sonsie+One|Kavoon|Denk+One|Gravitas+One|Racing+Sans+One|Nosifer|Ropa+Sans|Offside|Titan+One|Paytone+One|Audiowide|Righteous|Faster+One|Russo+One|Germania+One|Krona+One|Emblema+One|Creepster|Delius+Unicase|Wallpoet|Sansita+One|Monoton|Kenia|Monofett
IP 142.250.74.10:0
Hash 7ae1a3fc49d82b723796a65e2a0abb55
06403d320b010fb9bba60e7c4d019d301358c6ba
20c2fac1bf13500786a560eb8e23771acf4ebf73d6c3a60582ce94c444522da7
GET /css?family=Autour+One|Meie+Script|Armata|Rum+Raisin|Sonsie+One|Kavoon|Denk+One|Gravitas+One|Racing+Sans+One|Nosifer|Ropa+Sans|Offside|Titan+One|Paytone+One|Audiowide|Righteous|Faster+One|Russo+One|Germania+One|Krona+One|Emblema+One|Creepster|Delius+Unicase|Wallpoet|Sansita+One|Monoton|Kenia|Monofett HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 25 Nov 2022 13:36:25 GMT
Date: Fri, 25 Nov 2022 13:36:25 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 627c68a63bc2b5501fec5d03ad0c5b26
844ff7f2036992978fbfe6ca33616be8d158fd3d
b9604b0d348a4d614f76bea0584d11cbe1a636187f1f9f72d8fa1d6d0c247ca0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2357
Cache-Control: max-age=97426
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:25 GMT
Etag: "637f9536-118"
Expires: Sat, 26 Nov 2022 16:40:11 GMT
Last-Modified: Thu, 24 Nov 2022 16:00:54 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 280
amaderprotidin.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
192.185.35.95200 OK 4.6 kB URL HTTP/1.1 amaderprotidin.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 21:06:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4618
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
52.41.91.37101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.91.37:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pzVExd4ji/mKY+lEIDXAFQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: HcBfNGEkURuGsa7GqvJz7Q1IBFM=
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 627c68a63bc2b5501fec5d03ad0c5b26
844ff7f2036992978fbfe6ca33616be8d158fd3d
b9604b0d348a4d614f76bea0584d11cbe1a636187f1f9f72d8fa1d6d0c247ca0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2357
Cache-Control: max-age=97426
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:25 GMT
Etag: "637f9536-118"
Expires: Sat, 26 Nov 2022 16:40:11 GMT
Last-Modified: Thu, 24 Nov 2022 16:00:54 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 280
amaderprotidin.com/files/themes/Sparkle-IT/css/bootstrap.min.css?ver=3.1.0
192.185.35.95200 OK 27 kB URL HTTP/1.1 amaderprotidin.com/files/themes/Sparkle-IT/css/bootstrap.min.css?ver=3.1.0
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65367), with CRLF line terminators
Hash 73f3073c0346f0c32c0f55d910edcc1a
c2a2de60bc6e4c9d8e96bf6f30a929c24535c673
0ae1b1ec9cd65be279d4c5d02bfdbf96fb167988286d84848be2eeffb3b04192
Analyzer Verdict Alert fortinet Malware
GET /files/themes/Sparkle-IT/css/bootstrap.min.css?ver=3.1.0 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 07 Mar 2019 08:06:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css
amaderprotidin.com/files/plugins/add-to-any/addtoany.min.css?ver=1.16
192.185.35.95200 OK 500 B URL HTTP/1.1 amaderprotidin.com/files/plugins/add-to-any/addtoany.min.css?ver=1.16
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1519), with no line terminators
Hash 54b445f5e21b1ce90f11a863a2d6c648
910f4300eaf993b2e5c528bde4900f8b101320b7
cdbd7f1656efbb0dfb49da317b357798a3e0b17d98a9674b4f95d8f79bb47aee
Analyzer Verdict Alert fortinet Malware
GET /files/plugins/add-to-any/addtoany.min.css?ver=1.16 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 13 Sep 2022 18:06:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 500
Keep-Alive: timeout=5, max=75
Content-Type: text/css
amaderprotidin.com/files/plugins/add-to-any/addtoany.min.js?ver=1.1
192.185.35.95200 OK 126 B URL HTTP/1.1 amaderprotidin.com/files/plugins/add-to-any/addtoany.min.js?ver=1.1
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with no line terminators
Hash ac7ecbcdc01fb980628e0ca076fd2c39
2df6d7adf64efc42e8f46243d5620c62879b59be
9f2cb415bb1b9656398091a9b2657b2dfe043c03a6526a9a12c6af51062e54c6
GET /files/plugins/add-to-any/addtoany.min.js?ver=1.1 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 13 Sep 2022 18:06:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 126
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
amaderprotidin.com/files/themes/Sparkle-IT/css/font-awesome.min.css?ver=3.1.0
192.185.35.95200 OK 5.5 kB URL HTTP/1.1 amaderprotidin.com/files/themes/Sparkle-IT/css/font-awesome.min.css?ver=3.1.0
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (23577), with CRLF line terminators
Hash 26af9ad7e28f63aceffeb07c0636f6fd
a2d819e89e1b4a41e6da844fccb3badaf682a8de
e6bbd3d062a0ba329f8fb2f6eb319a24edae8b3d6c09fb402b3df22e1bafb8ad
Analyzer Verdict Alert fortinet Malware
GET /files/themes/Sparkle-IT/css/font-awesome.min.css?ver=3.1.0 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 07 Mar 2019 08:06:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5470
Keep-Alive: timeout=5, max=75
Content-Type: text/css
amaderprotidin.com/files/themes/Sparkle-IT/css/style.css?ver=1.0.0
192.185.35.95200 OK 13 kB URL HTTP/1.1 amaderprotidin.com/files/themes/Sparkle-IT/css/style.css?ver=1.0.0
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1733)
Hash dea669b4338ce3851f6d2c5432ea5ea5
6f9e20ee31bd81877848d829340b41af812a7d99
b226dec82e6f20fe686ac1c350ca0706a73dc93a8474751955fc5728c553cfcb
GET /files/themes/Sparkle-IT/css/style.css?ver=1.0.0 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 11 Mar 2019 20:58:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12884
Keep-Alive: timeout=5, max=75
Content-Type: text/css
amaderprotidin.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
192.185.35.95200 OK 39 kB URL HTTP/1.1 amaderprotidin.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash feb933ceca72e1d76b471ed9db278b0d
6179e8f9c9876a6c4df5e3138e9f8ee2ac25bcd1
9a525fa92f98fd5ac754d60ea6f3676bcaa3870dd9bf057c8c668399922c9bd0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Last-Modified: Thu, 11 Mar 2021 03:07:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
amaderprotidin.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
192.185.35.95200 OK 5.3 kB URL HTTP/1.1 amaderprotidin.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Last-Modified: Tue, 13 Sep 2022 18:06:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5321
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
amaderprotidin.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
192.185.35.95200 OK 3.2 kB URL HTTP/1.1 amaderprotidin.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11256), with no line terminators
Hash 1054d0d53548e8bae51665b11acc6413
2eea6a05fe18db61fff58c431d34a86b3e0b7ade
cb8b0f0f3f871d9776da32ee6d9e1af9277a211be61e97a831c7f8c98fbebfae
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Last-Modified: Wed, 30 Sep 2020 02:53:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3239
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
amaderprotidin.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3
192.185.35.95200 OK 1.3 kB URL HTTP/1.1 amaderprotidin.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4186), with no line terminators
Hash 91bab39b98d7e5c1632717b9ebe349e4
e639a447d06fc7827be5b5b35d603ff16b5f7bb1
47ff151faeb23a5654f6ec58b404e51193f6714849a69de241c2ee79662f74c6
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Last-Modified: Sat, 08 Jun 2019 07:45:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1298
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
amaderprotidin.com/files/themes/Sparkle-IT/js/getDistrict.js?ver=3.0.5
192.185.35.95200 OK 339 B URL HTTP/1.1 amaderprotidin.com/files/themes/Sparkle-IT/js/getDistrict.js?ver=3.0.5
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash aebdb5861cc3161f45513d49eecaa88e
29c6f6d87f2fa24d7d79c5b42299152bb7b7b859
e67eebfb6519ee09e5efe2143de07252be4e6f8aa2f3cc60752f4b66abdab299
Analyzer Verdict Alert fortinet Malware
GET /files/themes/Sparkle-IT/js/getDistrict.js?ver=3.0.5 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Last-Modified: Thu, 07 Mar 2019 08:06:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 339
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
amaderprotidin.com/files/themes/Sparkle-IT/js/jquery.popupwindow.js?ver=3.0.5
192.185.35.95200 OK 1.3 kB URL HTTP/1.1 amaderprotidin.com/files/themes/Sparkle-IT/js/jquery.popupwindow.js?ver=3.0.5
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (394), with CRLF line terminators
Hash 659313c0db4d125298d2e520b4c1c97a
50022dd8a80bc8c848c97dbc10662448f0c5cfff
d813f30fa690217e9cc7f13f65f351566c76b6e52e6cc23f51221423c769d4d8
Analyzer Verdict Alert fortinet Malware
GET /files/themes/Sparkle-IT/js/jquery.popupwindow.js?ver=3.0.5 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Last-Modified: Thu, 07 Mar 2019 08:06:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1325
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2751016124445c0df4fbdac285ba4748
c7e14deb70bee3591eb6fbfdcb960f0c718d3662
0020b02d6e46ae910d03b5d9a814ed38820ada3f3aaabb38ea6fe1f2e8e812b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0020B02D6E46AE910D03B5D9A814ED38820ADA3F3AAABB38EA6FE1F2E8E812B4"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21533
Expires: Fri, 25 Nov 2022 19:35:18 GMT
Date: Fri, 25 Nov 2022 13:36:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2751016124445c0df4fbdac285ba4748
c7e14deb70bee3591eb6fbfdcb960f0c718d3662
0020b02d6e46ae910d03b5d9a814ed38820ada3f3aaabb38ea6fe1f2e8e812b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0020B02D6E46AE910D03B5D9A814ED38820ADA3F3AAABB38EA6FE1F2E8E812B4"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 25 Nov 2022 19:36:25 GMT
Date: Fri, 25 Nov 2022 13:36:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2751016124445c0df4fbdac285ba4748
c7e14deb70bee3591eb6fbfdcb960f0c718d3662
0020b02d6e46ae910d03b5d9a814ed38820ada3f3aaabb38ea6fe1f2e8e812b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0020B02D6E46AE910D03B5D9A814ED38820ADA3F3AAABB38EA6FE1F2E8E812B4"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21570
Expires: Fri, 25 Nov 2022 19:35:55 GMT
Date: Fri, 25 Nov 2022 13:36:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84a4635ea7a7d71cf35c2d1909f445c4
2a24939118a7fcfd0acef234007ca811df0877cb
fd31bf95d4a39ac60484251b8968a3c5ece1f26c634cfc9d2652c428b496db3c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FD31BF95D4A39AC60484251B8968A3C5ECE1F26C634CFC9D2652C428B496DB3C"
Last-Modified: Fri, 25 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21552
Expires: Fri, 25 Nov 2022 19:35:37 GMT
Date: Fri, 25 Nov 2022 13:36:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2751016124445c0df4fbdac285ba4748
c7e14deb70bee3591eb6fbfdcb960f0c718d3662
0020b02d6e46ae910d03b5d9a814ed38820ada3f3aaabb38ea6fe1f2e8e812b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0020B02D6E46AE910D03B5D9A814ED38820ADA3F3AAABB38EA6FE1F2E8E812B4"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 25 Nov 2022 19:36:25 GMT
Date: Fri, 25 Nov 2022 13:36:25 GMT
Connection: keep-alive
amaderprotidin.com/files/themes/Sparkle-IT/js/jquery.nicescroll.min.js?ver=3.6.8
192.185.35.95200 OK 22 kB URL HTTP/1.1 amaderprotidin.com/files/themes/Sparkle-IT/js/jquery.nicescroll.min.js?ver=3.6.8
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (582)
Hash ac6bdb6f377f6d8f03d18a9d7699ce33
6bcb2c5fb70f13e823bd25812a2f019923128040
7cc508f638f6a3727e91d8200c7608b9dd6d906ac174702d5fbb826872092140
Analyzer Verdict Alert fortinet Malware
GET /files/themes/Sparkle-IT/js/jquery.nicescroll.min.js?ver=3.6.8 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Last-Modified: Thu, 07 Mar 2019 08:06:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
amaderprotidin.com/files/themes/Sparkle-IT/js/bootstrap.min.js?ver=3.0.0
192.185.35.95200 OK 14 kB URL HTTP/1.1 amaderprotidin.com/files/themes/Sparkle-IT/js/bootstrap.min.js?ver=3.0.0
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32025), with CRLF line terminators
Hash d55d907f2e5b9e74e62cdbebe8d62c29
f67c77ad387b2704ebbab75c6c35c5f62d9794a5
3c089ab562a3a0353a7ba8f051a9b807bc8006346445931a15a017ebb31414ae
GET /files/themes/Sparkle-IT/js/bootstrap.min.js?ver=3.0.0 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Last-Modified: Thu, 07 Mar 2019 08:06:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14013
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
amaderprotidin.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3
192.185.35.95200 OK 540 B URL HTTP/1.1 amaderprotidin.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1191), with no line terminators
Hash cea5e0013ee4b14895dc0f6c424a03e8
b21c776891ff57c003b385a1aa62ba613b292a21
1cfe89d6aa36aea0e986e379590ab23877257e8416764d18105d1176dfcd64d9
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Last-Modified: Tue, 13 Sep 2022 18:06:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 540
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
amaderprotidin.com/files/themes/Sparkle-IT/js/plugins.js?ver=6.0.3
192.185.35.95200 OK 7.4 kB URL HTTP/1.1 amaderprotidin.com/files/themes/Sparkle-IT/js/plugins.js?ver=6.0.3
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (639), with CRLF line terminators
Hash 2cb1a99993b593537cd16c6c99b97fdc
8ea6b5e8144feb85489ea6499691dec03b01ec45
998f471926a9ef2094ba5517041cef4086e2a53ec1b804ba5b318951aab72ebd
GET /files/themes/Sparkle-IT/js/plugins.js?ver=6.0.3 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Last-Modified: Thu, 07 Mar 2019 08:06:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7419
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
amaderprotidin.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3
192.185.35.95200 OK 483 B URL HTTP/1.1 amaderprotidin.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash 961b384bf5b28ac673051be024563f79
606ebba9fa8aec74cf413098b084500c8b16b85c
a9c17b0e5a9c12428c6ed8d0c4622ddbae112a9ac19bccf451f125972cd91935
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Last-Modified: Thu, 21 Jan 2021 01:35:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 483
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
amaderprotidin.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.16
192.185.35.95200 OK 2.5 kB URL HTTP/1.1 amaderprotidin.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.16
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6194)
Hash d77a0126770eafbb316b8ea63c2bed62
f58933f1067cb63a0ba8d06e307359f4f7e872db
a590f58cb484c440b3b5835b7f4cc5d0ed4dd9af0805053cf318044e375766b8
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.16 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Last-Modified: Wed, 30 Sep 2020 02:53:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2528
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
amaderprotidin.com/files/uploads/2022/11/FB_IMG_1668738403190-130x67.jpg
192.185.35.95200 OK 2.2 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/FB_IMG_1668738403190-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 9e96f457cc382f381ba8845ecc808bec
5b8b1a402b2d5263cf1ec4865cf7df3c024fdd43
e730e60469f29c8a49779d9857c3cbd1a313d09539fe2a1ea769e1753d04a16f
GET /files/uploads/2022/11/FB_IMG_1668738403190-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 Nov 2022 02:28:57 GMT
accept-ranges: bytes
content-length: 2249
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/IMG-20221117-WA0050-130x67.jpg
192.185.35.95200 OK 3.3 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/IMG-20221117-WA0050-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 80f767f62c2adf973c9710eb84867f34
694889c846302c40fc87b03dc661a4a9a8f63cc7
456cd32186401996ee88dc0f6073628c3637166bb970b24f8c3279658ca75001
GET /files/uploads/2022/11/IMG-20221117-WA0050-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 13:48:08 GMT
accept-ranges: bytes
content-length: 3337
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/IMG-20221117-WA0012-130x67.jpg
192.185.35.95200 OK 3.5 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/IMG-20221117-WA0012-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash a79d9a5f75ec82dddd1c9ad83cf52177
6aa1db9351ae3f36c7633d58739acd5f4b8de975
d6aa1a5f4d3de9ad5736bf4a207a8dd4f19f3aae5a34d56b55595c31219ff336
GET /files/uploads/2022/11/IMG-20221117-WA0012-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 10:19:04 GMT
accept-ranges: bytes
content-length: 3526
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/FB_IMG_1668579629061-130x67.jpg
192.185.35.95200 OK 3.4 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/FB_IMG_1668579629061-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 0667cb1adb191d2c6c703fc4a377a207
2afdc3547e1abacde3828a3fb814de9f7c152789
a0ab5d03db71abcebe0da3eb39d92d3391b162a5df657a9aef9f58a80752b258
GET /files/uploads/2022/11/FB_IMG_1668579629061-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 06:24:04 GMT
accept-ranges: bytes
content-length: 3444
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/IMG-20221114-WA0045-130x67.jpg
192.185.35.95200 OK 3.7 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/IMG-20221114-WA0045-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 88504ffc35325edff2f090c3f6a75916
300da74150207cc5566576d4f7c8df66ced3591e
d900333a64c6b5c12f06ed1518b84dda5c5790e65220d413addfdc85642299c4
GET /files/uploads/2022/11/IMG-20221114-WA0045-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 12:38:17 GMT
accept-ranges: bytes
content-length: 3714
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/Collage_2022-11-22_02_37_12-130x67.jpg
192.185.35.95200 OK 4.2 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/Collage_2022-11-22_02_37_12-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, height=1800, orientation=upper-left, width=1440], baseline, precision 8, 130x67, components 3\012- data
Hash 2369d30119552879b144c8967ac0d730
8ba9de7a1492d80437d3ca8fe198b4db9cf8b843
716f43dd9c3666ffe9168d593356e0f1e34fffd41ac3cdea727cc12083d970dc
GET /files/uploads/2022/11/Collage_2022-11-22_02_37_12-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Nov 2022 02:53:53 GMT
accept-ranges: bytes
content-length: 4160
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
192.185.35.95200 OK 57 kB URL HTTP/1.1 amaderprotidin.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65266)
Hash 048a0543b6f137a0eaf5f1c3ef6ddef8
395dc7a9242c35b6c5bcd1195aa7c7e1082e618c
1492d5f6e88039d07890f5e21f0c0801dfd2545039ee63a061bb527e8d2deca2
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Last-Modified: Wed, 30 Sep 2020 02:53:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
amaderprotidin.com/files/uploads/2022/11/FB_IMG_1667613218922-500x250.jpg
192.185.35.95200 OK 15 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/FB_IMG_1667613218922-500x250.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, copyright=MM], baseline, precision 8, 500x250, components 3\012- data
Hash e27bca24fd7180d4ddc951d96d6b8361
3f42115e2d0476ee99ba7c04220da7db3d03f9d7
5169e0792ffde7d6d7d6ee4fd23881cf3ea795188ea0f018f25bb424e46573dd
GET /files/uploads/2022/11/FB_IMG_1667613218922-500x250.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 06 Nov 2022 15:38:16 GMT
accept-ranges: bytes
content-length: 14599
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/plugins/fikraticker/js/jquery.innerfade.js?ver=6.0.3
192.185.35.95200 OK 2.1 kB URL HTTP/2 amaderprotidin.com/files/plugins/fikraticker/js/jquery.innerfade.js?ver=6.0.3
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 260249e40933a3f745cc8ec62854ecae
6d56c280a3d31e743b01329268cd0dfb81a2aaa7
894881c2b33c12a709e3164033fb1a7ccd077b99bba39c067193bd276f77f64c
Analyzer Verdict Alert fortinet Malware
GET /files/plugins/fikraticker/js/jquery.innerfade.js?ver=6.0.3 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 15 May 2013 21:22:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2069
content-type: application/javascript
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/Screenshot_20221112_121535_Facebook-130x67.jpg
192.185.35.95200 OK 3.0 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/Screenshot_20221112_121535_Facebook-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 59x59, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, height=2340, software=Android TP1A.220624.014.S906USQU2BVJA, orientation=upper-left, datetime=2022:11:12 12:15:35, width=1080], baseline, precision 8, 130x67, components 3\012- data
Hash dffbaa58652c462a3be2dbf16d617c91
dfa6c0568de177de0f07894ef5cb6bd7e4817644
9ed915f29eb9ba9f68721dc96cd8326c4f721053c227d24b96961cbb6e473258
GET /files/uploads/2022/11/Screenshot_20221112_121535_Facebook-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 12 Nov 2022 17:19:15 GMT
accept-ranges: bytes
content-length: 2995
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/FB_IMG_1667613218922-130x67.jpg
192.185.35.95200 OK 2.5 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/FB_IMG_1667613218922-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, copyright=MM], baseline, precision 8, 130x67, components 3\012- data
Hash b8654aca97f6b5f6b47357943dd98597
f566d496fab263f3ea32c7b0522b0176065df756
d2c7a31e7c8097c044a237e244228375dfbf7ca4e9cf192c2645fc0f228aba87
GET /files/uploads/2022/11/FB_IMG_1667613218922-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 06 Nov 2022 15:38:16 GMT
accept-ranges: bytes
content-length: 2545
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/IMG-20221018-WA0085-130x67.jpg
192.185.35.95200 OK 3.1 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/IMG-20221018-WA0085-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash e86f3744ef1bc6259e4c0dd773f9bab3
cad7514e4a2eac6d4fd9d4d50cb15e58e67fb90b
84ff648bca27582425b7621c6d7f33850f4696e078bf6aca5e16fef42a1e0be9
GET /files/uploads/2022/10/IMG-20221018-WA0085-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 Oct 2022 19:37:58 GMT
accept-ranges: bytes
content-length: 3058
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/FB_IMG_1667370467069-130x67.jpg
192.185.35.95200 OK 3.1 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/FB_IMG_1667370467069-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 9b132d3eba50cda70298c902ddc5f928
3f04a34756ed107f3fc72e01f950cfb2bc0582bf
b5b8b988b6fd2131b3e60c4870314973de3dd1be5c8c2b94147b77124579d6e3
GET /files/uploads/2022/11/FB_IMG_1667370467069-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 08:48:26 GMT
accept-ranges: bytes
content-length: 3110
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/FB_IMG_1667736979977-130x67.jpg
192.185.35.95200 OK 3.9 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/FB_IMG_1667736979977-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 188fa78ecac287bce7219c8846330777
f49d3381d8121920bf84967861864268ed9bace3
9670a84065bd01591a7578f16669ca5e2fcf2224e87c2a3db54f51265e24e5cf
GET /files/uploads/2022/11/FB_IMG_1667736979977-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 06 Nov 2022 12:16:56 GMT
accept-ranges: bytes
content-length: 3935
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/03/4-8-130x67.jpg
192.185.35.95200 OK 2.5 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/03/4-8-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 130x67, components 3\012- data
Hash 9e6b29196c00a193d6e5996fa76d20d9
3ce621efa85c9f7da53ba410124888bb3f1416a8
aa59f37f4a6a1b194b5486d825bf99c5cf649461e4cda51d7b47cf65a90735db
GET /files/uploads/2020/03/4-8-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 21 Mar 2020 10:38:08 GMT
accept-ranges: bytes
content-length: 2538
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/03/images-4-1-130x67.jpg
192.185.35.95200 OK 2.3 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/03/images-4-1-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 4c41a95583373d224e25c9e9c48dfff1
835a4c3b655247c0c52c9cb3b47e8a8f0bcdf2f1
aff1ab3d2caf9fec51e80d4cf09c77167045da132e624313b15efea26ff77dd3
GET /files/uploads/2020/03/images-4-1-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 28 Mar 2020 10:35:14 GMT
accept-ranges: bytes
content-length: 2305
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2019/07/3-4-130x67.jpg
192.185.35.95200 OK 4.2 kB URL HTTP/2 amaderprotidin.com/files/uploads/2019/07/3-4-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 130x67, components 3\012- data
Hash 44a13baf462ee4699facd22b363dd57e
d8fb4cdab525d48c29c4242c01e45963edabbd8f
ebccedd4e3f521484e0379f5ac75eb9c94d505492194d9b742e18c5fd42ec730
GET /files/uploads/2019/07/3-4-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 06 Jul 2019 08:42:31 GMT
accept-ranges: bytes
content-length: 4222
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/01/Untitled-7-copy-12-600x332-130x67.jpg
192.185.35.95200 OK 14 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/01/Untitled-7-copy-12-600x332-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2020:01:10 17:08:22], baseline, precision 8, 130x67, components 3\012- data
Hash 84624038ac1041269c6ef6acb3422594
acbed23cb57de6b79f68291f3bbb2631ae16dde8
6a34983c3ce3a5a2dd431a80692828a3e22b7fca31853264ea606c6e7305ea44
GET /files/uploads/2020/01/Untitled-7-copy-12-600x332-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 10 Jan 2020 17:15:11 GMT
accept-ranges: bytes
content-length: 14097
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/03/resize-350x250x0image-157725-130x67.jpg
192.185.35.95200 OK 3.7 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/03/resize-350x250x0image-157725-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 130x67, components 3\012- data
Hash 4ee9ede7870e2f6c7a2caa312dc22115
bd748835592a26d52bb0a92d0ed877eeaaf05d3b
0ef1bc0e8950a19248a8c14e60c8653075919fe143317d3888ee55f66f16b5ec
GET /files/uploads/2020/03/resize-350x250x0image-157725-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 29 Mar 2020 10:35:45 GMT
accept-ranges: bytes
content-length: 3730
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/7-130x67.webp
192.185.35.95200 OK 1.6 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/7-130x67.webp
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 130x67, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4ce56f39e352bdd600fef369e8b41a1f
3f545f216f72ac16ae02e92ff1333dfdb0164521
773fd8b8db038586128cbe1244552fb5d929749229ca03645ac5f05f8093837d
Analyzer Verdict Alert fortinet Malware
GET /files/uploads/2022/10/7-130x67.webp HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Oct 2022 17:54:37 GMT
accept-ranges: bytes
content-length: 1632
content-type: image/webp
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/8-130x67.jpeg
192.185.35.95200 OK 4.2 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/8-130x67.jpeg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 66b6b0b5f2176710d8a076f2d42f044c
21ce2b2c70ceacd97d00f9835cf3fa49311bf907
911ab2d75bf2972d7a0c21c6801c552a6c63f85803d1f428e97bcd986cc2228d
Analyzer Verdict Alert fortinet Malware
GET /files/uploads/2022/10/8-130x67.jpeg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Oct 2022 18:08:03 GMT
accept-ranges: bytes
content-length: 4172
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/IMG-20221102-WA0002-130x67.jpg
192.185.35.95200 OK 3.2 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/IMG-20221102-WA0002-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 121a473b4db3b6246eebc321b8659bca
3f3f152a27c770e3704ede27648d150c7daf4595
035330aee3c5df7eba8c8f2ad9f2b11486b1e8801b7a1ce5427cabbda7d45bf1
GET /files/uploads/2022/11/IMG-20221102-WA0002-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 08:37:31 GMT
accept-ranges: bytes
content-length: 3194
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/01/6-11-130x67.jpg
192.185.35.95200 OK 16 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/01/6-11-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2020:01:16 18:27:23], baseline, precision 8, 130x67, components 3\012- data
Hash 5a68c482282676bce39334e129be2a24
53a9b954a1ea7ec62d99e66e86b893c549b1e98a
e5841b25ead5feb47de35d1096ff0643b5468ee5e6fe9ce5f6a734c5ff55e05b
GET /files/uploads/2020/01/6-11-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Jan 2020 12:27:05 GMT
accept-ranges: bytes
content-length: 15692
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/04/1-18-130x67.jpg
192.185.35.95200 OK 3.8 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/04/1-18-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 130x67, components 3\012- data
Hash 6ada81986f4ef04a9268d0ea87402ab5
1d9cb5a7b44e6b292bdce942197909558f654594
b7e681ab6d755a057688a83c9fa4c17624380366cf297e3c85aad3afa732b1c7
GET /files/uploads/2020/04/1-18-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 29 Apr 2020 11:03:03 GMT
accept-ranges: bytes
content-length: 3824
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/images/logo.png
192.185.35.95200 OK 53 kB URL HTTP/1.1 amaderprotidin.com/images/logo.png
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 105, 8-bit/color RGBA, non-interlaced\012- data
Hash 3d731e9f22f12bf9322b48cae76f1b89
c25db76138683b912d5551996dc0a2d7a17683df
f4e6d007c18caf6b6f20cd260ed03c02c376a2a75aabbcf63476457a3ea35218
GET /images/logo.png HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/inacquaintance4xc-kpuf1qr4z.html/
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:25 GMT
Server: Apache
Last-Modified: Thu, 07 Mar 2019 00:34:40 GMT
Accept-Ranges: bytes
Content-Length: 52592
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png
amaderprotidin.com/files/uploads/2019/06/sonalinews-big-20190616184950-130x67.jpg
192.185.35.95200 OK 2.4 kB URL HTTP/2 amaderprotidin.com/files/uploads/2019/06/sonalinews-big-20190616184950-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash e803540b93ae55edddc07d399e6755bb
d27969bff6b96b9e615a655639f75272080e6bc4
01deeee07652c84ff2f8bf2297c63876a9d674d75abf32c6873498d5cf62b8b6
GET /files/uploads/2019/06/sonalinews-big-20190616184950-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Jun 2019 05:21:46 GMT
accept-ranges: bytes
content-length: 2432
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/03/25-130x67.jpg
192.185.35.95200 OK 3.2 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/03/25-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 130x67, components 3\012- data
Hash 870ccdbda4c1ed62ac1eb8e889a8ec35
ad3406dc6f43d19d9e7e0f2046879adf16908fb8
e988f16f10b2a3c1e939ab2e9c8f5bf71288cb80c9a72df549ee4fbacde15f6f
GET /files/uploads/2020/03/25-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 21 Mar 2020 14:16:46 GMT
accept-ranges: bytes
content-length: 3175
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/01/momtaz-1-696x371-130x67.jpg
192.185.35.95200 OK 3.5 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/01/momtaz-1-696x371-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash c103462286bef889b61bc722084b1adb
c481edcab436acb37ec58b0fba73c289f3209dd1
0d8c9699acd6f1b4b657dafdd118c50e8aac05e2e24c5cc997f089ef833dc912
GET /files/uploads/2020/01/momtaz-1-696x371-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 03 Jan 2020 18:59:45 GMT
accept-ranges: bytes
content-length: 3487
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2019/03/98895_Salma-130x67.jpg
192.185.35.95200 OK 3.1 kB URL HTTP/2 amaderprotidin.com/files/uploads/2019/03/98895_Salma-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 130x67, components 3\012- data
Hash 1f881ff86866b87de13a150825d31067
21a0253b272c073baae983399149546a8c4c0758
559119ae82f4782a782a36de0e0e527220ac34960f79ed41258cbcb3da0e6358
GET /files/uploads/2019/03/98895_Salma-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 31 Mar 2019 08:25:51 GMT
accept-ranges: bytes
content-length: 3120
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/01/9-5-130x67.jpg
192.185.35.95200 OK 3.6 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/01/9-5-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash e509e9f588c09af50fa45ac199161742
f9fc9eb788ab77e7b3cd6e4173ba304d6cea99f3
a92b92ffe6d1854f484f02235f2f79b331504b6bd71e70357157bd00f9adddf1
GET /files/uploads/2020/01/9-5-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 08 Jan 2020 15:34:38 GMT
accept-ranges: bytes
content-length: 3597
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2019/06/FB_IMG_1561914459101-130x67.jpg
192.185.35.95200 OK 3.2 kB URL HTTP/2 amaderprotidin.com/files/uploads/2019/06/FB_IMG_1561914459101-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 71fd84b229101450a60323c1b9595db4
3a988014b0bed904450ec90e885ea27355a0955b
9ce8f681038ced44ca4937a892d3fa6c99a27c206df9a1e57ef4658ea5ef2715
GET /files/uploads/2019/06/FB_IMG_1561914459101-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jun 2019 17:18:28 GMT
accept-ranges: bytes
content-length: 3184
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/4-130x67.jpg
192.185.35.95200 OK 2.6 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/4-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 50", baseline, precision 8, 130x67, components 3\012- data
Hash 91ac26505932421083c031766fe51b5a
47636c2ab29eb0be4ebd3d389b390cb2609d06e4
9a56263516e06e575439b4113395800b9e14cdbc0c361d5cfa61494a6ecf5b2e
GET /files/uploads/2022/10/4-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Oct 2022 17:39:52 GMT
accept-ranges: bytes
content-length: 2574
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/124-130x67.webp
192.185.35.95200 OK 1.9 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/124-130x67.webp
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 130x67, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0928bcbc8a12b832a263396638d3e031
4ffbbd3e4a303de5feea68ff648341548cc6ef6f
d9f0b336a0f0ae74b53972747b3b625a77caff14983ec4269577db397caa71af
Analyzer Verdict Alert fortinet Malware
GET /files/uploads/2022/10/124-130x67.webp HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 08 Oct 2022 12:34:11 GMT
accept-ranges: bytes
content-length: 1940
content-type: image/webp
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/Apsana-Mp-130x67.jpg
192.185.35.95200 OK 2.6 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/Apsana-Mp-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 3cd9c73716e6d42997626cdf47b1a67e
18d950dd660f68d03b3eba071a8e0f77842a5a3e
632b8eefb35528b85b2a4dc850dc4f0bfb95fdf208bfcdc3180fe335f637ac0f
GET /files/uploads/2022/10/Apsana-Mp-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 08 Oct 2022 12:40:40 GMT
accept-ranges: bytes
content-length: 2564
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/04/Author-2-130x67.jpg
192.185.35.95200 OK 2.0 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/04/Author-2-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 566c060574b2c27ce4367f165a29b8a1
405644e2825bba62c50ac52f62abba453cb726a2
e38365f714e86ad27fa35c7808141828f5a580e5fbd6c9acbea4674cb34630be
GET /files/uploads/2022/04/Author-2-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 05 Apr 2022 22:31:34 GMT
accept-ranges: bytes
content-length: 2022
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/7-190x100.webp
192.185.35.95200 OK 2.6 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/7-190x100.webp
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 190x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2baff7c45092dfa41b9f55d0ad149b4f
f69a3a20cb3a880965165294b9c173973be7c5c7
769227a2ab9ba114905620835cc940274e7006e4b08f5d049cf1a65a3b3592f5
Analyzer Verdict Alert fortinet Malware
GET /files/uploads/2022/10/7-190x100.webp HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Oct 2022 17:54:36 GMT
accept-ranges: bytes
content-length: 2566
content-type: image/webp
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/07/messi5-130x67.jpg
192.185.35.95200 OK 2.4 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/07/messi5-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash b4190ff9abdd3189daa284e002abc7a5
92f2ba6336c6a4efa3faea843008f3c0fbdc6060
d16f5b6a0568239eed7d95cdd08e8c10cd88c1955f5375b0290890bccb8d9016
GET /files/uploads/2020/07/messi5-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 03 Jul 2020 14:04:07 GMT
accept-ranges: bytes
content-length: 2373
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/07/download-3-130x67.jpeg
192.185.35.95200 OK 2.0 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/07/download-3-130x67.jpeg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 24a8bc1b8c7e89918cdcfef5eabea97a
1114c3a9a4d0c6d368fddb6d3d6645da2dcca32e
6ea63d8e7868b112e86e5298639143606c5777b0282e537d461421db105d59f5
Analyzer Verdict Alert fortinet Malware
GET /files/uploads/2020/07/download-3-130x67.jpeg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 21 Jul 2020 07:21:19 GMT
accept-ranges: bytes
content-length: 2016
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/04/action-2-130x67.jpg
192.185.35.95200 OK 2.4 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/04/action-2-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash b1f726862e319c34401537fb1ae101f0
e888ee2b6d37e3ed25637ea290f9c49394f2659e
5630ab4fc9c5f6d4a0fdf37fbee81ff327e8f3d7fade54711ab1839d90496be6
GET /files/uploads/2022/04/action-2-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 05 Apr 2022 22:35:37 GMT
accept-ranges: bytes
content-length: 2429
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2019/07/4-7-130x67.jpg
192.185.35.95200 OK 3.5 kB URL HTTP/2 amaderprotidin.com/files/uploads/2019/07/4-7-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 2d9dc2c756d97b2f02a907ace53a6ce2
7140b8bc2b292245bf95dc4e48e91d56560e269e
69095d0865ac27c8f8fc832e5bc2aff71f62c6f3b17f7593c1185c7997713269
GET /files/uploads/2019/07/4-7-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jul 2019 08:14:21 GMT
accept-ranges: bytes
content-length: 3549
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/10/1602743092.unnamed-1589438358686-130x67.jpg
192.185.35.95200 OK 3.5 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/10/1602743092.unnamed-1589438358686-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 34ff0959a6dbcb1cfecbcb07bd67bee3
aca5e95d16ecb1a341cf38988a44712d52c1816c
8f9678f082cb90b0fc886a98522d32216240a8d6eb879bc58c6190f849f9b5ba
GET /files/uploads/2020/10/1602743092.unnamed-1589438358686-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Oct 2020 10:05:37 GMT
accept-ranges: bytes
content-length: 3532
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/09/Screenshot_7-18-130x67.jpg
192.185.35.95200 OK 2.8 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/09/Screenshot_7-18-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 130x67, components 3\012- data
Hash 904a48bbd1901a289fc0acd0a460c0e2
db0a0a0f7cc8ae9b1bbb77e30d5d3ea754ae815c
3c927ecd277b8ae85c8bd6150a12ec012fcdf00ab215f202faec6ced135c66c1
GET /files/uploads/2022/09/Screenshot_7-18-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 19 Sep 2022 12:57:25 GMT
accept-ranges: bytes
content-length: 2797
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2021/11/a12-130x67.jpg
192.185.35.95200 OK 3.0 kB URL HTTP/2 amaderprotidin.com/files/uploads/2021/11/a12-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 9d279b66192dc28494955e96c017bf3d
e1c1d4264374ae59b6ec3fc6d1c3f547889a9a44
97530ff98ea0e22f480fab9bdbc6ddf132c40d93b68d381b4ba1e9583c520b5f
GET /files/uploads/2021/11/a12-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 01 Nov 2021 00:31:02 GMT
accept-ranges: bytes
content-length: 2961
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/123-130x67.jpeg
192.185.35.95200 OK 3.0 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/123-130x67.jpeg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 25x25, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=8, height=863, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=Android SP1A.210812.016.S906U1UES2AVI5, width=1079], baseline, precision 8, 130x67, components 3\012- data
Hash 80cd0d9fab465fe870278d31d4a27b5f
2f4f205801e9ec4754b32ebfed85e657ba434fc1
cdff5c2bfa916446184849fd0077163a4fac0b4bc641190915f9e69eb6040289
Analyzer Verdict Alert fortinet Malware
GET /files/uploads/2022/10/123-130x67.jpeg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 08 Oct 2022 12:29:04 GMT
accept-ranges: bytes
content-length: 2966
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/12-130x67.jpeg
192.185.35.95200 OK 3.1 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/12-130x67.jpeg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 2540x2540, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 130x67, components 3\012- data
Hash 4d9353f7c1dd4683b719c9ce7c8c5ea5
67934d8b0451e12d7977082c9297a46dad3151cf
15d0762febd0518fbf1632fa17e743444e2c68c2646b97684e9272f735d082ca
Analyzer Verdict Alert fortinet Malware
GET /files/uploads/2022/10/12-130x67.jpeg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 08 Oct 2022 12:27:17 GMT
accept-ranges: bytes
content-length: 3053
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/received_3392248984397239-e1664901979247-130x67.jpeg
192.185.35.95200 OK 3.5 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/received_3392248984397239-e1664901979247-130x67.jpeg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash f479d922d7010879577da1e927005656
69444c7bde2eb2124675a2fb5da59212715a3f3d
7942e73247a9d768971797dec762dd78f763093cc279a352227070edc22be598
Analyzer Verdict Alert fortinet Malware
GET /files/uploads/2022/10/received_3392248984397239-e1664901979247-130x67.jpeg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 04 Oct 2022 16:46:19 GMT
accept-ranges: bytes
content-length: 3450
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/09/182216the-44-year-old-actor-who-starred-alongside-leonardo-dicaprio-jack-dawson-in-the-1997-blockbuster-as-rose-dewitt-bukater-said-the-moment-made-her-emotional--130x67.jpg
192.185.35.95200 OK 3.1 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/09/182216the-44-year-old-actor-who-starred-alongside-leonardo-dicaprio-jack-dawson-in-the-1997-blockbuster-as-rose-dewitt-bukater-said-the-moment-made-her-emotional--130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left, copyright=2016 Getty Images], baseline, precision 8, 130x67, components 3\012- data
Hash 9abb37f4997999ba2068a3d32d83cac2
6709bf3de70d23c44677baaad635fabb87fd5594
c793b4a2f3d5fdf728d518bfa7d2d7b9792774c8fcc5e49bbb0a888c7febd2c2
GET /files/uploads/2022/09/182216the-44-year-old-actor-who-starred-alongside-leonardo-dicaprio-jack-dawson-in-the-1997-blockbuster-as-rose-dewitt-bukater-said-the-moment-made-her-emotional--130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 19 Sep 2022 12:41:05 GMT
accept-ranges: bytes
content-length: 3058
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/07/aHR0cHM6Ly93d3cuZGFpbHlqYW5ha2FudGhhLmNvbS9jbG91ZC11cGxvYWRzL2RlZmF1bHQvYXJ0aWNsZS1pbWFnZXMvMjAyMDA3LzE1OTQxMDc1ODhfMjMuanBn-1-1-130x67.jpg
192.185.35.95200 OK 3.7 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/07/aHR0cHM6Ly93d3cuZGFpbHlqYW5ha2FudGhhLmNvbS9jbG91ZC11cGxvYWRzL2RlZmF1bHQvYXJ0aWNsZS1pbWFnZXMvMjAyMDA3LzE1OTQxMDc1ODhfMjMuanBn-1-1-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 130x67, components 3\012- data
Hash 9dc1f48d4b7b556a0ae52ee3cfd9eea8
2de83e0216f749bc6a41e9b68c459147940c9162
7eda7c21e86fadf3b13244ca0913600b2c6d990cd990165bb4cdfa5eb36f5bb6
GET /files/uploads/2020/07/aHR0cHM6Ly93d3cuZGFpbHlqYW5ha2FudGhhLmNvbS9jbG91ZC11cGxvYWRzL2RlZmF1bHQvYXJ0aWNsZS1pbWFnZXMvMjAyMDA3LzE1OTQxMDc1ODhfMjMuanBn-1-1-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 14 Jul 2020 18:18:43 GMT
accept-ranges: bytes
content-length: 3737
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/07/aHR0cHM6Ly93d3cuZGFpbHlqYW5ha2FudGhhLmNvbS9jbG91ZC11cGxvYWRzL2RlZmF1bHQvYXJ0aWNsZS1pbWFnZXMvMjAyMDA3LzE1OTQxMDc1ODhfMjMuanBn-1-130x67.jpg
192.185.35.95200 OK 3.7 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/07/aHR0cHM6Ly93d3cuZGFpbHlqYW5ha2FudGhhLmNvbS9jbG91ZC11cGxvYWRzL2RlZmF1bHQvYXJ0aWNsZS1pbWFnZXMvMjAyMDA3LzE1OTQxMDc1ODhfMjMuanBn-1-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 130x67, components 3\012- data
Hash 9dc1f48d4b7b556a0ae52ee3cfd9eea8
2de83e0216f749bc6a41e9b68c459147940c9162
7eda7c21e86fadf3b13244ca0913600b2c6d990cd990165bb4cdfa5eb36f5bb6
GET /files/uploads/2020/07/aHR0cHM6Ly93d3cuZGFpbHlqYW5ha2FudGhhLmNvbS9jbG91ZC11cGxvYWRzL2RlZmF1bHQvYXJ0aWNsZS1pbWFnZXMvMjAyMDA3LzE1OTQxMDc1ODhfMjMuanBn-1-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 07 Jul 2020 10:07:09 GMT
accept-ranges: bytes
content-length: 3737
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/IMG-20221029-WA0005-130x67.jpg
192.185.35.95200 OK 2.9 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/IMG-20221029-WA0005-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 7f5b659d8c46341b14534664f7b18a8b
617af3a10c9a7086b6bb58ffd23cb6dbac9ab54a
fc2efc51a2addc9259a6637047d0f3086379a4a2dc7415f2155d7669322bab1d
GET /files/uploads/2022/10/IMG-20221029-WA0005-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 29 Oct 2022 09:34:59 GMT
accept-ranges: bytes
content-length: 2927
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/07/44329092-fc9b-4799-ae97-71e624984d5a-768x467-1-130x67.jpg
192.185.35.95200 OK 3.2 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/07/44329092-fc9b-4799-ae97-71e624984d5a-768x467-1-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 130x67, components 3\012- data
Hash 448c6edb8ee9e016cc453e938c0d2ea9
5b7272a802ebcfdbf3d01dd2d31d7a2b5d99284f
16db891ab4d85efe8368815091b45f8143c3f2c62c615a8917da57af5584ce68
GET /files/uploads/2020/07/44329092-fc9b-4799-ae97-71e624984d5a-768x467-1-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 08 Jul 2020 07:23:23 GMT
accept-ranges: bytes
content-length: 3235
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/04/action-picture-4-130x67.jpg
192.185.35.95200 OK 3.4 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/04/action-picture-4-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 46add056854f52ce62a6c392e19ee10a
74d45db88fa53a9f93358a7ede2669647880c971
de869ca30249c0067a84dc097de702fa356d6cac58ae85d6854f68b0cfdcdef9
GET /files/uploads/2022/04/action-picture-4-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 05 Apr 2022 22:26:29 GMT
accept-ranges: bytes
content-length: 3366
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/10/120510297_3500776983316544_1186011731839014452_o-130x67.jpg
192.185.35.95200 OK 3.3 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/10/120510297_3500776983316544_1186011731839014452_o-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 130x67, components 3\012- data
Hash 6ddef51cec81ebc979c22a321aaad782
4bddd19a1e668a879cc9c8f04027fc0d2271e7f5
ca74fb0be4cd2cd6427f83d92137a36a4fdaa9fe4ca6aed9b6213c7e3ef70130
GET /files/uploads/2020/10/120510297_3500776983316544_1186011731839014452_o-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 04 Oct 2020 14:46:08 GMT
accept-ranges: bytes
content-length: 3255
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/07/apu-2007190727-130x67.jpg
192.185.35.95200 OK 2.9 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/07/apu-2007190727-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 634c47ac12e04c082d7bf2e06b8fe851
7e7a6b75d322b3e8c25cac6244caa159ab2fda9a
fef8d451a40ff7c1f41952cc0608678ded9bda23c2182ffa6baca6b3106b65c7
GET /files/uploads/2020/07/apu-2007190727-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 19 Jul 2020 08:15:32 GMT
accept-ranges: bytes
content-length: 2923
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/111-130x67.jpeg
192.185.35.95200 OK 3.2 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/111-130x67.jpeg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 130x67, components 3\012- data
Hash 9164865f93d9294d5e76a90d929fd460
137f74290fc6ec6967427cdde4d43239cf602786
287ff6038ada32e81db2e9f23560392e2a35baafebb1de7a1e349da0511686b2
Analyzer Verdict Alert fortinet Malware
GET /files/uploads/2022/10/111-130x67.jpeg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 08 Oct 2022 12:23:45 GMT
accept-ranges: bytes
content-length: 3245
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/plugins/rt-prettyphoto/js/wpp-active.js?ver=6.0.3
192.185.35.95200 OK 99 B URL HTTP/2 amaderprotidin.com/files/plugins/rt-prettyphoto/js/wpp-active.js?ver=6.0.3
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 8237108ee991d2b6533fae5dc750c134
cbb0dfa5a2393aad0cb01293950a63b93227fe03
6651e58af8b2c8cc724f46b3697d09aadd65865f3e5b873ed255e5c8bbae7a41
Analyzer Verdict Alert fortinet Malware
GET /files/plugins/rt-prettyphoto/js/wpp-active.js?ver=6.0.3 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 12 Jan 2017 02:25:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 99
content-type: application/javascript
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/plugins/fikraticker/js/jquery.newsticker.js?ver=6.0.3
192.185.35.95200 OK 2.9 kB URL HTTP/2 amaderprotidin.com/files/plugins/fikraticker/js/jquery.newsticker.js?ver=6.0.3
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 425bf2b81d20c7e927cfcfc65df7969d
5eb117dc8061b384cc1a426a0ddb5fb3b1a4847e
c9cc2b07858c6aa31c64517ef6333dd1940dfae2b487b7468f81711e8fb697cb
GET /files/plugins/fikraticker/js/jquery.newsticker.js?ver=6.0.3 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 15 May 2013 21:22:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2940
content-type: application/javascript
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/plugins/rt-prettyphoto/js/jquery.prettyPhoto.js?ver=6.0.3
192.185.35.95200 OK 12 kB URL HTTP/2 amaderprotidin.com/files/plugins/rt-prettyphoto/js/jquery.prettyPhoto.js?ver=6.0.3
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (613)
Hash 7259cd251ce8404452c7426c0a494de5
0f97062b45836ed827c57f7093cb3fa972936c6b
3a1e08440c7edb084879ad1603817827f0e7d5a27c997775312f099e90683ada
Analyzer Verdict Alert fortinet Malware
GET /files/plugins/rt-prettyphoto/js/jquery.prettyPhoto.js?ver=6.0.3 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 12 Jan 2017 02:25:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12173
content-type: application/javascript
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/3-130x67.jpg
192.185.35.95200 OK 3.3 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/3-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 50", baseline, precision 8, 130x67, components 3\012- data
Hash 26ef3183de9a6bdf5813d3f04718f474
84cfd9d5c60b2942c36cfa6cf45b31f3d4ef16c8
f21093ad8301b1f484e453f2d768dd3a1345a76a642127fc7319d4ac325f39b5
GET /files/uploads/2022/10/3-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Oct 2022 17:36:54 GMT
accept-ranges: bytes
content-length: 3276
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/resize-350x300x1x0-image-361727-130x67.jpg
192.185.35.95200 OK 3.8 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/resize-350x300x1x0-image-361727-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 130x67, components 3\012- data
Hash b4e6113249038198c5edce6abe2fa0b1
5d4fe7d9eedceaf2f45b0608b225f2c60127d188
120fc936b68b87c0e7bfc78b4fac7f1b0ec0502adacb073c72239b76a9290e71
GET /files/uploads/2022/10/resize-350x300x1x0-image-361727-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 29 Oct 2022 09:39:28 GMT
accept-ranges: bytes
content-length: 3791
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/07/resize-350x300x1x0-image-4407-1595330749-130x67.jpg
192.185.35.95200 OK 3.4 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/07/resize-350x300x1x0-image-4407-1595330749-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 130x67, components 3\012- data
Hash a7f1922adbd559e9222dac8c46a8e407
35491c945458b5d72db483e2773a421a8f4e8cee
37395160445d583554387f9c6bd4d3535d7f15444e1abd8925ddd04174b64b39
GET /files/uploads/2020/07/resize-350x300x1x0-image-4407-1595330749-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 21 Jul 2020 11:47:37 GMT
accept-ranges: bytes
content-length: 3429
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/IMG-20221117-WA0050-190x100.jpg
192.185.35.95200 OK 5.8 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/IMG-20221117-WA0050-190x100.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x100, components 3\012- data
Hash b362a0d480bb8136226f10fa61df49b1
1f1753b333b0422584ff6e18a47c6bb36e5104e5
341ae425765fcbe8f619e39e9e5fcdcae479c930c4c0b3013b30d5cc52a096e5
GET /files/uploads/2022/11/IMG-20221117-WA0050-190x100.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 13:48:08 GMT
accept-ranges: bytes
content-length: 5838
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/05/5-8-130x67.jpg
192.185.35.95200 OK 4.3 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/05/5-8-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 981352c7dc1b8321d6be01311b6a862f
778cf4876ee5fb692f113ab1b13f279f7dfdf034
7d47342b9a19f0c3dc25eeeba968ff7e83566a4ec206d84ceb20b1859882e867
GET /files/uploads/2020/05/5-8-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 May 2020 19:53:57 GMT
accept-ranges: bytes
content-length: 4326
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2019/05/10-1-130x67.jpg
192.185.35.95200 OK 4.4 kB URL HTTP/2 amaderprotidin.com/files/uploads/2019/05/10-1-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 9706a721efbac58dd0ca1ac035b3dcff
7f6e2a748a7771bb709ccd998285c8d844583127
76b789e3f624e323c6e5494448ca6c759d1dfdde52d98e1667b0d9bed780f040
GET /files/uploads/2019/05/10-1-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 20 May 2019 10:05:43 GMT
accept-ranges: bytes
content-length: 4362
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/09/Screenshot_20220918_012854-1-130x67.jpg
192.185.35.95200 OK 4.5 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/09/Screenshot_20220918_012854-1-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, height=2400, software=Android SP1A.210812.016.G998BXXU5CVH7, orientation=upper-left, datetime=2022:09:18 01:28:42, width=1080], baseline, precision 8, 130x67, components 3\012- data
Hash 2fccdc6202d12e4896582e126364d4c2
a07376e1f8b1be2fac51d427f5d97868d67e7b97
ae5d42d02e1589e3d404ce1d181882a2e71043ccb06b126de7307c39fb238452
GET /files/uploads/2022/09/Screenshot_20220918_012854-1-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 18 Sep 2022 00:39:44 GMT
accept-ranges: bytes
content-length: 4519
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/Screenshot_20221011_190216-130x67.jpg
192.185.35.95200 OK 4.4 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/Screenshot_20221011_190216-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, height=619, software=Android SP1A.210812.016.G998BXXS5CVHI, orientation=[*0*], width=998], baseline, precision 8, 130x67, components 3\012- data
Hash 24fc884a0349eb3ac29d8eaa351e3021
5267b0fe43294d7a731ec9766f5052ea4aa9c9f0
fa6486025ec03ed4754de04d74c6b15c8571da0bc9090ec4ed09463fbca6bbdf
GET /files/uploads/2022/10/Screenshot_20221011_190216-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 18:03:24 GMT
accept-ranges: bytes
content-length: 4363
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/02/Screenshot_20220207-094604_Facebook-130x67.jpg
192.185.35.95200 OK 4.2 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/02/Screenshot_20220207-094604_Facebook-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, height=849, software=Android SP1A.210812.016.G998BXXU4BULF, orientation=[*0*], width=1080], baseline, precision 8, 130x67, components 3\012- data
Hash 84d8db874b249225df23f2a44353a3b7
8c7362c403bc74c14159abcfabf150313dee02c5
8d8cf65dc0b396ba8874234935ea2edc2c2014c190cdad2298dcf9d8962116e2
GET /files/uploads/2022/02/Screenshot_20220207-094604_Facebook-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 09:52:46 GMT
accept-ranges: bytes
content-length: 4157
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2021/12/image-129716-1608527338-130x67.jpg
192.185.35.95200 OK 4.3 kB URL HTTP/2 amaderprotidin.com/files/uploads/2021/12/image-129716-1608527338-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 2674b8f07f8ba0f05ea1523b52a21376
8e105474a50f9a1a724c413edcb8c00fb0c9e92c
9a2ca8494ac600d91f0192e893044f37280c17d8d5c00419a460ddcd2448037e
GET /files/uploads/2021/12/image-129716-1608527338-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 21 Dec 2021 15:42:23 GMT
accept-ranges: bytes
content-length: 4325
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/12/20201203_104237-130x67.jpg
192.185.35.95200 OK 4.3 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/12/20201203_104237-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=[*0*]], baseline, precision 8, 130x67, components 3\012- data
Hash 1247fdaf22196b39f5c94de4972e6655
e921936f569e87399c311f8d73ddfb3ca2387d78
8260100302848b24a18ce9645cf0825dc3b4222248a9b431f92daed276da91c0
GET /files/uploads/2020/12/20201203_104237-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 03 Dec 2020 10:45:14 GMT
accept-ranges: bytes
content-length: 4309
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/07/ac3e1f4e-la-liga-768x432-1-130x67.jpg
192.185.35.95200 OK 4.7 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/07/ac3e1f4e-la-liga-768x432-1-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 130x67, components 3\012- data
Hash c940c891c6430b3912102729c6e494cb
dd8fd72d0226e176a84137d4ac3d53918c7bc572
73d522deea2d1c193b573d90017db2112cee832c9a6ac86743f0cdcccf6b4d80
GET /files/uploads/2020/07/ac3e1f4e-la-liga-768x432-1-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Jul 2020 04:59:23 GMT
accept-ranges: bytes
content-length: 4665
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2019/07/13-3-130x67.jpg
192.185.35.95200 OK 4.1 kB URL HTTP/2 amaderprotidin.com/files/uploads/2019/07/13-3-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash e4a6a76157ef036c34a3281dd70a8de7
162fab0aecfd158f6152503f69ad27ac56a14c8e
90ad600c69b75e0b0de98d1c839198addc2d19747894167af79026ff4b204656
GET /files/uploads/2019/07/13-3-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Jul 2019 10:19:07 GMT
accept-ranges: bytes
content-length: 4145
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2019/07/minni-20190708135408-130x67.jpg
192.185.35.95200 OK 5.4 kB URL HTTP/2 amaderprotidin.com/files/uploads/2019/07/minni-20190708135408-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 130x67, components 3\012- data
Hash 0d6e66651038b7e03ffa817daa24e861
2c7715d839737be579abd189434766816d75225a
612188410a1dd571b372cf5894dfab656edba3efc0a598b5986b1f64353d983b
GET /files/uploads/2019/07/minni-20190708135408-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 08 Jul 2019 09:52:48 GMT
accept-ranges: bytes
content-length: 5383
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/09/18365433-130x67.jpg
192.185.35.95200 OK 5.4 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/09/18365433-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 130x67, components 3\012- data
Hash 397faea4851410099bf56e803245330d
b44caebeb86b63cc0c9660edd5ce534fdcda3a72
0f59b9710ddd4cf5b092724ee43997c330d850d045790e1312f4b886e4c52ee1
GET /files/uploads/2022/09/18365433-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 19 Sep 2022 12:53:31 GMT
accept-ranges: bytes
content-length: 5364
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/FB_IMG_1667370467069-190x100.jpg
192.185.35.95200 OK 5.2 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/FB_IMG_1667370467069-190x100.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x100, components 3\012- data
Hash f1092f5415481be8043b20bca78cbd25
aaa8554db36a7e0df57ca5129690bd3408070794
e755f84b1df42adb14754f4674ae5a3554ce7c63673c4012ef9aa8d5c8491397
GET /files/uploads/2022/11/FB_IMG_1667370467069-190x100.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 08:48:26 GMT
accept-ranges: bytes
content-length: 5221
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/8-190x100.jpeg
192.185.35.95200 OK 8.5 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/8-190x100.jpeg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 190x100, components 3\012- data
Hash 12fd450d7eea4dd6b0fcbf5a50004b30
19e0560ffac9e5367f21290dac4fd4fd519549a0
8a8699a5414bfc5ed76c436904ddd1e00c5ab0c207d3abdac2782704442e1f4f
Analyzer Verdict Alert fortinet Malware
GET /files/uploads/2022/10/8-190x100.jpeg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Oct 2022 18:08:03 GMT
accept-ranges: bytes
content-length: 8476
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/resize-350x300x1x0-image-361727-190x100.jpg
192.185.35.95200 OK 6.6 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/resize-350x300x1x0-image-361727-190x100.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 190x100, components 3\012- data
Hash 3b44368547e18f927ea865474ed04128
6c75350e53244dca34e1ced9ff18e0da13e7c8a3
e0b0953dbbedb68298c7ff186110b98accce9ab824296799bac92d7d7ce78c01
GET /files/uploads/2022/10/resize-350x300x1x0-image-361727-190x100.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 29 Oct 2022 09:39:28 GMT
accept-ranges: bytes
content-length: 6617
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/FB_IMG_1667736979977-190x100.jpg
192.185.35.95200 OK 7.1 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/FB_IMG_1667736979977-190x100.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x100, components 3\012- data
Hash 77c2a79a48fa60b1d223c14ee719f3cd
92dcf22816f85bd58ebee0f7f46ca78cee98ab10
3274b8850f1a5372955f2aa14e928ebf1cdc2af6d8910d3dcf71facd16072a99
GET /files/uploads/2022/11/FB_IMG_1667736979977-190x100.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 06 Nov 2022 12:16:56 GMT
accept-ranges: bytes
content-length: 7085
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/6-130x67.webp
192.185.35.95200 OK 6.5 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/6-130x67.webp
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 130x67, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5e0e29f46a070dc808a52f20dd651d1d
0747f40427290ffaa0ff26daaf4967a029f1c729
3851be8bb75e6c68472caafa0a9835d832f4c98f2c1fe744b2aab9d4d8f50967
Analyzer Verdict Alert fortinet Malware
GET /files/uploads/2022/10/6-130x67.webp HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Oct 2022 17:49:38 GMT
accept-ranges: bytes
content-length: 6546
content-type: image/webp
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/IMG-20221114-WA0045-190x100.jpg
192.185.35.95200 OK 6.5 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/IMG-20221114-WA0045-190x100.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x100, components 3\012- data
Hash 76d4ced08d2763ed347ad366aa145630
d4e0094f42fb42fa40a085d8d8928c9b1ad51896
202b20be2492937f5465e8f0ac7e0ae5572ea135d3dd722e2df14791a50ac642
GET /files/uploads/2022/11/IMG-20221114-WA0045-190x100.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 12:38:17 GMT
accept-ranges: bytes
content-length: 6517
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/07/khalidi-130x67.jpg
192.185.35.95200 OK 11 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/07/khalidi-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2019:12:09 05:25:16], baseline, precision 8, 130x67, components 3\012- data
Hash dd860263853d494462ba431667b29722
06edc6b269602b6827925818e5d40a47e512b4ae
e2eff197e0b252316d368bfc93dd7d623cc66e619fe13eac57963e0bb9a4d4f9
GET /files/uploads/2020/07/khalidi-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 30 Jul 2020 20:53:35 GMT
accept-ranges: bytes
content-length: 11391
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2019/06/5-2-130x67.jpg
192.185.35.95200 OK 14 kB URL HTTP/2 amaderprotidin.com/files/uploads/2019/06/5-2-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2019:06:13 11:25:21], baseline, precision 8, 130x67, components 3\012- data
Hash 1e12fdb5f60c956d9f5a7a7d4391bc6e
6cac06cb2b2d3d5346f250ac7291daad19b9d56b
78f9a9eaec43f55bd9600024a63a96df25534eae0bebd8d5139e91d792d4c4f6
GET /files/uploads/2019/06/5-2-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Jun 2019 08:51:23 GMT
accept-ranges: bytes
content-length: 13753
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/9-130x67.png
192.185.35.95200 OK 14 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/9-130x67.png
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 130 x 67, 8-bit/color RGBA, non-interlaced\012- data
Hash 6be88c1a778320f727497846c6c5853d
45cb9dfc4ada3688b530417b8962af4251aadba7
d3e05aee67c376c4ed07c6b5434700cf12b60a8c18dea90924e0acfe61607c79
GET /files/uploads/2022/10/9-130x67.png HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Oct 2022 18:24:35 GMT
accept-ranges: bytes
content-length: 13862
content-type: image/png
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2019/07/4-2-130x67.jpg
192.185.35.95200 OK 17 kB URL HTTP/2 amaderprotidin.com/files/uploads/2019/07/4-2-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2017:05:09 21:01:39], baseline, precision 8, 130x67, components 3\012- data
Hash e0a1c980e24344677218b5febce0dcab
6d9652319f0068936e87c8e8618e0859827ff3dc
eb570322f95a960e33cf2f0c93a89c85d06c7870429fafcc50422ebb3003988a
GET /files/uploads/2019/07/4-2-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Jul 2019 08:14:51 GMT
accept-ranges: bytes
content-length: 16879
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2021/11/kaleda_2-130x67.jpg
192.185.35.95200 OK 19 kB URL HTTP/2 amaderprotidin.com/files/uploads/2021/11/kaleda_2-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11, manufacturer=Canon, model=Canon EOS 7D, orientation=upper-left, xresolution=166, yresolution=174, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2018:01:11 16:07:31, GPS-Data], baseline, precision 8, 130x67, components 3\012- data
Hash 0ba9c1455d4195a60787a842d4853483
f988db880ca96bfd04833ab8c87db0f1f8bff7e5
33a2d11f75aadfd54dbfc914cbd0874d6b82a51195bae28d34d999340c7f3e7b
GET /files/uploads/2021/11/kaleda_2-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 04 Nov 2021 18:00:07 GMT
accept-ranges: bytes
content-length: 18917
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/02/image-316799-500x250.jpg
192.185.35.95200 OK 19 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/02/image-316799-500x250.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2022:02:05 15:52:26], baseline, precision 8, 500x250, components 3\012- data
Hash 07b2de4b357018ba4205956edd9389b1
a1bca065f7eddd15e0e9241c2ad89c381468da4c
b2540046706489bff5969531edabbc7a9cc2265da278ba0828ffda9ec9f36ead
GET /files/uploads/2022/02/image-316799-500x250.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 05 Feb 2022 10:46:16 GMT
accept-ranges: bytes
content-length: 18902
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/09/Screenshot_2-23-500x250.jpg
192.185.35.95200 OK 23 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/09/Screenshot_2-23-500x250.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 500x250, components 3\012- data
Hash 86e97e4099936a638d3bc649b32f1ee8
a822e63e80959da5dd11c87e031acf3770eee43e
92a22e74bddd8730e91076283d9df8d124bcd825f6a22e3cfa2ee4efd410ca12
GET /files/uploads/2022/09/Screenshot_2-23-500x250.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 19 Sep 2022 13:01:27 GMT
accept-ranges: bytes
content-length: 22900
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/plugins/rt-prettyphoto/css/prettyPhoto.css?ver=6.0.3
192.185.35.95200 OK 3.9 kB URL HTTP/2 amaderprotidin.com/files/plugins/rt-prettyphoto/css/prettyPhoto.css?ver=6.0.3
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (402)
Hash 57ef248ac4d7fff97c866b0cb7418500
93a3c218168ed9c1f2e59fbe89ea4161e58e5d15
34257efe47276a0d0d149c37882dcb1eb6fc61f56764272971d2885fcdcd3287
Analyzer Verdict Alert fortinet Malware
GET /files/plugins/rt-prettyphoto/css/prettyPhoto.css?ver=6.0.3 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 12 Jan 2017 02:25:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3901
content-type: text/css
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/9-190x100.png
192.185.35.95200 OK 27 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/9-190x100.png
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 190 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 2bedf4574ca9e00d7d4167f1c3c6ebd8
f7c7800ebd64d719afd15955aec318030f49a59e
eebbc3d85afe01e7c9e0fcc21f8cb563fc10df6b6982bdc3405ed5f7f8e6a9bb
GET /files/uploads/2022/10/9-190x100.png HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Oct 2022 18:24:35 GMT
accept-ranges: bytes
content-length: 26587
content-type: image/png
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/IMG-20221117-WA0050-500x250.jpg
192.185.35.95200 OK 26 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/IMG-20221117-WA0050-500x250.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x250, components 3\012- data
Hash 46595cdcb986114024a750d79d4ee052
3afe68894fc2e21fe182df41d5c5034521c257ca
318f4eaa93def41a3b80f1c7ebfc1197fcdf085da44e8ede9737bc4ab6aa7c67
GET /files/uploads/2022/11/IMG-20221117-WA0050-500x250.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 13:48:08 GMT
accept-ranges: bytes
content-length: 26213
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/05/13-3.jpg
192.185.35.95200 OK 29 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/05/13-3.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x365, components 3\012- data
Hash 576a60e2fe5c7ac54525d45573fe393a
6f8f02499c3386cb6f097041d3f8a2c72fc3698f
3c1d65b1b98ece349022f01ae34a976b4581884d7d0252b0d3bbf6935e9018cd
GET /files/uploads/2020/05/13-3.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 09 May 2020 21:08:05 GMT
accept-ranges: bytes
content-length: 28834
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/Golapganj-presclub-1-2-130x67.jpg
192.185.35.95200 OK 29 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/Golapganj-presclub-1-2-130x67.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=9], baseline, precision 8, 130x67, components 3\012- data
Hash 837c68fef1ac991eed3c6f0efa439e56
a1dcb2fc2eec4ed4dd07ae5edb0b94b24de60dbe
a319b85350cf1c5433f004554a94661695f1163cacc89557b25d23eefeab5e55
GET /files/uploads/2022/11/Golapganj-presclub-1-2-130x67.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 03 Nov 2022 16:27:25 GMT
accept-ranges: bytes
content-length: 29170
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2019/03/jtvuk-Copy.jpg
192.185.35.95200 OK 32 kB URL HTTP/2 amaderprotidin.com/files/uploads/2019/03/jtvuk-Copy.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 812x146, components 3\012- data
Hash d06354ffaba5f4cde16fa48dfb7eb0d4
143d58dede5a71f5716783e706f7a2c50f0e2b60
51569ec5f73f963f2b2b0688a38d61039e698bfaff2070f05046f8c23a08d197
GET /files/uploads/2019/03/jtvuk-Copy.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 20 Jun 2020 05:29:16 GMT
accept-ranges: bytes
content-length: 32112
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/IMG-20221114-WA0045-500x250.jpg
192.185.35.95200 OK 30 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/IMG-20221114-WA0045-500x250.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x250, components 3\012- data
Hash 0bd462d1f500917c4174629db6413f23
18801aff2f3644b140980d30574f6d40c8c7c04b
7b825a0d813ce21fbf76a7f4f5ec6badce8bb3b7a5ca8a002a0b2c67945fffbc
GET /files/uploads/2022/11/IMG-20221114-WA0045-500x250.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 12:38:17 GMT
accept-ranges: bytes
content-length: 29885
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/images/footlogo.png
192.185.35.95200 OK 31 kB URL HTTP/2 amaderprotidin.com/images/footlogo.png
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash de50e3fe10f14f39bbd6a6100d627676
bc081aa186e2089a79a62a42cd58c68a68d2776f
6ac8c749318ba358bed84b17daff10e9205260af504d61e7283fb1437319437c
GET /images/footlogo.png HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 07 Mar 2019 00:45:06 GMT
accept-ranges: bytes
content-length: 31279
content-type: image/png
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 13:36:26 GMT
Connection: keep-alive
amaderprotidin.com/files/uploads/2022/11/Collage_2022-11-22_02_37_12-500x250.jpg
192.185.35.95200 OK 32 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/Collage_2022-11-22_02_37_12-500x250.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, height=1800, orientation=upper-left, width=1440], baseline, precision 8, 500x250, components 3\012- data
Hash 463d14c45621a70be86d0f4ce11fe849
2762ba9822ea59858e4d3e1e979ef0694ade39a3
dbf14e00e589a1017e261845eead2d3d095aef868be75b8b071a6e1d06c39fe8
GET /files/uploads/2022/11/Collage_2022-11-22_02_37_12-500x250.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Nov 2022 02:53:53 GMT
accept-ranges: bytes
content-length: 31534
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 13:36:26 GMT
Connection: keep-alive
amaderprotidin.com/files/uploads/2022/10/5-500x250.jpg
192.185.35.95200 OK 34 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/5-500x250.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 50", baseline, precision 8, 500x250, components 3\012- data
Hash e38a1959f25a971aa11002356702f1a8
62ade60503bf623e3e3ff562b02b4a6718057edb
dbc47e1fa33d56478b247f0e0c309e94fb8d842c177888b65e1f1b7c6f8f0608
GET /files/uploads/2022/10/5-500x250.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Oct 2022 17:43:14 GMT
accept-ranges: bytes
content-length: 33643
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 13:36:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 13:36:26 GMT
Connection: keep-alive
amaderprotidin.com/files/uploads/2021/12/28A-500x250.jpg
192.185.35.95200 OK 43 kB URL HTTP/2 amaderprotidin.com/files/uploads/2021/12/28A-500x250.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2021:12:28 19:36:32], baseline, precision 8, 500x250, components 3\012- data
Hash 26cc6cb7ece15af378b7ece45f3c7dac
a575b39d3662dadec20878aa7dc59bcd1a2bddb1
1989b92390212104c06b9c73d6405bf83e6fa1e7765c8e22ff6881077bc32cf4
GET /files/uploads/2021/12/28A-500x250.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Dec 2021 14:11:13 GMT
accept-ranges: bytes
content-length: 42994
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/2-500x250.jpg
192.185.35.95200 OK 60 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/2-500x250.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.2 (Windows), datetime=2022:10:15 17:26:30], baseline, precision 8, 500x250, components 3\012- data
Hash ce3d7dca1cedec8fed1e94e5f66fd7e8
7a077e6109400ddb005ee6ca282504b6f0f6ab3f
83defbfa0ea3a53cdf94f114de77eeb5b668ed7461cc9bbc84f3d4fdaa3fda0a
GET /files/uploads/2022/10/2-500x250.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Oct 2022 17:31:14 GMT
accept-ranges: bytes
content-length: 60495
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/11/Golapganj-presclub-1-2-500x250.jpg
192.185.35.95200 OK 52 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/11/Golapganj-presclub-1-2-500x250.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=9], baseline, precision 8, 500x250, components 3\012- data
Hash 90e5ba7afe786dca57dc1d363764b42d
b7d33eae0a749974734dec118f94433a96342f68
74d1abc2c0ca67e7d2db01d7f63cb08ac974707091c6580d2df7ca0dd01c6596
GET /files/uploads/2022/11/Golapganj-presclub-1-2-500x250.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 03 Nov 2022 16:27:25 GMT
accept-ranges: bytes
content-length: 52042
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/01/69118699_10219274742643408_4135244673511849984_n-1-1-432x250.jpg
192.185.35.95200 OK 64 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/01/69118699_10219274742643408_4135244673511849984_n-1-1-432x250.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6], baseline, precision 8, 432x250, components 3\012- data
Hash 336553395562220ed0eab00ad1ba885d
2b499e8e983256263d8ed96150e1b6214b0afb79
9086c5c05d1ce059b408a6ee9a6c3c26f02f865ac6fab76b9262aa6cc6b37206
GET /files/uploads/2022/01/69118699_10219274742643408_4135244673511849984_n-1-1-432x250.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 07 Jan 2022 21:20:19 GMT
accept-ranges: bytes
content-length: 63595
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/resize-350x300x1x0-image-361727.jpg
192.185.35.95200 OK 74 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/resize-350x300x1x0-image-361727.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 350x200, components 3\012- data
Hash f5ef58c7122d95257099e34f638b6886
5a5cc4c69c19be4c17b09be46902d81cb9b0c98d
96e993bc382588e2a6b16284ff923f660b30516b348852065b357cfde8ceebfe
GET /files/uploads/2022/10/resize-350x300x1x0-image-361727.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 29 Oct 2022 09:39:28 GMT
accept-ranges: bytes
content-length: 73889
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2022/10/6-500x250.webp
192.185.35.95200 OK 70 kB URL HTTP/2 amaderprotidin.com/files/uploads/2022/10/6-500x250.webp
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash da8aa9a1aa105b9b941d01c4e806d5f6
2bdef013d1f4fbadbbfd058cb009602dc826c9fe
a9e8f17c06f289aea3a49cf0c6afb4a409216f57eef72641740c89cf34f2f3c9
Analyzer Verdict Alert fortinet Malware
GET /files/uploads/2022/10/6-500x250.webp HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 15 Oct 2022 17:49:38 GMT
accept-ranges: bytes
content-length: 69968
content-type: image/webp
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4006a9037ab5f28dca62b0aa7a704c41
74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b
556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5MlzpHpq7auKLSAYikINuPAylXI11VJL3xxIJ9Dyub-7rjQaPfg0WQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 04:23:00 GMT
age: 33206
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8b6ee13d43732f7c764a49500d092865
5d15fd672e968d59b541e4d5d0d01cd5e69f4075
fc3623d527147e1c6aab399251ed8d527e6eefdee6ad7183f00df2613498bfe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8006
x-amzn-requestid: 78aab013-df11-464b-a1c7-ee41b7e77b40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB-AHSrIAMFvKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38c-4d795f410a57fc2c21d7075d;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NntLZ3wUdcX9kEo-afFLU0TPKgqAlSK3bToNh2mmoqoyLBJINNk7ow==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:39 GMT
age: 56507
etag: "5d15fd672e968d59b541e4d5d0d01cd5e69f4075"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 05:04:28 GMT
age: 30718
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8784bb7a8b88736a6016f712e3183bf3
b0ddc1555d2506177adcdcea77864d75f1245d07
8e331713b0ad0b5670dd33dfdadde665e076a40ddb80905d4df89876d49803d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11743
x-amzn-requestid: 9ab0aba7-5cd1-4f6c-8984-dc221e1cbf8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cICD-F7joAMFqmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe3b2-152ba5f1495a44447356cdab;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oWSNdsrz59sJC2znLnFqa_Zm3T14_d6j-rjzDQe4yV22Dy2Qc4Swaw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:45 GMT
age: 56501
etag: "b0ddc1555d2506177adcdcea77864d75f1245d07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6673267df195141739d1018c17101368
b80047da428636adb7027f12718c8d11bd461da4
de30af07eed7326a1326c831e04727649a112c20d0c485a7e973edd96f91bfaa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11954
x-amzn-requestid: 0c912d90-72b5-4060-ae22-c2ecbe16b57a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8J-nEFEoAMF2eA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2390-503ead086c8021af6eaeaa85;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JZAeoFNsUy2usSV7O41YGIfVow9gaIMXuKnfcaundLduQ5UX2eTKOQ==
via: 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 17:17:27 GMT
age: 73139
etag: "b80047da428636adb7027f12718c8d11bd461da4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:47:53 GMT
age: 56913
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/01/82213777_1528278870663051_5077159305359130624_n.jpg
192.185.35.95200 OK 136 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/01/82213777_1528278870663051_5077159305359130624_n.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, progressive, precision 8, 960x669, components 3\012- data
Size 136 kB (136287 bytes)
Hash 65a154d2f639fb427515605a9bee4db1
0090b2eae3e385ee32ec7126436f78a235dbb0ac
71dcef009dedb499d5b3a8f30e74fa2c756e8c19ab3902143e7faf13f8a90fb0
GET /files/uploads/2020/01/82213777_1528278870663051_5077159305359130624_n.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 01 Jan 2020 15:00:49 GMT
accept-ranges: bytes
content-length: 136287
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2019/12/11-8.jpg
192.185.35.95200 OK 175 kB URL HTTP/2 amaderprotidin.com/files/uploads/2019/12/11-8.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2019:12:22 21:32:42], baseline, precision 8, 843x651, components 3\012- data
Size 175 kB (175201 bytes)
Hash 297fe90ed9eaecdd05f062563794ba14
381dbbfa2a54e33a959826103f2952cd369ad055
7a047a9084269355cbfbc07f9997e60eed5355e0c1cff951cda58e2f9d064da8
GET /files/uploads/2019/12/11-8.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 22 Dec 2019 15:32:52 GMT
accept-ranges: bytes
content-length: 175201
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2020/01/8-6.jpg
192.185.35.95200 OK 286 kB URL HTTP/2 amaderprotidin.com/files/uploads/2020/01/8-6.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2020:01:06 18:40:26], progressive, precision 8, 958x636, components 3\012- data
Size 286 kB (286319 bytes)
Hash 7ba5f71e02943037d8ef4e2902dfac32
897fc8b639579a9ed96fa7984c2ac8873d343d58
a4f8ad340da2867d3bff7a01166acd568dc8eafa41fdcd00f78e1c65436a84d3
GET /files/uploads/2020/01/8-6.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 06 Jan 2020 12:39:05 GMT
accept-ranges: bytes
content-length: 286319
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 670dda5fda45a89db08867e9109f65b7
2a64bc381f8e795fe7a46a98c3e8add2f1ade404
7c2085a52a32eab3f4ab73c4ab3718cf1e7d67502e83001ce45d2857b37a0755
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3105
Cache-Control: max-age=145311
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:26 GMT
Etag: "63804d58-1d7"
Expires: Sun, 27 Nov 2022 05:58:17 GMT
Last-Modified: Fri, 25 Nov 2022 05:06:32 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
amaderprotidin.com/files/uploads/2019/12/010.jpg
192.185.35.95200 OK 435 kB URL HTTP/2 amaderprotidin.com/files/uploads/2019/12/010.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2019:12:15 17:34:25], baseline, precision 8, 1280x720, components 3\012- data
Size 435 kB (435253 bytes)
Hash 0662110c68522e8091619b6929b64699
b91d10dc5a178ca835740d8a0a4735d45d135316
ec7a4c4da8c800a2cd518fb6826a87ccf97f20c21c8396ef733100fb950e895e
GET /files/uploads/2019/12/010.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 15 Dec 2019 11:34:14 GMT
accept-ranges: bytes
content-length: 435253
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:25 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/images/square.gif
192.185.35.95200 OK 51 B URL HTTP/1.1 amaderprotidin.com/images/square.gif
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 5 x 5\012- data
Hash 1363e074b476b5fba33396ca3e45eef4
22d216bd3fdfb4db107daf368e74c7e03c52821d
538055b79e7cf21abfebf345896a80b9e208ad7abeebfe782abbaed2b363f005
GET /images/square.gif HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/files/themes/Sparkle-IT/css/style.css?ver=1.0.0
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:26 GMT
Server: Apache
Last-Modified: Sun, 13 Jan 2013 07:01:54 GMT
Accept-Ranges: bytes
Content-Length: 51
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/gif
amaderprotidin.com/files/themes/Sparkle-IT/fonts/solaimanlipi_22-02-2012.woff
192.185.35.95200 OK 138 kB URL HTTP/1.1 amaderprotidin.com/files/themes/Sparkle-IT/fonts/solaimanlipi_22-02-2012.woff
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 138184, version 2.0\012- data
Size 138 kB (138184 bytes)
Hash 1ad955270a54c2e92a83d8c7298d033e
e1ac9d9ae414b58afd15c7d6947a6bbdc6b0fe2e
a94caa8506c08f566e3886b76df865dec6d38da788090e5dda20260312179452
Analyzer Verdict Alert fortinet Malware
GET /files/themes/Sparkle-IT/fonts/solaimanlipi_22-02-2012.woff HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://amaderprotidin.com/files/themes/Sparkle-IT/css/style.css?ver=1.0.0
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:26 GMT
Server: Apache
Last-Modified: Thu, 07 Mar 2019 08:06:54 GMT
Accept-Ranges: bytes
Content-Length: 138184
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: font/woff
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4014b3f4adf5c5373118894c244afb12
1198e79d0e1e14408e3c0084a3f479122020a723
affc5983ee364e0310c082b225a90cff4ba2d01b68d2cdaf6b5ecbe780cad66d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3422
Cache-Control: max-age=145628
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:26 GMT
Etag: "63804d58-1d7"
Expires: Sun, 27 Nov 2022 06:03:34 GMT
Last-Modified: Fri, 25 Nov 2022 05:06:32 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
amaderprotidin.com/files/themes/Sparkle-IT/fonts/glyphicons-halflings-regular.woff2
192.185.35.95200 OK 18 kB URL HTTP/1.1 amaderprotidin.com/files/themes/Sparkle-IT/fonts/glyphicons-halflings-regular.woff2
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Hash 448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c
Analyzer Verdict Alert fortinet Malware
GET /files/themes/Sparkle-IT/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://amaderprotidin.com/files/themes/Sparkle-IT/css/bootstrap.min.css?ver=3.1.0
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:26 GMT
Server: Apache
Last-Modified: Thu, 07 Mar 2019 08:06:54 GMT
Accept-Ranges: bytes
Content-Length: 18028
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: font/woff2
amaderprotidin.com/files/themes/Sparkle-IT/fonts/fontawesome-webfont.woff2?v=4.3.0
192.185.35.95200 OK 64 kB URL HTTP/1.1 amaderprotidin.com/files/themes/Sparkle-IT/fonts/fontawesome-webfont.woff2?v=4.3.0
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 64464, version 4.262\012- data
Hash 4b5a84aaf1c9485e060c503a0ff8cadb
574ea2698c03ae9477db2ea3baf460ee32f1a7ea
3c4a1bb7ce3234407184f0d80cc4dec075e4ad616b44dcc5778e1cfb1bc24019
GET /files/themes/Sparkle-IT/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://amaderprotidin.com/files/themes/Sparkle-IT/css/font-awesome.min.css?ver=3.1.0
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:26 GMT
Server: Apache
Last-Modified: Thu, 07 Mar 2019 08:06:54 GMT
Accept-Ranges: bytes
Content-Length: 64464
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: font/woff2
amaderprotidin.com/files/themes/Sparkle-IT/img/cd-top-arrow.svg
192.185.35.95200 OK 557 B URL HTTP/1.1 amaderprotidin.com/files/themes/Sparkle-IT/img/cd-top-arrow.svg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ad03bb5d1b719bcea5f38bc16be7eace
30afc78ed21d995f2a7c6c8818298186d7a51fc3
afa4e40e31012a7beaccfbd9afebc0136d0c386f58b8b1cbed71763ead3ecb6c
Analyzer Verdict Alert fortinet Malware
GET /files/themes/Sparkle-IT/img/cd-top-arrow.svg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/files/themes/Sparkle-IT/css/style.css?ver=1.0.0
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:26 GMT
Server: Apache
Last-Modified: Thu, 07 Mar 2019 08:06:54 GMT
Accept-Ranges: bytes
Content-Length: 557
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/svg+xml
static.xx.fbcdn.net/rsrc.php/v3/yp/l/0,cross/oJI2v4nsT1A.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yp/l/0,cross/oJI2v4nsT1A.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4431)
Hash 1edd6626ecc1fe1c708fe86319f5bc22
dd58cc72446f8658aac8f9c46075874d5df96b6a
afb2ce31a60811eac42759964232e5b0f6d23463b318c21677bff49f1ef71b9c
GET /rsrc.php/v3/yp/l/0,cross/oJI2v4nsT1A.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 24 Nov 2023 18:45:23 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Ht1mJuzB/hxwj+hjGfW8Ig==
x-fb-debug: Ne8hjCb1Wi8nV30MsIucv1btJPTzvPzf0BPF4YklJfmkDr6VcEK7+MJSceq5ShE19wiwjTayjaDbWg2TZp11QA==
priority: u=2
content-length: 5146
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 13:36:26 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2019/03/cropped-thumbnail_Jalalabad-TV-Logo-Final-32x32.jpg
192.185.35.95200 OK 27 kB URL HTTP/2 amaderprotidin.com/files/uploads/2019/03/cropped-thumbnail_Jalalabad-TV-Logo-Final-32x32.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 200x200, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 32x32, components 3\012- data
Hash 1f94df0821300c94bc15cf6ebc699299
494c178029b011035ca0ade835cc24904cab1b5a
99f39f076e959e4ff4e2e608acf5c2a2ecb0e4697c691abe9e20ccc413402e36
GET /files/uploads/2019/03/cropped-thumbnail_Jalalabad-TV-Logo-Final-32x32.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 14 Jul 2020 19:57:17 GMT
accept-ranges: bytes
content-length: 27392
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:26 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/files/uploads/2019/03/cropped-thumbnail_Jalalabad-TV-Logo-Final-192x192.jpg
192.185.35.95200 OK 32 kB URL HTTP/2 amaderprotidin.com/files/uploads/2019/03/cropped-thumbnail_Jalalabad-TV-Logo-Final-192x192.jpg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 200x200, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 192x192, components 3\012- data
Hash 3e6cde3630eae1b13d9134288257c4ac
eb8051688c27c998db8245f90574affcdfa48e54
a6d4e70c975cc84c569a17dcab6a7d902d1e02f3a09a6d723168adcc4c8ef752
GET /files/uploads/2019/03/cropped-thumbnail_Jalalabad-TV-Logo-Final-192x192.jpg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 14 Jul 2020 19:57:16 GMT
accept-ranges: bytes
content-length: 32365
content-type: image/jpeg
date: Fri, 25 Nov 2022 13:36:26 GMT
server: Apache
X-Firefox-Spdy: h2
amaderprotidin.com/wp-includes/js/mediaelement/mejs-controls.svg
192.185.35.95200 OK 4.6 kB URL HTTP/1.1 amaderprotidin.com/wp-includes/js/mediaelement/mejs-controls.svg
IP 192.185.35.95:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4597)
Hash f0849a5e79712b10e1531925e3edb879
a5fd4a315cb977532daca83c130ce8ffc57f6f3f
ad55816ac6c62f214e60a1913ff4f0215ab329034cbc7436a5514941449ca7b9
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mejs-controls.svg HTTP/1.1
Host: amaderprotidin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amaderprotidin.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 13:36:26 GMT
Server: Apache
Last-Modified: Tue, 01 Aug 2017 15:43:50 GMT
Accept-Ranges: bytes
Content-Length: 4598
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/svg+xml
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/watch?v=at575R-tLq4&_=1
172.217.21.174200 OK 62 kB URL HTTP/2 www.youtube.com/watch?v=at575R-tLq4&_=1
IP 172.217.21.174:0
Hash 54cfe3d4afcb2fe7976cf3d1e239c711
395fb4b1af10568e799286755aede3ddcb512f54
308335decb2ba65d3160dbbf1c2eb098d0beab55402386a40400264bb58e19e9
GET /watch?v=at575R-tLq4&_=1 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 25 Nov 2022 13:36:27 GMT
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
server: ESF
x-xss-protection: 0
set-cookie: YSC=KHMYN5oPoSk; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=; Domain=.youtube.com; Expires=Sat, 29-Feb-2020 13:36:27 GMT; Path=/; Secure; HttpOnly; SameSite=none
__Secure-YEC=CgtNajI5VDNWMW1iZyjbiYOcBg%3D%3D; Domain=.youtube.com; Expires=Mon, 25-Dec-2023 13:36:26 GMT; Path=/; Secure; HttpOnly; SameSite=lax
CONSENT=PENDING+464; expires=Sun, 24-Nov-2024 13:36:27 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 26 kB IP 142.250.74.3:0
Hash c0ff89a7baa8f1939ec7a1ec9dd63779
23a1a3b87547d3d877964e36a5cbf514a5190699
b546bcc21a7708c54be8d4fd5f8ed38716c2da7284aa07aa25fa91bdc86c5292
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 12:31:58 GMT
expires: Sun, 19 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 522269
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:46:16 GMT
expires: Fri, 24 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 57011
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 60951c730d96e02c20219f2765873699
64d0ecb0d9001990841e9faa434d9239af4b6927
9eb0e510930409a6eed080afd7759a51ca4ecb58dd30ea04221cea917358f658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d3d2d21ac304813a16da64921ce18ba4
98b1762c675c61eeb18254986461e6b1074ebc92
af00429c189464ddb8df704dc48035421f943444df6ca17390fb97466c2e7e9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 60951c730d96e02c20219f2765873699
64d0ecb0d9001990841e9faa434d9239af4b6927
9eb0e510930409a6eed080afd7759a51ca4ecb58dd30ea04221cea917358f658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 13:30:21 GMT
expires: Fri, 25 Nov 2022 13:45:21 GMT
cache-control: public, max-age=900
age: 367
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d3d2d21ac304813a16da64921ce18ba4
98b1762c675c61eeb18254986461e6b1074ebc92
af00429c189464ddb8df704dc48035421f943444df6ca17390fb97466c2e7e9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
142.250.74.2302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 25 Nov 2022 13:36:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.2302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 25 Nov 2022 13:36:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 60951c730d96e02c20219f2765873699
64d0ecb0d9001990841e9faa434d9239af4b6927
9eb0e510930409a6eed080afd7759a51ca4ecb58dd30ea04221cea917358f658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d3d2d21ac304813a16da64921ce18ba4
98b1762c675c61eeb18254986461e6b1074ebc92
af00429c189464ddb8df704dc48035421f943444df6ca17390fb97466c2e7e9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 76544babbcf6515110bd81aaee8e7e63
043497692868c67ac84cdfe70d0a484517abd1c2
a19d5958d683662375a2469d1d7e551188469b967eb6f2bae2d5e43dac51a4f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 25 Nov 2022 13:36:28 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36106)
Hash 7fc7e22ecccb0cfd0ae897bb40a58efe
5d46470a711120793c362235105836fe49e699a4
1907005cab41fbd6d1d67df3b25586f3232e053a261c9e2b2503459f4980b1c5
GET /js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14302
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 20 Nov 2022 10:09:03 GMT
expires: Mon, 20 Nov 2023 10:09:03 GMT
cache-control: public, max-age=31536000
age: 444445
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 25 Nov 2022 13:36:28 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 216d858ad02d0f9765e7844973400881
62a1fb9255bfc33b0fbc8960502272a42ecf73f6
f90483fc88bda7a012064641af0cf72c31d2ae7522097e4ac52f0b096b519f79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 0506b14b60df85472e59f72a681e9bb2
aa82813ed1e58b0c68b5780c8f789322abdfa945
c711f8b3d7ddccdc142ab1a1a95ecda0451a40599279db883eb2be3a733482e3
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 25 Nov 2022 13:36:28 GMT
server: ESF
cache-control: private
content-length: 31070
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash e6c8fcf6d7bc4baa257e39fbec9eca33
2d9f2b6257557f07e9ae4bb3916a12f424b9b924
056b32fca0203185c25e0bb03237d90208c47cbcf269f195921016357080cd0d
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 25 Nov 2022 13:36:28 GMT
server: ESF
cache-control: private
content-length: 30971
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b7757171f2e55c37975a5bcdeba7a4ae
1ce146a166c3c1d510d26c855321ca4b2426353d
7675dc8e0d7a554bf286e61db1c9546aa6fc7188cb83c3d9bd5beb80c2351fe5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/at575R-tLq4/default.webp
142.250.74.150200 OK 2.2 kB URL HTTP/2 i.ytimg.com/vi_webp/at575R-tLq4/default.webp
IP 142.250.74.150:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 120x90, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1a5259576b4919852c296b8bc19fd957
71bc1dfd8a71ebd8f8cf667fd569cce8145666a9
ffcf73f6d94ba6882c7c5ac9039fe1c94f5677e8f7caa5a68c611ef7b36426ce
GET /vi_webp/at575R-tLq4/default.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2180
date: Fri, 25 Nov 2022 13:36:28 GMT
expires: Fri, 25 Nov 2022 15:36:28 GMT
cache-control: public, max-age=7200
etag: "1597665020"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 216d858ad02d0f9765e7844973400881
62a1fb9255bfc33b0fbc8960502272a42ecf73f6
f90483fc88bda7a012064641af0cf72c31d2ae7522097e4ac52f0b096b519f79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AMLnZu-61Bf0b3_RIOLvFEmrZV3MHMxTQeGDNyxZzyjgGg=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.4 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu-61Bf0b3_RIOLvFEmrZV3MHMxTQeGDNyxZzyjgGg=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash fea8064165c73a665024a72d78f6bb62
259df1f725f45210c9b95380df0b09d3d9fc7604
ada78fea9e275675377fd1ac09632f663106628808819f98774f6699ce69f661
GET /ytc/AMLnZu-61Bf0b3_RIOLvFEmrZV3MHMxTQeGDNyxZzyjgGg=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2371
x-xss-protection: 0
date: Fri, 25 Nov 2022 13:36:28 GMT
expires: Fri, 18 Nov 2022 21:30:48 GMT
cache-control: public, max-age=86400, no-transform
etag: "v10a"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b7757171f2e55c37975a5bcdeba7a4ae
1ce146a166c3c1d510d26c855321ca4b2426353d
7675dc8e0d7a554bf286e61db1c9546aa6fc7188cb83c3d9bd5beb80c2351fe5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 13:36:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.234200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 25 Nov 2022 13:36:28 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.234200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bb7c7effc16bb988df8f98363fbf34fc
e916a0cdacbd3edd203fbca941e6710c00d1b6b1
f36cf069fb4b8d09c21fe1036436352401500df87b3670b72df151c39d51c0e3
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1336
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 25 Nov 2022 13:36:28 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/player_api
172.217.21.174200 OK 519 B URL HTTP/2 www.youtube.com/player_api
IP 172.217.21.174:0
File type ASCII text, with very long lines (509)
Hash c7b23e02a9919c5c9f49cd1b145549db
d5ace90b4469679193182cbbf3fcd6ed3664500d
b71457462a989728bf6f9ba068a04b0ec3205dafbfa53d81a38cb42c9958f092
GET /player_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Fri, 25 Nov 2022 13:36:27 GMT
date: Fri, 25 Nov 2022 13:36:27 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=YTU5CU7OAdQ; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=8eiLuUH5ES8; Domain=.youtube.com; Expires=Wed, 24-May-2023 13:36:27 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+908; expires=Sun, 24-Nov-2024 13:36:27 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.addtoany.com/menu/page.js
104.22.71.197200 OK 0 B URL HTTP/2 static.addtoany.com/menu/page.js
IP 104.22.71.197:0
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 13:36:25 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 106022
etag: W/"c04-5ee0ab04c6251"
last-modified: Tue, 22 Nov 2022 08:09:18 GMT
vary: Accept-Encoding
via: e2s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76fac5ed19259902-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Feprotidin24%2F&tabs&width=355&height=320&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=true&appId=109168576278138
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Feprotidin24%2F&tabs&width=355&height=320&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=true&appId=109168576278138
IP 157.240.200.35:0
GET /plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Feprotidin24%2F&tabs&width=355&height=320&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=true&appId=109168576278138 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amaderprotidin.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: nuKodKDkxbS6gA8Vmd+NaBihePpYdg9hOqIezC7aKC9wTYQfjZ6WykdmGq8uQQWzQF/jOfhc5t/ksA5h2KBKcQ==
date: Fri, 25 Nov 2022 13:36:26 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/watch?v=at575R-tLq4&_=2
172.217.21.174200 OK 0 B URL HTTP/2 www.youtube.com/watch?v=at575R-tLq4&_=2
IP 172.217.21.174:0
GET /watch?v=at575R-tLq4&_=2 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://amaderprotidin.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 25 Nov 2022 13:36:27 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
server: ESF
x-xss-protection: 0
set-cookie: YSC=JdzJ6OU5kqA; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=; Domain=.youtube.com; Expires=Sat, 29-Feb-2020 13:36:27 GMT; Path=/; Secure; HttpOnly; SameSite=none
__Secure-YEC=CgtRWFJ2dFBwYm5oUSjbiYOcBg%3D%3D; Domain=.youtube.com; Expires=Mon, 25-Dec-2023 13:36:26 GMT; Path=/; Secure; HttpOnly; SameSite=lax
CONSENT=PENDING+258; expires=Sun, 24-Nov-2024 13:36:27 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2