27b558ee731dda1d97f637a99dbf13754f27c5b94730135deeac998ebe737a50

Analysis

max time kernel
146s
max time network
140s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
06/09/2024, 13:07 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

cf9a51772f8e5ff34d54fa9922007d7a_JaffaCakes118.html
Size

23KB
MD5

cf9a51772f8e5ff34d54fa9922007d7a
SHA1

949386e8da7f20aa722b5a1de85e4abcc3a35f89
SHA256

27b558ee731dda1d97f637a99dbf13754f27c5b94730135deeac998ebe737a50
SHA512

cf44c4a681b630d4bb44b1653850cbf672ad0cb20266ff81fcf89bdfd75407540784bc00fc9727364490a60c73b7401ed9ebce170e9531c6d02aa9e76b765619
SSDEEP

384:SZsd0KTq5Tlq+mbHSErWbqgeexOJb60Mhjvl6C+HISU7A1pupy92YvuxYK2Z9ZZU:SudXOVMtsqgee4Jb60Dfupy92YvXK2Za

Score

3^/10

discovery

Malware Config

Signatures

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Suspicious behavior: EnumeratesProcesses 10 IoCs

pid	Process
4164	msedge.exe
4164	msedge.exe
2380	msedge.exe
2380	msedge.exe
4656	identity_helper.exe
4656	identity_helper.exe
656	msedge.exe
656	msedge.exe
656	msedge.exe
656	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 10 IoCs

pid	Process
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe

Suspicious use of FindShellTrayWindow 25 IoCs

pid	Process
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe
2380	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2380 wrote to memory of 60	2380	msedge.exe	83
PID 2380 wrote to memory of 60	2380	msedge.exe	83
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4820	2380	msedge.exe	84
PID 2380 wrote to memory of 4164	2380	msedge.exe	85
PID 2380 wrote to memory of 4164	2380	msedge.exe	85
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86
PID 2380 wrote to memory of 2764	2380	msedge.exe	86

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\cf9a51772f8e5ff34d54fa9922007d7a_JaffaCakes118.html
1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:2380
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffe07ae46f8,0x7ffe07ae4708,0x7ffe07ae4718
  2⤵
  PID:60
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2164,10849238114317772825,5752370490171809223,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2200 /prefetch:2
  2⤵
  PID:4820
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2164,10849238114317772825,5752370490171809223,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2268 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4164
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2164,10849238114317772825,5752370490171809223,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2856 /prefetch:8
  2⤵
  PID:2764
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2164,10849238114317772825,5752370490171809223,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3304 /prefetch:1
  2⤵
  PID:208
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2164,10849238114317772825,5752370490171809223,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3432 /prefetch:1
  2⤵
  PID:2068
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2164,10849238114317772825,5752370490171809223,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4132 /prefetch:1
  2⤵
  PID:1916
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2164,10849238114317772825,5752370490171809223,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6120 /prefetch:1
  2⤵
  PID:1132
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2164,10849238114317772825,5752370490171809223,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5956 /prefetch:1
  2⤵
  PID:3980
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2164,10849238114317772825,5752370490171809223,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7144 /prefetch:1
  2⤵
  PID:4332
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2164,10849238114317772825,5752370490171809223,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6668 /prefetch:1
  2⤵
  PID:1048
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2164,10849238114317772825,5752370490171809223,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6616 /prefetch:1
  2⤵
  PID:1096
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2164,10849238114317772825,5752370490171809223,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6320 /prefetch:8
  2⤵
  PID:1008
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2164,10849238114317772825,5752370490171809223,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6320 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4656
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2164,10849238114317772825,5752370490171809223,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4104 /prefetch:1
  2⤵
  PID:4740
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2164,10849238114317772825,5752370490171809223,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7052 /prefetch:1
  2⤵
  PID:724
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2164,10849238114317772825,5752370490171809223,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=4820 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:656

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:3088

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:1376

Network

DNS

hdguru3d.com

msedge.exe

Remote address:

8.8.8.8:53

Request

hdguru3d.com

IN A

Response

hdguru3d.com

IN A

154.49.138.109
DNS

assets.pinterest.com

msedge.exe

Remote address:

8.8.8.8:53

Request

assets.pinterest.com

IN A

Response

assets.pinterest.com

IN CNAME

s.pinimg.com

s.pinimg.com

IN CNAME

s-pinimg-com.gslb.pinterest.com

s-pinimg-com.gslb.pinterest.com

IN CNAME

static.gslb.pinterest.net

static.gslb.pinterest.net

IN CNAME

dualstack.pinterest.map.fastly.net

dualstack.pinterest.map.fastly.net

IN A

151.101.36.84
GET

http://hdguru3d.com/wp-content/themes/Cutline-1-1.4-2ColumnRight/style.css

msedge.exe

Remote address:

154.49.138.109:80

Request

GET /wp-content/themes/Cutline-1-1.4-2ColumnRight/style.css HTTP/1.1
Host: hdguru3d.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: hcdn
Date: Fri, 06 Sep 2024 13:07:59 GMT
Content-Type: text/html
Content-Length: 795
Connection: keep-alive
location: https://hdguru3d.com/wp-content/themes/Cutline-1-1.4-2ColumnRight/style.css
platform: hostinger
panel: hpanel
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: a16491066ecb9fb0c50f1c322544268f-fast-edge2
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.282
GET

http://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.facebook.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:80

Request

GET /wp-content/plugins/social-sharing-toolkit/includes/buttons/button.facebook.js?ver=4.4.3 HTTP/1.1
Host: hdguru3d.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: hcdn
Date: Fri, 06 Sep 2024 13:08:00 GMT
Content-Type: text/html
Content-Length: 795
Connection: keep-alive
location: https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.facebook.js?ver=4.4.3
platform: hostinger
panel: hpanel
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: f1fb4de7307a2a62954192ab50169406-fast-edge2
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.247
GET

http://hdguru3d.com/wpress//wp-content/themes/twentyten/images/stories/001-marc-bone.jpg

msedge.exe

Remote address:

154.49.138.109:80

Request

GET /wpress//wp-content/themes/twentyten/images/stories/001-marc-bone.jpg HTTP/1.1
Host: hdguru3d.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: hcdn
Date: Fri, 06 Sep 2024 13:08:00 GMT
Content-Type: text/html
Content-Length: 795
Connection: keep-alive
Location: https://hdguru3d.com/wpress//wp-content/themes/twentyten/images/stories/001-marc-bone.jpg
Panel: hpanel
Platform: hostinger
X-Turbo-Charged-By: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 6e61cc74af36b4c8721dac5b9e6ea0cf-fast-edge2
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.274
GET

http://hdguru3d.com/wp-includes/js/wp-emoji-release.min.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:80

Request

GET /wp-includes/js/wp-emoji-release.min.js?ver=4.4.3 HTTP/1.1
Host: hdguru3d.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: hcdn
Date: Fri, 06 Sep 2024 13:08:01 GMT
Content-Type: text/html
Content-Length: 795
Connection: keep-alive
location: https://hdguru3d.com/wp-includes/js/wp-emoji-release.min.js?ver=4.4.3
platform: hostinger
panel: hpanel
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: d458b04b981d0de119bd9b0ba37fde4b-fast-edge2
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.271
GET

http://hdguru3d.com/wp-content/themes/Cutline-1-1.4-2ColumnRight/custom.css

msedge.exe

Remote address:

154.49.138.109:80

Request

GET /wp-content/themes/Cutline-1-1.4-2ColumnRight/custom.css HTTP/1.1
Host: hdguru3d.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: hcdn
Date: Fri, 06 Sep 2024 13:07:59 GMT
Content-Type: text/html
Content-Length: 795
Connection: keep-alive
location: https://hdguru3d.com/wp-content/themes/Cutline-1-1.4-2ColumnRight/custom.css
platform: hostinger
panel: hpanel
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 78368f1463fc3f5c56491cc99c21e8b7-fast-edge3
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.252
GET

http://hdguru3d.com/wp-content/plugins/quick-search/quick-search.js?ver=1.0

msedge.exe

Remote address:

154.49.138.109:80

Request

GET /wp-content/plugins/quick-search/quick-search.js?ver=1.0 HTTP/1.1
Host: hdguru3d.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: hcdn
Date: Fri, 06 Sep 2024 13:07:59 GMT
Content-Type: text/html
Content-Length: 795
Connection: keep-alive
location: https://hdguru3d.com/wp-content/plugins/quick-search/quick-search.js?ver=1.0
platform: hostinger
panel: hpanel
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: a8a4ed9b89eee5e72f9b921d307facf3-fast-edge3
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.247
GET

http://hdguru3d.com/wp-content/plugins/akismet/_inc/form.js?ver=3.1.7

msedge.exe

Remote address:

154.49.138.109:80

Request

GET /wp-content/plugins/akismet/_inc/form.js?ver=3.1.7 HTTP/1.1
Host: hdguru3d.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: hcdn
Date: Fri, 06 Sep 2024 13:08:00 GMT
Content-Type: text/html
Content-Length: 795
Connection: keep-alive
location: https://hdguru3d.com/wp-content/plugins/akismet/_inc/form.js?ver=3.1.7
platform: hostinger
panel: hpanel
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: f771c1018fe21117ebb8383196a30ffc-fast-edge3
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.261
GET

http://hdguru3d.com/wp-includes/js/jquery/jquery.js?ver=1.11.3

msedge.exe

Remote address:

154.49.138.109:80

Request

GET /wp-includes/js/jquery/jquery.js?ver=1.11.3 HTTP/1.1
Host: hdguru3d.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: hcdn
Date: Fri, 06 Sep 2024 13:07:59 GMT
Content-Type: text/html
Content-Length: 795
Connection: keep-alive
location: https://hdguru3d.com/wp-includes/js/jquery/jquery.js?ver=1.11.3
platform: hostinger
panel: hpanel
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 9cb484b1832f62cf3c53b157ba597827-fast-edge3
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.275
GET

http://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/script_2.1.2.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:80

Request

GET /wp-content/plugins/social-sharing-toolkit/script_2.1.2.js?ver=4.4.3 HTTP/1.1
Host: hdguru3d.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: hcdn
Date: Fri, 06 Sep 2024 13:08:00 GMT
Content-Type: text/html
Content-Length: 795
Connection: keep-alive
location: https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/script_2.1.2.js?ver=4.4.3
platform: hostinger
panel: hpanel
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 02fdf9cdf70d9a50378f8db46c0598b4-fast-edge3
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.271
GET

http://hdguru3d.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1

msedge.exe

Remote address:

154.49.138.109:80

Request

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 HTTP/1.1
Host: hdguru3d.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: hcdn
Date: Fri, 06 Sep 2024 13:07:59 GMT
Content-Type: text/html
Content-Length: 795
Connection: keep-alive
location: https://hdguru3d.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
platform: hostinger
panel: hpanel
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 805840e8f805faa760d835bd4e0a2434-fast-edge3
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.253
GET

http://hdguru3d.com/wp-includes/js/wp-embed.min.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:80

Request

GET /wp-includes/js/wp-embed.min.js?ver=4.4.3 HTTP/1.1
Host: hdguru3d.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: hcdn
Date: Fri, 06 Sep 2024 13:08:00 GMT
Content-Type: text/html
Content-Length: 795
Connection: keep-alive
location: https://hdguru3d.com/wp-includes/js/wp-embed.min.js?ver=4.4.3
platform: hostinger
panel: hpanel
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 14c2a9434e257aa778ead79977b6055e-fast-edge3
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.266
GET

http://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/style_2.1.2.css?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:80

Request

GET /wp-content/plugins/social-sharing-toolkit/style_2.1.2.css?ver=4.4.3 HTTP/1.1
Host: hdguru3d.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: hcdn
Date: Fri, 06 Sep 2024 13:07:59 GMT
Content-Type: text/html
Content-Length: 795
Connection: keep-alive
location: https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/style_2.1.2.css?ver=4.4.3
platform: hostinger
panel: hpanel
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 05a5806a00f3ad960f4a798686b31769-fast-edge2
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.285
GET

http://hdguru3d.com/wp-includes/js/comment-reply.min.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:80

Request

GET /wp-includes/js/comment-reply.min.js?ver=4.4.3 HTTP/1.1
Host: hdguru3d.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: hcdn
Date: Fri, 06 Sep 2024 13:08:00 GMT
Content-Type: text/html
Content-Length: 795
Connection: keep-alive
location: https://hdguru3d.com/wp-includes/js/comment-reply.min.js?ver=4.4.3
platform: hostinger
panel: hpanel
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 4567e27d8335dadc627c38f674db9672-fast-edge2
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.283
GET

http://hdguru3d.com/wp-content/plugins/quick-search/quick-search.css?ver=1.0

msedge.exe

Remote address:

154.49.138.109:80

Request

GET /wp-content/plugins/quick-search/quick-search.css?ver=1.0 HTTP/1.1
Host: hdguru3d.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: hcdn
Date: Fri, 06 Sep 2024 13:07:59 GMT
Content-Type: text/html
Content-Length: 795
Connection: keep-alive
location: https://hdguru3d.com/wp-content/plugins/quick-search/quick-search.css?ver=1.0
platform: hostinger
panel: hpanel
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 123cf5ff908109a8d68d82330282fbc6-fast-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.271
GET

http://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.googleplus.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:80

Request

GET /wp-content/plugins/social-sharing-toolkit/includes/buttons/button.googleplus.js?ver=4.4.3 HTTP/1.1
Host: hdguru3d.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: hcdn
Date: Fri, 06 Sep 2024 13:08:00 GMT
Content-Type: text/html
Content-Length: 795
Connection: keep-alive
location: https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.googleplus.js?ver=4.4.3
platform: hostinger
panel: hpanel
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: a9cf5516aabecc45a4284fd08f9eae03-fast-edge1
x-hcdn-cache-status: MISS
x-hcdn-upstream-rt: 0.252
DNS

58.55.71.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

58.55.71.13.in-addr.arpa

IN PTR

Response
DNS

81.144.22.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

81.144.22.2.in-addr.arpa

IN PTR

Response

81.144.22.2.in-addr.arpa

IN PTR

a2-22-144-81deploystaticakamaitechnologiescom
DNS

76.32.126.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

76.32.126.40.in-addr.arpa

IN PTR

Response
GET

https://hdguru3d.com/wp-content/themes/Cutline-1-1.4-2ColumnRight/custom.css

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-content/themes/Cutline-1-1.4-2ColumnRight/custom.css HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:07:59 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
content-security-policy: upgrade-insecure-requests
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 1445afeba74ea59c9099512007c444ec-fast-edge1
GET

https://hdguru3d.com/wp-content/plugins/quick-search/quick-search.css?ver=1.0

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-content/plugins/quick-search/quick-search.css?ver=1.0 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:07:59 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 41145f6e568c4d85fabdb2e2de9c9d68-fast-edge1
GET

https://hdguru3d.com/wp-content/themes/Cutline-1-1.4-2ColumnRight/style.css

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-content/themes/Cutline-1-1.4-2ColumnRight/style.css HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:07:59 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 9569a99443cb9041aa15b3d0fb37b446-fast-edge1
GET

https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/style_2.1.2.css?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-content/plugins/social-sharing-toolkit/style_2.1.2.css?ver=4.4.3 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:07:59 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
content-security-policy: upgrade-insecure-requests
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 17adf8e54fb90470f32fc70f6f810d0e-fast-edge1
GET

https://hdguru3d.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:07:59 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: d4df3ade59a46bfd9c7a604fbe380acc-fast-edge1
GET

https://hdguru3d.com/wp-includes/js/jquery/jquery.js?ver=1.11.3

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-includes/js/jquery/jquery.js?ver=1.11.3 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:07:59 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 0f92dd1127908dc7e4d9d932477ceaa7-fast-edge1
GET

https://hdguru3d.com/wp-content/plugins/quick-search/quick-search.js?ver=1.0

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-content/plugins/quick-search/quick-search.js?ver=1.0 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:07:59 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 81f94b36559b1b764d622e959bc94372-fast-edge1
GET

https://hdguru3d.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:08:00 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
age: 1
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: daee3dbe26a7982c7a4e5c251b5a987e-fast-edge1
GET

https://hdguru3d.com/wp-content/plugins/quick-search/quick-search.js?ver=1.0

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-content/plugins/quick-search/quick-search.js?ver=1.0 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:08:00 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
age: 1
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: b544d016a5cdc7a01b4da43a0efb509e-fast-edge1
GET

https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.facebook.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-content/plugins/social-sharing-toolkit/includes/buttons/button.facebook.js?ver=4.4.3 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:08:00 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: a36c6b26488649b7fdd7d82f125290cf-fast-edge1
GET

https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.googleplus.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-content/plugins/social-sharing-toolkit/includes/buttons/button.googleplus.js?ver=4.4.3 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:08:00 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 9e8128d2a9bc8e2a813dd89f20388050-fast-edge1
GET

https://hdguru3d.com/wp-content/plugins/akismet/_inc/form.js?ver=3.1.7

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-content/plugins/akismet/_inc/form.js?ver=3.1.7 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:08:00 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: be0463891036bd754ba411728ef4e73a-fast-edge1
GET

https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/script_2.1.2.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-content/plugins/social-sharing-toolkit/script_2.1.2.js?ver=4.4.3 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:08:00 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 20176d8d7569eec01ab47cab50026774-fast-edge1
GET

https://hdguru3d.com/wp-includes/js/wp-embed.min.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-includes/js/wp-embed.min.js?ver=4.4.3 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:08:00 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 5e391ba5bce662e820bcf1779b45501e-fast-edge1
GET

https://hdguru3d.com/wp-includes/js/comment-reply.min.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-includes/js/comment-reply.min.js?ver=4.4.3 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:08:01 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 7d5f2219e067d7e0d1ff94a0b7cd0b16-fast-edge1
GET

https://hdguru3d.com/wpress//wp-content/themes/twentyten/images/stories/001-marc-bone.jpg

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wpress//wp-content/themes/twentyten/images/stories/001-marc-bone.jpg HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:08:01 GMT
content-type: text/html
content-length: 914
content-encoding: br
etag: W/"999-65a6dadb-b7a248471355346d;;;"
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
panel: hpanel
platform: hostinger
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 2b8770a6f823ddf6be3d48ff0ee242a5-fast-edge1
GET

https://hdguru3d.com/wp-includes/js/wp-emoji-release.min.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-includes/js/wp-emoji-release.min.js?ver=4.4.3 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:08:01 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 40f3c76b66fe3e2ebc9d179bd468865c-fast-edge1
GET

https://hdguru3d.com/wp-content/plugins/akismet/_inc/form.js?ver=3.1.7

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-content/plugins/akismet/_inc/form.js?ver=3.1.7 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:08:21 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
age: 21
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 0209c0a46e83a0abcb8328e96bfa473f-fast-edge1
GET

https://hdguru3d.com/wp-includes/js/comment-reply.min.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-includes/js/comment-reply.min.js?ver=4.4.3 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:08:21 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
age: 21
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: f715828d325f40d89ad8c9b9335c9639-fast-edge1
GET

https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/script_2.1.2.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-content/plugins/social-sharing-toolkit/script_2.1.2.js?ver=4.4.3 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:08:21 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
age: 21
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 9683019a258c2367a6f595846bf67392-fast-edge1
GET

https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.facebook.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-content/plugins/social-sharing-toolkit/includes/buttons/button.facebook.js?ver=4.4.3 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:08:21 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
age: 21
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: b9d8b4a9e6a2c0826e575aaf428b489d-fast-edge1
GET

https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.googleplus.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-content/plugins/social-sharing-toolkit/includes/buttons/button.googleplus.js?ver=4.4.3 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:08:43 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
age: 43
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 7ce9818b9ef36c713cd1ee494e78b9f2-fast-edge1
GET

https://hdguru3d.com/wp-includes/js/wp-embed.min.js?ver=4.4.3

msedge.exe

Remote address:

154.49.138.109:443

Request

GET /wp-includes/js/wp-embed.min.js?ver=4.4.3 HTTP/2.0
host: hdguru3d.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

server: hcdn
date: Fri, 06 Sep 2024 13:08:43 GMT
content-type: text/html
content-length: 912
last-modified: Tue, 16 Jan 2024 19:36:59 GMT
etag: "999-65a6dadb-b7a248471355346d;br"
content-encoding: br
platform: hostinger
panel: hpanel
x-turbo-charged-by: LiteSpeed
age: 43
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 161f0ae5633d6a206ecb73b2aaeac0a5-fast-edge1
DNS

109.138.49.154.in-addr.arpa

Remote address:

8.8.8.8:53

Request

109.138.49.154.in-addr.arpa

IN PTR

Response
DNS

95.221.229.192.in-addr.arpa

Remote address:

8.8.8.8:53

Request

95.221.229.192.in-addr.arpa

IN PTR

Response
DNS

assets.pinterest.com

msedge.exe

Remote address:

8.8.8.8:53

Request

assets.pinterest.com

IN A

Response

assets.pinterest.com

IN CNAME

s.pinimg.com

s.pinimg.com

IN CNAME

s-pinimg-com.gslb.pinterest.com

s-pinimg-com.gslb.pinterest.com

IN CNAME

static.gslb.pinterest.net

static.gslb.pinterest.net

IN CNAME

s.pinimg.com.edgekey.net

s.pinimg.com.edgekey.net

IN CNAME

e6449.dsca.akamaiedge.net

e6449.dsca.akamaiedge.net

IN A

2.18.108.188
DNS

www.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.google.com

IN A

Response

www.google.com

IN A

142.250.27.106

www.google.com

IN A

142.250.27.99

www.google.com

IN A

142.250.27.105

www.google.com

IN A

142.250.27.104

www.google.com

IN A

142.250.27.103

www.google.com

IN A

142.250.27.147
GET

https://www.google.com/recaptcha/api.js?hl=en

msedge.exe

Remote address:

142.250.27.106:443

Request

GET /recaptcha/api.js?hl=en HTTP/2.0
host: www.google.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

http://pagead2.googlesyndication.com/pagead/show_ads.js

msedge.exe

Remote address:

142.250.102.157:80

Request

GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Fri, 06 Sep 2024 13:08:00 GMT
Expires: Fri, 06 Sep 2024 13:08:00 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 5039053280135863461
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 10101
X-XSS-Protection: 0
DNS

rcm-na.amazon-adsystem.com

msedge.exe

Remote address:

8.8.8.8:53

Request

rcm-na.amazon-adsystem.com

IN A

Response

rcm-na.amazon-adsystem.com

IN CNAME

rcm-na.assoc-amazon.com
GET

http://assets.pinterest.com/js/pinit.js?ver=4.4.3

msedge.exe

Remote address:

2.18.108.188:80

Request

GET /js/pinit.js?ver=4.4.3 HTTP/1.1
Host: assets.pinterest.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

ETag: "82bfd941d2c9b3b9e0650a27c9d11737"
Content-Encoding: gzip
Accept-Ranges: bytes
Content-Type: application/javascript; charset=utf-8
Content-Length: 290
Akamai-X-True-TTL: 300
Cache-Control: max-age=300
Connection: keep-alive
Vary: Accept-Encoding, Origin
X-CDN: akamai
Access-Control-Max-Age: 86400
Access-Control-Expose-Headers: X-CDN
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
DNS

platform.twitter.com

msedge.exe

Remote address:

8.8.8.8:53

Request

platform.twitter.com

IN A

Response

platform.twitter.com

IN CNAME

cs472.wac.edgecastcdn.net

cs472.wac.edgecastcdn.net

IN CNAME

cs1-apr-8315.wac.edgecastcdn.net

cs1-apr-8315.wac.edgecastcdn.net

IN CNAME

wac.apr-8315.edgecastdns.net

wac.apr-8315.edgecastdns.net

IN CNAME

cs1-lb-eu.8315.ecdns.net

cs1-lb-eu.8315.ecdns.net

IN CNAME

cs41.wac.edgecastcdn.net

cs41.wac.edgecastcdn.net

IN A

93.184.220.66
GET

https://platform.twitter.com/widgets.js?ver=4.4.3

msedge.exe

Remote address:

93.184.220.66:443

Request

GET /widgets.js?ver=4.4.3 HTTP/1.1
Host: platform.twitter.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 1067
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Fri, 06 Sep 2024 13:08:00 GMT
Etag: "824beb891744db98ccbd3a456e59e0f7+gzip"
Last-Modified: Mon, 11 Dec 2023 17:20:28 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (lhd/35CA)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amz-server-side-encryption: AES256
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 27597
GET

https://platform.twitter.com/js/button.856debeac157d9669cf51e73a08fbc93.js

msedge.exe

Remote address:

93.184.220.66:443

Request

GET /js/button.856debeac157d9669cf51e73a08fbc93.js HTTP/1.1
Host: platform.twitter.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 14292012
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Fri, 06 Sep 2024 13:08:43 GMT
Etag: "fdf02dd038ed38dbf3c240d56262af0c+gzip"
Last-Modified: Mon, 11 Dec 2023 17:19:47 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (lhd/35CA)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amz-server-side-encryption: AES256
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2620
GET

https://platform.twitter.com/widgets/tweet_button.2f70fb173b9000da126c79afe2098f02.en.html

msedge.exe

Remote address:

93.184.220.66:443

Request

GET /widgets/tweet_button.2f70fb173b9000da126c79afe2098f02.en.html HTTP/1.1
Host: platform.twitter.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: iframe
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 14292019
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Fri, 06 Sep 2024 13:08:43 GMT
Etag: "e29e65db7bf0a096587728e1faacfd9c+gzip"
Last-Modified: Mon, 11 Dec 2023 17:19:48 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (lhd/35CA)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amz-server-side-encryption: AES256
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 12332
DNS

106.27.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

106.27.250.142.in-addr.arpa

IN PTR

Response

106.27.250.142.in-addr.arpa

IN PTR

ra-in-f1061e100net
DNS

157.102.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

157.102.250.142.in-addr.arpa

IN PTR

Response

157.102.250.142.in-addr.arpa

IN PTR

rb-in-f1571e100net
DNS

188.108.18.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

188.108.18.2.in-addr.arpa

IN PTR

Response

188.108.18.2.in-addr.arpa

IN PTR

a2-18-108-188deploystaticakamaitechnologiescom
DNS

66.220.184.93.in-addr.arpa

Remote address:

8.8.8.8:53

Request

66.220.184.93.in-addr.arpa

IN PTR

Response
DNS

94.27.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

94.27.250.142.in-addr.arpa

IN PTR

Response

94.27.250.142.in-addr.arpa

IN PTR

ra-in-f941e100net
DNS

154.239.44.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

154.239.44.20.in-addr.arpa

IN PTR

Response
DNS

www.linksalpha.com

Remote address:

8.8.8.8:53

Request

www.linksalpha.com

IN A

Response
DNS

connect.facebook.net

Remote address:

8.8.8.8:53

Request

connect.facebook.net

IN A

Response

connect.facebook.net

IN CNAME

scontent.xx.fbcdn.net

scontent.xx.fbcdn.net

IN A

157.240.5.10
DNS

rcm-na.amazon-adsystem.com

msedge.exe

Remote address:

8.8.8.8:53

Request

rcm-na.amazon-adsystem.com

IN A

Response

rcm-na.amazon-adsystem.com

IN CNAME

rcm-na.assoc-amazon.com
DNS

ah.pricegrabber.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ah.pricegrabber.com

IN A

Response
GET

http://www.google-analytics.com/ga.js

msedge.exe

Remote address:

142.250.27.100:80

Request

GET /ga.js HTTP/1.1
Host: www.google-analytics.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Fri, 06 Sep 2024 12:57:14 GMT
Expires: Fri, 06 Sep 2024 14:57:14 GMT
Cache-Control: public, max-age=7200
Age: 667
Last-Modified: Tue, 12 Dec 2023 18:09:08 GMT
Content-Type: text/javascript
Vary: Accept-Encoding
DNS

googleads.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

googleads.g.doubleclick.net

IN A

Response

googleads.g.doubleclick.net

IN A

142.250.27.155

googleads.g.doubleclick.net

IN A

142.250.27.154

googleads.g.doubleclick.net

IN A

142.250.27.156

googleads.g.doubleclick.net

IN A

142.250.27.157
DNS

100.27.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

100.27.250.142.in-addr.arpa

IN PTR

Response

100.27.250.142.in-addr.arpa

IN PTR

ra-in-f1001e100net
DNS

155.27.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

155.27.250.142.in-addr.arpa

IN PTR

Response

155.27.250.142.in-addr.arpa

IN PTR

ra-in-f1551e100net
DNS

connect.facebook.net

Remote address:

8.8.8.8:53

Request

connect.facebook.net

IN A

Response

connect.facebook.net

IN CNAME

scontent.xx.fbcdn.net

scontent.xx.fbcdn.net

IN A

157.240.5.10
DNS

103.169.127.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

103.169.127.40.in-addr.arpa

IN PTR

Response
DNS

56.126.166.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

56.126.166.20.in-addr.arpa

IN PTR

Response
DNS

25.211.222.173.in-addr.arpa

Remote address:

8.8.8.8:53

Request

25.211.222.173.in-addr.arpa

IN PTR

Response

25.211.222.173.in-addr.arpa

IN PTR

a173-222-211-25deploystaticakamaitechnologiescom
GET

https://assets.pinterest.com/js/pinit_main.js?0.9033075536892559

msedge.exe

Remote address:

2.18.108.188:443

Request

GET /js/pinit_main.js?0.9033075536892559 HTTP/2.0
host: assets.pinterest.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

etag: "539011b799990d9851f6350858332e47"
x-amz-server-side-encryption: AES256
content-encoding: br
accept-ranges: bytes
content-type: application/javascript;charset=utf-8
content-length: 18698
cache-control: max-age=151
alt-svc: h3=":443"; ma=600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
DNS

syndication.twitter.com

msedge.exe

Remote address:

8.8.8.8:53

Request

syndication.twitter.com

IN A

Response

syndication.twitter.com

IN A

104.244.42.72
GET

https://syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fhdguru3d.com%2Fmusic-industry-turns-3d-on-in-concert-films-and-screening%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1725628122469%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%222615f7e52b7e0%3A1702314776716%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D

msedge.exe

Remote address:

104.244.42.72:443

Request

GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fhdguru3d.com%2Fmusic-industry-turns-3d-on-in-concert-films-and-screening%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1725628122469%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%222615f7e52b7e0%3A1702314776716%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D HTTP/2.0
host: syndication.twitter.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 06 Sep 2024 13:08:43 GMT
perf: 7402827104
vary: Origin
server: tsa_f
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Fri, 06 Sep 2024 13:08:43 GMT
content-length: 43
x-transaction-id: c341b9e3488c271d
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: 8db0092370fe2e3e28bcf3ed5835b425378dda2330233f9381c4de014b3d9cc6
DNS

twitter.com

msedge.exe

Remote address:

8.8.8.8:53

Request

twitter.com

IN A

Response

twitter.com

IN A

104.244.42.129
DNS

72.42.244.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

72.42.244.104.in-addr.arpa

IN PTR

Response
DNS

tpc.googlesyndication.com

msedge.exe

Remote address:

8.8.8.8:53

Request

tpc.googlesyndication.com

IN A

Response

tpc.googlesyndication.com

IN A

142.250.102.132
GET

https://tpc.googlesyndication.com/sodar/sodar2.js

msedge.exe

Remote address:

142.250.102.132:443

Request

GET /sodar/sodar2.js HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

log.pinterest.com

msedge.exe

Remote address:

8.8.8.8:53

Request

log.pinterest.com

IN A

Response

log.pinterest.com

IN CNAME

prod.pinterest.global.map.fastly.net

prod.pinterest.global.map.fastly.net

IN A

151.101.0.84

prod.pinterest.global.map.fastly.net

IN A

151.101.64.84

prod.pinterest.global.map.fastly.net

IN A

151.101.192.84

prod.pinterest.global.map.fastly.net

IN A

151.101.128.84
GET

https://log.pinterest.com/?type=pidget&guid=qWH2Lw7tGJ_C&tv=2021110201&event=init&sub=www&button_count=1&follow_count=0&pin_count=0&profile_count=0&board_count=0&section_count=0&lang=en&nvl=en-US&via=http%3A%2F%2Fhdguru3d.com%2Fmusic-industry-turns-3d-on-in-concert-films-and-screening%2F&viaSrc=canonical

msedge.exe

Remote address:

151.101.0.84:443

Request

GET /?type=pidget&guid=qWH2Lw7tGJ_C&tv=2021110201&event=init&sub=www&button_count=1&follow_count=0&pin_count=0&profile_count=0&board_count=0&section_count=0&lang=en&nvl=en-US&via=http%3A%2F%2Fhdguru3d.com%2Fmusic-industry-turns-3d-on-in-concert-films-and-screening%2F&viaSrc=canonical HTTP/2.0
host: log.pinterest.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 400

cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-envoy-upstream-service-time: 4
server: envoy
x-pinterest-rid: 1650646873665926
x-pinterest-rid-128bit: 8a53d6a39871ba4be512c1dc68aa9aa8
accept-ranges: bytes
date: Fri, 06 Sep 2024 13:08:44 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600055-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1725628125.880718,VS0,VE23
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
alt-svc: h3=":443";ma=600
content-length: 0
DNS

132.102.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

132.102.250.142.in-addr.arpa

IN PTR

Response

132.102.250.142.in-addr.arpa

IN PTR

rb-in-f1321e100net
DNS

84.0.101.151.in-addr.arpa

Remote address:

8.8.8.8:53

Request

84.0.101.151.in-addr.arpa

IN PTR

Response
DNS

172.210.232.199.in-addr.arpa

Remote address:

8.8.8.8:53

Request

172.210.232.199.in-addr.arpa

IN PTR

Response
DNS

21.236.111.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

21.236.111.52.in-addr.arpa

IN PTR

Response

154.49.138.109:80

http://hdguru3d.com/wp-includes/js/wp-emoji-release.min.js?ver=4.4.3

http

msedge.exe

2.0kB
5.7kB
12
12

HTTP Request

GET http://hdguru3d.com/wp-content/themes/Cutline-1-1.4-2ColumnRight/style.css

HTTP Response

301

HTTP Request

GET http://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.facebook.js?ver=4.4.3

HTTP Response

301

HTTP Request

GET http://hdguru3d.com/wpress//wp-content/themes/twentyten/images/stories/001-marc-bone.jpg

HTTP Response

301

HTTP Request

GET http://hdguru3d.com/wp-includes/js/wp-emoji-release.min.js?ver=4.4.3

HTTP Response

301
154.49.138.109:80

http://hdguru3d.com/wp-content/plugins/akismet/_inc/form.js?ver=3.1.7

http

msedge.exe

1.5kB
4.3kB
10
10

HTTP Request

GET http://hdguru3d.com/wp-content/themes/Cutline-1-1.4-2ColumnRight/custom.css

HTTP Response

301

HTTP Request

GET http://hdguru3d.com/wp-content/plugins/quick-search/quick-search.js?ver=1.0

HTTP Response

301

HTTP Request

GET http://hdguru3d.com/wp-content/plugins/akismet/_inc/form.js?ver=3.1.7

HTTP Response

301
154.49.138.109:80

http://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/script_2.1.2.js?ver=4.4.3

http

msedge.exe

1.1kB
3.0kB
9
8

HTTP Request

GET http://hdguru3d.com/wp-includes/js/jquery/jquery.js?ver=1.11.3

HTTP Response

301

HTTP Request

GET http://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/script_2.1.2.js?ver=4.4.3

HTTP Response

301
154.49.138.109:80

http://hdguru3d.com/wp-includes/js/wp-embed.min.js?ver=4.4.3

http

msedge.exe

1.1kB
2.9kB
9
8

HTTP Request

GET http://hdguru3d.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1

HTTP Response

301

HTTP Request

GET http://hdguru3d.com/wp-includes/js/wp-embed.min.js?ver=4.4.3

HTTP Response

301
154.49.138.109:80

http://hdguru3d.com/wp-includes/js/comment-reply.min.js?ver=4.4.3

http

msedge.exe

1.1kB
3.0kB
9
8

HTTP Request

GET http://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/style_2.1.2.css?ver=4.4.3

HTTP Response

301

HTTP Request

GET http://hdguru3d.com/wp-includes/js/comment-reply.min.js?ver=4.4.3

HTTP Response

301
154.49.138.109:80

http://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.googleplus.js?ver=4.4.3

http

msedge.exe

1.2kB
3.0kB
9
8

HTTP Request

GET http://hdguru3d.com/wp-content/plugins/quick-search/quick-search.css?ver=1.0

HTTP Response

301

HTTP Request

GET http://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.googleplus.js?ver=4.4.3

HTTP Response

301
151.101.36.84:445

assets.pinterest.com

260 B
5
154.49.138.109:443

https://hdguru3d.com/wp-includes/js/wp-embed.min.js?ver=4.4.3

tls, http2

msedge.exe

5.5kB
37.4kB
53
54

HTTP Request

GET https://hdguru3d.com/wp-content/themes/Cutline-1-1.4-2ColumnRight/custom.css

HTTP Request

GET https://hdguru3d.com/wp-content/plugins/quick-search/quick-search.css?ver=1.0

HTTP Request

GET https://hdguru3d.com/wp-content/themes/Cutline-1-1.4-2ColumnRight/style.css

HTTP Request

GET https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/style_2.1.2.css?ver=4.4.3

HTTP Request

GET https://hdguru3d.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1

HTTP Request

GET https://hdguru3d.com/wp-includes/js/jquery/jquery.js?ver=1.11.3

HTTP Request

GET https://hdguru3d.com/wp-content/plugins/quick-search/quick-search.js?ver=1.0

HTTP Response

404

HTTP Response

404

HTTP Response

404

HTTP Response

404

HTTP Response

404

HTTP Response

404

HTTP Response

404

HTTP Request

GET https://hdguru3d.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1

HTTP Response

404

HTTP Request

GET https://hdguru3d.com/wp-content/plugins/quick-search/quick-search.js?ver=1.0

HTTP Response

404

HTTP Request

GET https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.facebook.js?ver=4.4.3

HTTP Request

GET https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.googleplus.js?ver=4.4.3

HTTP Request

GET https://hdguru3d.com/wp-content/plugins/akismet/_inc/form.js?ver=3.1.7

HTTP Request

GET https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/script_2.1.2.js?ver=4.4.3

HTTP Request

GET https://hdguru3d.com/wp-includes/js/wp-embed.min.js?ver=4.4.3

HTTP Request

GET https://hdguru3d.com/wp-includes/js/comment-reply.min.js?ver=4.4.3

HTTP Request

GET https://hdguru3d.com/wpress//wp-content/themes/twentyten/images/stories/001-marc-bone.jpg

HTTP Response

404

HTTP Response

404

HTTP Response

404

HTTP Response

404

HTTP Response

404

HTTP Response

404

HTTP Response

404

HTTP Request

GET https://hdguru3d.com/wp-includes/js/wp-emoji-release.min.js?ver=4.4.3

HTTP Response

404

HTTP Request

GET https://hdguru3d.com/wp-content/plugins/akismet/_inc/form.js?ver=3.1.7

HTTP Response

404

HTTP Request

GET https://hdguru3d.com/wp-includes/js/comment-reply.min.js?ver=4.4.3

HTTP Response

404

HTTP Request

GET https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/script_2.1.2.js?ver=4.4.3

HTTP Response

404

HTTP Request

GET https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.facebook.js?ver=4.4.3

HTTP Response

404

HTTP Request

GET https://hdguru3d.com/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.googleplus.js?ver=4.4.3

HTTP Response

404

HTTP Request

GET https://hdguru3d.com/wp-includes/js/wp-embed.min.js?ver=4.4.3

HTTP Response

404
154.49.138.109:443

hdguru3d.com

tls

msedge.exe

885 B
6.3kB
8
9
154.49.138.109:443

hdguru3d.com

tls, http2

msedge.exe

1.1kB
7.8kB
12
12
154.49.138.109:443

hdguru3d.com

tls, http2

msedge.exe

1.1kB
7.8kB
12
12
154.49.138.109:443

hdguru3d.com

tls

msedge.exe

1.1kB
7.6kB
11
11
154.49.138.109:443

hdguru3d.com

tls

msedge.exe

1.1kB
7.6kB
11
11
2.18.108.188:139

assets.pinterest.com

260 B
5
142.250.27.106:443

https://www.google.com/recaptcha/api.js?hl=en

tls, http2

msedge.exe

1.9kB
7.5kB
17
19

HTTP Request

GET https://www.google.com/recaptcha/api.js?hl=en
142.250.102.157:80

http://pagead2.googlesyndication.com/pagead/show_ads.js

http

msedge.exe

788 B
11.2kB
10
13

HTTP Request

GET http://pagead2.googlesyndication.com/pagead/show_ads.js

HTTP Response

200
2.18.108.188:80

http://assets.pinterest.com/js/pinit.js?ver=4.4.3

http

msedge.exe

644 B
1.0kB
7
6

HTTP Request

GET http://assets.pinterest.com/js/pinit.js?ver=4.4.3

HTTP Response

200
93.184.220.66:443

https://platform.twitter.com/widgets/tweet_button.2f70fb173b9000da126c79afe2098f02.en.html

tls, http

msedge.exe

4.3kB
53.1kB
31
47

HTTP Request

GET https://platform.twitter.com/widgets.js?ver=4.4.3

HTTP Response

200

HTTP Request

GET https://platform.twitter.com/js/button.856debeac157d9669cf51e73a08fbc93.js

HTTP Response

200

HTTP Request

GET https://platform.twitter.com/widgets/tweet_button.2f70fb173b9000da126c79afe2098f02.en.html

HTTP Response

200
157.240.5.10:445

connect.facebook.net

260 B
5
142.250.27.100:80

http://www.google-analytics.com/ga.js

http

msedge.exe

862 B
18.3kB
12
17

HTTP Request

GET http://www.google-analytics.com/ga.js

HTTP Response

200
142.250.27.155:443

googleads.g.doubleclick.net

tls, http2

msedge.exe

999 B
5.9kB
9
9
157.240.5.10:139

connect.facebook.net

260 B
5
2.18.108.188:443

https://assets.pinterest.com/js/pinit_main.js?0.9033075536892559

tls, http2

msedge.exe

2.3kB
27.6kB
28
32

HTTP Request

GET https://assets.pinterest.com/js/pinit_main.js?0.9033075536892559

HTTP Response

200
104.244.42.72:443

https://syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fhdguru3d.com%2Fmusic-industry-turns-3d-on-in-concert-films-and-screening%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1725628122469%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%222615f7e52b7e0%3A1702314776716%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D

tls, http2

msedge.exe

2.0kB
4.6kB
11
12

HTTP Request

GET https://syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fhdguru3d.com%2Fmusic-industry-turns-3d-on-in-concert-films-and-screening%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1725628122469%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%222615f7e52b7e0%3A1702314776716%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D

HTTP Response

200
142.250.102.132:443

https://tpc.googlesyndication.com/sodar/sodar2.js

tls, http2

msedge.exe

1.9kB
13.3kB
19
19

HTTP Request

GET https://tpc.googlesyndication.com/sodar/sodar2.js
151.101.0.84:443

https://log.pinterest.com/?type=pidget&guid=qWH2Lw7tGJ_C&tv=2021110201&event=init&sub=www&button_count=1&follow_count=0&pin_count=0&profile_count=0&board_count=0&section_count=0&lang=en&nvl=en-US&via=http%3A%2F%2Fhdguru3d.com%2Fmusic-industry-turns-3d-on-in-concert-films-and-screening%2F&viaSrc=canonical

tls, http2

msedge.exe

1.8kB
6.9kB
12
15

HTTP Request

GET https://log.pinterest.com/?type=pidget&guid=qWH2Lw7tGJ_C&tv=2021110201&event=init&sub=www&button_count=1&follow_count=0&pin_count=0&profile_count=0&board_count=0&section_count=0&lang=en&nvl=en-US&via=http%3A%2F%2Fhdguru3d.com%2Fmusic-industry-turns-3d-on-in-concert-films-and-screening%2F&viaSrc=canonical

HTTP Response

400

8.8.8.8:53

hdguru3d.com

dns

msedge.exe

58 B
74 B
1
1

DNS Request

hdguru3d.com

DNS Response

154.49.138.109
8.8.8.8:53

assets.pinterest.com

dns

msedge.exe

66 B
221 B
1
1

DNS Request

assets.pinterest.com

DNS Response

151.101.36.84
8.8.8.8:53

58.55.71.13.in-addr.arpa

dns

70 B
144 B
1
1

DNS Request

58.55.71.13.in-addr.arpa
8.8.8.8:53

81.144.22.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

81.144.22.2.in-addr.arpa
8.8.8.8:53

76.32.126.40.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

76.32.126.40.in-addr.arpa
8.8.8.8:53

109.138.49.154.in-addr.arpa

dns

73 B
131 B
1
1

DNS Request

109.138.49.154.in-addr.arpa
8.8.8.8:53

95.221.229.192.in-addr.arpa

dns

73 B
144 B
1
1

DNS Request

95.221.229.192.in-addr.arpa
8.8.8.8:53

assets.pinterest.com

dns

msedge.exe

66 B
247 B
1
1

DNS Request

assets.pinterest.com

DNS Response

2.18.108.188
8.8.8.8:53

www.google.com

dns

msedge.exe

60 B
156 B
1
1

DNS Request

www.google.com

DNS Response

142.250.27.106

142.250.27.99

142.250.27.105

142.250.27.104

142.250.27.103

142.250.27.147
8.8.8.8:53

rcm-na.amazon-adsystem.com

dns

msedge.exe

72 B
188 B
1
1

DNS Request

rcm-na.amazon-adsystem.com
8.8.8.8:53

platform.twitter.com

dns

msedge.exe

66 B
241 B
1
1

DNS Request

platform.twitter.com

DNS Response

93.184.220.66
8.8.8.8:53

106.27.250.142.in-addr.arpa

dns

73 B
107 B
1
1

DNS Request

106.27.250.142.in-addr.arpa
8.8.8.8:53

157.102.250.142.in-addr.arpa

dns

74 B
108 B
1
1

DNS Request

157.102.250.142.in-addr.arpa
8.8.8.8:53

188.108.18.2.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

188.108.18.2.in-addr.arpa
8.8.8.8:53

66.220.184.93.in-addr.arpa

dns

72 B
143 B
1
1

DNS Request

66.220.184.93.in-addr.arpa
8.8.8.8:53

94.27.250.142.in-addr.arpa

dns

72 B
105 B
1
1

DNS Request

94.27.250.142.in-addr.arpa
224.0.0.251:5353

msedge.exe

600 B
9
8.8.8.8:53

154.239.44.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

154.239.44.20.in-addr.arpa
8.8.8.8:53

www.linksalpha.com

dns

64 B
137 B
1
1

DNS Request

www.linksalpha.com
8.8.8.8:53

connect.facebook.net

dns

66 B
114 B
1
1

DNS Request

connect.facebook.net

DNS Response

157.240.5.10
8.8.8.8:53

rcm-na.amazon-adsystem.com

dns

msedge.exe

72 B
188 B
1
1

DNS Request

rcm-na.amazon-adsystem.com
8.8.8.8:53

ah.pricegrabber.com

dns

msedge.exe

65 B
143 B
1
1

DNS Request

ah.pricegrabber.com
8.8.8.8:53

googleads.g.doubleclick.net

dns

msedge.exe

73 B
137 B
1
1

DNS Request

googleads.g.doubleclick.net

DNS Response

142.250.27.155

142.250.27.154

142.250.27.156

142.250.27.157
8.8.8.8:53

100.27.250.142.in-addr.arpa

dns

73 B
107 B
1
1

DNS Request

100.27.250.142.in-addr.arpa
8.8.8.8:53

155.27.250.142.in-addr.arpa

dns

73 B
107 B
1
1

DNS Request

155.27.250.142.in-addr.arpa
8.8.8.8:53

connect.facebook.net

dns

66 B
114 B
1
1

DNS Request

connect.facebook.net

DNS Response

157.240.5.10
8.8.8.8:53

103.169.127.40.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

103.169.127.40.in-addr.arpa
8.8.8.8:53

56.126.166.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

56.126.166.20.in-addr.arpa
8.8.8.8:53

25.211.222.173.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

25.211.222.173.in-addr.arpa
8.8.8.8:53

syndication.twitter.com

dns

msedge.exe

69 B
85 B
1
1

DNS Request

syndication.twitter.com

DNS Response

104.244.42.72
8.8.8.8:53

twitter.com

dns

msedge.exe

57 B
73 B
1
1

DNS Request

twitter.com

DNS Response

104.244.42.129
8.8.8.8:53

72.42.244.104.in-addr.arpa

dns

72 B
72 B
1
1

DNS Request

72.42.244.104.in-addr.arpa
8.8.8.8:53

tpc.googlesyndication.com

dns

msedge.exe

71 B
87 B
1
1

DNS Request

tpc.googlesyndication.com

DNS Response

142.250.102.132
142.250.102.132:443

tpc.googlesyndication.com

https

msedge.exe

2.7kB
12.4kB
12
15
8.8.8.8:53

log.pinterest.com

dns

msedge.exe

63 B
177 B
1
1

DNS Request

log.pinterest.com

DNS Response

151.101.0.84

151.101.64.84

151.101.192.84

151.101.128.84
8.8.8.8:53

132.102.250.142.in-addr.arpa

dns

74 B
108 B
1
1

DNS Request

132.102.250.142.in-addr.arpa
8.8.8.8:53

84.0.101.151.in-addr.arpa

dns

71 B
131 B
1
1

DNS Request

84.0.101.151.in-addr.arpa
8.8.8.8:53

172.210.232.199.in-addr.arpa

dns

74 B
128 B
1
1

DNS Request

172.210.232.199.in-addr.arpa
8.8.8.8:53

21.236.111.52.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

21.236.111.52.in-addr.arpa

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
e4f80e7950cbd3bb11257d2000cb885e

SHA1
10ac643904d539042d8f7aa4a312b13ec2106035

SHA256
1184ee8d32d0edecddd93403fb888fad6b3e2a710d37335c3989cc529bc08124

SHA512
2b92c9807fdcd937e514d4e7e1cc7c2d3e3aa162099b7289ceac2feea72d1a4afbadf1c09b3075d470efadf9a9edd63e07ea7e7a98d22243e45b3d53473fa4f0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
2dc1a9f2f3f8c3cfe51bb29b078166c5

SHA1
eaf3c3dad3c8dc6f18dc3e055b415da78b704402

SHA256
dcb76fa365c2d9ee213b224a91cdd806d30b1e8652d72a22f2371124fa4479fa

SHA512
682061d9cc86a6e5d99d022da776fb554350fc95efbf29cd84c1db4e2b7161b76cd1de48335bcc3a25633079fb0bd412e4f4795ed6291c65e9bc28d95330bb25

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
72B

MD5
63de02208c4e60b68debfb9b77ebcea0

SHA1
b80dbe6ae59e355a07da8c4e3fbf37e45f9df12a

SHA256
944d427102d037aa2baf210800b5946b31991bedf2ca08ff509c0a0191919ec3

SHA512
cfa7275495169002b8397a47abf9d30cd4757217b7d451d88a05a774831d6887ef76745aa3f0f705b352f8dbd7e414dc913c2ae9fc39c066f6eeb2d9ad43a96c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
5fecb1260d42dd0bad582cb9341f06ba

SHA1
f4a9eea01edbc68c1cb081d254696fe836c0ea0c

SHA256
02fa33d375cc72c2505db6e4a11ce22a07a04bd75cfe1686a13b135a408f6e38

SHA512
2737fdac3733acd910679d72a9f3ab52c36ea4a36527449287e700a598f630bea3f7c23fadfcd21c1918b2a1a77f0acea391c3b11776787a8fe65b009dffc7c7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
4acadd47163995ccbaead7bcb0278582

SHA1
cc6b354f507dd31775107e516fb0a66657befa85

SHA256
979aed104f81aa5d189707e47dc550f94827996e7af7faaa59d507b8e869152d

SHA512
12cfefe99232b8828c6c956a7fdc34ae4c2b534c3a01c304d52b51150324232e9e3513ee27ef149d9694d872e4a27acd3fcc196295db51130df81ea85bf828f2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
111B

MD5
285252a2f6327d41eab203dc2f402c67

SHA1
acedb7ba5fbc3ce914a8bf386a6f72ca7baa33c6

SHA256
5dfc321417fc31359f23320ea68014ebfd793c5bbed55f77dab4180bbd4a2026

SHA512
11ce7cb484fee66894e63c31db0d6b7ef66ad0327d4e7e2eb85f3bcc2e836a3a522c68d681e84542e471e54f765e091efe1ee4065641b0299b15613eb32dcc0d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
111B

MD5
807419ca9a4734feaf8d8563a003b048

SHA1
a723c7d60a65886ffa068711f1e900ccc85922a6

SHA256
aa10bf07b0d265bed28f2a475f3564d8ddb5e4d4ffee0ab6f3a0cc564907b631

SHA512
f10d496ae75db5ba412bd9f17bf0c7da7632db92a3fabf7f24071e40f5759c6a875ad8f3a72bad149da58b3da3b816077df125d0d9f3544adba68c66353d206c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
8194dc2f207ce4a6d37dcf3e379b6671

SHA1
116e2c0ebd20ead0e1522c09aaf70699951efd7e

SHA256
a7a1ee3438a1161c6bc67b42e04128a4001cfce1ebdbc99394ba674879b16d37

SHA512
d2b08a7c47e5e0601c59024fa56ade33f6567a51651e2ce12fc134a0dbe65207f14a3d818b238af37dfffd7c7906842615afc32d573fcabd1f304bd4deaebb9b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
12d84a35e8a4c284d8ac0a574cc29c7f

SHA1
b83da69ee7c1f7de860afb42a377966eb1e44574

SHA256
cd47411cac2128a107f17200a1238986254b5efcbfa96cc5992d8a196e03ff09

SHA512
aea835ec5d7c31cd7b490cbe0f68a4c284050eb478f5cc81d11b7b88c73d059ded83c4cb6f49a3a7a1bf923a07f2eed2a3e8b570d27d8062d04aaf6e7020e0da

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
7ef189c1b7f777ce2fc6da7a06c7f44b

SHA1
641dddf62f9ab4550f19fc9dde3d7901978242cb

SHA256
172ca441c69d6b73d5448b6ef84ce675eb55c42d5ec7b7d4efe2ba4ca2f46045

SHA512
541b6a339dd27e12ac5093bd586e018537f15239cef5969c8a309642a327556331953f88f8f33b8c17bd801dfa2497836b0a7479e36e46715da195481f6dd86d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
9491297e2252a4d4d3f814c7991fa6f1

SHA1
5532a80e82b6f5d85780adc66e435feea146f220

SHA256
02ff85e19a6080dd2caa197c568b07826818ec32203c2a1b7e500d2873888b7f

SHA512
6aff76e4a24de68b97aaa536f3d3e20cc7f47151f051759ab578deb321e52ab0f41079a20a690b3c027e47631c580e79cc36315389404e800c1a03698c01634b

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request