Overview

URL kalraassociates.ca/
IP64.77.41.8
ASNAS13768 Peer 1 Network (USA) Inc.
Location United States
Report completed2018-07-05 19:20:42 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-07-05 2 kalraassociates.ca/ Malware
2018-07-05 2 kalraassociates.ca/wp-includes/js/wp-emoji-release.min.js?ver=4.9.7 Malware
2018-07-05 2 kalraassociates.ca/wp-content/themes/Avada/assets/fonts/fontawesome/font-aw (...) Malware
2018-07-05 2 kalraassociates.ca/wp-content/plugins/revslider/public/assets/css/settings. (...) Malware
2018-07-05 2 kalraassociates.ca/wp-content/themes/Avada/animations.css?ver=4.0.1 Malware
2018-07-05 2 kalraassociates.ca/wp-content/plugins/revslider/public/assets/js/jquery.the (...) Malware
2018-07-05 2 kalraassociates.ca/wp-includes/js/comment-reply.min.js?ver=4.9.7 Malware
2018-07-05 2 kalraassociates.ca/wp-includes/js/wp-embed.min.js?ver=4.9.7 Malware
2018-07-05 2 kalraassociates.ca/wp-content/themes/Avada/style.css?ver=4.0.1 Malware
2018-07-05 2 kalraassociates.ca/wp-content/themes/Avada/assets/fonts/icomoon/icomoon.woff Malware
2018-07-05 2 kalraassociates.ca/wp-content/themes/Avada/assets/js/main.min.js?ver=4.0.1 Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 64.77.41.8

Date UQ / IDS / BL URL IP
2018-07-10 01:20:50 +0200
0 - 0 - 11 kalraassociates.ca/ 64.77.41.8
2018-07-09 17:19:17 +0200
0 - 0 - 1 newworldappliance.com/ 64.77.41.8
2018-07-09 13:19:19 +0200
0 - 0 - 1 newworldappliance.com/ 64.77.41.8
2018-07-08 09:19:38 +0200
0 - 0 - 1 newworldappliance.com/ 64.77.41.8
2018-07-07 23:26:59 +0200
0 - 0 - 31 titanindustriesltd.com/ 64.77.41.8
2018-07-05 03:13:15 +0200
0 - 1 - 2 onkarkitchencabinets.com/ 64.77.41.8
2018-07-04 19:20:50 +0200
0 - 0 - 11 kalraassociates.ca/ 64.77.41.8
2018-07-02 19:19:53 +0200
0 - 0 - 1 newworldappliance.com/ 64.77.41.8
2018-07-01 11:27:05 +0200
0 - 0 - 31 titanindustriesltd.com/ 64.77.41.8
2018-06-25 00:33:54 +0200
0 - 0 - 26 grancomarbletiles.com/ 64.77.41.8

Last 10 reports on ASN: AS13768 Peer 1 Network (USA) Inc.

Date UQ / IDS / BL URL IP
2018-12-11 02:41:31 +0100
0 - 0 - 7 equilibratuinterior.com/images/docusign/manag (...) 65.39.128.46
2018-12-11 01:28:40 +0100
4 - 0 - 8 www.sjue.com/blog/2011/02/bonaire/ 64.34.173.227
2018-12-10 23:48:59 +0100
0 - 0 - 4 hyboriansolutions.net/jUhuVm0Qf 64.34.169.34
2018-12-10 23:19:39 +0100
4 - 2 - 8 www.sjue.com/blog/2013/08/kiss-demos-days-wit (...) 64.34.173.227
2018-12-10 21:49:20 +0100
0 - 0 - 0 www.hyperionics.com/downloads/HS8Setup.exe 207.198.108.61
2018-12-10 21:27:24 +0100
4 - 1 - 8 www.sjue.com/blog/2013/03/adv-nitro/ 64.34.173.227
2018-12-10 21:26:35 +0100
4 - 3 - 9 sjue.com/blog/2009/07/north-sea-expedition-2009 64.34.173.227
2018-12-10 20:59:43 +0100
0 - 0 - 11 johnsrvcentre.ca/ 209.15.246.208
2018-12-10 20:01:34 +0100
0 - 0 - 0 Movistar.com.mx 209.213.97.11
2018-12-10 18:22:56 +0100
4 - 2 - 9 sjue.com/blog/2014/05/season-opener-on-the-di (...) 64.34.173.227

Last 10 reports on domain: kalraassociates.ca

Date UQ / IDS / BL URL IP
2018-07-10 01:20:50 +0200
0 - 0 - 11 kalraassociates.ca/ 64.77.41.8
2018-07-04 19:20:50 +0200
0 - 0 - 11 kalraassociates.ca/ 64.77.41.8
2018-06-21 14:15:41 +0200
0 - 0 - 11 kalraassociates.ca/ 64.77.41.8
2018-06-19 19:29:19 +0200
0 - 0 - 11 kalraassociates.ca/ 64.77.41.8
2018-06-17 23:19:29 +0200
0 - 0 - 11 kalraassociates.ca/ 64.77.41.8
2018-06-10 19:45:03 +0200
0 - 0 - 11 kalraassociates.ca/ 64.77.41.8
2018-06-09 19:41:30 +0200
0 - 0 - 11 kalraassociates.ca/ 64.77.41.8
2018-05-29 15:25:33 +0200
0 - 0 - 11 kalraassociates.ca/ 64.77.41.8
2018-05-29 07:31:38 +0200
0 - 0 - 11 kalraassociates.ca/ 64.77.41.8
2018-05-26 22:21:43 +0200
0 - 0 - 11 kalraassociates.ca/ 64.77.41.8


JavaScript

Executed Scripts (17)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (37)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 05 Jul 2018 17:22:47 GMT
Server: Apache
X-Powered-By: PHP/5.4.16, PleskLin
X-Pingback: http://kalraassociates.ca/xmlrpc.php
Link: <http://kalraassociates.ca/wp-json/>; rel="https://api.w.org/", <http://kalraassociates.ca/>; rel=shortlink
Set-Cookie: wfvt_2191140795=5b3e53e9300e1; expires=Thu, 05-Jul-2018 17:52:49 GMT; path=/; httponly
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  UTF-8 Unicode HTML document text, with very long lines, with CRLF, LF line terminators
Size:   37813
Md5:    aabee3f07f16f7979572084aaa95a353
Sha1:   bb09ecb8e2fcb5f4865e0c51eefa766300eb8830
Sha256: a9b0ad5b8f4c5c32a882228f8d57b64f4073aecfb031fa40de2769ef669d2037

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 05 Jul 2018 17:20:12 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    726ce97723e8e327ea5abde28bd843be
Sha1:   2b6b3648e3f42a47e90c8852128cf242dbf9764b
Sha256: fbf3ab77a0c0458bdbdad270ba74fce4b50ce0d1a99a6f855bb2048827ff1d35
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.7 HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 05 Jul 2018 17:22:50 GMT
Server: Apache
Last-Modified: Mon, 05 Feb 2018 21:06:02 GMT
Etag: "2dc9-5647d6e010fa8"
Accept-Ranges: bytes
Content-Length: 11721
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text, with very long lines
Size:   11721
Md5:    a7c259ac67b3b4002dc8ac4a09765b9d
Sha1:   95a56d0d0fa8b38105324ddeae45afb36d19f1b9
Sha256: 3d8e94fed6cc8ea56ee5ec6174efb68cb7197d2e729149cb43e85505bf175779

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 05 Jul 2018 17:20:12 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /ajax/libs/webfont/1.5.3/webfont.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/

                                         
                                         172.217.20.42
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 6791
Date: Mon, 02 Jul 2018 16:20:01 GMT
Expires: Tue, 02 Jul 2019 16:20:01 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 262811
Alt-Svc: quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   6791
Md5:    510a517de620269ee4966b270f74fd5f
Sha1:   a61256abf86631aa6a72ae8db80cfd0f2904df47
Sha256: 57414a6b3df4ac48f65b1172e23c6117aef1380111242d2325d23527f82a2029
                                        
                                            GET /css?family=Open+Sans:400%7CRaleway:800%7CPT+Sans:700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/

                                         
                                         216.58.211.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Thu, 05 Jul 2018 17:20:12 GMT
Date: Thu, 05 Jul 2018 17:20:12 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   321
Md5:    70bfc99f50c4101a677dcd1b751a9c4a
Sha1:   20f1c8f4ba9216c67164ea1cb2ab3e52b3a31c73
Sha256: d1401d9a90a3cee7fb8f44faf465a4069331be5e33072a37e7bf146d42006908
                                        
                                            GET /wp-content/themes/Avada/assets/fonts/fontawesome/font-awesome.css?ver=4.0.1 HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 05 Jul 2018 17:22:50 GMT
Server: Apache
Last-Modified: Mon, 18 Apr 2016 07:33:58 GMT
Etag: "6b14-530bd6232c580"
Accept-Ranges: bytes
Content-Length: 27412
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   27412
Md5:    261ceeb1a33b083a2efcb400ebe35d4c
Sha1:   dd828ba7f91a1ad913bae93511922f597b7da3fb
Sha256: d3457f666bec49ac2e3c2d0048b4d865aa689327a86b7770a0026316cacda2ae

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.5 HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 05 Jul 2018 17:22:50 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2017 14:53:47 GMT
Etag: "8f74-547f1ea58dc8d"
Accept-Ranges: bytes
Content-Length: 36724
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  UTF-8 Unicode C program text, with very long lines, with CRLF line terminators
Size:   36724
Md5:    c43284692a7fb5aa19eca02125ada4aa
Sha1:   417daed9bc7a45c59016d5c178028b129c6711e6
Sha256: 6c7ad6a03a369892ee71f103d074dc82b7dcfdbcbc69892b41d6b0f4170c6a75

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/Avada/animations.css?ver=4.0.1 HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 05 Jul 2018 17:22:50 GMT
Server: Apache
Last-Modified: Mon, 18 Apr 2016 07:33:58 GMT
Etag: "8f53-530bd6232c580"
Accept-Ranges: bytes
Content-Length: 36691
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text
Size:   36691
Md5:    3c71b21ed749c5b9013afa9370d46a7b
Sha1:   d8f12b9f43b5d8719e27799208e420f9670a15ae
Sha256: 4ddc8b9bc8f031bb78775f96673fd4c45f22430095e8d5d7a012d8265d730e73

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2016/08/logo.png HTTP/1.1 
Host: www.kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/

                                         
                                         64.77.41.8
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 05 Jul 2018 17:22:50 GMT
Server: Apache
Location: http://kalraassociates.ca/wp-content/uploads/2016/08/logo.png
Content-Length: 269
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   269
Md5:    2b432f6a3c39dd54963fda19d8200997
Sha1:   1374de543d78b36e9eee26cc4d235085a020647c
Sha256: e3e8b6df2072789abb3fef8987bfe57a570260bb7d50879620a9aafd75edcd5e
                                        
                                            GET /wp-content/themes/Avada/ilightbox.css?ver=4.0.1 HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 05 Jul 2018 17:22:50 GMT
Server: Apache
Last-Modified: Mon, 18 Apr 2016 07:33:58 GMT
Etag: "d932-530bd6232c580"
Accept-Ranges: bytes
Content-Length: 55602
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text
Size:   55602
Md5:    5be47b0febb179fccd4df9808d32cd2a
Sha1:   3190f85ae300baa9346a3f06dc9e4c12b60eabbb
Sha256: 5e7884f51f6d9f2896f6e37956fc9852f5f0d146534036cfb7ec08d0c0d21f1a
                                        
                                            GET /wp-content/uploads/avada-styles/avada-8.css?timestamp=1487524630&ver=4.9.7 HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 05 Jul 2018 17:22:50 GMT
Server: Apache
Last-Modified: Sun, 19 Feb 2017 17:17:10 GMT
Etag: "1c1a1-548e5513230a1"
Accept-Ranges: bytes
Content-Length: 115105
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text, with very long lines, with CRLF, LF line terminators
Size:   115105
Md5:    079b3d6a3f813e7b92dbe38dec3e35a8
Sha1:   c8f536460c2f04bb8443651ca294fe6dea7376eb
Sha256: 8421a3979ca37307ef002f20b5af344f4ec4f3c931517679f274e7fe4d0e4aac
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 05 Jul 2018 17:22:50 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2017 10:29:59 GMT
Etag: "2748-547ee3aea1666"
Accept-Ranges: bytes
Content-Length: 10056
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   10056
Md5:    7121994eec5320fbe6586463bf9651c2
Sha1:   90532aff6d4121954254cdf04994d834f7ec169b
Sha256: 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.5 HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 05 Jul 2018 17:22:50 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2017 14:53:47 GMT
Etag: "d7c3-547f1ea592aad"
Accept-Ranges: bytes
Content-Length: 55235
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text, with very long lines, with CRLF line terminators
Size:   55235
Md5:    3155012a70d92e4eb0b8599d15e58959
Sha1:   63a9866d9a3360e05ce543471c468ea3f5abf655
Sha256: db8f2f8d4249f466caabe88cbf2f069ea62de00c956a3de4538112fbb1ef5b47

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/comment-reply.min.js?ver=4.9.7 HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 05 Jul 2018 17:22:50 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2017 10:29:59 GMT
Etag: "436-547ee3ae9fb0e"
Accept-Ranges: bytes
Content-Length: 1078
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   1078
Md5:    56bc2726d829207bfa802f957aac0791
Sha1:   5bf5c0a61359d8784c950b059e013aceea0d42f1
Sha256: 1b1ca0f15010e0124bd4ca481404643c88f7eda1b276e9554d0ed83fb45b7e30

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /s/opensans/v15/mem8YaGs126MiZpBA-UFVZ0d.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans:400%7CRaleway:800%7CPT+Sans:700
Origin: http://kalraassociates.ca

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 17704
Date: Mon, 02 Jul 2018 22:35:31 GMT
Expires: Tue, 02 Jul 2019 22:35:31 GMT
Last-Modified: Wed, 11 Oct 2017 21:49:44 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 240282


--- Additional Info ---
Magic:  data
Size:   17704
Md5:    bf2d0783515b7d75c35bde69e01b3135
Sha1:   0e92462e402c15295366d912a7b8be303d0257d8
Sha256: 054349dda27b80bb105fbc59b5973ef9889ed976aca1fbe39f77688dcff8c552
                                        
                                            GET /s/raleway/v12/1Ptrg8zYS_SKggPNwIouWqZPBg.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans:400%7CRaleway:800%7CPT+Sans:700
Origin: http://kalraassociates.ca

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 24980
Date: Mon, 02 Jul 2018 12:18:30 GMT
Expires: Tue, 02 Jul 2019 12:18:30 GMT
Last-Modified: Wed, 11 Oct 2017 18:26:26 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 277303


--- Additional Info ---
Magic:  data
Size:   24980
Md5:    2277f1ba3868654aa7410d6e92033eb2
Sha1:   a12abfce695c0d7500f24607c904d638c9223d59
Sha256: 62fda168150ce89521d1ec857fea5f1b2f5ef0ec8227c35763439c123377cf9f
                                        
                                            GET /s/ptsans/v9/jizfRExUiTo99u79B_mh0O6tKw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans:400%7CRaleway:800%7CPT+Sans:700
Origin: http://kalraassociates.ca

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 57044
Date: Mon, 02 Jul 2018 12:13:03 GMT
Expires: Tue, 02 Jul 2019 12:13:03 GMT
Last-Modified: Wed, 11 Oct 2017 18:24:53 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 277630


--- Additional Info ---
Magic:  data
Size:   57044
Md5:    e86e8add16b15acb0882a8f009e0e84c
Sha1:   0ed22b0f8951d1a514570caaca2d909cc9d1587b
Sha256: a61d5b9a3cab5f49adc0c8fe39d580801fa28ddbee9011716d22968cf3fd7c08
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 05 Jul 2018 17:22:50 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2017 10:29:59 GMT
Etag: "17ba0-547ee3aea1666"
Accept-Ranges: bytes
Content-Length: 97184
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   97184
Md5:    8610f03fe77640dee8c4cc924e060f12
Sha1:   076524186dbbdd4c41afbbd6b260d9e46a095811
Sha256: fc48d1d80ece71a79a7b39877f4104d49d3da6c3665cf6dc203000fb7df4447e
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=4.9.7 HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 05 Jul 2018 17:22:50 GMT
Server: Apache
Last-Modified: Thu, 09 Feb 2017 21:52:36 GMT
Etag: "576-5481fffd26fc4"
Accept-Ranges: bytes
Content-Length: 1398
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   1398
Md5:    5a03f97cc479b9f5d7efdaccec31bc17
Sha1:   54518be91b7c5d4b139e032d23ffae568cc7e9fd
Sha256: dcb5e540e62fc85857254a1066afb6a7e8999279c6d4c583eef855d39f9289c0

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2016/08/logo.png HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 05 Jul 2018 17:22:50 GMT
Server: Apache
Last-Modified: Sat, 27 Aug 2016 23:15:52 GMT
Etag: "3921-53b15cfe81a00"
Accept-Ranges: bytes
Content-Length: 14625
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 468 x 132, 8-bit/color RGB, non-interlaced
Size:   14625
Md5:    8bdbcd49524bb4ffa78a40899f5646c9
Sha1:   99cc320a23f750090f97e0b0babf20f9e0dc31be
Sha256: 2a30e6e81b74c22237004699db43f79136111e134f5a07ffd7f7b90485bc7ad2
                                        
                                            GET /wp-content/themes/Avada/style.css?ver=4.0.1 HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 05 Jul 2018 17:22:50 GMT
Server: Apache
Last-Modified: Fri, 26 Aug 2016 13:21:43 GMT
Etag: "60d25-53af9653827c0"
Accept-Ranges: bytes
Content-Length: 396581
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text, with very long lines
Size:   396581
Md5:    c9483d553c1bb9bdf9a109804dfe6d34
Sha1:   e24917a8eea4d419fb9da22036d8e58cc89f1522
Sha256: b3f9869837691c6313198edf778b4e7936918fe92b543d56b10d4d16efe704a5

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.5 HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 05 Jul 2018 17:22:50 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2017 14:53:47 GMT
Etag: "19b6a-547f1ea592e95"
Accept-Ranges: bytes
Content-Length: 105322
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text, with very long lines, with CRLF line terminators
Size:   105322
Md5:    2efaa0160fcdba7794941b24a79e9764
Sha1:   5ca2b54faabe6feb82c2321dc02129d9483991e5
Sha256: 1c4ade9c74a5cf4f95a1ddff5199906b69f670c9fe8a1dba53beba5493ebd4a6
                                        
                                            GET /wp-content/uploads/2016/11/zaken-doen-shutterstock_88492132.jpg HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 05 Jul 2018 17:22:51 GMT
Server: Apache
Last-Modified: Fri, 18 Nov 2016 21:04:47 GMT
Etag: "25e79-54199a7f1d9c0"
Accept-Ranges: bytes
Content-Length: 155257
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   155257
Md5:    7508dd88de6fded68adb74f745350db9
Sha1:   92a7ff7a00622e2b0df78c45a725a50850d89301
Sha256: 2e2d74b2d41b81d64d0ebe1deafc307a6685b1e38c044fa917495cb2c84d3220
                                        
                                            GET /wp-content/uploads/2015/02/creditcard-700x466-300x200.jpg HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 05 Jul 2018 17:22:51 GMT
Server: Apache
Last-Modified: Fri, 26 Aug 2016 11:50:59 GMT
Etag: "2b42-53af820bb4ec0"
Accept-Ranges: bytes
Content-Length: 11074
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   11074
Md5:    3031da7ac2373a16bef7c90623c1fb2a
Sha1:   9443eafdcb14569df7595e95cc394445b66dcee5
Sha256: b262337338a43c3b8802c880322b4179c4cc60daadbff0e2263f50dc8c1b860c
                                        
                                            GET /wp-content/uploads/2016/11/download-15.jpg HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 05 Jul 2018 17:22:51 GMT
Server: Apache
Last-Modified: Fri, 18 Nov 2016 21:02:31 GMT
Etag: "257c-541999fd6a7c0"
Accept-Ranges: bytes
Content-Length: 9596
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   9596
Md5:    478285675f2dc4332b14bf392ecdc52a
Sha1:   7a534f3c13dd45af28f56b858248b3979d01cdf4
Sha256: 57cd142f88bd6892b596a2ab2b68e322fbbdae3a229e81b02b47fa70a5eb4ca3
                                        
                                            GET /wp-content/uploads/2016/11/zaken-doen-shutterstock_88492132-300x169.jpg HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 05 Jul 2018 17:22:51 GMT
Server: Apache
Last-Modified: Fri, 18 Nov 2016 21:04:47 GMT
Etag: "3768-54199a7f1d9c0"
Accept-Ranges: bytes
Content-Length: 14184
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   14184
Md5:    519f6ed628300b762bcc02cf422ba690
Sha1:   81cbee13ed64c30f630327379f7ffb48b74b2c6d
Sha256: 4ad5e0fdce598f31dbc34f8763e2a29c2e87affe6587780ca2e9e33f9266e23b
                                        
                                            GET /wp-content/uploads/2016/08/5-300x107.jpg HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 05 Jul 2018 17:22:52 GMT
Server: Apache
Last-Modified: Fri, 26 Aug 2016 12:34:59 GMT
Etag: "2716-53af8be1682c0"
Accept-Ranges: bytes
Content-Length: 10006
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   10006
Md5:    e6751a8b24bbc0c9927f9c4c670e8a14
Sha1:   d45beb3bff62c18f1f53fceb787683b83d019aba
Sha256: cfbcb7302835f11ef0521306e41af1afa9d71060af7a51f78d6af4ea0f4c3c03
                                        
                                            GET /wp-content/uploads/2016/08/3.jpg HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 05 Jul 2018 17:22:51 GMT
Server: Apache
Last-Modified: Fri, 26 Aug 2016 12:34:51 GMT
Etag: "4b037-53af8bd9c70c0"
Accept-Ranges: bytes
Content-Length: 307255
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   307255
Md5:    ab8219edef37283daa73c72cad1be6fb
Sha1:   dc83e41a2282df6987510633073b8fb642c3a4c3
Sha256: f4da0d3bc8da3f2a10d36ac398b6ef661d26b98e4fb5b45b50dc0154e8016564
                                        
                                            GET /wp-content/themes/Avada/assets/fonts/icomoon/icomoon.woff HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/wp-content/themes/Avada/style.css?ver=4.0.1
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Date: Thu, 05 Jul 2018 17:22:52 GMT
Server: Apache
Last-Modified: Mon, 18 Apr 2016 07:33:58 GMT
Etag: "30cc-530bd6232c580"
Accept-Ranges: bytes
Content-Length: 12492
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  data
Size:   12492
Md5:    7524dd355b41a29bb0854416050d0cc8
Sha1:   85c190031e40ed61f5241484a63acd43bbf8ff55
Sha256: 0d1e57117fc0a2608e025f3cc20b24f1af0e8e023d6177f7b09dc0f156717ef2

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2016/08/5.jpg HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 05 Jul 2018 17:22:51 GMT
Server: Apache
Last-Modified: Fri, 26 Aug 2016 12:34:59 GMT
Etag: "4d62e-53af8be1682c0"
Accept-Ranges: bytes
Content-Length: 316974
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   316974
Md5:    2e01e1e6f201569b22bfee67be56bb2a
Sha1:   4a87ac971a6f508491608e3fb97cf65fce3a9b25
Sha256: 10ce12796dd5ca2ca00bb8729fb4785b34a700bab3eaae7c403bc035ff904524
                                        
                                            GET /wp-content/themes/Avada/assets/js/main.min.js?ver=4.0.1 HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 05 Jul 2018 17:22:50 GMT
Server: Apache
Last-Modified: Mon, 18 Apr 2016 07:33:58 GMT
Etag: "956e9-530bd6232c580"
Accept-Ranges: bytes
Content-Length: 612073
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   612073
Md5:    ebf2f2fc8662c91fd53f1ff91a001fcd
Sha1:   26d2cd1c943bf19f26dceda25cc6a80550f79fd5
Sha256: c435d8cba65e40369e5dc3ec2732efa5c9450dfa9ea2c06535f93955d2c20eab

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2016/08/1.jpg HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://kalraassociates.ca/
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 05 Jul 2018 17:22:51 GMT
Server: Apache
Last-Modified: Fri, 26 Aug 2016 12:34:40 GMT
Etag: "5cad4-53af8bcf49800"
Accept-Ranges: bytes
Content-Length: 379604
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   379604
Md5:    528b1beed5ac0f7887be9bf704e3f2ff
Sha1:   b6a2b9aa58e3e441dbbc001edaa105393091dc10
Sha256: 0da6983bd3fcef78716e9883fa4b2c5f5669a014c4567af2dc54a3ecc93c0025
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: kalraassociates.ca
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: wfvt_2191140795=5b3e53e9300e1

                                         
                                         64.77.41.8
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Thu, 05 Jul 2018 17:22:53 GMT
Server: Apache
Last-Modified: Mon, 06 Feb 2017 17:26:42 GMT
Etag: "1bb33-547dfef5c221d"
Accept-Ranges: bytes
Content-Length: 113459
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  MS Windows icon resource - 7 icons, 256-colors
Size:   113459
Md5:    1db747255c64a30f9236e9d929e986ca
Sha1:   384023452346aa087d40c93c23ca2f5e32ff1b1f
Sha256: 88baf40feb43463a8f6aa6543e88bdbe33f0db9a317486e786eee1e5c76a9544
                                        
                                            GET /s/ptsans/v9/jizfRExUiTo99u79B_mh0O6tKw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans:400%7CRaleway:800%7CPT+Sans:700
Origin: http://kalraassociates.ca

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /s/raleway/v12/1Ptrg8zYS_SKggPNwIouWqZPBg.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans:400%7CRaleway:800%7CPT+Sans:700
Origin: http://kalraassociates.ca

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /s/opensans/v15/mem8YaGs126MiZpBA-UFVZ0d.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans:400%7CRaleway:800%7CPT+Sans:700
Origin: http://kalraassociates.ca

                                         
                                         0.0.0.0
                                        


--- Additional Info ---