r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e717435470c9f4f06b174d7100c6a98f
292150251495b243c384e0c676a258597ba7f4d8
91ce8257662cb8cea9cc3c74cda1d95dba421daa466b0ac231fa433e0c58e6c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "91CE8257662CB8CEA9CC3C74CDA1D95DBA421DAA466B0AC231FA433E0C58E6C6"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8356
Expires: Wed, 28 Dec 2022 10:38:04 GMT
Date: Wed, 28 Dec 2022 08:18:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 259d3eba2ac4ea32f0410a59bd01c18a
ab02cd69e6c04e3842ad1778fb0daa6d0e86fddc
0d6ec941dac6d97a0b24c0cf00a5642a4edda68ae5ec8b3019d1ec05f40d2281
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D6EC941DAC6D97A0B24C0CF00A5642A4EDDA68AE5EC8B3019D1EC05F40D2281"
Last-Modified: Tue, 27 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17053
Expires: Wed, 28 Dec 2022 13:03:01 GMT
Date: Wed, 28 Dec 2022 08:18:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 07e619a5a572fa9bcb54fa70de27f0d4
c0499dcc7551831f517f189465812859d0f48ced
2213c856ce4dd64ebe28e4deff34d449b2c08be98565c0405427453ae948fa74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2213C856CE4DD64EBE28E4DEFF34D449B2C08BE98565C0405427453AE948FA74"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7052
Expires: Wed, 28 Dec 2022 10:16:20 GMT
Date: Wed, 28 Dec 2022 08:18:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 28 Dec 2022 07:46:45 GMT
content-type: application/json
age: 1923
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 0m+vbd4mBaPcMTU8LDpHnsAE6pycgRgJfblQci0Lb5XJznc623zrC0KNx+2+GaHYsY+OVee08bgWO4I4B2uQCw==
x-amz-request-id: EHZWCES3WWM6SZQA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 28 Dec 2022 07:58:13 GMT
age: 1235
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 08:18:48 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/
103.76.231.51301 Moved Permanently 0 B URL HTTP/1.1 pvcstripcurtaincompany.in/
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 28 Dec 2022 08:18:32 GMT
Server: nginx/1.17.6
Content-Type: text/html; charset=UTF-8
Content-Length: 0
X-LiteSpeed-Tag: fd9_HTTP.200,fd9_HTTP.301
X-Redirect-By: WordPress
Location: https://pvcstripcurtaincompany.in/
X-Server-Cache: true
X-Proxy-Cache: EXPIRED
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 28 Dec 2022 07:33:30 GMT
age: 2718
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 60b8396db0bbfa5f2ae7e34c9d04ebcc
50b6c68aa2b2a459315a9989f5d3e326e8ad5539
c10a1e0f984b121958a5cfa3b45b746db85d33c9073fcacb019d9bb27ef3b073
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4520
Cache-Control: max-age=93805
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 08:18:49 GMT
Etag: "63aab5ae-1d7"
Expires: Thu, 29 Dec 2022 10:22:14 GMT
Last-Modified: Tue, 27 Dec 2022 09:06:54 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 614f4d84bcda983ab5e9a275f1985bf7
66346d247fadbbd0b6da38d4dd197dade44b3aa3
09fbc2e986524e8323ea968bc3cbd26de1b52bfb1819d67ce296ab6dd2e2b68d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "09FBC2E986524E8323EA968BC3CBD26DE1B52BFB1819D67CE296AB6DD2E2B68D"
Last-Modified: Wed, 28 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 28 Dec 2022 14:18:49 GMT
Date: Wed, 28 Dec 2022 08:18:49 GMT
Connection: keep-alive
push.services.mozilla.com/
54.70.239.215101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.70.239.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3VLWVnmu1wCDFno24U8ipQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lAjEX9ZsHcPQsZY4dB8i7SDw2GE=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c6af90f016d8e2a96c05a34ddb9ebbab
f1440025eeec8413fbe4e8d6a49779d1c8cdd9ef
77c0e58bd42f70ec82dcbc502a00e4cca6bf4c198c049a2a0181ba6008d14441
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 08:18:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c6af90f016d8e2a96c05a34ddb9ebbab
f1440025eeec8413fbe4e8d6a49779d1c8cdd9ef
77c0e58bd42f70ec82dcbc502a00e4cca6bf4c198c049a2a0181ba6008d14441
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 08:18:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c6af90f016d8e2a96c05a34ddb9ebbab
f1440025eeec8413fbe4e8d6a49779d1c8cdd9ef
77c0e58bd42f70ec82dcbc502a00e4cca6bf4c198c049a2a0181ba6008d14441
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 08:18:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.74200 OK 2.7 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.74:0
Hash 6b8eb2c9bd51f5003961ade6a9949d42
5f2d84fc4cfd2cfe3609a646696f0023d0a9cb15
e02d3a4f189880f1add60eaae01b30b1a33f787079d7263f09e0b385fd3bb1a9
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7COpen+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Dec 2022 08:18:49 GMT
date: Wed, 28 Dec 2022 08:18:49 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
103.76.231.51200 OK 5.3 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 May 2022 02:01:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/themes/astra/astra/assets/css/minified/menu-animation.min.css?ver=2.6.0
103.76.231.51200 OK 468 B URL HTTP/2 pvcstripcurtaincompany.in/wp-content/themes/astra/astra/assets/css/minified/menu-animation.min.css?ver=2.6.0
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3412), with no line terminators
Hash f88a6a529851c8ed1ffe2bd83219e490
597ff167b702900ee4473e31e390808b8de95664
ae20c6ea52a0534fdda58a7ae13839ac66194434406e00a3bb5f4538f9909886
GET /wp-content/themes/astra/astra/assets/css/minified/menu-animation.min.css?ver=2.6.0 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:35:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 468
content-type: text/css
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-includes/css/classic-themes.min.css?ver=1
103.76.231.51200 OK 189 B URL HTTP/2 pvcstripcurtaincompany.in/wp-includes/css/classic-themes.min.css?ver=1
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:42:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 189
content-type: text/css
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
103.76.231.51200 OK 4.0 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (19233)
Hash 2701214b028ad24fa347df8335b36d12
156bc8a7ad2657f00881890637f07c6052636499
9a6e62615ceeec7a9763e4f9614e4715d04fd87873b23db2b3ead06c996cad27
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 14:12:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4008
content-type: text/css
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/elementor/css/post-516.css?ver=1671068284
103.76.231.51200 OK 445 B URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/elementor/css/post-516.css?ver=1671068284
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1373), with no line terminators
Hash ae9c663178b9d792cfada70f560ebbeb
e756508e9302a1a24a0c7b0e37a18fcf578ac489
4fd683969605c0f4271119fccb25788fb1d777c1142fbbc56899faaeea1281b7
GET /wp-content/uploads/elementor/css/post-516.css?ver=1671068284 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 01:38:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 445
content-type: text/css
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
103.76.231.51200 OK 309 B URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Jun 2021 10:07:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 309
content-type: text/css
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.9.2
103.76.231.51200 OK 13 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.9.2
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (59158)
Hash e6b67e11736ae36a062b381717f2ea9f
a663a79bc8d42aa58bfea1351cc27e0d0b09c9b2
a07a94d36246d0b3e5b9b18e274e31995d0e23cda955babf5e350e91a879523d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.9.2 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Jun 2021 10:07:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12862
content-type: text/css
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.9.2
103.76.231.51200 OK 4.4 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.9.2
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (14869)
Hash 7bab7ad64ffbd7846dd6819250b93e2e
c924918d540389aff62220088b6761f38a5da272
045250efe67364c953a91f6a60cf407ebb5cfdb2da04e84c3d98e5bab5eca9ba
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.9.2 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 07 Jan 2021 16:38:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4359
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.9.2
103.76.231.51200 OK 4.4 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.9.2
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (26516)
Hash fdd462f58aee3f9349eabdefb5ca0b57
bb6e017d5537630516ccb98952593690a8c69864
ca51806fcedbe90dd613c4c28673af8693381806a5cb3b43dce2ea4f43e8b314
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.9.2 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Jun 2021 10:07:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4436
content-type: text/css
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/elementor/css/post-9.css?ver=1671068284
103.76.231.51200 OK 7.5 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/elementor/css/post-9.css?ver=1671068284
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (41753), with no line terminators
Hash d927e6ace0fbb576aa05de12fef1232d
2dbd96f7fe41faad1856308731f77d0bd8054c7e
14e1080498bfe448706f0fb6113a6bdd4ab7971edaaaf130e6e430f43999b55e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-9.css?ver=1671068284 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 01:38:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7479
content-type: text/css
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/wpforms-lite/assets/css/wpforms-base.min.css?ver=1.7.8
103.76.231.51200 OK 5.2 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/wpforms-lite/assets/css/wpforms-base.min.css?ver=1.7.8
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (22829)
Hash c29a8af3860858f33aeeaab766157f6d
f5f45edbbb65b559750949595b622ced5dabe530
17d8228b418ff5d4a5879751a8bc43ed858371c76396b7d14678a37219d0615a
GET /wp-content/plugins/wpforms-lite/assets/css/wpforms-base.min.css?ver=1.7.8 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 12:24:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5238
content-type: text/css
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
103.76.231.51200 OK 13 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (57726)
Hash dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Jun 2021 10:07:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12577
content-type: text/css
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/elementor/thumbs/anti-insect-pic-293x300-1-pei6v3lt8q9da1i3f77r325izs1b5lqsbq8f908uf4.jpg
103.76.231.51200 OK 11 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/elementor/thumbs/anti-insect-pic-293x300-1-pei6v3lt8q9da1i3f77r325izs1b5lqsbq8f908uf4.jpg
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 214x220, components 3\012- data
Hash 7bca9876550bee5a9810f56478c2dc78
e0dc27135ddcd1658b0a69ba2f52f36e321b0a2d
0370a3aefc32e7e733d719242b905d9846fdcd23467351ab1a858eb926b6d5a2
GET /wp-content/uploads/elementor/thumbs/anti-insect-pic-293x300-1-pei6v3lt8q9da1i3f77r325izs1b5lqsbq8f908uf4.jpg HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:40:37 GMT
accept-ranges: bytes
content-length: 11290
content-type: image/jpeg
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/elementor/thumbs/hangerss-293x300-1-pei6v2nz1w82yfjgkot4ike2ee5xxwn1zlkxrqa8lc.jpg
103.76.231.51200 OK 6.6 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/elementor/thumbs/hangerss-293x300-1-pei6v2nz1w82yfjgkot4ike2ee5xxwn1zlkxrqa8lc.jpg
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 214x220, components 3\012- data
Hash 1b90b31d1843ddabec52d50c2ae27ecf
b2ca24fddaea22a244884afa5856c0c63ada69e5
03acb4ad4b546dec10863f6d129940897dbc99e3b5a813670fd4de7156f002a8
GET /wp-content/uploads/elementor/thumbs/hangerss-293x300-1-pei6v2nz1w82yfjgkot4ike2ee5xxwn1zlkxrqa8lc.jpg HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:40:37 GMT
accept-ranges: bytes
content-length: 6600
content-type: image/jpeg
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/elementor/thumbs/welding-grade-293x300-1-pei6v3lt8q9da1i3f77r325izs1b5lqsbq8f908uf4.jpg
103.76.231.51200 OK 11 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/elementor/thumbs/welding-grade-293x300-1-pei6v3lt8q9da1i3f77r325izs1b5lqsbq8f908uf4.jpg
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 214x220, components 3\012- data
Hash 4785a3c03213b56bab6b88359cf7dd0c
61908a281023b25e2d1093464b652f048963a68d
1a85c8d263960ac7992428c973d677c2d85265fbe27fc0c4c4a84ed36555cf42
GET /wp-content/uploads/elementor/thumbs/welding-grade-293x300-1-pei6v3lt8q9da1i3f77r325izs1b5lqsbq8f908uf4.jpg HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:40:37 GMT
accept-ranges: bytes
content-length: 11333
content-type: image/jpeg
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-includes/js/wp-util.min.js?ver=6.1.1
103.76.231.51200 OK 758 B URL HTTP/2 pvcstripcurtaincompany.in/wp-includes/js/wp-util.min.js?ver=6.1.1
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1391)
Hash 60bc75e3b14030c62d9fd3a3d317d8a8
6d919bbd05a3984a8e5e67b693e6d5d41cc885f9
e22df84be1a3ffe3b54352a4a39e14adb3fac69f2ce755e4c7babbc243c5bb4b
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:42:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 758
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/wpforms-lite/assets/js/utils.min.js?ver=1.7.8
103.76.231.51200 OK 150 B URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/wpforms-lite/assets/js/utils.min.js?ver=1.7.8
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with no line terminators
Hash 14e97c0bd8b30f6184d7b9b0de3b62dc
052e2d09afda94db181e7b410ef3c49567350896
cf50cfaa42eabf7e33d6b7214e8965573e33b17b60420352789410639c9c80aa
GET /wp-content/plugins/wpforms-lite/assets/js/utils.min.js?ver=1.7.8 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 12:24:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 150
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
103.76.231.51200 OK 3.7 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Jan 2017 16:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3747
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
103.76.231.51200 OK 4.6 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 14:36:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.2
103.76.231.51200 OK 16 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.2
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (40657)
Hash 4056713a0652e87961a8615916ba3d18
761013724b9132eeb58103ceb5c29009edab6820
bec066cb6686f260688cb4345609d69295229fc450bd69aa6007dc8918bfa9c2
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.2 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 14:12:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16214
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/themes/astra/astra/assets/css/minified/style.min.css?ver=2.6.0
103.76.231.51200 OK 22 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/themes/astra/astra/assets/css/minified/style.min.css?ver=2.6.0
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash a77c9ded8ea46fc0140a30075a6bbe37
21353669bc0534301b09dd6aa6fafe10e85e91d2
3b337265a31140458ac58ab920d6e473003bdf58b8f5e1c7689600b856c8c435
GET /wp-content/themes/astra/astra/assets/css/minified/style.min.css?ver=2.6.0 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:35:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9050ee54dae26344646b208a231fc770
a19ae5a4a8f9c28bca52aa8ea55c7313f99e0936
8ab388c1272cd2c6c2137a27f8e021744126f6fc7df5043756a04dac50857436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 08:18:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9050ee54dae26344646b208a231fc770
a19ae5a4a8f9c28bca52aa8ea55c7313f99e0936
8ab388c1272cd2c6c2137a27f8e021744126f6fc7df5043756a04dac50857436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 08:18:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
103.76.231.51200 OK 1.4 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (9804)
Hash a43b11916a79b49836596176db35b51a
be1e8d9349bf0f4c0588dd7eb18e384cb043e53e
117086323d0e540a79a6cb04ed41be910dab8517bce69d745afbdf20ee2f4fe4
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 14:12:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1441
content-type: text/css
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/elementor/thumbs/safety-red-293x300-1-pei6v2nz1w82yfjgkot4ike2ee5xxwn1zlkxrqa8lc.jpg
103.76.231.51200 OK 12 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/elementor/thumbs/safety-red-293x300-1-pei6v2nz1w82yfjgkot4ike2ee5xxwn1zlkxrqa8lc.jpg
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 214x220, components 3\012- data
Hash 20795fc6ff0d8310eec5c126034dc368
147f28d5e776547963a198a05935b3bcb7b2d65b
6ded9554f751f5274d1b5dd26d53caacdaf2b5eced3181c3cbb610c978602a4b
GET /wp-content/uploads/elementor/thumbs/safety-red-293x300-1-pei6v2nz1w82yfjgkot4ike2ee5xxwn1zlkxrqa8lc.jpg HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:40:37 GMT
accept-ranges: bytes
content-length: 11518
content-type: image/jpeg
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/earlyaccess/opensanshebrew.css?ver=6.1.1
142.250.74.74200 OK 17 kB URL HTTP/2 fonts.googleapis.com/earlyaccess/opensanshebrew.css?ver=6.1.1
IP 142.250.74.74:0
Hash 9db6347101dc48fafe0072eaedc63e0c
e6717579057fddace148053699c14ae20b84deca
fdc57c6fdafe79782e835cc6bf9e9c17ccecf42cc19233400cc48f6970fdaa42
GET /earlyaccess/opensanshebrew.css?ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
expires: Wed, 28 Dec 2022 08:18:49 GMT
date: Wed, 28 Dec 2022 08:18:49 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8
103.76.231.51200 OK 374 B URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (754), with no line terminators
Hash ef785f463505633971eae5c08ad626d4
624e22257f386801822229db3a4bbd2e24b25e2f
b2a0dc77f0f79d81698a7e3893e16ecba7b0d980b80a5233656d9b11f1d8160d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 12:24:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 374
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9050ee54dae26344646b208a231fc770
a19ae5a4a8f9c28bca52aa8ea55c7313f99e0936
8ab388c1272cd2c6c2137a27f8e021744126f6fc7df5043756a04dac50857436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 08:18:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9050ee54dae26344646b208a231fc770
a19ae5a4a8f9c28bca52aa8ea55c7313f99e0936
8ab388c1272cd2c6c2137a27f8e021744126f6fc7df5043756a04dac50857436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 08:18:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pvcstripcurtaincompany.in/
103.76.231.51200 OK 39 kB URL HTTP/2 pvcstripcurtaincompany.in/
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (24250), with CRLF, LF line terminators
Hash 56c710e871b4e7f0365083acb2b43cbc
4808d445cd50e122a6a4a9a9249795bb3535b46d
a7c2ac66a9d1ccd985cd1fb488e33f5bcca01b933aec6d478edfca1d21d0185b
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
content-type: text/html; charset=UTF-8
x-litespeed-tag: fd9_HTTP.200
link: <https://pvcstripcurtaincompany.in/wp-json/>; rel="https://api.w.org/", <https://pvcstripcurtaincompany.in/wp-json/wp/v2/pages/9>; rel="alternate"; type="application/json", <https://pvcstripcurtaincompany.in/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
x-server-cache: true
x-proxy-cache: HIT
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/2021/10/welding-pvc-strip-curtains-manufacturers-suppliers-provider.jpg
103.76.231.51200 OK 17 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/2021/10/welding-pvc-strip-curtains-manufacturers-suppliers-provider.jpg
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 400x385, components 3\012- data
Hash 49d3cc0b482d3786105f6b6cda4c0299
78bd189e4d2b46f8864c6582af4d28f0d094d351
fbb62691523e6d0329992b61aeeb5e241c4ccd00a1d04d2360740dd0870c3693
GET /wp-content/uploads/2021/10/welding-pvc-strip-curtains-manufacturers-suppliers-provider.jpg HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:38:13 GMT
accept-ranges: bytes
content-length: 17310
content-type: image/jpeg
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pvcstripcurtaincompany.in
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Dec 2022 18:52:41 GMT
expires: Tue, 26 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 134769
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/2021/10/opaque-pvc-stripe-curtains-manufacturers-Supplier-provider.jpg
103.76.231.51200 OK 17 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/2021/10/opaque-pvc-stripe-curtains-manufacturers-Supplier-provider.jpg
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 400x385, components 3\012- data
Hash 0947f1dcb8855135905fa118789e4f8f
d32d2518d4eceece28d819f451c1dd853bd44f10
917a600ac1fe9ee6fea112395098144bc8f4ad22e3be347316618118f9ab5527
GET /wp-content/uploads/2021/10/opaque-pvc-stripe-curtains-manufacturers-Supplier-provider.jpg HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:38:13 GMT
accept-ranges: bytes
content-length: 17405
content-type: image/jpeg
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/themes/astra/astra/assets/js/minified/style.min.js?ver=2.6.0
103.76.231.51200 OK 3.6 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/themes/astra/astra/assets/js/minified/style.min.js?ver=2.6.0
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (10594), with no line terminators
Hash 5c244ddd3d5b81f943cc06bb3d39eae0
937bc56733f05985e8b6bad6e6ccd11e106c59eb
7f4883c7ab2bb307c921ae27ce4821017e907b8361b421883f61495c40cf9965
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/astra/astra/assets/js/minified/style.min.js?ver=2.6.0 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:35:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3642
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/2021/10/freezer-cold-pvc-strip-curtains-manufacturer-supplier-in-india-pune.jpg
103.76.231.51200 OK 23 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/2021/10/freezer-cold-pvc-strip-curtains-manufacturer-supplier-in-india-pune.jpg
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x385, components 3\012- data
Hash 6da653c5426a6f99ba4eaa675b097d0b
2ab8ab43c59682390ef6130538b41ea7365e1e0e
d3638fc9f08357b29ef28cb1d0b5dd73a688e74efcd09f58b0f90ae0c00ccefe
GET /wp-content/uploads/2021/10/freezer-cold-pvc-strip-curtains-manufacturer-supplier-in-india-pune.jpg HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:38:13 GMT
accept-ranges: bytes
content-length: 23445
content-type: image/jpeg
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/2021/10/transparent-pvc-strip-curtains-suppliers-1.jpg
103.76.231.51200 OK 26 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/2021/10/transparent-pvc-strip-curtains-suppliers-1.jpg
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x385, components 3\012- data
Hash 132c691649dd15580f1d56dc72e4c6e9
d01e90d3e1c8b36f069aa12574375210d2f667df
b0bb596ade8a64517b05f51f9cc87fb6f0317bb5b369046a1d2607cb155cc2ba
GET /wp-content/uploads/2021/10/transparent-pvc-strip-curtains-suppliers-1.jpg HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:38:13 GMT
accept-ranges: bytes
content-length: 26110
content-type: image/jpeg
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/ea/opensanshebrew/v3/OpenSansHebrew-Regular.woff2
142.250.74.35200 OK 14 kB URL HTTP/2 fonts.gstatic.com/ea/opensanshebrew/v3/OpenSansHebrew-Regular.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 14228, version 2.65\012- data
Hash f830dd55b0dbb834f96020b51624c10d
7d369216ea24c7d83cf8e8d12787ee68e6b7fd4d
00a37289fdde29892417e72bb1494d7967af5f3d8e5a437f07376a8b3f044373
GET /ea/opensanshebrew/v3/OpenSansHebrew-Regular.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pvcstripcurtaincompany.in
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Dec 2022 18:34:50 GMT
expires: Thu, 21 Dec 2023 18:34:50 GMT
cache-control: public, max-age=31536000
age: 567840
last-modified: Wed, 13 Aug 2014 16:50:04 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9050ee54dae26344646b208a231fc770
a19ae5a4a8f9c28bca52aa8ea55c7313f99e0936
8ab388c1272cd2c6c2137a27f8e021744126f6fc7df5043756a04dac50857436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 08:18:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pvcstripcurtaincompany.in/wp-content/uploads/2021/10/safety-Red-PVC-Strip-Curtains-manufactuer-and-suppliers-provider.jpg
103.76.231.51200 OK 27 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/2021/10/safety-Red-PVC-Strip-Curtains-manufactuer-and-suppliers-provider.jpg
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x385, components 3\012- data
Hash 840c0c5cfca9c2bb8a1c0c1a5520f947
63355173e1b212213412928ab3e5acec19e8a310
b83eb348b0bbf433ca1918a86461b28e464a4475582e25965a984425382820cb
GET /wp-content/uploads/2021/10/safety-Red-PVC-Strip-Curtains-manufactuer-and-suppliers-provider.jpg HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:38:13 GMT
accept-ranges: bytes
content-length: 27294
content-type: image/jpeg
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
103.76.231.51200 OK 8.3 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 838560e989767f2ef5951b9eeee20352
6bf8419cb4d68d9beced9e4b79b22b347ae16a46
72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:42:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8344
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/2021/10/double-ribbed-pvc-strippled-curtains-manufacturer-supplier-provider.jpg
103.76.231.51200 OK 33 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/2021/10/double-ribbed-pvc-strippled-curtains-manufacturer-supplier-provider.jpg
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 400x385, components 3\012- data
Hash 6386f770e20f37adf2ca317d954bcc8e
ca31cab9e90dcdee2d11b5601a8e49c13d186bc2
29d788ee09ef6e04f6d340d3d043e6037c884c212d3ceda6b412e103d1350bb2
GET /wp-content/uploads/2021/10/double-ribbed-pvc-strippled-curtains-manufacturer-supplier-provider.jpg HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:38:13 GMT
accept-ranges: bytes
content-length: 33012
content-type: image/jpeg
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/2021/10/anti-insect-pvc-strip-curtain-manufacturer-supplier-provider.jpg
103.76.231.51200 OK 34 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/2021/10/anti-insect-pvc-strip-curtain-manufacturer-supplier-provider.jpg
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x385, components 3\012- data
Hash d0ba43f74d72409392209a7570f19fd5
6b1517e55e7c4375eb18fe910384c2c0599f5b12
2a788dc9046bcc583f7365821422781bc3e6973aa664a6f89a403dc812cbe418
GET /wp-content/uploads/2021/10/anti-insect-pvc-strip-curtain-manufacturer-supplier-provider.jpg HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:38:13 GMT
accept-ranges: bytes
content-length: 34336
content-type: image/jpeg
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-includes/js/underscore.min.js?ver=1.13.4
103.76.231.51200 OK 8.3 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-includes/js/underscore.min.js?ver=1.13.4
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (18798)
Hash ac9c7baaab74ef2576932d5798161987
fa202113e12b09696788a7024984879bddd29143
c03d52f8f157e9209646e3e696e9845d7d2b3cf3e73c8204f371b7393e738026
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:42:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8305
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js?ver=1.19.5
103.76.231.51200 OK 9.8 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js?ver=1.19.5
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (24463)
Hash fb092211d0a2836dce89f50a87893316
141c3058a3d209cd6606ad88163af9791706d5be
beb74149278a12e2e78cdb38f115e9d055e8622f2306f03738b2dc6ab742140e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js?ver=1.19.5 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 12:24:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9806
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js?ver=1.7.8
103.76.231.51200 OK 12 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js?ver=1.7.8
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32390), with no line terminators
Hash 1fe9e925e530d18152f46ba95e68bbc0
952661cad3a84349bed4fec3f20c4dd44e6e7274
9b091e6f90c8b8d6add414f15fc9a798cb3617b9a422783bc5619da4947d5849
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js?ver=1.7.8 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 12:24:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12033
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.2
103.76.231.51200 OK 13 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.2
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (31482)
Hash d285e3e15c9f24a0bd499537b2c4e948
734936bbd450b3484b541074bf564a8f53ce6ad4
11219b5c74968517696790bddae0cc6339b13ff80e32a0d56f94c793de5dc6ad
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.2 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 14:12:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12649
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/2021/10/1200-x-600-1-1.jpg
103.76.231.51200 OK 728 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/2021/10/1200-x-600-1-1.jpg
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2021:10:13 15:08:37], baseline, precision 8, 1200x600, components 3\012- data
Size 728 kB (727880 bytes)
Hash b7b366d3278b83ae26f3f2cfc13e7459
8915e02b4e660c7d222eb1ab869760db05c63a2e
404c4ff257313a52dd99ad3148508ca7fec05f5a2ca6e540cb36746e114e5598
GET /wp-content/uploads/2021/10/1200-x-600-1-1.jpg HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/wp-content/uploads/elementor/css/post-9.css?ver=1671068284
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:38:13 GMT
accept-ranges: bytes
content-length: 727880
content-type: image/jpeg
date: Wed, 28 Dec 2022 08:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/themes/astra/astra/assets/fonts/astra.woff
103.76.231.51200 OK 3.3 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/themes/astra/astra/assets/fonts/astra.woff
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format, TrueType, length 3304, version 1.0\012- data
Hash bfe0ed8503c926d68f58ed0408dfe0d0
0346d02d96ff7d2a0278bc10f4dfdf365c80eac3
ec7ef7aa5fd1e019f1c26193e95e46d481d4983673936a9dda086705ada6e3d5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/astra/astra/assets/fonts/astra.woff HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:35:02 GMT
accept-ranges: bytes
content-length: 3304
content-type: font/woff
date: Wed, 28 Dec 2022 08:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
103.76.231.51200 OK 78 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 17 Jun 2021 10:07:24 GMT
accept-ranges: bytes
content-length: 78196
content-type: font/woff2
date: Wed, 28 Dec 2022 08:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
103.76.231.51200 OK 93 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data
Hash aab0bb3379e0eb7ebc26071db61fbd57
711c8d350c4192c2f1aa7f73551445b89fb4b161
691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 14:12:44 GMT
accept-ranges: bytes
content-length: 93372
content-type: font/woff2
date: Wed, 28 Dec 2022 08:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.9.2
103.76.231.51200 OK 469 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.9.2
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Size 469 kB (469025 bytes)
Hash aaff1c067618fd7b0758fbcfe1219256
db4af48523879411e9a62d913490746055955118
63bf5d9f8d0685c9c38e826520a137196228b2e445c874908d27eb9b98344b17
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.9.2 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 14:12:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/2021/10/double-ribbed-pic-293x300-1-e1633772842490.jpg
103.76.231.51200 OK 11 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/2021/10/double-ribbed-pic-293x300-1-e1633772842490.jpg
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 215x220, components 3\012- data
Hash f64c3d26ebd8407c67057014baca7285
0d17fb12a1993f6b0b7d869d233e0d6ba4a52a28
9f680f11cbaa79d25335f39d6db25c91b92c3fd6b50e812c8dbb73d5381419c8
GET /wp-content/uploads/2021/10/double-ribbed-pic-293x300-1-e1633772842490.jpg HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:38:12 GMT
accept-ranges: bytes
content-length: 11273
content-type: image/jpeg
date: Wed, 28 Dec 2022 08:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/2021/10/transparent-blue-pic-293x300-1-1-e1633772577409.jpg
103.76.231.51200 OK 8.3 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/2021/10/transparent-blue-pic-293x300-1-1-e1633772577409.jpg
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 215x220, components 3\012- data
Hash e67bff8da36f1cb51616e820604621ce
0722704afd5f4d4b65e0f0bcdf2ac9b03443536e
03157c3015667e44e829cff93ec3adb420a5596ce535480c5cf6f3885a0470a6
GET /wp-content/uploads/2021/10/transparent-blue-pic-293x300-1-1-e1633772577409.jpg HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:38:13 GMT
accept-ranges: bytes
content-length: 8279
content-type: image/jpeg
date: Wed, 28 Dec 2022 08:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A400%2C&display=fallback&ver=2.6.0
142.250.74.74200 OK 10 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400%2C&display=fallback&ver=2.6.0
IP 142.250.74.74:0
Hash a0f34afbe68cf5f115f9966bd6c19f1f
bc8c9698cb348bc895ba84f98018f8c6cb285a0e
933ccb95e751dc16b4623b362f2e1d66d9847908a5eec74a5e43418ce3457c13
GET /css?family=Open+Sans%3A400%2C&display=fallback&ver=2.6.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Dec 2022 08:18:49 GMT
date: Wed, 28 Dec 2022 08:18:49 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/2021/10/freezer-polar-pic-293x300-1-e1633772785886.jpg
103.76.231.51200 OK 9.8 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/2021/10/freezer-polar-pic-293x300-1-e1633772785886.jpg
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 215x220, components 3\012- data
Hash b1cefe0bc1b4bdc93c6cff161d45d7ab
a5ffac8ec923507924411b370df574675f2d3e04
d21993c0c2bba7ad25322057191f2029bf32297c2135dc9806a17092185b6fca
GET /wp-content/uploads/2021/10/freezer-polar-pic-293x300-1-e1633772785886.jpg HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:38:13 GMT
accept-ranges: bytes
content-length: 9820
content-type: image/jpeg
date: Wed, 28 Dec 2022 08:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/2021/10/cropped-cropped-fogging-machine-suppliers-in-mumbai-india3-1-1.png
103.76.231.51200 OK 5.2 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/2021/10/cropped-cropped-fogging-machine-suppliers-in-mumbai-india3-1-1.png
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 200 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash fbe9bc4942c50c9cbb9edd56305dafaa
9a64e479ceefdef16d0689e61129ae140706be43
d83fc6e7aaf6c36149fe55d88b43d49521180a7ac35beb6dc89aebf5e03b1667
GET /wp-content/uploads/2021/10/cropped-cropped-fogging-machine-suppliers-in-mumbai-india3-1-1.png HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:50:34 GMT
accept-ranges: bytes
content-length: 5162
content-type: image/png
date: Wed, 28 Dec 2022 08:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.9.2
103.76.231.51200 OK 1.2 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.9.2
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2620), with no line terminators
Hash 55936584085d0d310919b755eda1ab3f
be317c3b2ed5143669375295b3107e591bf708da
aad2265c39cafa6e01b791b1ef5025a2d237ee91346ef446beb722fdcd578d58
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.9.2 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 01 Aug 2022 00:11:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1187
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
103.76.231.51200 OK 4.2 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (10544)
Hash 552977febe8ef2c71b0806dfaefd2552
01baebfd09383c5d44f066e7b5540fcca6a5eae4
7895907f5a4f54c08c4705b1a194e21c556d68027c5e0a70d4c05b377e712b1d
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Nov 2021 08:27:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4200
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/js/lightbox.062e482fd73fca037d19.bundle.min.js
103.76.231.51200 OK 11 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/js/lightbox.062e482fd73fca037d19.bundle.min.js
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (28954)
Hash cf9b76ea5e6076795db4e78d73fb1c31
363e9d329cddf73189ef56f9e22541089f81c92d
b1634e369913b10c4a167f23fd77e576732b5b35ef534773efa84934d67f464b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/lightbox.062e482fd73fca037d19.bundle.min.js HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 14:12:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 11351
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
103.76.231.51200 OK 671 B URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1320)
Hash 5a0cefcd6b9a5b851b2878f4a67208aa
e56d45a20bebb0770ba03dfe164ffc08bdb089c0
7fcdfbbe2d8d53f5de98f9474df54f1f4a5c0e765af17bc97dfe42fa30780910
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 14:12:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 671
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2783127a63c78cb5ac02e1a31631bfca
a26af5a37bbb43d4258282640749ced026ba9560
cfe19d12b6070f9171129591b54bab634d5582e4d8d83e5c1fbe703d873b8366
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFE19D12B6070F9171129591B54BAB634D5582E4D8D83E5C1FBE703D873B8366"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3338
Expires: Wed, 28 Dec 2022 09:14:28 GMT
Date: Wed, 28 Dec 2022 08:18:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2783127a63c78cb5ac02e1a31631bfca
a26af5a37bbb43d4258282640749ced026ba9560
cfe19d12b6070f9171129591b54bab634d5582e4d8d83e5c1fbe703d873b8366
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFE19D12B6070F9171129591B54BAB634D5582E4D8D83E5C1FBE703D873B8366"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3338
Expires: Wed, 28 Dec 2022 09:14:28 GMT
Date: Wed, 28 Dec 2022 08:18:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2783127a63c78cb5ac02e1a31631bfca
a26af5a37bbb43d4258282640749ced026ba9560
cfe19d12b6070f9171129591b54bab634d5582e4d8d83e5c1fbe703d873b8366
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFE19D12B6070F9171129591B54BAB634D5582E4D8D83E5C1FBE703D873B8366"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3338
Expires: Wed, 28 Dec 2022 09:14:28 GMT
Date: Wed, 28 Dec 2022 08:18:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe69c29db-caec-401a-8056-6c2c58e33dfd.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe69c29db-caec-401a-8056-6c2c58e33dfd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 369bb708ac21a9219cae15dbf33fd225
64885e8ead4ee24b43274ada628ab47cba6c6703
04ba2c600a01344d2cb3fbd2fb5e1dc17d12d018e685f55870da70cd5a85b1ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe69c29db-caec-401a-8056-6c2c58e33dfd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10914
x-amzn-requestid: 86f79e43-1faa-431d-b88a-6e1baaabb1cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0z9YF1AIAMFyKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab66bb-6b418d8b0ceb68a92ec5cbd9;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 21:42:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jl9Pail3VVSDgB3KWrdxo26nQeRQ4rVqfk7I-dxHuxPH9WSBvPUQ8g==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Dec 2022 21:58:24 GMT
age: 37226
etag: "64885e8ead4ee24b43274ada628ab47cba6c6703"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd91057dd-978b-4fb5-b0a3-5ed8624f726a.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd91057dd-978b-4fb5-b0a3-5ed8624f726a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f810df3c7a9cc088b68a912023460d35
76c0e59325b5c046cf68c0268374df317b81be97
a46f2bc69415ce3b749a2765e98e0c2aad012050fa784d7326a0142a6a41a4dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd91057dd-978b-4fb5-b0a3-5ed8624f726a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6009
x-amzn-requestid: 25333cb9-5ba3-44d1-8862-2cc2658b64fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0z_MGbeoAMFrSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab66c7-23af33ff50839c6834137df3;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 21:42:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JmrzmSBdLJDQesHcs_dUm1C3xjHDVfOY1bHXjVoujVPoPJ6jsTSsoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Dec 2022 22:02:35 GMT
age: 36975
etag: "76c0e59325b5c046cf68c0268374df317b81be97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1983375a-46e7-4d3c-b100-9baafabc9959.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1983375a-46e7-4d3c-b100-9baafabc9959.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7b7f0c866bf3ac4531371ad2060951b5
48251361ab12813116d9aba69bb646bf11e54b76
33eacdc9a4c0f1c0494c153e6c8bf8dcebb5d1447aeb22fb2a799f2b631f4da7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1983375a-46e7-4d3c-b100-9baafabc9959.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5961
x-amzn-requestid: 527254dd-5774-4b0a-92c6-b03385ea17e7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0m_gHFZoAMF8gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab51fc-6808bf07003234666b176f10;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 20:13:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9BEjsTYluC9DE846mwrcRYOm-r-V18WVbsV1T8OJJC-KcMhllzHhuQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Dec 2022 04:54:33 GMT
age: 12257
etag: "48251361ab12813116d9aba69bb646bf11e54b76"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f83de5-47cd-4586-9dca-ab7c314cbd0e.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f83de5-47cd-4586-9dca-ab7c314cbd0e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9dcccae2018607dee1459081249c91e
2ecfa42f64013afc536c16fcd2250d8229f81654
41839d89192ec4771a6cd5a431617c0b7855701f93c722d025d3f056f109b552
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62f83de5-47cd-4586-9dca-ab7c314cbd0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10839
x-amzn-requestid: 70cc8d68-0917-472f-9d64-1d4f708791e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0yuVGkHoAMFskg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab64c1-2aba103f6a75466c19ddbbd6;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 21:33:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _XWlZ2SqSaIrAaT7MXl21X7zkIAoFsj4Tyf5jN7JLcrsuL9g1T9zdQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Dec 2022 21:35:45 GMT
age: 38585
etag: "2ecfa42f64013afc536c16fcd2250d8229f81654"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d46878b-33b3-4376-b34b-4fce3b5aae99.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d46878b-33b3-4376-b34b-4fce3b5aae99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23fa4f1ff5e70770062647e80c6b1a69
0d8cd5871878956468ccdb4ede3038869b4d2471
b44606410e34542fb5db0aa9382e43db89cd9fcf94eb4f0ec1d8b874c0d681b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d46878b-33b3-4376-b34b-4fce3b5aae99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12122
x-amzn-requestid: 7fae254c-4ff4-459c-a8bc-bccaa94e4bec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: du_QiEZfoAMF5GQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a91269-2cb2cd547899b93f47e3d901;Sampled=0
x-amzn-remapped-date: Mon, 26 Dec 2022 03:18:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: p-sl6pCUlvaycZ2Z5QH4lbWVCL-VgK5gU7K17clcYYWvR4ZB0BPdpQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Dec 2022 03:38:16 GMT
age: 16834
etag: "0d8cd5871878956468ccdb4ede3038869b4d2471"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd238a41-5dd3-4a9e-80cd-17fdf75ee403.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd238a41-5dd3-4a9e-80cd-17fdf75ee403.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 50a3433c386a2d8435a10b572d986161
a97620796ae1a146e719f4a46e98c57a4af472ed
b4954da0a678a4df8c3dd7df0376c04c446fad03b94f6363938b29b0b58b782a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd238a41-5dd3-4a9e-80cd-17fdf75ee403.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5577
x-amzn-requestid: b9f47205-66da-4ef7-bf83-f237bd4dd9e7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0ys9FYKoAMFwWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab64b9-5bcf6f3b23d1f2b1206c91cc;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 21:33:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BynwJdv-JV-UFO98M3C5ZZIJqbx7wVQkR6aJAgJHAzuDGih4D-Izug==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Dec 2022 21:35:33 GMT
age: 38597
etag: "a97620796ae1a146e719f4a46e98c57a4af472ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/js/image-carousel.e02695895b33b77d89de.bundle.min.js
103.76.231.51200 OK 1.3 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/js/image-carousel.e02695895b33b77d89de.bundle.min.js
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2738)
Hash 8b0fddc6c5ff3c56e0af43f228e729fd
dc423f0061b35f9810ad0b0fca35a72e254670a3
f5521f7eb667976ff17600de781f09ef590b064908b6468c2be7fd67c3f8be3a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/image-carousel.e02695895b33b77d89de.bundle.min.js HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 21 Dec 2022 14:12:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1272
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/2021/10/cropped-cropped-fogging-machine-suppliers-in-mumbai-india3--192x192.png
103.76.231.51200 OK 6.6 kB URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/2021/10/cropped-cropped-fogging-machine-suppliers-in-mumbai-india3--192x192.png
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 3421ad8f282081fa7778851cd14c9618
111b851ebeb693f4815faf1f8f8ed2803ea85a4a
0b414fc92c87497e964f616b45dab8fae41b3656134336c202be6364ec79778f
GET /wp-content/uploads/2021/10/cropped-cropped-fogging-machine-suppliers-in-mumbai-india3--192x192.png HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:38:13 GMT
accept-ranges: bytes
content-length: 6646
content-type: image/png
date: Wed, 28 Dec 2022 08:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/uploads/2021/10/cropped-cropped-fogging-machine-suppliers-in-mumbai-india3--32x32.png
103.76.231.51200 OK 822 B URL HTTP/2 pvcstripcurtaincompany.in/wp-content/uploads/2021/10/cropped-cropped-fogging-machine-suppliers-in-mumbai-india3--32x32.png
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 6692a8828290e7f48ef5518e66cce93d
f6572b8218d3fa43a31fb02e0f2d266eceb128e4
81a1d7e3414b7fb654bb08f7b03062f9cc25d673fe1b8b43fde233fbfdb6d85c
GET /wp-content/uploads/2021/10/cropped-cropped-fogging-machine-suppliers-in-mumbai-india3--32x32.png HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Oct 2021 12:38:12 GMT
accept-ranges: bytes
content-length: 822
content-type: image/png
date: Wed, 28 Dec 2022 08:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F346e7d95-abf9-4783-baa6-85137bb9cc29.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F346e7d95-abf9-4783-baa6-85137bb9cc29.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ab36b0d168174ef2d960be9810fdb2d
7c8a7415cab3ef88b5d1204af214a687b1676dda
a1d842fd02273603db0090d34c317d7a3ce3e5f00f29271d45fc4ed6d09ee21e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F346e7d95-abf9-4783-baa6-85137bb9cc29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7817
x-amzn-requestid: 21a68509-6fec-48b3-8bce-fb2ebfab3289
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0yuCEVwIAMFUrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab64c0-5e23ceec731631d93e01e2c8;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 21:33:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XW37o6TY-ynuySDq8QgtRV96fMBxkZeslHuLJNWBDLaiSz-fHJSQDA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Dec 2022 21:35:40 GMT
age: 38597
etag: "7c8a7415cab3ef88b5d1204af214a687b1676dda"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
103.76.231.51200 OK 0 B URL HTTP/2 pvcstripcurtaincompany.in/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 02:30:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
103.76.231.51200 OK 0 B URL HTTP/2 pvcstripcurtaincompany.in/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 01 Jun 2020 16:47:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:50 GMT
server: Apache
X-Firefox-Spdy: h2
pvcstripcurtaincompany.in/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
103.76.231.51200 OK 0 B URL HTTP/2 pvcstripcurtaincompany.in/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 103.76.231.51:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: pvcstripcurtaincompany.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pvcstripcurtaincompany.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 02:42:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 28 Dec 2022 08:18:49 GMT
server: Apache
X-Firefox-Spdy: h2