merbraha.com/
85.25.255.253301 Moved Permanently 162 B IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 22 Mar 2023 14:01:53 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://merbraha.com/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ec332b81a27117ce9c16b67a5a8e4fac
b6d2afa2c859d000ad830d3d8d73f57bac6ffce2
1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F"
Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13570
Expires: Wed, 22 Mar 2023 17:48:03 GMT
Date: Wed, 22 Mar 2023 14:01:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 210a2a42cfc4f4aced144f5de9babcc6
ece6ecfb2db8d036c3bfc7f02f8ea387e3f965db
59553a312d3fb34f1f0aea469f7e7cc810ff9993481ddbd73ea5d461cf97ed51
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59553A312D3FB34F1F0AEA469F7E7CC810FF9993481DDBD73EA5D461CF97ED51"
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7742
Expires: Wed, 22 Mar 2023 16:10:55 GMT
Date: Wed, 22 Mar 2023 14:01:53 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 22 Mar 2023 13:27:30 GMT
content-type: application/json
age: 2063
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 51a5d4696a6090c295850554508b51ce
c44e143c2223546e64b19f543b8101aaf3b11e97
8794223d5e8d4d276c35e2fdcc24bf99694240634dd749cd9b5bf874dec055cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8794223D5E8D4D276C35E2FDCC24BF99694240634DD749CD9B5BF874DEC055CF"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15930
Expires: Wed, 22 Mar 2023 18:27:23 GMT
Date: Wed, 22 Mar 2023 14:01:53 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /Nk0X+d6EmLAZKYV7eV73kMECn8UwWVzKt6nL+cd4ll/Eha8TMTuqkbVrjrqeVcr8HSlWOl2mac=
x-amz-request-id: 1AVADBTPRGQC7DDD
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 22 Mar 2023 13:53:39 GMT
age: 494
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:53 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 22 Mar 2023 13:14:33 GMT
age: 2841
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 18b877ebbad1529e4bd91e12220d91c4
a3d64fb3d9cc1fe3a29b261c4ec9acfe134dfedc
7001d3ef847c7002ac15155f0dfcc0a369f19860e85c8e90530f1e7b2dd88f09
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7001D3EF847C7002AC15155F0DFCC0A369F19860E85C8E90530F1E7B2DD88F09"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6906
Expires: Wed, 22 Mar 2023 15:57:00 GMT
Date: Wed, 22 Mar 2023 14:01:54 GMT
Connection: keep-alive
push.services.mozilla.com/
52.43.253.52101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.253.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hGtgwrjjofXgWWPKOEO35Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Kz11u0b5uSpGy3Tkd1lrhAl4Okc=
merbraha.com/wp-content/plugins/blockspare/assets/fontawesome/css/all.css?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 54 kB URL HTTP/2 merbraha.com/wp-content/plugins/blockspare/assets/fontawesome/css/all.css?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (53538), with no line terminators
Hash 843d43d31ce37f8544e5ad2c7a763683
5609dda1b53542daf04c62857e07ec558b673c0f
2c705ac2b66b50023f4ff66208cc017856f0237a596d70bebbaee7e1b7c65b33
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/blockspare/assets/fontawesome/css/all.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 53538
last-modified: Sun, 05 Mar 2023 23:28:45 GMT
etag: "640525ad-d122"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/blockspare/assets/slick/css/slick.css?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 1.7 kB URL HTTP/2 merbraha.com/wp-content/plugins/blockspare/assets/slick/css/slick.css?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash 13b1b6672b8cfb0d9ae7f899f1c42875
6e9d13342a11a8cfd9e42ee243eaeae01cda4e25
d917660c3d6f7aad32ebc4b0012c6d0bb84a13e201a012e334bcca4b9f4686c9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/blockspare/assets/slick/css/slick.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 1729
last-modified: Sun, 05 Mar 2023 23:28:45 GMT
etag: "640525ad-6c1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/latest-posts-block-lite/src/assets/fontawesome/css/all.css?ver=1673554590
85.25.255.253200 OK 54 kB URL HTTP/2 merbraha.com/wp-content/plugins/latest-posts-block-lite/src/assets/fontawesome/css/all.css?ver=1673554590
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (53538), with no line terminators
Hash 843d43d31ce37f8544e5ad2c7a763683
5609dda1b53542daf04c62857e07ec558b673c0f
2c705ac2b66b50023f4ff66208cc017856f0237a596d70bebbaee7e1b7c65b33
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/latest-posts-block-lite/src/assets/fontawesome/css/all.css?ver=1673554590 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 53538
last-modified: Thu, 12 Jan 2023 20:16:30 GMT
etag: "63c06a9e-d122"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wp-post-author/assets/fontawesome/css/all.css?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 54 kB URL HTTP/2 merbraha.com/wp-content/plugins/wp-post-author/assets/fontawesome/css/all.css?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (53538), with no line terminators
Hash 843d43d31ce37f8544e5ad2c7a763683
5609dda1b53542daf04c62857e07ec558b673c0f
2c705ac2b66b50023f4ff66208cc017856f0237a596d70bebbaee7e1b7c65b33
GET /wp-content/plugins/wp-post-author/assets/fontawesome/css/all.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 53538
last-modified: Sun, 18 Dec 2022 11:59:50 GMT
etag: "639f00b6-d122"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wp-post-author/assets/dist/blocks.style.build.css?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 31 kB URL HTTP/2 merbraha.com/wp-content/plugins/wp-post-author/assets/dist/blocks.style.build.css?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (22405)
Hash 552bcf3f16926ec0a2a5f638fa881a7a
844d219e1c657d371d8edacd09987046c79d8083
a7e9f959be278d8e528e431e787e0096b978e435918c484a00c7919ff6b999e8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-post-author/assets/dist/blocks.style.build.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 31295
last-modified: Sun, 18 Dec 2022 11:59:50 GMT
etag: "639f00b6-7a3f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/css/all.css?ver=1673554623
85.25.255.253200 OK 54 kB URL HTTP/2 merbraha.com/wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/css/all.css?ver=1673554623
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (53538), with no line terminators
Hash 843d43d31ce37f8544e5ad2c7a763683
5609dda1b53542daf04c62857e07ec558b673c0f
2c705ac2b66b50023f4ff66208cc017856f0237a596d70bebbaee7e1b7c65b33
GET /wp-content/plugins/magic-content-box-lite/src/assets/fontawesome/css/all.css?ver=1673554623 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 53538
last-modified: Thu, 12 Jan 2023 20:17:03 GMT
etag: "63c06abf-d122"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/latest-posts-block-lite/dist/blocks.style.build.css?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 87 kB URL HTTP/2 merbraha.com/wp-content/plugins/latest-posts-block-lite/dist/blocks.style.build.css?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (64763)
Hash d5052884e208a558b18b6e13b42db7a9
50ecfe2c6fd07d74df948a44a5bb9906ddb40ebd
f0128424901e0ab4f4ec931daeafd69505561ebf2ec73d27679606cf7d2cd978
GET /wp-content/plugins/latest-posts-block-lite/dist/blocks.style.build.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 86944
last-modified: Thu, 12 Jan 2023 20:16:30 GMT
etag: "63c06a9e-153a0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/blockspare/dist/style-blocks.css?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 778 kB URL HTTP/2 merbraha.com/wp-content/plugins/blockspare/dist/style-blocks.css?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (28887)
Size 778 kB (778243 bytes)
Hash 9e0a73735bd94c2a3d9ba87c1127e116
cee17dcd412f1ecb6ff906462138782d1bcf7625
6f76b9f3a30b51b9ddd8bbfb2220b6f312aa4164d7372bbbe12dd72c24be4405
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/blockspare/dist/style-blocks.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 778243
last-modified: Sun, 05 Mar 2023 23:28:45 GMT
etag: "640525ad-be003"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/magic-content-box-lite/dist/blocks.style.build.css?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 215 kB URL HTTP/2 merbraha.com/wp-content/plugins/magic-content-box-lite/dist/blocks.style.build.css?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (64434)
Size 215 kB (215342 bytes)
Hash a431993d189c5dfcebc6f3de7d5c4004
7ec4b0341f36b9033279b5558cc1cc489ec81d82
ff1754be3dc730e91b81dbff210299d709aea3dad9bae26fc33a90b5b4458342
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/magic-content-box-lite/dist/blocks.style.build.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 215342
last-modified: Thu, 12 Jan 2023 20:17:03 GMT
etag: "63c06abf-3492e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
vjs.zencdn.net/8.0.4/video.min.js?ver=1
151.101.194.217200 OK 159 kB URL HTTP/2 vjs.zencdn.net/8.0.4/video.min.js?ver=1
IP 151.101.194.217:0
File type Unicode text, UTF-8 text, with very long lines (65142)
Size 159 kB (159143 bytes)
Hash fa1274ccb37f9e7855987154114621f8
dfc102a63464c7e3c2ca275d62d0898243ad3632
19c7ef8b8868e6864903c41b1056ed3062e73f97c0611ed75fd16fc708ce3c89
GET /8.0.4/video.min.js?ver=1 HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 02 Feb 2023 16:06:44 GMT
etag: "5234312d388f7774a7f7aef2918f8d80"
x-amz-server-side-encryption: AES256
content-type: text/javascript
content-encoding: gzip
date: Wed, 22 Mar 2023 14:01:55 GMT
x-served-by: cache-bma1659-BMA
x-cache: HIT
x-cache-hits: 1
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 159143
X-Firefox-Spdy: h2
merbraha.com/wp-includes/css/dist/block-library/style.min.css?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 95 kB URL HTTP/2 merbraha.com/wp-includes/css/dist/block-library/style.min.css?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (47826)
Hash 71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 94889
last-modified: Fri, 11 Nov 2022 13:56:44 GMT
etag: "636e549c-172a9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/wp-emoji-release.min.js?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 19 kB URL HTTP/2 merbraha.com/wp-includes/js/wp-emoji-release.min.js?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 18617
last-modified: Tue, 12 Apr 2022 04:56:22 GMT
etag: "62550676-48b9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wpstream/public//css/video-js.min.css?ver=4.4.17
85.25.255.253200 OK 39 kB URL HTTP/2 merbraha.com/wp-content/plugins/wpstream/public//css/video-js.min.css?ver=4.4.17
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (39387), with no line terminators
Hash 716282aa55497a5ebd6c590e83c46388
e5bffc65e44474f6e21d030d636c3f4f66572164
4c92903d5602f1c1419e9c647f0db022d425efaaa580d9849e9b6132cb1020f6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpstream/public//css/video-js.min.css?ver=4.4.17 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 39387
last-modified: Mon, 06 Mar 2023 00:00:27 GMT
etag: "64052d1b-99db"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wpstream/public//css/videojs-wpstream.css?ver=4.4.17
85.25.255.253200 OK 2.2 kB URL HTTP/2 merbraha.com/wp-content/plugins/wpstream/public//css/videojs-wpstream.css?ver=4.4.17
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash 8926383769c6b334f1d1e6c26e657905
e678b05866056568b3d3b9b12f7927c63f85750e
7520e13af9bae547cc5d74a9f3e28a86050f6bf58ea7938fb625e3c163970700
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpstream/public//css/videojs-wpstream.css?ver=4.4.17 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 2234
last-modified: Mon, 06 Mar 2023 00:00:27 GMT
etag: "64052d1b-8ba"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 06adbc463c1bafb4b79a2d2f10791ef8
30a6d093719f89764805f62102b0a07c493016a0
64000d2bedca454efa1fc2de6083ca06cb3e94b33565427ba9ac7c9345a926fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
merbraha.com/wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css?ver=6.5
85.25.255.253200 OK 1.3 kB URL HTTP/2 merbraha.com/wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css?ver=6.5
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1268), with no line terminators
Hash 37bb2e18fecad211b75d4f07d0c376d1
9a7fd572677362037cbcf7e50b99eb7afd47a703
732ed50433ac0b64ff46aac809ec7c4c42214ab43bbfa27bde87ae2bfaa48678
GET /wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css?ver=6.5 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 1268
last-modified: Sun, 05 Mar 2023 23:29:21 GMT
etag: "640525d1-4f4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.4
85.25.255.253200 OK 2.9 kB URL HTTP/2 merbraha.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.4
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash 0e4a098f3f6e3faede64db8b9da80ba2
65b9b3c849f3fbdd783ddbfb183616ff55c7ee53
ab21762c3f447aa08cbefd5ea3866165f925bd5058a9ae19e23721462de6fb60
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.4 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 2859
last-modified: Thu, 23 Feb 2023 23:38:53 GMT
etag: "63f7f90d-b2b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wpstream/admin/css/wpstream-admin.css?ver=4.4.17
85.25.255.253200 OK 28 kB URL HTTP/2 merbraha.com/wp-content/plugins/wpstream/admin/css/wpstream-admin.css?ver=4.4.17
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type assembler source, ASCII text
Hash 393ce3f4802fc3ccc247e8a961cb9b7b
54fa099ec8e61c094cf0b920f76b17a7d1aa02ec
40b1af6ad9b19f5465fcfa52587ced8e95f233d913e20ee99bbee9e2bc4d6050
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpstream/admin/css/wpstream-admin.css?ver=4.4.17 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 28505
last-modified: Mon, 06 Mar 2023 00:00:27 GMT
etag: "64052d1b-6f59"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wpstream/integrations/css/integrations.css?ver=4.4.17
85.25.255.253200 OK 2.2 kB URL HTTP/2 merbraha.com/wp-content/plugins/wpstream/integrations/css/integrations.css?ver=4.4.17
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash 51c8a4089620d45c806fb385019548e3
4e2a75d75bb162f452cf692a58f70d1dd38de591
9f457a5f7798526a07c937b3dda8eb49cf7b7deb4968ad08e5c2ea4a2790f8da
GET /wp-content/plugins/wpstream/integrations/css/integrations.css?ver=4.4.17 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 2154
last-modified: Mon, 06 Mar 2023 00:00:27 GMT
etag: "64052d1b-86a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wpstream/public//css/wpstream_style.css?ver=4.4.17
85.25.255.253200 OK 14 kB URL HTTP/2 merbraha.com/wp-content/plugins/wpstream/public//css/wpstream_style.css?ver=4.4.17
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash dd9a89f369d4865c36c284d58fe12e81
d073135d8cb050e684dbcd3673a558e415ecafbf
65b5d4114726c533a2f0bf759cd29ee3c1853bad7265e44b7378191b4f5bed39
GET /wp-content/plugins/wpstream/public//css/wpstream_style.css?ver=4.4.17 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 13937
last-modified: Mon, 06 Mar 2023 00:00:27 GMT
etag: "64052d1b-3671"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wp-post-author/assets/css/react-date-range/styles.css?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 3.3 kB URL HTTP/2 merbraha.com/wp-content/plugins/wp-post-author/assets/css/react-date-range/styles.css?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash bcb030d66fffc48c92dbe9e437118553
f5447f612aafc6df8c2aa1164c1a3b676a8f8ebe
fda06323b6accd1b0f3c6f5b8eaf67def264b107ed05588ed093f4e9d25c28e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-post-author/assets/css/react-date-range/styles.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 3256
last-modified: Sun, 18 Dec 2022 11:59:50 GMT
etag: "639f00b6-cb8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wp-post-author/assets/css/react-date-range/default.css?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 9.8 kB URL HTTP/2 merbraha.com/wp-content/plugins/wp-post-author/assets/css/react-date-range/default.css?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (934)
Hash 7e512f97c04749f17527ad32e5eeb1ee
8543750f2f7aec80d7daae63a26c03089c36b143
319f1e6f173f33a1b8247a87de1f6f657162fe82bf2fdf279360f2b5fd403149
GET /wp-content/plugins/wp-post-author/assets/css/react-date-range/default.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 9829
last-modified: Sun, 18 Dec 2022 11:59:50 GMT
etag: "639f00b6-2665"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/themes/covernews/assets/font-awesome-v6/css/all.min.css?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 102 kB URL HTTP/2 merbraha.com/wp-content/themes/covernews/assets/font-awesome-v6/css/all.min.css?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (65317)
Size 102 kB (101784 bytes)
Hash 6cb5a85b30082e3d59d7e371e002ce8d
0c639634f474b4601a7937f440096185f3a9d8d3
01b035efb5dfa529c512f82962ed633328222da6f33c224244806d4798c67349
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/covernews/assets/font-awesome-v6/css/all.min.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 101784
last-modified: Tue, 31 Jan 2023 00:22:12 GMT
etag: "63d85f34-18d98"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wp-post-author/assets/css/awpa-frontend-style.css?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 12 kB URL HTTP/2 merbraha.com/wp-content/plugins/wp-post-author/assets/css/awpa-frontend-style.css?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash a15249b2715a766ff42b05b3bda0f312
2359cd5ea205ca725d99f443a4ec57f19bce7deb
e99e223032b201e8212b7126a79944b4919f80e80a50eadd835055e450a7c567
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-post-author/assets/css/awpa-frontend-style.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 11656
last-modified: Sun, 18 Dec 2022 11:59:50 GMT
etag: "639f00b6-2d88"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/themes/covernews/assets/bootstrap/css/bootstrap.min.css?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 121 kB URL HTTP/2 merbraha.com/wp-content/themes/covernews/assets/bootstrap/css/bootstrap.min.css?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (65371)
Size 121 kB (121224 bytes)
Hash 69b4aa4c095f3e82f1d54919ace7566e
f7e5f4e71c02c558803049a3cb1a584025c6fad5
ebf968e400976b579ea9dcff5f0bc247a2b2371f9ce49c3b5829da4b7179f4f9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/covernews/assets/bootstrap/css/bootstrap.min.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 121224
last-modified: Tue, 31 Jan 2023 00:22:12 GMT
etag: "63d85f34-1d988"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/themes/covernews/assets/slick/css/slick.css?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 1.8 kB URL HTTP/2 merbraha.com/wp-content/themes/covernews/assets/slick/css/slick.css?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash f38b2db10e01b1572732a3191d538707
a94a059b3178b4adec09e3281ace2819a30095a4
de1e399b07289f3b0a8d35142e363e128124a1185770e214e25e58030dad48e5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/covernews/assets/slick/css/slick.css?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 1776
last-modified: Tue, 31 Jan 2023 00:22:12 GMT
etag: "63d85f34-6f0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash d8076782b7586aea6d69480d5434652e
6bd6f10f27f62711c6783bc8b5ea72cb74622e2f
ab660e165b0044aa0ca16ab2a42ac38a1922a24a6ae6e879d4e3e1e9c19822c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
merbraha.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
85.25.255.253200 OK 90 kB URL HTTP/2 merbraha.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 89684
last-modified: Mon, 19 Sep 2022 13:16:24 GMT
etag: "63286ba8-15e54"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
85.25.255.253200 OK 11 kB URL HTTP/2 merbraha.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 11224
last-modified: Wed, 18 Nov 2020 08:06:06 GMT
etag: "5fb4d5ee-2bd8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/blockspare/assets/js/countup/waypoints.min.js?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 20 kB URL HTTP/2 merbraha.com/wp-content/plugins/blockspare/assets/js/countup/waypoints.min.js?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash b8465833d457da6899e5bf9bcd7e56b8
da387276d7f05d63cc33f2acfa0c5e46f122f86f
4c4ef2ce06020123a4263e2ab4bdae0d2caccf2e9070a4f82349ec41ea039c45
GET /wp-content/plugins/blockspare/assets/js/countup/waypoints.min.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 19896
last-modified: Sun, 05 Mar 2023 23:28:45 GMT
etag: "640525ad-4db8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/blockspare/assets/js/countup/jquery.counterup.min.js?ver=1
85.25.255.253200 OK 2.2 kB URL HTTP/2 merbraha.com/wp-content/plugins/blockspare/assets/js/countup/jquery.counterup.min.js?ver=1
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2181), with no line terminators
Hash 5fb55a9e16c2a112a18989f1b0b08485
eb9ba6ab4abd6afde76c714542fa1906b867602e
d35fc86bdb6bf9102349bb4de42fd68542ba69dacc1b80b0d9629cc4841a75dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/blockspare/assets/js/countup/jquery.counterup.min.js?ver=1 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 2181
last-modified: Sun, 05 Mar 2023 23:28:45 GMT
etag: "640525ad-885"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wpstream/public/js/sldp-v2.12.1.min.js?ver=4.4.17
85.25.255.253200 OK 246 kB URL HTTP/2 merbraha.com/wp-content/plugins/wpstream/public/js/sldp-v2.12.1.min.js?ver=4.4.17
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (65448), with no line terminators
Size 246 kB (246349 bytes)
Hash b24c8c9e8f96bbbf8115f6ac22408f74
62bed3913a918930f934e38b4c0df49d2c044c0d
f583e6f066580f1ff8de79aa4b6db998d82f8a672fd166fbcc842f25e4c4ffb9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpstream/public/js/sldp-v2.12.1.min.js?ver=4.4.17 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 246349
last-modified: Mon, 06 Mar 2023 00:00:27 GMT
etag: "64052d1b-3c24d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
85.25.255.253200 OK 6.5 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (6475), with no line terminators
Hash 61449413a42d2daaa79dbe7298b40e21
d86c474164c603084397bdc50fb0e469d28b5772
f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 6475
last-modified: Mon, 11 Apr 2022 11:04:30 GMT
etag: "62540b3e-194b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LecQoEUAAAAAFgs9mz4iWQMSdmFU0WTdoQDgkhD&ver=3.0
216.58.207.228400 Bad Request 119 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LecQoEUAAAAAFgs9mz4iWQMSdmFU0WTdoQDgkhD&ver=3.0
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 96612d2b1b529ecfcf09798c3eb100bf
4f32d5d3ccf4d44ae71309dfa8d6f9d396614a27
7c58bfa17d0c600b7455e6bfb3d8371fbf93da20a7a53ed1efad37d692f1cba0
GET /recaptcha/api.js?render=6LecQoEUAAAAAFgs9mz4iWQMSdmFU0WTdoQDgkhD&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Wed, 22 Mar 2023 14:01:55 GMT
expires: Wed, 22 Mar 2023 14:01:55 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 119
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
85.25.255.253200 OK 18 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash e495a4709e3eae31c67f8263f25d2d39
d43ba6a092e4823a71f3bff75d5ed279a481636b
1c1fef6e6b4f9832603850b9b6562e74d9a6a3700ba836efe88facc577121e8b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 17823
last-modified: Tue, 20 Sep 2022 14:43:28 GMT
etag: "6329d190-459f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
85.25.255.253200 OK 331 B URL HTTP/2 merbraha.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (463)
Hash ba2b50662c393ff6ba69961f66b24d5d
d5694f33b1072b13fc4c3989e90252c0b28030a2
79ad638f020827a6db341526b430e65459aa712bfbdcabf28bb013c6b2c715e9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 331
x-accel-version: 0.01
last-modified: Mon, 11 Apr 2022 11:04:30 GMT
etag: "1f2-5dc5ee88acb80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
ms-author-via: DAV
x-powered-by: PleskLin
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wp-post-author/assets/js/awpa-frontend-scripts.js?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 331 B URL HTTP/2 merbraha.com/wp-content/plugins/wp-post-author/assets/js/awpa-frontend-scripts.js?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash 3dd15795f9d04da6b81a40a8b67a8bba
c75177ea585880e741d4a3f223003e1588a400a9
b82614794b3b7a7d0091630447f7009725e75b24442cea07303cb791f6561192
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-post-author/assets/js/awpa-frontend-scripts.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 331
x-accel-version: 0.01
last-modified: Sun, 18 Dec 2022 11:59:50 GMT
etag: "2d9-5f018f0a75b7f-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
ms-author-via: DAV
x-powered-by: PleskLin
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=6.5
85.25.255.253200 OK 56 kB URL HTTP/2 merbraha.com/wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=6.5
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (56145), with no line terminators
Hash b95e7182524db07c091c63fdd3df7cbf
5ed89cc7abb2d2641835403b49141f759f2fd925
b49cfd43128f9be9520db98ccca34b4f0d2b437a45816e9b7fc41f5baa8e493f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=6.5 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 56145
last-modified: Sun, 05 Mar 2023 23:29:20 GMT
etag: "640525d0-db51"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19
85.25.255.253200 OK 71 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (65004)
Hash 1ca735a2bc6289de8c31917a50f9442e
04021574593449fdddbe29a58b3041c9f861bec1
be7a8a75a7a589c5a1747ea85846bded2393219f42478979c91b86d2ebbea94a
GET /wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.19 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 71098
last-modified: Mon, 11 Apr 2022 11:04:30 GMT
etag: "62540b3e-115ba"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/autop.min.js?ver=43197d709df445ccf849
85.25.255.253200 OK 5.7 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/autop.min.js?ver=43197d709df445ccf849
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type exported SGML document, ASCII text, with very long lines (5703)
Hash 404fef5f47c3d0af191a0d5d5a1b8c48
5870cd487a50443347b6afa0f1e249f9b84bc193
f3a7f7efc9e795f4b4f354c988d7a62986cfe32b07db19f6dacfe7f6bdc75891
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/autop.min.js?ver=43197d709df445ccf849 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 5738
last-modified: Mon, 11 Apr 2022 11:04:30 GMT
etag: "62540b3e-166a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 06adbc463c1bafb4b79a2d2f10791ef8
30a6d093719f89764805f62102b0a07c493016a0
64000d2bedca454efa1fc2de6083ca06cb3e94b33565427ba9ac7c9345a926fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
merbraha.com/wp-includes/js/dist/blob.min.js?ver=a078f260190acf405764
85.25.255.253200 OK 486 B URL HTTP/2 merbraha.com/wp-includes/js/dist/blob.min.js?ver=a078f260190acf405764
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (917)
Hash b68474754caf31ed498c0b8d8c1bbe2d
bd8c73f15c6ebb21f0c2cad9f2dcd7156246dd1a
1e626ef05a33fd5df51257b64c98ea93f08aaf95268e8a8d6129264eaf5928f3
GET /wp-includes/js/dist/blob.min.js?ver=a078f260190acf405764 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 486
x-accel-version: 0.01
last-modified: Mon, 11 Apr 2022 11:04:30 GMT
etag: "3b8-5dc5ee88acb80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
ms-author-via: DAV
x-powered-by: PleskLin
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
85.25.255.253200 OK 10 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash 8cd696505481e74ffee89b4995f37379
ee9aad199ef2bc60a3460f4c52f37d22907b2ec9
01c3955df67a9b9d1367957e2c187729eae46b72e92c2b52bdb217b14a8fc874
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 10230
last-modified: Fri, 23 Sep 2022 18:55:30 GMT
etag: "632e0122-27f6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664
85.25.255.253200 OK 2.5 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (2472)
Hash 496baa8dab0a9861cd85d4e329f5aa77
5a036d58aecc5c5c471237d6dc719333cfe225e6
5df2942db2352e49e00bcf3393b875a71d0acee986e48fbdcc5879846f5c3689
GET /wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 2508
last-modified: Mon, 11 Apr 2022 11:04:30 GMT
etag: "62540b3e-9cc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/deprecated.min.js?ver=6c963cb9494ba26b77eb
85.25.255.253200 OK 513 B URL HTTP/2 merbraha.com/wp-includes/js/dist/deprecated.min.js?ver=6c963cb9494ba26b77eb
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (777)
Hash d258697e291ff7469c77a0dcea310309
b25e1a246ade33d3f431aa38234134bf87e200c7
9f9ba1386b6c6ff19d40aa20c2f9c9c35c355db8386d8edf8cef61a3582d77da
GET /wp-includes/js/dist/deprecated.min.js?ver=6c963cb9494ba26b77eb HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 513
x-accel-version: 0.01
last-modified: Mon, 11 Apr 2022 11:04:30 GMT
etag: "32c-5dc5ee88acb80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
ms-author-via: DAV
x-powered-by: PleskLin
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6
85.25.255.253200 OK 1.1 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1104)
Hash 27b8b3680cd49b8f105b2bf49da03b1c
ad0c8cbc41c7e19ad1d892234f6c4b403df1439c
cfb6ea70d464c88b03728fe77f38a7400f7a3b1b5b0eaaae5817844d730e8cbd
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/escape-html.min.js?ver=03e27a7b6ae14f7afaa6 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 1139
last-modified: Mon, 11 Apr 2022 11:04:30 GMT
etag: "62540b3e-473"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/block-serialization-default-parser.min.js?ver=eb2cdc8cd7a7975d49d9
85.25.255.253200 OK 2.4 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/block-serialization-default-parser.min.js?ver=eb2cdc8cd7a7975d49d9
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type exported SGML document, ASCII text, with very long lines (2386)
Hash f14c7cc9726e1730d1bcc001474c29a5
2ba514f9e2c90675c8b3bf51b05aa833115dbc23
eb3f59435b2f1c68b75ea6f308631163505ae157284f8646fbe7e3b51fdd5a64
GET /wp-includes/js/dist/block-serialization-default-parser.min.js?ver=eb2cdc8cd7a7975d49d9 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 2421
last-modified: Tue, 20 Sep 2022 14:43:28 GMT
etag: "6329d190-975"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b
85.25.255.253200 OK 12 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (7680)
Hash ea0d01a925f98cfa34156dfcc6600f03
b011362ca664891da4629f16845431ac0975c63d
1987ae63250aaf378e4da5e114eeca519f6c46a8d55b27e2d0c7b8b05968e6af
GET /wp-includes/js/dist/element.min.js?ver=47162ff4492c7ec4956b HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 12246
last-modified: Tue, 20 Sep 2022 14:43:28 GMT
etag: "6329d190-2fd6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 05470ec3fac6689210d541688b822c4f
9e338b1d86ae27a056cb9c06b7cc845c12d7fedd
ec624f78eb68c3257d67eb623f1a0745793a14f2670b0cfe8c478304079d4e16
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 22 Mar 2023 14:01:55 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 19 Mar 2023 14:00:00 GMT
Expires: Sun, 26 Mar 2023 13:59:59 GMT
Etag: "9e338b1d86ae27a056cb9c06b7cc845c12d7fedd"
Cache-Control: max-age=344883,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7abef82b4c4cb511-OSL
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 9446303f24a6e8e8d138867549399aa2
410a03d7475ec879b8e346f1706aea491e3f1da5
f7d7017ca9dbdf1822739e9baa6f34868504e6ce0d827aeeef82517c5db72960
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
merbraha.com/wp-includes/js/dist/is-shallow-equal.min.js?ver=20c2b06ecf04afb14fee
85.25.255.253200 OK 1.1 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/is-shallow-equal.min.js?ver=20c2b06ecf04afb14fee
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1062)
Hash 001331ec9e93a6849b9f4be131dc9e4d
c3cf6210f49525d963407d332d3cda0c0a306c54
b09bdbf565d50102894b31146a8ecea9cff952ed9a365753185ce4b22fd818cf
GET /wp-includes/js/dist/is-shallow-equal.min.js?ver=20c2b06ecf04afb14fee HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 1097
last-modified: Mon, 11 Apr 2022 11:04:30 GMT
etag: "62540b3e-449"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/vendor/react.min.js?ver=17.0.1
85.25.255.253200 OK 11 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/vendor/react.min.js?ver=17.0.1
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (11082)
Hash 0dc4a04efdf47cdf1389331779edfa2f
2ca9923fdce4e3e5d45c14bf61aff6c0b4964ffc
7441e843483c183606e93bc717055148574dad9bc39cb9ecfef062c1fb2d9e1a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/react.min.js?ver=17.0.1 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 11324
last-modified: Tue, 12 Apr 2022 14:12:46 GMT
etag: "625588de-2c3c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/keycodes.min.js?ver=6e0aadc0106bd8aadc89
85.25.255.253200 OK 4.2 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/keycodes.min.js?ver=6e0aadc0106bd8aadc89
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (4172)
Hash 5f7eb2e77fec2ea1f346c485eeb5ecdf
b17eafa35992cf49894f580b68a0639a50dfe883
3286bdd37e8eff8875ac2fe61614c2e75dfec95efa01f2085c56abc5dd20cc9a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/keycodes.min.js?ver=6e0aadc0106bd8aadc89 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 4215
last-modified: Tue, 20 Sep 2022 14:43:28 GMT
etag: "6329d190-1077"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/dom.min.js?ver=133a042fbbef48f38107
85.25.255.253200 OK 13 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/dom.min.js?ver=133a042fbbef48f38107
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (13047)
Hash f3b79036d1bedec1895c89611c362998
55b13c2105911eab14b4427ddef11b5ba755417c
b7028b60c69e83a80a23c032753c185fa7ec3c6d0329b7330c5ff97c71bc978d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/dom.min.js?ver=133a042fbbef48f38107 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 13084
last-modified: Tue, 20 Sep 2022 14:43:28 GMT
etag: "6329d190-331c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/priority-queue.min.js?ver=99e325da95c5a35c7dc2
85.25.255.253200 OK 3.6 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/priority-queue.min.js?ver=99e325da95c5a35c7dc2
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3597)
Hash 635684b71ad39148016a7e547aa0f633
48893bb38952f76a57b2e4bd15aec18fee01d829
c865826669d546f79a8c4a3df57bf2f2f189631f12233524d155ed751cd610d4
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/priority-queue.min.js?ver=99e325da95c5a35c7dc2 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 3632
last-modified: Tue, 20 Sep 2022 14:43:28 GMT
etag: "6329d190-e30"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/compose.min.js?ver=37228270687b2a94e518
85.25.255.253200 OK 37 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/compose.min.js?ver=37228270687b2a94e518
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (36591)
Hash a15948bb1ac7338f39cead7f8c4b818a
2b65039159dc3f2f347565b4adf3e6a7a27998fa
558e528d11fbb4c78b41c354780b6fee52270f946e2c93ac0d04000ab7defcdc
GET /wp-includes/js/dist/compose.min.js?ver=37228270687b2a94e518 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 36756
last-modified: Tue, 04 Oct 2022 14:55:22 GMT
etag: "633c495a-8f94"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/redux-routine.min.js?ver=c9ea6c0df793258797e6
85.25.255.253200 OK 9.2 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/redux-routine.min.js?ver=c9ea6c0df793258797e6
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (8195)
Hash 04d4110390cace92c17a4f763a01a425
9261f9e2f764f59a2cb497ce70f126d4b2d381ff
72126d05264064af15e8b6f8f4410e5e69993ca3e80661cbf012c13f02719cd7
GET /wp-includes/js/dist/redux-routine.min.js?ver=c9ea6c0df793258797e6 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 9242
last-modified: Tue, 20 Sep 2022 14:43:28 GMT
etag: "6329d190-241a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/shortcode.min.js?ver=7539044b04e6bca57f2e
85.25.255.253200 OK 3.3 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/shortcode.min.js?ver=7539044b04e6bca57f2e
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3246)
Hash 66fff3760ee228a1c1c1e94d6db7df34
e7ee65c8dbf337a4fa7ee7fb4d87f10197c3782c
2abc56eacb96d309455d62dd8620eb198ef09ceb50716b07854df0d851db7f3f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/shortcode.min.js?ver=7539044b04e6bca57f2e HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 3281
last-modified: Tue, 20 Sep 2022 14:43:28 GMT
etag: "6329d190-cd1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/data.min.js?ver=d8cf5b24f99c64ae47d6
85.25.255.253200 OK 26 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/data.min.js?ver=d8cf5b24f99c64ae47d6
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (20121)
Hash 0248d2898749d26c49d4d2d5fb85b0b7
7b8753379c9adcd480562b9cd4ed0449166b1871
81af248893e629fcb29b923d21c31eb23508415fc2831bec9223b48be0d6781f
GET /wp-includes/js/dist/data.min.js?ver=d8cf5b24f99c64ae47d6 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 26174
last-modified: Fri, 23 Sep 2022 18:55:30 GMT
etag: "632e0122-663e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4
85.25.255.253200 OK 58 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (57929), with no line terminators
Hash 8424b037edd84d8e1f1cf5559de50390
2740e3cb33901d827781ed5e930764b9d0ad1857
b5702b438e090e76b34ab322434f020b4a54c1aee477aaa2749f386e7d060e51
GET /wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 57929
last-modified: Thu, 06 Oct 2022 17:57:22 GMT
etag: "633f1702-e249"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/masonry.min.js?ver=4.2.2
85.25.255.253200 OK 24 kB URL HTTP/2 merbraha.com/wp-includes/js/masonry.min.js?ver=4.2.2
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (23966)
Hash 3b3fc826e58fc554108e4a651c9c7848
76778fd446e2ff2377588a7b4ac4d79f258427c9
e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 24138
last-modified: Sat, 13 Jun 2020 17:53:26 GMT
etag: "5ee51296-5e4a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
moderate4.cleantalk.org/pixel/efafe7dfeba18c21caf2252f4b6dd473.gif
159.69.51.30200 OK 43 B URL HTTP/1.1 moderate4.cleantalk.org/pixel/efafe7dfeba18c21caf2252f4b6dd473.gif
IP 159.69.51.30:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pixel/efafe7dfeba18c21caf2252f4b6dd473.gif HTTP/1.1
Host: moderate4.cleantalk.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 22 Mar 2023 14:01:55 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: keep-alive
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
X-Frame-Options: SAMEORIGIN
merbraha.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
85.25.255.253200 OK 1.8 kB URL HTTP/2 merbraha.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1626)
Hash cd0eb3406096ff80266e7c9d7d419186
0e3709691bf96233766de30e2fd473b84166c5b6
c2e606e1fc82ea3a554aad5d0520e25d2677b89a891dc5c49e7ace08fce92e25
GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 1819
last-modified: Thu, 18 Aug 2016 17:55:30 GMT
etag: "57b5f692-71b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
85.25.255.253200 OK 5.6 kB URL HTTP/2 merbraha.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5477)
Hash 3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 5629
last-modified: Sat, 13 Jun 2020 17:53:26 GMT
etag: "5ee51296-15fd"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/blockspare/dist/block_tabs.js?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 4.5 kB URL HTTP/2 merbraha.com/wp-content/plugins/blockspare/dist/block_tabs.js?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (4508), with no line terminators
Hash f397e26eeaafb1ab5f7005d433a78b89
15074438324c7347569f6d0971d074f0d110dff8
88e5dd9b171f9688c87d334d03bc7f814d5daaeb522c615353c1f9bbd0e6bba2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/blockspare/dist/block_tabs.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 4508
last-modified: Sun, 05 Mar 2023 23:28:45 GMT
etag: "640525ad-119c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/blockspare/dist/block_animation.js?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 1.4 kB URL HTTP/2 merbraha.com/wp-content/plugins/blockspare/dist/block_animation.js?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1372), with no line terminators
Hash 5230c7cf3c1d07039e39cb487e90c42f
0292ad2fefcb98bf5e35462fe8dc270c5b1e0555
3f8a5b1a10efd36c13bf7c1d579e56c90139a801c7c089fed08593acd5567f67
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/blockspare/dist/block_animation.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 1372
last-modified: Sun, 05 Mar 2023 23:28:45 GMT
etag: "640525ad-55c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.4
85.25.255.253200 OK 11 kB URL HTTP/2 merbraha.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.4
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (10565), with no line terminators
Hash 7f0734e228d3f1a255a8b817a5005b8e
3dfca70a7a3e298fc392f2393ca60d350eebb5fd
23bb39b607b39a93d953762d2a618a3cbc69c52ceaf70d96890137ca1d2b0228
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.4 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 10565
last-modified: Thu, 23 Feb 2023 23:38:53 GMT
etag: "63f7f90d-2945"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/blockspare/dist/block_frontend.js?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 7.0 kB URL HTTP/2 merbraha.com/wp-content/plugins/blockspare/dist/block_frontend.js?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (6971), with no line terminators
Hash d3ead585addece262b30e6d954c62d97
bd23b37d4bf91c9b6adbad0332f431384f318b5e
c724bf1a1c1aa7dbcf4ce9985f9cae64a5c964bd1b0817c09abca49fd6f245e4
GET /wp-content/plugins/blockspare/dist/block_frontend.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 6971
last-modified: Sun, 05 Mar 2023 23:28:45 GMT
etag: "640525ad-1b3b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/blockspare/dist/block_pagination.js?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 2.1 kB URL HTTP/2 merbraha.com/wp-content/plugins/blockspare/dist/block_pagination.js?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2101), with no line terminators
Hash 79e0287d1c320fee3efdecdf3a9990bf
74eeafcc66a247ed716c20237a56df4cb8bd8890
9d5f1d6d98923e36bbab94166a9ff166d17e3514bfebaaa531de0292da95c58d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/blockspare/dist/block_pagination.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 2101
last-modified: Sun, 05 Mar 2023 23:28:45 GMT
etag: "640525ad-835"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.4
85.25.255.253200 OK 13 kB URL HTTP/2 merbraha.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.4
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type HTML document, ASCII text, with very long lines (12948), with no line terminators
Hash 0fc4d72558c0e4f809b089639b6abecf
89bc1ac63c573c1e93c04b6af404cd2d6be59239
8bac631dfefdb96cf5526520c21e9ef3f585bba973970a7e62b10c945741105c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.4 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 12948
last-modified: Thu, 23 Feb 2023 23:38:53 GMT
etag: "63f7f90d-3294"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wpstream/public/js/videojs-vimeo.min.js?ver=4.4.17
85.25.255.253200 OK 26 kB URL HTTP/2 merbraha.com/wp-content/plugins/wpstream/public/js/videojs-vimeo.min.js?ver=4.4.17
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (15600), with CRLF line terminators
Hash 1669753e1092c5e8ab39d2f7bd486225
c8fda33fee2f1fa0c5a9589e2998aead22e38bb6
829c71bf065e365c575f69956fe03ff029eab0c5e9c44c6503903edc95c167ae
GET /wp-content/plugins/wpstream/public/js/videojs-vimeo.min.js?ver=4.4.17 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 26221
last-modified: Mon, 06 Mar 2023 00:00:27 GMT
etag: "64052d1b-666d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
85.25.255.253200 OK 21 kB URL HTTP/2 merbraha.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 034bd11ecaf6fb9240d905245e42e202
ff136c394ed95badfc0107fb98a890dcff642828
ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 21440
last-modified: Fri, 23 Sep 2022 18:55:30 GMT
etag: "632e0122-53c0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2
85.25.255.253200 OK 10 kB URL HTTP/2 merbraha.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (9937)
Hash 087a7b1f3a0e6e458e47752247dea77f
b50dc9b67f2440a0f7fd6369c0d0da9eb35f8f77
03a76dde100a17b38d2eaf65bd9d75ca09369d5d601e4262db5696778e930657
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 10114
last-modified: Mon, 19 Sep 2022 17:04:08 GMT
etag: "6328a108-2782"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.2
85.25.255.253200 OK 8.5 kB URL HTTP/2 merbraha.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.2
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (8281)
Hash 99017cd1ae098d1e3ad215171ca48290
2c4c8affe6e8deee8bd8b89c0d44d456b9438c63
3c891891a2abfdb8f5ef8f4b1e4e3c25013d934ca396fe8149e6626cc4ea1888
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.2 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 8466
last-modified: Fri, 23 Sep 2022 18:55:30 GMT
etag: "632e0122-2112"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wpstream/public/js/wpstream-player.js?ver=4.4.17
85.25.255.253200 OK 16 kB URL HTTP/2 merbraha.com/wp-content/plugins/wpstream/public/js/wpstream-player.js?ver=4.4.17
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash 626d554d1cc413dfe5e42dbd23d3592f
157d41efbb4d570e864253853e2a74cdfa1c7fd7
05337dddf7721e4ad4fdfb2fd645a37a3d0e83e1038cc27e1886038098cd8294
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpstream/public/js/wpstream-player.js?ver=4.4.17 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 15869
last-modified: Mon, 06 Mar 2023 00:00:27 GMT
etag: "64052d1b-3dfd"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wpstream/public/js/youtube.min.js?ver=4.4.17
85.25.255.253200 OK 14 kB URL HTTP/2 merbraha.com/wp-content/plugins/wpstream/public/js/youtube.min.js?ver=4.4.17
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (13909), with no line terminators
Hash b3e20f190b58278683ece2a573fe70a7
fc964eb7a64e78ff89299a5796dbe8184388e68f
6096d86dff36332e56f668d27cdc943a79e169f40f348ff76f4c2ddeb14bfdeb
GET /wp-content/plugins/wpstream/public/js/youtube.min.js?ver=4.4.17 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 13909
last-modified: Mon, 06 Mar 2023 00:00:27 GMT
etag: "64052d1b-3655"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wpstream/public/js/start_streaming.js?ver=4.4.17
85.25.255.253200 OK 23 kB URL HTTP/2 merbraha.com/wp-content/plugins/wpstream/public/js/start_streaming.js?ver=4.4.17
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash 1c324355a983992fae9bceb21332fd38
3e6667e8312bd15e0169b9a0ef7093a9211d8b8b
2058e49de14e426c48924667dbfd60832ed4734b1b1a197ac040f15968a7dda1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpstream/public/js/start_streaming.js?ver=4.4.17 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 22875
last-modified: Mon, 06 Mar 2023 00:00:27 GMT
etag: "64052d1b-595b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.2
85.25.255.253200 OK 17 kB URL HTTP/2 merbraha.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.2
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (15446)
Hash 6575d504c628a893ecb7ba3a094f110b
472db26157d08d00fc87c8151ab8e98617cd32ca
4471f0e0712693e37d562bb4981a7da17248062fc39140f3df05826943879fb7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/effect.min.js?ver=1.13.2 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 17338
last-modified: Fri, 23 Sep 2022 18:55:30 GMT
etag: "632e0122-43ba"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/uploads/2018/10/Frank-Shkreli-150x150.jpg
85.25.255.253200 OK 5.4 kB URL HTTP/2 merbraha.com/wp-content/uploads/2018/10/Frank-Shkreli-150x150.jpg
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 95120ebaa4a3a1ea4b2b2365e7367267
db5f30867e6974b19a10d5debc817a311bc0052a
47a2b810650a0e184a486a145a3d3a5489b39853d7a37a82efa2ce27ef6fd073
GET /wp-content/uploads/2018/10/Frank-Shkreli-150x150.jpg HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: image/jpeg
content-length: 5399
last-modified: Sat, 20 Oct 2018 10:06:10 GMT
etag: "5bcafe12-1517"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/uploads/2022/03/Xhelal-Zejneli.jpg
85.25.255.253200 OK 40 kB URL HTTP/2 merbraha.com/wp-content/uploads/2022/03/Xhelal-Zejneli.jpg
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 350x306, components 3\012- data
Hash b830f17d40b6c85988726e87346b264d
5bb65c30bd557eb442943f978153550674aed3db
7f5a52561be2f66c3db64c4b60830039594f0596a320f998d514d11d85e985f2
GET /wp-content/uploads/2022/03/Xhelal-Zejneli.jpg HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: image/jpeg
content-length: 40095
last-modified: Thu, 24 Mar 2022 20:13:01 GMT
etag: "623cd0cd-9c9f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/uploads/2022/10/Ndue-Ukaj.jpg
85.25.255.253200 OK 30 kB URL HTTP/2 merbraha.com/wp-content/uploads/2022/10/Ndue-Ukaj.jpg
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 300x266, components 3\012- data
Hash 7419cdf72506c8c0f9b525f451429450
1651b116e1fb96d7da2b87a7f20bb1125fa2f18c
2eb59699c0bed8542985cfda8ec562f9bbbd818d0e77fe8a7b0d503015a76729
GET /wp-content/uploads/2022/10/Ndue-Ukaj.jpg HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: image/jpeg
content-length: 29639
last-modified: Fri, 07 Oct 2022 14:03:38 GMT
etag: "634031ba-73c7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/uploads/2022/03/Dasareti.jpg
85.25.255.253200 OK 29 kB URL HTTP/2 merbraha.com/wp-content/uploads/2022/03/Dasareti.jpg
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 404x318, components 3\012- data
Hash cb8dca024014fdee4c4b58d3ac14beb9
57d31bc86502c159e487cef0bad2f5aa11b83ec9
cade64e16692cd1b3b6ca8a04db90bddc7a0ea209cbb3dd6458a505135a3fc3b
GET /wp-content/uploads/2022/03/Dasareti.jpg HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: image/jpeg
content-length: 28580
last-modified: Wed, 30 Mar 2022 17:28:04 GMT
etag: "62449324-6fa4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/uploads/2022/10/cropped-cropped-merbraha3-3.png
85.25.255.253200 OK 36 kB URL HTTP/2 merbraha.com/wp-content/uploads/2022/10/cropped-cropped-merbraha3-3.png
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type PNG image data, 340 x 230, 8-bit/color RGBA, non-interlaced\012- data
Hash b22d58a3a5dd8fe415665ada44625a78
7f8584b01cfa01634e76b5188e76f9bdd79ddcdb
02f58e89a9c00a09b74080c0bb438a5f700b555aaaf46e87af206b898f1c3e82
GET /wp-content/uploads/2022/10/cropped-cropped-merbraha3-3.png HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: image/png
content-length: 36500
last-modified: Thu, 02 Feb 2023 09:06:23 GMT
etag: "63db7d0f-8e94"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/uploads/2021/09/Florim-Zeqa1.jpg
85.25.255.253200 OK 53 kB URL HTTP/2 merbraha.com/wp-content/uploads/2021/09/Florim-Zeqa1.jpg
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 500x302, components 3\012- data
Hash 8cf7a6b95bb20f2070fc964e5fee0c34
f074c3a6583d0fe17a51cd0fa5ce9598687abded
158421a7086144b5ce82cfe28a9c1e4451bb8c349aa70d3867eb4fbf24c755b7
GET /wp-content/uploads/2021/09/Florim-Zeqa1.jpg HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: image/jpeg
content-length: 52768
last-modified: Tue, 22 Mar 2022 15:44:09 GMT
etag: "6239eec9-ce20"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/rich-text.min.js?ver=c704284bebe26cf1dd51
85.25.255.253200 OK 34 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/rich-text.min.js?ver=c704284bebe26cf1dd51
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (33409)
Hash c94bcd784fab3cb22bc1fca8b5c7d55e
96c1427ddb9f941a4665d15221111253f2416628
c1a7e8df9cee8d425520c029bd787a539fc62533cbdc5a0dd09efd064ae508c8
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/rich-text.min.js?ver=c704284bebe26cf1dd51 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 33450
last-modified: Fri, 23 Sep 2022 18:55:30 GMT
etag: "632e0122-82aa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/primitives.min.js?ver=ae0bece54c0487c976b1
85.25.255.253200 OK 2.4 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/primitives.min.js?ver=ae0bece54c0487c976b1
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2210)
Hash ad26bf4e63095163a1a836da6f316aa0
b66891190ddb8ddf89012c7e47f43157856705fd
dad7aea49eae83fa813ec7d42bfe00c8799a51db330aa5344c2c5b2f2b61dc54
GET /wp-includes/js/dist/primitives.min.js?ver=ae0bece54c0487c976b1 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 2408
last-modified: Tue, 20 Sep 2022 14:43:28 GMT
etag: "6329d190-968"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/url.min.js?ver=bb0ef862199bcae73aa7
85.25.255.253200 OK 9.1 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/url.min.js?ver=bb0ef862199bcae73aa7
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (8629)
Hash 592b9c7153ec0d37ffb333c48c495942
8552783a593944f070d3509bdc0c9a3392df889a
3a5473b62e71d3164b95391e8342e6abe3215428bcaf828a72dc2f23fc540337
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/url.min.js?ver=bb0ef862199bcae73aa7 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 9147
last-modified: Wed, 19 Oct 2022 10:30:32 GMT
etag: "634fd1c8-23bb"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/keyboard-shortcuts.min.js?ver=b696c16720133edfc065
85.25.255.253200 OK 4.5 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/keyboard-shortcuts.min.js?ver=b696c16720133edfc065
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (4454)
Hash 95d493e13cadd1fa8ce6816b4d790301
9023be1bab071338814ae3e7ab27124d66e83807
4bdf7864b67aba210a658349f892a5307105d08c74cee05d3bed8ad97120d083
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/keyboard-shortcuts.min.js?ver=b696c16720133edfc065 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 4489
last-modified: Tue, 20 Sep 2022 14:43:28 GMT
etag: "6329d190-1189"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/warning.min.js?ver=4acee5fc2fd9a24cefc2
85.25.255.253200 OK 274 B URL HTTP/2 merbraha.com/wp-includes/js/dist/warning.min.js?ver=4acee5fc2fd9a24cefc2
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (357)
Hash cf97983f6b01306359213f1fcbb0f0ec
8fbafdca316e7281c79bc8a31383290e9ebb1922
fd4e1790903e208061efe199f506d9078290105092422f18be03a4dfce1bfd8b
GET /wp-includes/js/dist/warning.min.js?ver=4acee5fc2fd9a24cefc2 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 274
x-accel-version: 0.01
last-modified: Mon, 11 Apr 2022 11:04:30 GMT
etag: "188-5dc5ee88acb80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
ms-author-via: DAV
x-powered-by: PleskLin
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/wordcount.min.js?ver=feb9569307aec24292f2
85.25.255.253200 OK 2.6 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/wordcount.min.js?ver=feb9569307aec24292f2
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type exported SGML document, Unicode text, UTF-8 text, with very long lines (2581)
Hash 02a2db2bfbd05ce94247bf13a71df0bd
7df5b1ae0579df0c9b7c2e8231bacdcd9d03fea6
0a58f528b0f5be1dc665fed072d8f85e5b45043dfdefa6f0f55dc7b35b435400
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/wordcount.min.js?ver=feb9569307aec24292f2 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 2628
last-modified: Tue, 20 Sep 2022 14:43:28 GMT
etag: "6329d190-a44"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/notices.min.js?ver=9c1575b7a31659f45a45
85.25.255.253200 OK 2.4 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/notices.min.js?ver=9c1575b7a31659f45a45
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2390)
Hash da42e2da5bbbd036f305bedc814ed18d
33e191f71dab671584aa09f704d6a3a093a00055
6b70da3dd96a938b934a2138ae3e3e7faed71635f5af6c1082564d36c09e7a6e
GET /wp-includes/js/dist/notices.min.js?ver=9c1575b7a31659f45a45 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 2425
last-modified: Tue, 20 Sep 2022 14:43:28 GMT
etag: "6329d190-979"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/token-list.min.js?ver=f2cf0bb3ae80de227e43
85.25.255.253200 OK 1.5 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/token-list.min.js?ver=f2cf0bb3ae80de227e43
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (1482)
Hash c0ce2051f69ed936c33c449de30d3848
1a5cbb8b851db78d789a45ea17c12d1dd91bb323
e208c9695e3aca4d7e98ab67b8ae5639a0c976df4d8155026db0e80b84e86103
GET /wp-includes/js/dist/token-list.min.js?ver=f2cf0bb3ae80de227e43 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 1517
last-modified: Tue, 20 Sep 2022 14:43:28 GMT
etag: "6329d190-5ed"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/api-fetch.min.js?ver=bc0029ca2c943aec5311
85.25.255.253200 OK 5.3 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/api-fetch.min.js?ver=bc0029ca2c943aec5311
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5290)
Hash a1a09ff7531304767f85729061aecf3a
a088b7f0da099a17b0f26ddaff8edaf94dd2fe3f
0598e98bc97e5b9aeb32aa40cae407814d13a7333e055071107519d7b4fcb0d7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/api-fetch.min.js?ver=bc0029ca2c943aec5311 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 5325
last-modified: Tue, 12 Apr 2022 14:12:46 GMT
etag: "625588de-14cd"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/style-engine.min.js?ver=10341d6e6decffab850e
85.25.255.253200 OK 5.3 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/style-engine.min.js?ver=10341d6e6decffab850e
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5250)
Hash b3dec443db52a992458a8dabbbc895b8
e1c0a2ee915bf3c06c8684875b4679cbca5ebe1c
36f5fe222e59aa2ff622ae1c4b5f2aa0d44154c6b54216f996a835e2f00ca3cd
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/style-engine.min.js?ver=10341d6e6decffab850e HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 5285
last-modified: Tue, 04 Oct 2022 14:06:52 GMT
etag: "633c3dfc-14a5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/media-utils.min.js?ver=17f6455b0630582352a4
85.25.255.253200 OK 7.5 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/media-utils.min.js?ver=17f6455b0630582352a4
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (7433)
Hash 3ed56bb23e4b51a72a405b1dcdc3e7f6
b503be95e55456d069d530fc4a828305c0f317e5
a554bbf6bb0dd8cd8e6d4a08852c8752059fb82a3600380699d7ef5050008a8e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/media-utils.min.js?ver=17f6455b0630582352a4 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 7468
last-modified: Tue, 20 Sep 2022 14:43:28 GMT
etag: "6329d190-1d2c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/reusable-blocks.min.js?ver=3fb4b31e589a583a362e
85.25.255.253200 OK 5.7 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/reusable-blocks.min.js?ver=3fb4b31e589a583a362e
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (5705)
Hash e4e7fc43fa2fba6309d770418410ce35
28f45e82e5ab68b77a4ef1854766fd7b65493b28
67b4b68ceeebe9b6f033ac0025e56eb853735a7034be55231e9018cdc0c343b9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/reusable-blocks.min.js?ver=3fb4b31e589a583a362e HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 5740
last-modified: Tue, 20 Sep 2022 14:43:28 GMT
etag: "6329d190-166c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/server-side-render.min.js?ver=ba8027ee85d65ae23ec7
85.25.255.253200 OK 3.6 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/server-side-render.min.js?ver=ba8027ee85d65ae23ec7
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (3542)
Hash b48516c35d25d873a8cc79a970a7dc1a
7c954cb06cbd21690cec7787b7de5c52c998aec0
ecf97a267a89e398ab7d498bc0bb53d26f2e8167513eb4958f666a807a4b21c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/server-side-render.min.js?ver=ba8027ee85d65ae23ec7 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 3577
last-modified: Tue, 20 Sep 2022 14:43:28 GMT
etag: "6329d190-df9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/preferences.min.js?ver=5e6c91c252c0e040f379
85.25.255.253200 OK 2.9 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/preferences.min.js?ver=5e6c91c252c0e040f379
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (2873)
Hash a50cbfdb7f74dbd9caad9d17f6197560
a9b2dc7d6a41e08bd06a7983c77c268b108d3047
b3e51b0fc41b1751f9cef8114bbb2df295dcfa6fdfa088c47436b6693d3e8433
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/preferences.min.js?ver=5e6c91c252c0e040f379 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 2908
last-modified: Thu, 15 Sep 2022 15:45:40 GMT
etag: "632348a4-b5c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/preferences-persistence.min.js?ver=c5543628aa7ff5bd5be4
85.25.255.253200 OK 6.7 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/preferences-persistence.min.js?ver=c5543628aa7ff5bd5be4
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (6679)
Hash f21c691b4e18f26e12cb490890df7209
19d6965d482ab1c6ab6c3f9f9ed0ba5dcb20ac57
1aecf5e79ed9a0e1d60237c4cd6a68ff1b5515a56df3c4ae300888baf9fcec9b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/preferences-persistence.min.js?ver=c5543628aa7ff5bd5be4 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 6714
last-modified: Thu, 15 Sep 2022 15:45:40 GMT
etag: "632348a4-1a3a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/core-data.min.js?ver=d8d458b31912f858bcdf
85.25.255.253200 OK 54 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/core-data.min.js?ver=d8d458b31912f858bcdf
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (54209)
Hash 0eb1acae59a60bc3a90e7ba28b0c71de
3b6c2c36570cbb44fc0050da8900d126edcd4b68
d236d585f971064397989fc2d3072ca758706219b59b12364f9da071ef7ba5c3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/core-data.min.js?ver=d8d458b31912f858bcdf HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 54244
last-modified: Fri, 23 Sep 2022 19:04:12 GMT
etag: "632e032c-d3e4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/blocks.min.js?ver=69022aed79bfd45b3b1d
85.25.255.253200 OK 168 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/blocks.min.js?ver=69022aed79bfd45b3b1d
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (56716)
Size 168 kB (168255 bytes)
Hash cd604907343392d398e18733ae3aead2
e44330029bb42e5b30ba31161559ee200089ab9f
9ec51740a9daba83169d7da6cbbac7ab06cd5dab7992d8680ce3b032c3aa9602
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/blocks.min.js?ver=69022aed79bfd45b3b1d HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 168255
last-modified: Wed, 19 Oct 2022 10:30:32 GMT
etag: "634fd1c8-2913f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/blockspare/assets/slick/js/slick.js?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 84 kB URL HTTP/2 merbraha.com/wp-content/plugins/blockspare/assets/slick/js/slick.js?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash 99cf8430b8d81c268269760118ec31a4
3fec23eeb6e45407f1fa1d38cf1cd3d463dd1f7a
430f384b0fc496d9650c747cca458a7eae062530c718aa7a896d99031fbbae8d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/blockspare/assets/slick/js/slick.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 84265
last-modified: Sun, 05 Mar 2023 23:28:45 GMT
etag: "640525ad-14929"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wpstream//integrations/js/integrations.js?v=1679493714&ver=4.4.17
85.25.255.253200 OK 2.2 kB URL HTTP/2 merbraha.com/wp-content/plugins/wpstream//integrations/js/integrations.js?v=1679493714&ver=4.4.17
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash 452a3f28418c42e3362856f68eeab4b9
d113457205d1b7593d8924560c85b12d873d35f4
30b8151a3be9622ef5eaa05b6a38ffcc9a8f00305fca953fd905d22c2dc36900
GET /wp-content/plugins/wpstream//integrations/js/integrations.js?v=1679493714&ver=4.4.17 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 2184
last-modified: Mon, 06 Mar 2023 00:00:27 GMT
etag: "64052d1b-888"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/themes/covernews/js/skip-link-focus-fix.js?ver=20151215
85.25.255.253200 OK 417 B URL HTTP/2 merbraha.com/wp-content/themes/covernews/js/skip-link-focus-fix.js?ver=20151215
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash 73f7704398d8f6be9748d30791950984
3231f3786c364c7665cd7123d8fae0f42bbfd836
c1d9b23aff05fb52e5d6e68aff86d808097185c6dbaac6c3fc3ec6e5bea31ef4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/covernews/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 417
x-accel-version: 0.01
last-modified: Tue, 31 Jan 2023 00:22:12 GMT
etag: "2ad-5f38452b2f800-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
ms-author-via: DAV
x-powered-by: PleskLin
X-Firefox-Spdy: h2
merbraha.com/wp-content/themes/covernews/js/navigation.js?ver=20151215
85.25.255.253200 OK 3.0 kB URL HTTP/2 merbraha.com/wp-content/themes/covernews/js/navigation.js?ver=20151215
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash 49493316c090bb3d7cca5bc09031037c
b77b6525d82691c3d4ca05948e846500ea0cb1d3
fbc199bf7f97061c41664b040e84616a0cb54441a2efc5801d5d401d3a049f3c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/covernews/js/navigation.js?ver=20151215 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 2967
last-modified: Tue, 31 Jan 2023 00:22:12 GMT
etag: "63d85f34-b97"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/themes/covernews/assets/slick/js/slick.min.js?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 53 kB URL HTTP/2 merbraha.com/wp-content/themes/covernews/assets/slick/js/slick.min.js?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (53179), with no line terminators
Hash 481ac3f8935c805172d406c12da68e0a
fab75193a5fe33503eb2e62d047a01e238baaa64
032699f5abc60e8e1b3c28bfa7a9a046addb1777420acb4c599871b5d64f0888
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/covernews/assets/slick/js/slick.min.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 53179
last-modified: Tue, 31 Jan 2023 00:22:12 GMT
etag: "63d85f34-cfbb"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/themes/covernews/assets/bootstrap/js/bootstrap.min.js?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 58 kB URL HTTP/2 merbraha.com/wp-content/themes/covernews/assets/bootstrap/js/bootstrap.min.js?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (57791)
Hash 00e8259f4fb0664ae55be9b184020d27
f8937340285f341ecf97909378ac91322eda3111
7209e11a45cef119e8d3539afb2689835d17b16a0a22f8334d867cf77a220d2a
GET /wp-content/themes/covernews/assets/bootstrap/js/bootstrap.min.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 58031
last-modified: Tue, 31 Jan 2023 00:22:12 GMT
etag: "63d85f34-e2af"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/themes/covernews/assets/jquery-match-height/jquery.matchHeight.min.js?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 3.4 kB URL HTTP/2 merbraha.com/wp-content/themes/covernews/assets/jquery-match-height/jquery.matchHeight.min.js?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (521)
Hash 3182b2beddb1f798f66d27425b9f99d9
ebfe39b9b22623bf3b289d7d8548f04215b7a820
fa87904726726364ad19a7c4b2f2b20ee10637325601b5aa88ed8bfdcb7117a7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/covernews/assets/jquery-match-height/jquery.matchHeight.min.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 3380
last-modified: Tue, 31 Jan 2023 00:22:12 GMT
etag: "63d85f34-d34"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/themes/covernews/assets/fixed-header-script.js?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 1.7 kB URL HTTP/2 merbraha.com/wp-content/themes/covernews/assets/fixed-header-script.js?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash bc447115b478376f57fc41a4b989580a
d7a4c7400499ac27478889e3e0c61e83d0066664
98fbdd524b447115aadfe74af66f5a7d75faa1cefd318f3854acdff3d4f2e25b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/covernews/assets/fixed-header-script.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 1689
last-modified: Tue, 31 Jan 2023 00:22:12 GMT
etag: "63d85f34-699"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/themes/covernews/assets/script.js?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 16 kB URL HTTP/2 merbraha.com/wp-content/themes/covernews/assets/script.js?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash 39b274ae1e72d1bb5baace8d43b870c8
555d5f7d9fca7e897e321f56f90e641f840aeccc
126efd547bdd0ee931514152089da92b546103f4f21a33e5bddb55f004931511
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/covernews/assets/script.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 16378
last-modified: Tue, 31 Jan 2023 00:22:12 GMT
etag: "63d85f34-3ffa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/visual-footer-credit-remover/script.js?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 119 B URL HTTP/2 merbraha.com/wp-content/plugins/visual-footer-credit-remover/script.js?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with CRLF line terminators
Hash 9106b6b58a65b7016112cd6c85b9c1a5
4eafaa03fd722b49e94b0b736a09bd6f7d5d7756
920f8ebf9f59048ae9367699d1f38a87960621309fab1946f9b65f50bf78bdf8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/visual-footer-credit-remover/script.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 119
x-accel-version: 0.01
last-modified: Wed, 14 Dec 2022 01:43:24 GMT
etag: "8c-5efbfdcb63c20-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
ms-author-via: DAV
x-powered-by: PleskLin
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.4
85.25.255.253200 OK 507 B URL HTTP/2 merbraha.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.4
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (999), with no line terminators
Hash 22f32f77e17fa7640cda0a401c2b0844
019765feeed7ea2a9e9e506ce000978ea3ecd171
269c0f075ceb9464731b25afc21ae41536b76ef76bf0cf856c42e3e6311ec6ce
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.4 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 507
x-accel-version: 0.01
last-modified: Thu, 23 Feb 2023 23:38:53 GMT
etag: "3e7-5f56684011c2b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
ms-author-via: DAV
x-powered-by: PleskLin
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3162
Expires: Wed, 22 Mar 2023 14:54:38 GMT
Date: Wed, 22 Mar 2023 14:01:56 GMT
Connection: keep-alive
merbraha.com/wp-includes/js/dist/editor.min.js?ver=c9102d37531f38da0681
85.25.255.253200 OK 143 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/editor.min.js?ver=c9102d37531f38da0681
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (61351)
Size 143 kB (143361 bytes)
Hash ddb99918e396c2d704011417547e014b
a08e7ca1bc6f3cec947c5b326e534bb8bae6a4e7
4fb5b9b1b6051f355a76d16041f20779b18b8cdd0fbf7c4961124fd334df6a3f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/editor.min.js?ver=c9102d37531f38da0681 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 143361
last-modified: Wed, 19 Oct 2022 10:30:32 GMT
etag: "634fd1c8-23001"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/plugins/wp-post-author/assets/dist/frontend.build.js?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 335 kB URL HTTP/2 merbraha.com/wp-content/plugins/wp-post-author/assets/dist/frontend.build.js?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type ASCII text, with very long lines (38327)
Size 335 kB (334764 bytes)
Hash b083d900ffccf2acf00368030839175c
7e8f34a8c052273b696b9e18919c81dd9074c0c9
d1d98a6c6b07854f94d4d782e532d23fa4e4b12ad66e46440fa891dafce5ed21
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-post-author/assets/dist/frontend.build.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 334764
last-modified: Sun, 18 Dec 2022 11:59:50 GMT
etag: "639f00b6-51bac"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f57fa6-bac5-42a3-be66-ebcc96d82ea2.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f57fa6-bac5-42a3-be66-ebcc96d82ea2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2062cf7a271d4ac7a04c0a746d443e07
3343851f2128c5f1fe4302c2aa53e8ce1fb661ac
e479263c1742d2597cf8948ef059b0bc97dbb97f47bb5cafee3d4af12069d2ce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f57fa6-bac5-42a3-be66-ebcc96d82ea2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10407
x-amzn-requestid: 87aba2e6-d7e8-4456-a12f-e05ac556b839
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJqJhGnXIAMF1yA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a23d6-2b6c3d62366f47f506ce8415;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: d7wlX2p3nm1VAV3qxRv2S1VbjxRah6GciBVRgyds7qbK1yNltNmtMQ==
via: 1.1 b3cdce1c2fc39b89f45c98c417351f26.cloudfront.net (CloudFront), 1.1 1f41b5f27f3ec2e93db2155dbc56900c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 21:49:24 GMT
age: 58352
etag: "3343851f2128c5f1fe4302c2aa53e8ce1fb661ac"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08561a1f-1d19-45db-be98-107d6b1ed25d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08561a1f-1d19-45db-be98-107d6b1ed25d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6f0b9e85381489dcf646c251722b21d4
5f7ea91288a2170bcabdca6be296718c4191eacd
911f803271ad9053ebac3787bdde9b75ec604acc6aa28692cc8e4c5c4fb61483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08561a1f-1d19-45db-be98-107d6b1ed25d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10480
x-amzn-requestid: 58aa8272-4b4e-4a2f-9d6e-d47f70891c49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJptHG7JoAMFSwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2320-2fd6502b1271d5c13b4ebbe9;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:28 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: hqGFdT1Sk0IcvaNqfvjz5RsGBK-qMBcNKbK9FyZ7OoiH30hDL9ekxA==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 de2dd11312f7d5ad3bcd0cb112c7fd0e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 21:59:52 GMT
age: 57724
etag: "5f7ea91288a2170bcabdca6be296718c4191eacd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 412bd6aea60211324e649d7d920601d2
a813976bda850a584b5ab94d9a70bfe0da69aca0
d36ef17fc6ab3cd4e5e43836f7df2c6fdf1781f1bac73e42c9a09e8594f797f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22c3f36a-d800-4eab-8a32-e2b5ef86e386.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: 1b374321-f2df-404f-ab91-4e73d830fac9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJqmAEhHoAMFgRQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a248c-217d81154ecfe0c44ca70432;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:41:32 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: DL7vQgu72hwpt7yHbmIKnAZnoIaR4CQPE1JJAjq8M4jg0REUsq5lOw==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 446e26a256db1310ae719d818e420898.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 21:48:25 GMT
age: 58411
etag: "a813976bda850a584b5ab94d9a70bfe0da69aca0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F882a2ebf-b22a-46de-bf52-8b9a1aaa2743.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F882a2ebf-b22a-46de-bf52-8b9a1aaa2743.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aeb0d8069d746e467fecd886c0e42628
8229b537f84a7418dc67e30691e62db4cea67f0f
24705dc5b7eefd79a35323beee7c741aa041c3bf55801d13b4ffc2b202e6a394
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F882a2ebf-b22a-46de-bf52-8b9a1aaa2743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8037
x-amzn-requestid: 7a9f7bb5-d810-4831-b5d2-3eead1af864a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJprcGY1IAMFSAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-53cdee4b645ed18e1dfeb92c;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: QW8T5AGg_L1mT4fE8IHeBG9TSiGpbBJpZE2yZdBtAQMJCPV8OKK5Dw==
via: 1.1 a87682502db4b394cc6ba84510da9f98.cloudfront.net (CloudFront), 1.1 ae06b19943a6bad1c1b12b79f7339498.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 21:43:22 GMT
age: 58714
etag: "8229b537f84a7418dc67e30691e62db4cea67f0f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1249d209-fb6d-4a02-9081-d8658b8ff632.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1249d209-fb6d-4a02-9081-d8658b8ff632.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13917543b8b3f8cdd572aff9d898b6f5
7a6a1c68fdb21a228f55db88933e5c2f69c8ec42
b6eb766589c295c2a909e837fe1a6d9bdc4715baab77a4fe14d2a6f775e78e16
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1249d209-fb6d-4a02-9081-d8658b8ff632.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2909
x-amzn-requestid: 89330fce-b0cf-4f8e-b065-231ee439172f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJqPyHWLoAMFlww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a23fe-619e4e36404b1ee94212e2d1;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:39:10 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: GNF08Td2MDYTOGOVe-eNSQ-ftMAPX8JZznVEmHI4f4QfE9kOOFYEhw==
via: 1.1 17d76c2aee343249585a570f2d36d2ee.cloudfront.net (CloudFront), 1.1 b618c0f73dc30c968057784ed0185d7a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 22:01:12 GMT
etag: "7a6a1c68fdb21a228f55db88933e5c2f69c8ec42"
content-type: image/jpeg
age: 57644
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 9446303f24a6e8e8d138867549399aa2
410a03d7475ec879b8e346f1706aea491e3f1da5
f7d7017ca9dbdf1822739e9baa6f34868504e6ce0d827aeeef82517c5db72960
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash db8d0e6bc7e9d637f420473e7421dff5
2ef0e48fbe533e1ba5bb005f6ad734f6946d49a8
2a0699de5225123e3b19c5759c5f1608c7b7a0638717cd948dfe28d13742c897
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3086
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:56 GMT
Last-Modified: Wed, 22 Mar 2023 13:10:30 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
js.stripe.com/v3
151.101.128.176200 OK 124 kB IP 151.101.128.176:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 124 kB (124155 bytes)
Hash 742e288ca45e91a8e6bdfa73cd21fdc2
0b9fd443090ca170266d81cb35e54d9f73bdf602
93d0cee051a8749c58569c5dee665a7bd2fbec7b6ea9274ac2e334e1f26a46dc
GET /v3 HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 21 Mar 2023 20:38:36 GMT
etag: "2c59758e9400260cedd385b2e533ac26"
cache-control: max-age=60
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 22 Mar 2023 14:01:56 GMT
via: 1.1 varnish
age: 12
x-request-id: a4db3723-5302-4506-a228-7823c972b512
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 2
vary: Accept-Encoding
timing-allow-origin: *
content-length: 124155
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 0086fc6b6b52670b2d7ca51fc65d8d44
1d906db50d0373e0e3e1e85031de970218264f4d
24a9078b3b1b7b060c8e68777d0baaa3651c18cebe9107a2598f07981086f830
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 0086fc6b6b52670b2d7ca51fc65d8d44
1d906db50d0373e0e3e1e85031de970218264f4d
24a9078b3b1b7b060c8e68777d0baaa3651c18cebe9107a2598f07981086f830
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 0086fc6b6b52670b2d7ca51fc65d8d44
1d906db50d0373e0e3e1e85031de970218264f4d
24a9078b3b1b7b060c8e68777d0baaa3651c18cebe9107a2598f07981086f830
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 0086fc6b6b52670b2d7ca51fc65d8d44
1d906db50d0373e0e3e1e85031de970218264f4d
24a9078b3b1b7b060c8e68777d0baaa3651c18cebe9107a2598f07981086f830
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.227200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://merbraha.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 19 Mar 2023 10:25:03 GMT
expires: Mon, 18 Mar 2024 10:25:03 GMT
cache-control: public, max-age=31536000
age: 272213
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/block-editor.min.js?ver=0c7c9b9a74ceb717d6eb
85.25.255.253200 OK 24 kB URL HTTP/2 merbraha.com/wp-includes/js/dist/block-editor.min.js?ver=0c7c9b9a74ceb717d6eb
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/block-editor.min.js?ver=0c7c9b9a74ceb717d6eb HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 573734
last-modified: Fri, 11 Nov 2022 13:56:44 GMT
etag: "636e549c-8c126"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/themes/covernews/assets/font-awesome-v6/webfonts/fa-solid-900.woff2
85.25.255.253200 OK 150 kB URL HTTP/2 merbraha.com/wp-content/themes/covernews/assets/font-awesome-v6/webfonts/fa-solid-900.woff2
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 150472, version 770.256\012- data
Size 150 kB (150472 bytes)
Hash 3e50e269ee627bb2279f91d18c085167
a7fca574d24e9ffa5ee0e0589ffe17277ae4ec27
d27bc752105c079f8a516e9142406a9fc12cbb409f9bf8681f2ddfe0360b52a6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/covernews/assets/font-awesome-v6/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://merbraha.com/wp-content/themes/covernews/assets/font-awesome-v6/css/all.min.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:56 GMT
content-type: font/woff2
content-length: 150472
last-modified: Tue, 31 Jan 2023 00:22:12 GMT
etag: "63d85f34-24bc8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/themes/covernews/assets/font-awesome-v6/webfonts/fa-regular-400.woff2
85.25.255.253200 OK 25 kB URL HTTP/2 merbraha.com/wp-content/themes/covernews/assets/font-awesome-v6/webfonts/fa-regular-400.woff2
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 25096, version 770.256\012- data
Hash 83e2813a8fe0229d916c5b63fa9eab5e
56be4c28de7c67747b0fe3dd606be8b319f6d4f4
fe69d94841462d397faeff253ee09a6dc7941be931f942a55e6b9def8f3b048d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/covernews/assets/font-awesome-v6/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://merbraha.com/wp-content/themes/covernews/assets/font-awesome-v6/css/all.min.css?ver=81582bdb254a94e4464424087c6479a8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:56 GMT
content-type: font/woff2
content-length: 25096
last-modified: Tue, 31 Jan 2023 00:22:12 GMT
etag: "63d85f34-6208"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Hash 4610010f425c140b99c88b6819ce1c02
a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://merbraha.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 12:07:20 GMT
expires: Fri, 15 Mar 2024 12:07:20 GMT
cache-control: public, max-age=31536000
age: 525276
last-modified: Wed, 27 Apr 2022 16:02:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://merbraha.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 14:23:01 GMT
expires: Tue, 19 Mar 2024 14:23:01 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
age: 171535
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
merbraha.com/wp-content/uploads/2018/10/Frank-Shkreli.jpg
85.25.255.253200 OK 44 kB URL HTTP/2 merbraha.com/wp-content/uploads/2018/10/Frank-Shkreli.jpg
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=9, manufacturer=SAMSUNG, model=EK-GC200, orientation=upper-left, xresolution=140, yresolution=148, resolutionunit=2, software=iPhoto 9.5.1, datetime=2015:07:18 16:39:29], baseline, precision 8, 354x302, components 3\012- data
Hash a14f0cd349b3263dea1ecd10a40f21ca
16a59b670d2eb183445eac5b094f98c137d6161d
6e8e14eb1df725355da91401e955507b76586192b495ecd506b0440e619a2cd4
GET /wp-content/uploads/2018/10/Frank-Shkreli.jpg HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:56 GMT
content-type: image/jpeg
content-length: 43459
last-modified: Sat, 20 Oct 2018 10:06:10 GMT
etag: "5bcafe12-a9c3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/uploads/2018/10/Frank-Shkreli-300x256.jpg
85.25.255.253200 OK 14 kB URL HTTP/2 merbraha.com/wp-content/uploads/2018/10/Frank-Shkreli-300x256.jpg
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x256, components 3\012- data
Hash e8ed141b2759d1d55151e35538d8ef83
35099d554cbe8ecad8c9397e800c9428a21e8c13
f811f87d1f795e4b11162493388415eb6bc0ae21fc4b19492400f365907334f8
GET /wp-content/uploads/2018/10/Frank-Shkreli-300x256.jpg HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:56 GMT
content-type: image/jpeg
content-length: 14340
last-modified: Sat, 20 Oct 2018 10:06:10 GMT
etag: "5bcafe12-3804"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 0086fc6b6b52670b2d7ca51fc65d8d44
1d906db50d0373e0e3e1e85031de970218264f4d
24a9078b3b1b7b060c8e68777d0baaa3651c18cebe9107a2598f07981086f830
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 21:48:03 GMT
expires: Fri, 15 Mar 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 490433
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 17:56:42 GMT
expires: Fri, 15 Mar 2024 17:56:42 GMT
cache-control: public, max-age=31536000
age: 504314
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/embed/EHwKQhEakBE
142.250.74.14200 OK 81 kB URL HTTP/2 www.youtube.com/embed/EHwKQhEakBE
IP 142.250.74.14:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58644)
Hash 452db70020e514fe45c30bd42a74135e
386409992ac4ba532631acdb9c6fb6b76f558322
4e9e07eb4989789b8f76dcc6a3a1974af6520e4e7498c8dcbc1a00fd2dc0ca3a
GET /embed/EHwKQhEakBE HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 22 Mar 2023 14:01:56 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=QepggoQCX-c; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=2HOB93lBmGs; Domain=.youtube.com; Expires=Mon, 18-Sep-2023 14:01:56 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+729; expires=Fri, 21-Mar-2025 14:01:56 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
merbraha.com/wp-content/uploads/2022/10/MERBRAHA-BARNER1-10.png
85.25.255.253200 OK 74 kB URL HTTP/2 merbraha.com/wp-content/uploads/2022/10/MERBRAHA-BARNER1-10.png
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type PNG image data, 1900 x 500, 8-bit/color RGBA, non-interlaced\012- data
Hash 1ce58930604d21d4ec11549440cde353
f79efb1654f2d3c70fd99f4a4b7d46cc2ab71e55
6c082a6585c55b1b109f0b8f995ee98024010ca0ea6ecaa91e6fcfe48d2fb9ce
GET /wp-content/uploads/2022/10/MERBRAHA-BARNER1-10.png HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:57 GMT
content-type: image/png
content-length: 74153
last-modified: Sat, 08 Oct 2022 01:58:54 GMT
etag: "6340d95e-121a9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/uploads/2022/11/rreklamoni-ktu-copy.png
85.25.255.253200 OK 45 kB URL HTTP/2 merbraha.com/wp-content/uploads/2022/11/rreklamoni-ktu-copy.png
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type PNG image data, 800 x 85, 8-bit/color RGB, non-interlaced\012- data
Hash 19c4e3ad422a4cee44069e043120c95f
679e78d33d67706d3430b3c66c897a8f3d6a9fbd
25e9d62c7a462affc69fa0dc7b48699fecaee57d84d8df61b931619ab8b03dad
GET /wp-content/uploads/2022/11/rreklamoni-ktu-copy.png HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:57 GMT
content-type: image/png
content-length: 44771
last-modified: Sun, 13 Nov 2022 23:12:48 GMT
etag: "637179f0-aee3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/uploads/2022/03/our-print-shop-800x748.png
85.25.255.253200 OK 33 kB URL HTTP/2 merbraha.com/wp-content/uploads/2022/03/our-print-shop-800x748.png
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
File type PNG image data, 800 x 748, 8-bit/color RGBA, non-interlaced\012- data
Hash 76fcd16db0b41fbae8587fc56c708553
b7fe870fc65a01ceb0774c1fcbe2bb878128b28f
a8224340b145d278d80ef273e8f4ceaa9181f5d777384da7681513c96021cfad
GET /wp-content/uploads/2022/03/our-print-shop-800x748.png HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:57 GMT
content-type: image/png
content-length: 33086
last-modified: Thu, 24 Mar 2022 01:35:48 GMT
etag: "623bcaf4-813e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash dcd9f6156f4e8761c71f09d9e0461adf
4dee53387d92dee7833943bf23ae641776434c8a
d2e17254d2aed901036ec6ea67bd8ee2dbc4e7f7f4faa241ce17a4ea76f65af0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash f86da0dd278dab61512989673262b7b7
0a9e07a3e3001b0fd895cd6be56f4b6929048e7b
ac48a2d4cff37e533bcead879c78d3a6f937e6c07fe2aa71a7d0aa4cc5181752
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 14:01:09 GMT
expires: Wed, 22 Mar 2023 14:16:09 GMT
cache-control: public, max-age=900
age: 48
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.130302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Wed, 22 Mar 2023 14:01:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash dcd9f6156f4e8761c71f09d9e0461adf
4dee53387d92dee7833943bf23ae641776434c8a
d2e17254d2aed901036ec6ea67bd8ee2dbc4e7f7f4faa241ce17a4ea76f65af0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash f86da0dd278dab61512989673262b7b7
0a9e07a3e3001b0fd895cd6be56f4b6929048e7b
ac48a2d4cff37e533bcead879c78d3a6f937e6c07fe2aa71a7d0aa4cc5181752
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 22 Mar 2023 14:01:57 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
merbraha.com/favicon.ico
85.25.255.253200 OK 0 B IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:57 GMT
content-type: text/html; charset=UTF-8
content-length: 0
link: <https://merbraha.com/wp-json/>; rel="https://api.w.org/"
ms-author-via: DAV
x-powered-by: PHP/7.3.27, PleskLin
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash f4480acec63348b776202e680d96f7db
7591d6966f995d00a27ca1753752137003fc4aea
66dbc71b5c517cf91613218640bdd7923ee1b1443ba0025ebea5ea0319dc9dff
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 22 Mar 2023 14:01:57 GMT
server: ESF
cache-control: private
content-length: 31086
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash eb790e7b704e7b998a51abf26ac5f8c0
181b5d280b38bc628ab629f1e66219f17430459e
b090cae98f6df5b4a4a7d0e94975b4d34fe6b2dcbcf6b1f5f54e6735edc1f199
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/EHwKQhEakBE/sddefault.jpg
142.250.74.150200 OK 33 kB URL HTTP/2 i.ytimg.com/vi/EHwKQhEakBE/sddefault.jpg
IP 142.250.74.150:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3\012- data
Hash 5d68380fdd5c6467bdb8adbe798f6e63
777fae28c7c0f395eeaeca22c9f1b1886c2c03f9
4cd5e76392f1bbcc3cc506f62ceebd586046cb3b07e6ad567e3024ab8d1c5732
GET /vi/EHwKQhEakBE/sddefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 32636
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 13:54:05 GMT
expires: Wed, 22 Mar 2023 15:54:05 GMT
cache-control: public, max-age=7200
age: 472
etag: "1666892456"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash eb790e7b704e7b998a51abf26ac5f8c0
181b5d280b38bc628ab629f1e66219f17430459e
b090cae98f6df5b4a4a7d0e94975b4d34fe6b2dcbcf6b1f5f54e6735edc1f199
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 3ccc25647c3390fed42decf921cbe639
798b39cdb69e62e3ff6d167d39f5916dc066768f
5b98adfc8fd72d95730fef353e99ecf0a4e5a4c040b939b3baf3aab477035390
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/aMmmzjL0BhUnTNpeSraz36Snrc47q0w9621GSCUJMaoB0IYJ2n-9yxxte6mAtabV7j19UgrVLcU=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.8 kB URL HTTP/2 yt3.ggpht.com/aMmmzjL0BhUnTNpeSraz36Snrc47q0w9621GSCUJMaoB0IYJ2n-9yxxte6mAtabV7j19UgrVLcU=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 781503fd5cdb65ca341b2a91d81bf29e
d4eb23a10e18e78ceff44274e16208b9c872a999
9bca6daee7e7499b94b98143e83194d5f73defae075571b3b17c26407e56cdb3
GET /aMmmzjL0BhUnTNpeSraz36Snrc47q0w9621GSCUJMaoB0IYJ2n-9yxxte6mAtabV7j19UgrVLcU=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3813
x-xss-protection: 0
date: Wed, 22 Mar 2023 10:37:50 GMT
expires: Fri, 17 Feb 2023 12:09:23 GMT
cache-control: public, max-age=86400, no-transform
age: 12247
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 3ccc25647c3390fed42decf921cbe639
798b39cdb69e62e3ff6d167d39f5916dc066768f
5b98adfc8fd72d95730fef353e99ecf0a4e5a4c040b939b3baf3aab477035390
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
151.101.128.176200 OK 122 B URL HTTP/2 js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
IP 151.101.128.176:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 0fb49bf445ceac1dcb1b6c5d284a57a1
8988f3ceef20a494a419e595e8d802a0dc663c7a
5e0d98b9fefc9f5ccf02b5ac4f4e4de3fe727a1ac97a4cd778efd58062afd5e8
GET /v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 20:03:40 GMT
etag: "93afeeb17bc37e711759584dbfc50d47"
cache-control: max-age=31536000
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 22 Mar 2023 14:01:57 GMT
via: 1.1 varnish
age: 11123793
x-request-id: 951c70e4-26fb-4e2a-8392-45f6109b4083
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 420149
vary: Accept-Encoding
timing-allow-origin: *
content-length: 122
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.234200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 22 Mar 2023 14:01:58 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.stripe.com/v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js
151.101.128.176200 OK 332 B URL HTTP/2 js.stripe.com/v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js
IP 151.101.128.176:0
File type ASCII text, with very long lines (526)
Hash ada7d17b721f065b91d249c998f2967e
1c686ed2c2218a3889b7d9a9b1acdf851b0bf563
12125f2ad96bb800b475309dcc276eeddffd6db095e29fe1f8514b3f8c7e544a
GET /v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 20:03:40 GMT
etag: "f8f6a4584135f737b26927596ce6e0a7"
cache-control: max-age=31536000
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Wed, 22 Mar 2023 14:01:58 GMT
via: 1.1 varnish
age: 11123794
x-request-id: 694dff9d-1ad7-4d41-b194-e8c8f5afa1e4
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 342412
vary: Accept-Encoding
timing-allow-origin: *
content-length: 332
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.234200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 93c548f0be139cd2d79d40c5d738aab3
102a632de156977df79f87fd062b246d30447f9c
437de476c63436db9407b6baaee12697b17d746b3443b96b85a74260b1a743be
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1270
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 22 Mar 2023 14:01:58 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
m.stripe.network/inner.html
54.230.111.111200 OK 930 B URL HTTP/2 m.stripe.network/inner.html
IP 54.230.111.111:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (930), with no line terminators
Hash fc2e029628f163bb59adc6fa5a31161c
0f4547ae510d1bf36e3630d41bdab29d64c03d64
a5f27af9c0c6f37979ebafcac22eb3a613841a3d4e728f4577baf94e64d42f35
GET /inner.html HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-length: 930
last-modified: Thu, 17 Mar 2022 19:03:12 GMT
accept-ranges: bytes
server: Cloudfront
x-content-type-options: nosniff
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-security-policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-e/Jqu4k9Gk1ZCWO6StAsfhF3i7qgIwfuitaD1g9DyvE='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report
date: Wed, 22 Mar 2023 13:58:51 GMT
cache-control: max-age=300, public
etag: "fc2e029628f163bb59adc6fa5a31161c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zfYjv94kcyn7SAjdhEcGYBiQjxIfBGHfzi8Uh-P568cr_kvPsxEKgQ==
age: 263
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash b994fa7ffc83a6e27bdda76864768f33
3b3e3a2f2dd2dc534eeaea8a3b56f7a58ae532a6
f94766cfb4725c86b3e56e530f5208356230a86ba6ffda68a7bb30ff8cf702c6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2733
Cache-Control: max-age=113928
Content-Type: application/ocsp-response
Date: Wed, 22 Mar 2023 14:01:58 GMT
Etag: "641a19b1-1d7"
Expires: Thu, 23 Mar 2023 21:40:46 GMT
Last-Modified: Tue, 21 Mar 2023 20:55:13 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 471
m.stripe.com/6
35.82.167.28200 OK 156 B IP 35.82.167.28:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 078a12f2eed8301d5a3de2f3d581b842
543711cbb10118744192a8823c423b36e9bdc636
a58faee3e63eb49bb5c60300ef2d735ba3874a85e5f37efa23427376eea8fbf0
POST /6 HTTP/1.1
Host: m.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2184
Origin: https://m.stripe.network
Connection: keep-alive
Referer: https://m.stripe.network/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:58 GMT
content-length: 156
set-cookie: m=4c58edf3-f66a-4a6f-9c69-347a160f94ec8ef31b;Expires=Fri, 21-Mar-2025 14:01:58 GMT;Secure;HttpOnly; SameSite=None
x-content-type-options: nosniff
x-stripe-server-envoy-start-time-us: 1679493718932555
x-stripe-bg-intended-route-color: blue
x-stripe-client-envoy-start-time-us: 1679493718931852
access-control-allow-origin: https://m.stripe.network
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-type: application/json;charset=utf-8
X-Firefox-Spdy: h2
m.stripe.network/out-4.5.42.js
54.230.111.111200 OK 0 B URL HTTP/2 m.stripe.network/out-4.5.42.js
IP 54.230.111.111:0
GET /out-4.5.42.js HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.stripe.network/inner.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
last-modified: Thu, 17 Mar 2022 19:03:12 GMT
server: Cloudfront
x-content-type-options: nosniff
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-encoding: br
date: Wed, 22 Mar 2023 13:57:07 GMT
cache-control: max-age=300, public
etag: W/"21df7244385e5c0bdf32da01d0dad6c0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: z4elGk4HJZmCxF_F8BOv3uxunoOJoFzEb7zop9BVDtR0ENB0FNcZRg==
age: 296
X-Firefox-Spdy: h2
merbraha.com/wp-content/themes/covernews/assets/marquee/jquery.marquee.js?ver=81582bdb254a94e4464424087c6479a8
85.25.255.253200 OK 0 B URL HTTP/2 merbraha.com/wp-content/themes/covernews/assets/marquee/jquery.marquee.js?ver=81582bdb254a94e4464424087c6479a8
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/covernews/assets/marquee/jquery.marquee.js?ver=81582bdb254a94e4464424087c6479a8 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 22865
last-modified: Tue, 31 Jan 2023 00:22:12 GMT
etag: "63d85f34-5951"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-content/themes/covernews/style.css?ver=4.1.0
85.25.255.253200 OK 0 B URL HTTP/2 merbraha.com/wp-content/themes/covernews/style.css?ver=4.1.0
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
GET /wp-content/themes/covernews/style.css?ver=4.1.0 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/css
content-length: 228436
last-modified: Tue, 31 Jan 2023 00:22:12 GMT
etag: "63d85f34-37c54"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/wp-json/wp/v2/users/me?context=edit&_locale=user
85.25.255.253401 Unauthorized 0 B URL HTTP/2 merbraha.com/wp-json/wp/v2/users/me?context=edit&_locale=user
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
GET /wp-json/wp/v2/users/me?context=edit&_locale=user HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://merbraha.com/
X-WP-Nonce: 1489593d4d
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 401 Unauthorized
server: nginx
date: Wed, 22 Mar 2023 14:01:57 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/7.3.27
x-robots-tag: noindex
link: <https://merbraha.com/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
x-wp-nonce: 1489593d4d
allow: GET
vary: Origin
ms-author-via: DAV
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Source%20Sans%20Pro:400,400i,700,700i|Lato:400,300,400italic,900,700&subset=latin,latin-ext
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Source%20Sans%20Pro:400,400i,700,700i|Lato:400,300,400italic,900,700&subset=latin,latin-ext
IP 216.58.207.202:0
GET /css?family=Source%20Sans%20Pro:400,400i,700,700i|Lato:400,300,400italic,900,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 22 Mar 2023 14:01:55 GMT
date: Wed, 22 Mar 2023 14:01:55 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/date.min.js?ver=ce7daf24092d87ff18be
85.25.255.253200 OK 0 B URL HTTP/2 merbraha.com/wp-includes/js/dist/date.min.js?ver=ce7daf24092d87ff18be
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
GET /wp-includes/js/dist/date.min.js?ver=ce7daf24092d87ff18be HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 847374
last-modified: Wed, 19 Oct 2022 10:30:32 GMT
etag: "634fd1c8-cee0e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
merbraha.com/
85.25.255.253200 OK 0 B IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: text/html; charset=UTF-8
link: <https://merbraha.com/wp-json/>; rel="https://api.w.org/", <https://merbraha.com/wp-json/wp/v2/pages/56833>; rel="alternate"; type="application/json", <https://merbraha.com/>; rel=shortlink
x-powered-by: PHP/7.3.27, PleskLin
X-Firefox-Spdy: h2
merbraha.com/wp-includes/js/dist/components.min.js?ver=4b876f1ff2e5c93b8fb1
85.25.255.253200 OK 0 B URL HTTP/2 merbraha.com/wp-includes/js/dist/components.min.js?ver=4b876f1ff2e5c93b8fb1
IP 85.25.255.253:0
ASN #8972 Host Europe GmbH
GET /wp-includes/js/dist/components.min.js?ver=4b876f1ff2e5c93b8fb1 HTTP/1.1
Host: merbraha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://merbraha.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 22 Mar 2023 14:01:55 GMT
content-type: application/javascript
content-length: 641943
last-modified: Fri, 11 Nov 2022 13:56:44 GMT
etag: "636e549c-9cb97"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2