r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7257
Expires: Fri, 02 Dec 2022 13:51:58 GMT
Date: Fri, 02 Dec 2022 11:51:01 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1745
Cache-Control: max-age=169759
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:51:01 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 11:00:20 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4170
Expires: Fri, 02 Dec 2022 13:00:31 GMT
Date: Fri, 02 Dec 2022 11:51:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 11:19:56 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1865
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: wKrK4StC//rgk+k01a9Eu6RUyZgxHImna0NW4Reu8ND6p5aKDmY8OjZy+7MaXEqT2b+9eiNKWzE=
x-amz-request-id: 4BSTHW7WZ3D3F041
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 11:46:41 GMT
age: 260
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 11:51:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 11:08:57 GMT
cache-control: public,max-age=3600
age: 2524
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1771
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:51:02 GMT
Last-Modified: Fri, 02 Dec 2022 11:21:32 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.148.77.40101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.77.40:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YfFBFf44rcbtZzvN95l+ag==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: aHGqjWXAk1ha2dSwr8RWcbVxhWM=
api.mapbox.com/mapbox-gl-js/v1.12.0/mapbox-gl.css?ver=6.1.1
143.204.50.3200 OK 4.6 kB URL HTTP/1.1 api.mapbox.com/mapbox-gl-js/v1.12.0/mapbox-gl.css?ver=6.1.1
IP 143.204.50.3:0
File type ASCII text, with very long lines (34832), with no line terminators
Hash f2188e20ba65c06d91ac5318a02b5c9c
39afa10b7d336a984fe1ae632f44c494bac764ea
b330c32a70613bc9c42ef9d0b4c6218f155bab703d03f4e71307f31cbf40f328
GET /mapbox-gl-js/v1.12.0/mapbox-gl.css?ver=6.1.1 HTTP/1.1
Host: api.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Thu, 03 Nov 2022 01:30:58 GMT
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: "abd77169b68f1b61bc7aa0ef6a9c7a1e"
Last-Modified: Wed Aug 12 2020 16:07:25 GMT+0000 (Coordinated Universal Time)
Cache-Control: max-age=31536000
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MgLVKj2FCKeZmvagGIMF7TV4S71-JFqr8VFMn0Cz2NudckSIjHffLA==
Age: 2542805
cdn.jsdelivr.net/jquery.mcustomscrollbar/3.1.3/jquery.mCustomScrollbar.min.css?ver=6.1.1
151.101.65.229200 OK 4.0 kB URL HTTP/2 cdn.jsdelivr.net/jquery.mcustomscrollbar/3.1.3/jquery.mCustomScrollbar.min.css?ver=6.1.1
IP 151.101.65.229:0
File type ASCII text, with very long lines (42839), with no line terminators
Hash 5f4544dea24190238933ba3dc1aed3a6
0229548b6d4e02d95ca3645025c6334d1bf631da
2b225283887898b48e0e1c391a8656a5a64e37266581a57339a40e00bf4d911e
GET /jquery.mcustomscrollbar/3.1.3/jquery.mCustomScrollbar.min.css?ver=6.1.1 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
etag: W/"a757-+sm1IQYv61JQwE1iEoqMPdsxJjI"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:51:03 GMT
age: 2112247
x-served-by: cache-fra-eddf8230113-FRA, cache-bma1624-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3978
X-Firefox-Spdy: h2
api.tiles.mapbox.com/mapbox-gl-js/v1.6.0/mapbox-gl.css?optimize=true&ver=6.1.1
143.204.50.3200 OK 4.5 kB URL HTTP/1.1 api.tiles.mapbox.com/mapbox-gl-js/v1.6.0/mapbox-gl.css?optimize=true&ver=6.1.1
IP 143.204.50.3:0
File type ASCII text, with very long lines (34683), with no line terminators
Hash ba558986a2ae1ba38b7a0e9e6d0cfea3
2923f4751c2d466bb5a75a1cbf1d1410266220a7
7603ac694c7c036f7f3a57f0771ddf8e0d9b2c2cdf6bdd207f50046b6acc4aff
GET /mapbox-gl-js/v1.6.0/mapbox-gl.css?optimize=true&ver=6.1.1 HTTP/1.1
Host: api.tiles.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Thu, 25 Aug 2022 06:11:28 GMT
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: "67a23473739c0b206ebeb587c8459f62"
Last-Modified: Wed Dec 04 2019 21:53:32 GMT+0000 (Coordinated Universal Time)
Cache-Control: max-age=31536000
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9LrRkyeGEo_kFgRJ101xkbvRTvZPV84dQO1pHwnLZPQA6eQv76EPfg==
Age: 8573975
api.tiles.mapbox.com/mapbox-gl-js/v1.6.0/mapbox-gl.js
143.204.50.3200 OK 189 kB URL HTTP/1.1 api.tiles.mapbox.com/mapbox-gl-js/v1.6.0/mapbox-gl.js
IP 143.204.50.3:0
File type ASCII text, with very long lines (64502)
Size 189 kB (189043 bytes)
Hash 511e59610f7ad7e8adf4cb6be1407c04
1a479aa8d623aec2ca0b22febcaa6f305faed38a
171da634aa6914c7316459d11d442aafd6faf2ce0d7f81f226029d8f7abb820d
GET /mapbox-gl-js/v1.6.0/mapbox-gl.js HTTP/1.1
Host: api.tiles.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 09 Sep 2022 01:07:17 GMT
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: "e9c622df26860cebc81a689783e7f69c"
Last-Modified: Wed Dec 04 2019 21:53:18 GMT+0000 (Coordinated Universal Time)
Cache-Control: max-age=31536000
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _HNzjF3M0Droa1MklfI6CdYpZeqJ5Ir832PqJt7EJcg-mpPGLoWdAA==
Age: 7296226
cdn.transifex.com/live.js
151.101.193.132200 OK 25 kB URL HTTP/1.1 cdn.transifex.com/live.js
IP 151.101.193.132:0
File type ASCII text, with very long lines (683)
Hash 69c4507ff154f10ee985bc8016df487a
f178eba6ab8ec12344cad3a1301d525d5b89cc35
f52b84ce5260650de396e7f5afc2996cf4a7e7c7e086145e64eba039cf6a3fa0
GET /live.js HTTP/1.1
Host: cdn.transifex.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 25447
x-amz-id-2: PAk9yOXRezS8+1gYriwM5QcdiqYYS1JKudJcj6MWybE5vansRmui3PImMGkvSynhQ7f3Ylf5Lwg=
x-amz-request-id: 4X5W9ASYMW49HA0W
Last-Modified: Wed, 28 Sep 2022 11:52:47 GMT
ETag: "29f98b1ba58aa9982bb02dc7068ea8e1"
x-amz-version-id: HJTBhiJhGnprDRq3815bVyQbCpVKCghi
Content-Type: text/javascript
Server: AmazonS3
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 11:51:03 GMT
Via: 1.1 varnish
Age: 5615896
X-Served-By: cache-bma1645-BMA
X-Cache: HIT
X-Cache-Hits: 7248
X-Timer: S1669981864.624423,VS0,VE0
Vary: Accept-Encoding
x-tx-live-key: live.js
kashmirdreamtrips.com/
74.208.236.72200 OK 58 kB IP 74.208.236.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (10871), with CRLF, LF line terminators
Hash 2647ad45a012cb673c57f935c7c2fcc1
9c48d1197d1f458d36f8f6b488e682c36f8282c2
5b76b4f78741607e08923e9013cc50e4b49cc669896821483d590333afb46b99
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:01 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Link: <http://kashmirdreamtrips.com/wp-json/>; rel="https://api.w.org/", <http://kashmirdreamtrips.com/wp-json/wp/v2/pages/8264>; rel="alternate"; type="application/json", <http://kashmirdreamtrips.com/>; rel=shortlink
Set-Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8; path=/
Content-Encoding: gzip
maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.1.0/css/line-awesome.min.css?ver=6.1.1
185.76.9.25200 OK 16 kB URL HTTP/2 maxst.icons8.com/vue-static/landings/line-awesome/line-awesome/1.1.0/css/line-awesome.min.css?ver=6.1.1
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (65536), with no line terminators
Hash 37194d5bad3fdc5730b6b2e88838a708
a7d1a1ca764e270e3699fd9ea7c7e94ddb769eba
79fb1607305c9a068d9084267ff3823ea4d3610bfe555b2c68aee2304dec25f8
GET /vue-static/landings/line-awesome/line-awesome/1.1.0/css/line-awesome.min.css?ver=6.1.1 HTTP/1.1
Host: maxst.icons8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 11:51:03 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
etag: W/"15e81-wb0UGHttyzbvrSHlFxH4lBgB3g8"
last-modified: 2022-11-03T08:53:30.448Z
server-timing: -;dur=0;desc="Generate"
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-max-age: 1728000
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
x-accel-expires: @1983908587
server: CDN77-Turbo
x-77-nzt: AblMCRSSxH7/vN4VAA
x-77-nzt-ray: af58563071a2f9bda7e689636b325023
x-cache: HIT
x-age: 1433276
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
kashmirdreamtrips.com/wp-includes/css/classic-themes.min.css?ver=1
74.208.236.72200 OK 217 B URL HTTP/1.1 kashmirdreamtrips.com/wp-includes/css/classic-themes.min.css?ver=1
IP 74.208.236.72:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 217
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:03 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 10:50:28 GMT
ETag: "d9-5ec7a9be1075e"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6.1
74.208.236.72200 OK 2.7 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6.1
IP 74.208.236.72:0
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2731
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:03 GMT
Server: Apache
Last-Modified: Sat, 04 Jun 2022 05:49:56 GMT
ETag: "aab-5e098cf049547"
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 06:00:48 GMT
age: 21015
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PIC-TIeTFK_Y2AiqowYT4_8tMuzIKO23lAwx18fYepTf4PIWkmLqkQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 05:20:15 GMT
age: 23448
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 156e9ea97b774cbd8361072e4041b6c8
fc71ae3cae92ed6011904bb2367f23bf4e69fab4
58d953c19ebbbdfc3965bbe3f52308d4702deaf4d0c029f4674bcb862da138af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8863
x-amzn-requestid: 798d014b-0f9c-4787-a676-8f5e8fae3d11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdG14HBNIAMFdWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851bf-7549feac6d476a8512676412;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: r_0F64VpyutAOJ9IcTWrs3Sv--fhKiwKsV1FW0fOMSRt1QLLPxvJzg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 13:21:56 GMT
age: 80947
etag: "fc71ae3cae92ed6011904bb2367f23bf4e69fab4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c80b8025242ddfcc816ec612456b99e
aa944d10fe4a44b790b01ef62edc0f85a6d558e3
a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
age: 50370
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb2cfbf1-2aef-40a6-97e1-99a756e32924.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb2cfbf1-2aef-40a6-97e1-99a756e32924.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 16a112f00456d38c4c9e051ccf40e105
8fe32fffe672f0e91ce773af0e4be960f55bad08
43517bbcd17ec6d05d09a4c0d183610acdc7e2fa4767cb786cb8b936d5f44402
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb2cfbf1-2aef-40a6-97e1-99a756e32924.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13461
x-amzn-requestid: 8c0121a6-cf29-4cd0-bd42-d9f67af62b84
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQsyGhGoAMF1-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7eb-593f28367320530e2dcafbfb;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:03:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: npt-A-TEzjd-QRTVhv5FMJhwlYujCRCF7tyYbathxjCdCFFEwh_vEQ==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 06:42:38 GMT
age: 18505
etag: "8fe32fffe672f0e91ce773af0e4be960f55bad08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb8ec880-52b8-4350-bb47-d051878e78f1.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb8ec880-52b8-4350-bb47-d051878e78f1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 25c68d8b1fae82820f93efca500fd848
45cf5e1a54ee491497ffe08a8e39fe97ba3c8a48
f0ec6b6f6ba0a931c9b71f5bc7ad1e5b89c8e4d8b7441f35eeebfba418d0e588
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb8ec880-52b8-4350-bb47-d051878e78f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6882
x-amzn-requestid: 6b5f15a5-c15b-46bf-9fd5-5d013d37a0eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGfrG3WIAMFc9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891dfd-6038ca700dfb4489230c2683;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2O6x-8-ESFDtlhcjVyGxEXCZcLbbfhsCVQeX02lbNMupPWmM-fKuLA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:54 GMT
age: 51369
etag: "45cf5e1a54ee491497ffe08a8e39fe97ba3c8a48"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.jsdelivr.net/jquery.mcustomscrollbar/3.1.3/jquery.mCustomScrollbar.concat.min.js
151.101.65.229200 OK 13 kB URL HTTP/2 cdn.jsdelivr.net/jquery.mcustomscrollbar/3.1.3/jquery.mCustomScrollbar.concat.min.js
IP 151.101.65.229:0
File type ASCII text, with very long lines (32011)
Hash 084f23e958da82f12d2f0a939518678f
c6ab2f6a2ebb64aa74f00bbde2caa81b0f0cdbd4
bbe5f51e5bcf0b41e4aa4ea1fa0f55c879c668723ed406a47be2cd4493ddf33b
GET /jquery.mcustomscrollbar/3.1.3/jquery.mCustomScrollbar.concat.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"aeab-FHftkWvuy3JtIK8PysjO14ndRik"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 02 Dec 2022 11:51:03 GMT
age: 3647552
x-served-by: cache-fra-eddf8230136-FRA, cache-bma1624-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 12701
X-Firefox-Spdy: h2
kashmirdreamtrips.com/wp-content/plugins/widget-google-reviews/assets/css/public-main.css?ver=2.1.9
74.208.236.72200 OK 18 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/plugins/widget-google-reviews/assets/css/public-main.css?ver=2.1.9
IP 74.208.236.72:0
File type ASCII text, with very long lines (18093), with no line terminators
Hash 84d7b5192f7a49d812a393423b1e53ba
6df080afb5e0efd2f9276d4cd1a067d15037e3e8
ec651c4fdd004ea50a82dfa008c305ecb8abfb8505368773f83ad36657253c08
GET /wp-content/plugins/widget-google-reviews/assets/css/public-main.css?ver=2.1.9 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 18093
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:03 GMT
Server: Apache
Last-Modified: Mon, 13 Jun 2022 08:46:26 GMT
ETag: "46ad-5e15052ceafce"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:51:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/helpers.css?ver=6.1.1
74.208.236.72200 OK 30 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/helpers.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with very long lines (618), with CRLF line terminators
Hash 9529609320eabad55e368c5f0e045aaa
97ad5ad9c8ed93cc650629e07b2f774ce9ea5caf
86a69b2fc6810bb78690ba1818b50e3d7294bb9768be475154258e31ac476d99
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/css/helpers.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 30101
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:03 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "7595-5de2a10ed488e"
Accept-Ranges: bytes
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash a50a07925b5cac0ed7475da62b942ad3
960535e41f13e13d6e8ea03fa3da9dc34066a3fa
911060d02e528e89a3d7eac666ec964ff690766e07d9f566c187cb164a0a760f
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 11:51:03 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "681AD086F76162A04221C62EF14A7EC0C5CDFA7E"
Expires: Fri, 02 Dec 2022 22:00:00 GMT
Last-Modified: Fri, 02 Dec 2022 10:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3582
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7733d938ffc4b511-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5760
Expires: Fri, 02 Dec 2022 13:27:03 GMT
Date: Fri, 02 Dec 2022 11:51:03 GMT
Connection: keep-alive
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/fotorama/fotorama.css?ver=6.1.1
74.208.236.72200 OK 15 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/fotorama/fotorama.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with very long lines (15085), with CRLF line terminators
Hash 01cccaec4ff96d0973ec6cc3c8c381bb
96948f7e66cf5fa884dcd40af616542472d6ddf2
3e275292d958f60b0509448e22870378fc1e3d0c6528850eb2980efcc20f530f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/fotorama/fotorama.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 15144
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:03 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "3b28-5de2a10f95e83"
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5760
Expires: Fri, 02 Dec 2022 13:27:03 GMT
Date: Fri, 02 Dec 2022 11:51:03 GMT
Connection: keep-alive
kashmirdreamtrips.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
74.208.236.72200 OK 95 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with very long lines (47826)
Hash 71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 94889
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:03 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 22:40:23 GMT
ETag: "172a9-5ed8a0aad1c9c"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/font-awesome.min.css?ver=6.1.1
74.208.236.72200 OK 31 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/font-awesome.min.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with very long lines (30837), with CRLF line terminators
Hash a0e784c4ca94c271b0338dfb02055be6
88af80502c44cd52ca81ffe7dc7276b7eccb06cf
820e169ce24824066d9973fd4b6561aae9dcd6dbef6435da905d5a1d6482997c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/css/font-awesome.min.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 31004
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:03 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "791c-5de2a10ed488e"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/ion.rangeSlider/css/ion.rangeSlider.css?ver=6.1.1
74.208.236.72200 OK 3.5 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/ion.rangeSlider/css/ion.rangeSlider.css?ver=6.1.1
IP 74.208.236.72:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash f5069b36da2397d9f5a85411a2eb2bec
d665f3a2ed4984b74b27c9cc1d8861871e91b7c0
fb3e85576e662d2b8afe16d00d9de193303185e8e41e99d2ee749199852c4d0f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/ion.rangeSlider/css/ion.rangeSlider.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 3501
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:03 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "dad-5de2a10fa8769"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/daterangepicker/daterangepicker.css?ver=6.1.1
74.208.236.72200 OK 10 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/daterangepicker/daterangepicker.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with CRLF line terminators
Hash 3655188700005aa230ffecee67e75459
32843e94ab17ce0e01ff3e9fdf14bf2680927f45
48b8e065768650001966dccafdcbccdf8362b86bdc8771fbb19bbe55f787da04
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/daterangepicker/daterangepicker.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 10518
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:03 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "2916-5de2a10f900c2"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/ion.rangeSlider/css/ion.rangeSlider.skinHTML5.css?ver=6.1.1
74.208.236.72200 OK 3.0 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/ion.rangeSlider/css/ion.rangeSlider.skinHTML5.css?ver=6.1.1
IP 74.208.236.72:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 9df91fc4f7796081de675ed14a145bc7
68d07f265e4fece82c351a22d41c5207fe03bc75
9b857ed23453b8030cb7b8ae2490a5db499a1c74d56b1fd8d4eeb2e3011ba664
GET /wp-content/themes/traveler/v2/js/ion.rangeSlider/css/ion.rangeSlider.skinHTML5.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 3005
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:03 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "bbd-5de2a10fa8769"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/sweetalert2.css?ver=6.1.1
74.208.236.72200 OK 39 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/sweetalert2.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with very long lines (375), with CRLF line terminators
Hash b028de1ea7b8bb4f9fad7c146ede28e7
a36e1f48f6d299defc43284bc3a91c2baabd7890
7502ed903c0cb23eec53e762e68eeea084e137280dd529662479a3487cb042ce
GET /wp-content/themes/traveler/v2/css/sweetalert2.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 38730
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:03 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "974a-5de2a10eda650"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/select2.min.css?ver=6.1.1
74.208.236.72200 OK 18 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/select2.min.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with CRLF line terminators
Hash 3a36d49c5098adf0e10580c3227ff4f0
b6485f93e6b316d1c20e643998e2b765a1de8808
c171b7e09a33eaf9d03feb69928fc4b14002647353d88ccd2659054af4c79f33
GET /wp-content/themes/traveler/v2/css/select2.min.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 17855
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "45bf-5de2a10ed582f"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/bootstrap.min.css?ver=6.1.1
74.208.236.72200 OK 121 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/bootstrap.min.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with very long lines (65367), with CRLF line terminators
Size 121 kB (121205 bytes)
Hash 5057f321f0dc85cd8da94a0c5f67a8f4
224c9f9ad11b495358aa61dbd53e838e9b61015b
5a3d8c05785485d36ee5c94d4681e5b1d9e4b94c5be8b5bd7b0f3168fff1bd9a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/css/bootstrap.min.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 121205
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:03 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "1d975-5de2a10ed488e"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/flickity.css?ver=6.1.1
74.208.236.72200 OK 2.6 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/flickity.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with CRLF line terminators
Hash f511267808a19d4e3c7a50532758c323
1a7db932bd90349c3982c27f4f7ce7dbbb8cbd3b
f8529ed84f7aecd2156bac35ec6c2332cf1f3e686e740a7e5df68626abca1909
GET /wp-content/themes/traveler/v2/css/flickity.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2643
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "a53-5de2a10ed488e"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/owlcarousel/assets/owl.carousel.min.css?ver=6.1.1
74.208.236.72200 OK 3.4 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/owlcarousel/assets/owl.carousel.min.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with very long lines (3184), with CRLF line terminators
Hash b9755c9c2613c455154caf065bd1a94d
aa3c316b4e2ab55bcb3d8e3d186677739b0cfd64
062368677bcefd9495e8b320e0cf22c4faca9f1bc04666efeb9cd5307cd591a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/owlcarousel/assets/owl.carousel.min.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 3356
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "d1c-5de2a10fb622c"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/magnific-popup/magnific-popup.css?ver=6.1.1
74.208.236.72200 OK 8.2 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/magnific-popup/magnific-popup.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with CRLF line terminators
Hash d3e8ea627a3253d7cd25b546f45cc46b
17285eedfc96f5dfa70e34e4b3b5c828d3531a3c
1fe52b469238a85c87da3f539925d68c94b115d86be36ec0e47af1a322605f1f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/magnific-popup/magnific-popup.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 8163
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "1fe3-5de2a10fae52a"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:51:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/fsafari.css?ver=6.1.1
74.208.236.72200 OK 868 B URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/fsafari.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with CRLF line terminators
Hash 3a61762a2a8423b4892d0692a27e80c2
5b171a72f6bebaa9b12ac4483cc48d2f67fe3d40
888f634207260e0a7cb159a5c06bec9bae5fd56dd3d6588031141eb59503c222
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/css/fsafari.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 868
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "364-5de2a10ed488e"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/affilate-h.css?ver=6.1.1
74.208.236.72200 OK 11 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/affilate-h.css?ver=6.1.1
IP 74.208.236.72:0
Hash e119ad84305045779e126391eca8d7d3
f815528a86aeb871279a271f464bfea16f6ec4be
8b79ec22f1a593f171a9e38c24aed38a4bef8522f9f0b778953e0ea59c81993b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/css/affilate-h.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 10972
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "2adc-5de2a10ed38ee"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/affilate.css?ver=6.1.1
74.208.236.72200 OK 36 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/affilate.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with very long lines (675)
Hash 616add9cb3c909be6c8424d15ca25cb3
3844c1275250249966c0517ad84f99e1dd5b5f39
509f0f3a5699c2e71fe346a654f087a8caee1401709f19db8a968ca025b86b34
GET /wp-content/themes/traveler/v2/css/affilate.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 35750
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "8ba6-5de2a10ed38ee"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/checkout.css?ver=6.1.1
74.208.236.72200 OK 37 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/checkout.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with CRLF line terminators
Hash 00757aed306544487d2160c7429f1c69
730556dd8e99fbff8d9d773021eb2c8bd38d9db9
1972df751483c105dbf3034b609f105ebb61480ecf44e7ebb254c8f95521f3b1
GET /wp-content/themes/traveler/v2/css/checkout.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 36796
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "8fbc-5de2a10ed488e"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/style.css?ver=6.1.1
74.208.236.72200 OK 176 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/style.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with very long lines (624)
Size 176 kB (175667 bytes)
Hash c39b6c2b9f7198b9e562e89adb0e4388
6bb2a2ee517318e55e3f7ffdbc3b2e01fb489316
7a28ecbfa54e37d94bc79071ecda52c5c067318f15aab3377bc090b05c8ab7a4
GET /wp-content/themes/traveler/v2/css/style.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 175667
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "2ae33-5de2a10ed776f"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/responsive.css?ver=6.1.1
74.208.236.72200 OK 45 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/responsive.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with very long lines (382), with CRLF line terminators
Hash 3faadc6342184d3f5e1ff2c2e216a649
4045082e4565ec3207b834b53f97b8f6aea0633b
5c25805aa88b65307c8f6bf34e928e1dae85fecffdd9c82e7ecaa68b61bf2187
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/css/responsive.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 45063
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "b007-5de2a10ed582f"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/partner_page.css?ver=6.1.1
74.208.236.72200 OK 29 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/partner_page.css?ver=6.1.1
IP 74.208.236.72:0
Hash 99bfa4ff2c9370e495add052c30300da
19e4b13924982f6832fd8a074152f90f6232e78a
7e912a4a01d46814629c951918120ed6d8a2d7bd9f1a1ab4b36f882f5463a672
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/css/partner_page.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 28897
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "70e1-5de2a10ed582f"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/enquire.css?ver=6.1.1
74.208.236.72200 OK 8.1 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/enquire.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with CRLF line terminators
Hash 4489f7aead94e29dcc387fc9ee4e24be
ebf71144e3474b715259d56102d5b519381f77b3
3bc8fe29d91702b0ed1dbb7241cef9fa45d3210a1525e6c1c5a454379a43db22
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/css/enquire.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 8063
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "1f7f-5de2a10ed488e"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/mapbox-custom.css?ver=6.1.1
74.208.236.72200 OK 1.7 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/mapbox-custom.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with CRLF line terminators
Hash 0d4cde64d257c3aabbfc8f770fad12eb
386cc49efcbf33b7ca5e9e1a11ed29daef8273a2
65816948da7925140658f73299f04376a90efecd346197e885f96f71d0b1f1a7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/css/mapbox-custom.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 1740
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "6cc-5de2a10ed488e"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/search_result.css?ver=6.1.1
74.208.236.72200 OK 208 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/search_result.css?ver=6.1.1
IP 74.208.236.72:0
Size 208 kB (207871 bytes)
Hash 7ac19dd1e928defbc61ad9e8a93ccfb8
6f1e07a02f4994d86635dbcef6e649fbe09f1261
f5cf8c3b6cc9a90d890a7d881f860afd96607ab5bb3a63fd943b7afc71ab9f05
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/css/search_result.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 207871
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "32bff-5de2a10ed582f"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
74.208.236.72200 OK 14 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 74.208.236.72:0
File type ASCII text, with very long lines (11126)
Hash 728fe9a41eb1921a02b6b7dcba3648ca
5a695a12e73a7874f5d273ead2d5b775788b929f
a71ee879cf80d36f1858f3b7a081ca1493bb3fe88014d8b435434f91b927269f
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 13461
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 15:06:06 GMT
ETag: "3495-5b462f3585380"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/plugins/widget-google-reviews/assets/js/public-main.js?ver=2.1.9
74.208.236.72200 OK 38 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/plugins/widget-google-reviews/assets/js/public-main.js?ver=2.1.9
IP 74.208.236.72:0
File type ASCII text, with very long lines (2698)
Hash dd099b1097e4dce9e14648340bc8bef0
e623bf9888b2f886b4c495db961586e0b450c473
3e00513d1054f830f5f9d83a0296969f718f57fbec7d2f6cd7120e37eba5ec23
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/widget-google-reviews/assets/js/public-main.js?ver=2.1.9 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 37726
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Mon, 13 Jun 2022 08:46:26 GMT
ETag: "935e-5e15052c79c80"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
74.208.236.72200 OK 92 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 74.208.236.72:0
File type ASCII text, with very long lines (65447)
Hash e231cbc3d355998d6ceea44d87e46596
eaec0553b54e3785a9d5c4083fed4c7fe63d4473
5d92075a333fd130ab14a88cb118502add35524a313b882bd83aa362c7436d28
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 91921
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 10:50:29 GMT
ETag: "16711-5ec7a9be20740"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1
74.208.236.72200 OK 23 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with very long lines (23251), with CRLF line terminators
Hash 1b041cc875a37cd6e1791f620db1a44e
790bcfdab7d17278aa45b55b6366bde5a0cc99d1
2aeee2ccc88250e813469008c71b98fc588a117e8f7daf5e9a6d3676ffaf1221
GET /wp-content/themes/traveler/v2/js/magnific-popup/jquery.magnific-popup.min.js?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 23383
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "5b57-5de2a10f46c80"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/sin-tour.css?ver=6.1.1
74.208.236.72200 OK 308 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/sin-tour.css?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with CRLF line terminators
Size 308 kB (307766 bytes)
Hash e0d3e5835e891a0415d20a153096fc44
36ebe538bd80d8ac44e0807377ce146b7b6e9dba
9c0ecea378b4eb4c932a5dcbaea31502c3fea37e7b4332829f723b35a8977bc4
GET /wp-content/themes/traveler/v2/css/sin-tour.css?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 307766
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "4b236-5de2a10ed67cf"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.9.6
74.208.236.72200 OK 7.7 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.9.6
IP 74.208.236.72:0
File type ASCII text, with very long lines (7715), with no line terminators
Hash c39c5ddfa02e0adee20ce92b4c008982
b62fbb76e40a8b990b2466536b9f0506b0716674
906c5c9cb6d9fd7fa49bfee30c790457918680a96efd5e66aa6e56e6aa8a099a
GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.9.6 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 7715
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Sat, 04 Jun 2022 05:49:51 GMT
ETag: "1e23-5e098ceb25dc0"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
74.208.236.72200 OK 8.7 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 74.208.236.72:0
File type ASCII text, with very long lines (8712), with no line terminators
Hash df80f08087a06f0663e931b3e624bebc
cf7e4b3e49ece8cbd9ed096a5b9f15db79e9c8f9
7f8868573ce396a8e64d4fc78e820fa44c19dce83b1acde3e7b4b0af68b1ac77
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 8712
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 22:36:37 GMT
ETag: "2208-5dfc996eba740"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
74.208.236.72200 OK 21 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 74.208.236.72:0
File type ASCII text, with very long lines (15660)
Hash 21630866596f5fe29e7649f49c3c5362
c07307dda8f750d200c471d8693fe391d7236e6b
41f5e8113e651e2091124c4f675f62c523ee8db4f03f0f560e8c0f84490dc398
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 20854
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 22:36:37 GMT
ETag: "5176-5dfc996eba740"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0
74.208.236.72200 OK 486 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0
IP 74.208.236.72:0
File type ASCII text, with very long lines (65358)
Size 486 kB (485521 bytes)
Hash 78622094275696078e4f06007407e11d
d7f583d841c46bd24bd9134e20c645b14e6ec713
521457922129a04fbc4524021ac47021659a1e1931c5dfe1a0e13be5dcaaefba
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 485521
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Thu, 24 Feb 2022 15:04:52 GMT
ETag: "76891-5d8c4e775cd00"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6.1
74.208.236.72200 OK 12 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6.1
IP 74.208.236.72:0
File type HTML document, ASCII text, with very long lines (11957), with no line terminators
Hash d6ad79f3b3ccc7662f05f2dc86c28a8b
9a6ff326bb29e032241040129cb9899160cb911e
8651df5459a4cdf91abe79be3335abcbb6a5ad81ce0f68336cd4b42dfed715d5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6.1 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 11957
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Sat, 04 Jun 2022 05:49:56 GMT
ETag: "2eb5-5e098cefea900"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/jquery.matchHeight.js
74.208.236.72200 OK 14 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/jquery.matchHeight.js
IP 74.208.236.72:0
File type ASCII text, with very long lines (2237), with CRLF line terminators
Hash f4421baee5170c90469f5f4e64acce27
098f44d1a782f6af2bc14d8146cdaf2f0ca081e1
2b8558fbc24dcc8aaa3bed6f0eb80e34e2fb59a854926faf24f8ed02d0e4fac1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/jquery.matchHeight.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 14403
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "3843-5de2a10f46c80"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/mapbox-custom.js
74.208.236.72200 OK 10 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/mapbox-custom.js
IP 74.208.236.72:0
File type ASCII text, with very long lines (2237), with CRLF line terminators
Hash 56ddc4c553e466686a5ca68b0c5b5dad
d80950f196646dd1010e5ae8ea76b2b1ad5dcbe2
729ff9fa09aaba8bfa1dab2bd42a8f9eafc6d60f7b117a69567797e1e37f12aa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/mapbox-custom.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 9985
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "2701-5de2a10f46c80"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
74.208.236.72200 OK 20 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 74.208.236.72:0
File type Unicode text, UTF-8 text, with very long lines (20056), with no line terminators
Hash 43f7781c67c601ea42c37598b1771f71
a16f3ddc72db0e050829eae86b26476dcd6c33c5
6d9ca0e228af17bb446a12dc975570ee035f32472f6fa7a4ef873e9bbb9d67b3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 20060
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 10:50:29 GMT
ETag: "4e5c-5ec7a9be20740"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/fotorama/fotorama.js
74.208.236.72200 OK 68 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/fotorama/fotorama.js
IP 74.208.236.72:0
File type ASCII text, with very long lines (572), with CRLF line terminators
Hash 270cf7ff6d34b2e7b9684bfd1ccfe593
fd30f1ba766e6e8d9e9fde1fcca8cf3d346b08f1
866d6ffc6b94d9fd48e2c9db56b95afc112784f69933f892e7da7901020d785c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/fotorama/fotorama.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 67756
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "108ac-5de2a10f46c80"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/bootstrap.min.js
74.208.236.72200 OK 39 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/bootstrap.min.js
IP 74.208.236.72:0
File type ASCII text, with very long lines (32033), with CRLF line terminators
Hash 829a0f003a01de4155aae0574ffe87cb
b9d430c3193f0d3e9a9b8843f97dbf93ca815c7f
3108db4b8c2c2a5ae94d51d189c28a3ae3506b505f1c7d4300ecc86c8a50af9b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/bootstrap.min.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 39288
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "9978-5de2a10f46c80"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/ion.rangeSlider/js/ion-rangeSlider/ion.rangeSlider.js
74.208.236.72200 OK 64 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/ion.rangeSlider/js/ion-rangeSlider/ion.rangeSlider.js
IP 74.208.236.72:0
File type ASCII text, with very long lines (2246), with CRLF line terminators
Hash f3f28c1a77e17493b530b19624116475
d0d61daece9b4c5e563cb3fd2d24613399714bbd
1ebcd005122485425c2cc55bee237f87fc556244dc3c5b2f6087fc09ea74dd8d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/ion.rangeSlider/js/ion-rangeSlider/ion.rangeSlider.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 64199
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:04 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "fac7-5de2a10f46c80"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:51:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:51:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
142.250.74.35200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kashmirdreamtrips.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:28:50 GMT
expires: Thu, 30 Nov 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 145335
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
142.250.74.35200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kashmirdreamtrips.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:28:50 GMT
expires: Thu, 30 Nov 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 145335
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/jquery.nicescroll.min.js
74.208.236.72200 OK 62 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/jquery.nicescroll.min.js
IP 74.208.236.72:0
File type ASCII text, with very long lines (62165), with CRLF line terminators
Hash cf32265560184de60f88bcc120612393
d051307d427794dd029779ff12ebff5a4797ea2f
c001a182831ba9e281320c3474900663634f945483cd579e1bf7d4c20a08b27d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/jquery.nicescroll.min.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 62248
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "f328-5de2a10f46c80"
Accept-Ranges: bytes
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
142.250.74.35200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kashmirdreamtrips.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:28:50 GMT
expires: Thu, 30 Nov 2023 19:28:50 GMT
cache-control: public, max-age=31536000
age: 145335
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/daterangepicker/daterangepicker.js
74.208.236.72200 OK 105 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/daterangepicker/daterangepicker.js
IP 74.208.236.72:0
File type ASCII text, with very long lines (1086), with CRLF line terminators
Size 105 kB (104953 bytes)
Hash a81486a7aa6e32307db09f032fe1ec34
5e324f794d50dae0cb76639b2a1326a4e20c67a7
9034eb542f5def8c8e4e8d6de827e896fed82fccc0b77445a970634c214e7390
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/daterangepicker/daterangepicker.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 104953
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "199f9-5de2a10f46c80"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/sweetalert2.min.js
74.208.236.72200 OK 39 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/sweetalert2.min.js
IP 74.208.236.72:0
File type Unicode text, UTF-8 text, with very long lines (39050), with no line terminators
Hash e45e586f1b3ba49ab50ed9a1ffbdca3c
4408440d2271e682cd1b2ac62f0cec94b0894909
6162fceb9a73187af6e67329d0eaab8aa95776ebff48b766503d1012c19747f0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/sweetalert2.min.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 39051
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "988b-5de2a10f46c80"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/select2.full.min.js
74.208.236.72200 OK 78 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/select2.full.min.js
IP 74.208.236.72:0
File type Unicode text, UTF-8 text, with very long lines (64217), with no line terminators
Hash 6f05666c8a36e662f421075031bbbc61
63e743df4e6838f58262e70c057d518a01372fb9
a9a9844de189e78bbcc7f985085c35254c37315c52a650911bf511f9674e879e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/select2.full.min.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 78509
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "132ad-5de2a10f46c80"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/moment.min.js
74.208.236.72200 OK 54 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/moment.min.js
IP 74.208.236.72:0
File type ASCII text, with very long lines (53916), with no line terminators
Hash 2be5f269a836c45947cd51aaa9ef16a2
c5abc4e1ef0a4c2cbdeeffaa6ad7faacec97a988
2fc264d8977d48b027f51e03b7dc09616e30c8d8302c2d9b83a8bf1e38dd5962
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/moment.min.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 53916
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "d29c-5de2a10f46c80"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/mapbox/custom.js
74.208.236.72200 OK 5.8 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/mapbox/custom.js
IP 74.208.236.72:0
File type ASCII text, with very long lines (2237), with CRLF line terminators
Hash b6df513f3a8e899caaa1a7b8ada93c1e
bbdc29743423c29484e8f9f99d6bc7c477a1b672
8406f67f67a4f42596bf575deafa894c5ffe06cf66b60af2bbe648bd73eb3575
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/mapbox/custom.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 5752
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "1678-5de2a10f46c80"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/send-message-owner.js
74.208.236.72200 OK 2.5 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/send-message-owner.js
IP 74.208.236.72:0
File type ASCII text, with very long lines (2237), with CRLF line terminators
Hash a051598346ac51bacd870306fabcd364
f8ca6bd8782ae1f1521057fc4d8dc6651f0d3135
a464c67badf304b9670f507aba253da581364fedf49dad93d688c44bc9073c2a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/send-message-owner.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 2471
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "9a7-5de2a10f46c80"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/flickity.pkgd.min.js
74.208.236.72200 OK 149 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/flickity.pkgd.min.js
IP 74.208.236.72:0
File type ASCII text, with CRLF line terminators
Size 149 kB (149243 bytes)
Hash b4b2c1c1de99186ea1849fcd9c12baf6
a159d0e3371953f774cbd2ca7d1b5b73352fe723
79e0bd217b47a653a5da0dcdd9b154b4f0e940d6122283c22c0a294418565cf4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/flickity.pkgd.min.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 149243
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "246fb-5de2a10f46c80"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/sin-tour.js
74.208.236.72200 OK 27 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/sin-tour.js
IP 74.208.236.72:0
File type ASCII text, with very long lines (2237), with CRLF line terminators
Hash 67c4334057b3b34846ff9a0ed44cef1f
daf76c19db8e60125105d25af5f90ea9089c9c7d
68495851d4648ae1db3fef7429e2168cd26992d2440c14edc2866d6f83486345
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/sin-tour.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 27061
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "69b5-5de2a10f46c80"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/car-tranfer.js
74.208.236.72200 OK 9.9 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/car-tranfer.js
IP 74.208.236.72:0
File type ASCII text, with very long lines (2237), with CRLF line terminators
Hash 02a7a1b36ddb4987dc0c1846dfd25cd0
fcff9a6e6cbfd4522f32c5c4a89064eab152181e
927f1548dcb649a022b53caccc1202f8d1c87af8fd63f951567887189b7bfa8a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/car-tranfer.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 9933
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "26cd-5de2a10f46c80"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/owlcarousel/owl.carousel.min.js
74.208.236.72200 OK 47 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/owlcarousel/owl.carousel.min.js
IP 74.208.236.72:0
File type ASCII text, with very long lines (31997), with CRLF line terminators
Hash fe6c492d835c66c95b275b38c21c1316
df91ba72ef8d33eb2656542d51baf9ab14679021
c519e11d13bbf3fe4c75335e563e2cb0c17e0bb12ebf4db3dfc84b7f9ce8872f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/owlcarousel/owl.carousel.min.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 46585
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "b5f9-5de2a10f46c80"
Accept-Ranges: bytes
cdn.transifex.com/add61db096874b2b8e165774c8613f62/latest/manifest.jsonp
151.101.193.132200 OK 204 B URL HTTP/1.1 cdn.transifex.com/add61db096874b2b8e165774c8613f62/latest/manifest.jsonp
IP 151.101.193.132:0
File type ASCII text, with very long lines (418), with no line terminators
Hash 16735abe3ea73fd4dc52b350fe934662
1158d21f25370a341fd8925bdb51a9a834495989
f6b63813486bcf931c8a1164c0d7c8fa9f0fdbc2f2c1f8c17cf2dff0f7f36f77
GET /add61db096874b2b8e165774c8613f62/latest/manifest.jsonp HTTP/1.1
Host: cdn.transifex.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 204
x-amz-id-2: x73CqQGptwx0z45iT0xcf7de5LONzKehI2TaGxttp2KmemiXcq45dlinqxWLpTNeqaZ0f+3mTvY=
x-amz-request-id: A91B5D0TNK180WQ0
Last-Modified: Fri, 23 Oct 2020 14:00:02 GMT
ETag: "311a5c046a0161170b0e405fc3667591"
x-amz-version-id: null
Content-Type: text/javascript
Server: AmazonS3
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 11:51:05 GMT
Via: 1.1 varnish
Age: 1506427
X-Served-By: cache-bma1645-BMA
X-Cache: HIT
X-Cache-Hits: 1
X-Timer: S1669981866.715950,VS0,VE4
Vary: Accept-Encoding
x-tx-live-key: add61db096874b2b8e165774c8613f62
kashmirdreamtrips.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
74.208.236.72200 OK 22 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
IP 74.208.236.72:0
File type ASCII text, with very long lines (22142)
Hash 6cf3b6e7673ebdf1b24f4ef654114cfd
c268c61b8b3aabe2b0146fb28f21c57a3ffbdf1a
d81a1b96661afde61ded402dd1ad81f7c6ad81477a72562e38a3c0bab4f53ba6
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 22361
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Thu, 24 Feb 2022 15:04:54 GMT
ETag: "5759-5d8c4e7945180"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/images/icon-wave.svg
74.208.236.72200 OK 522 B URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/images/icon-wave.svg
IP 74.208.236.72:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (427), with CRLF line terminators
Hash 7005704a48d8a6d2e702495776465b3a
a394947ec24375a2da8f853bd6fe38d2ea3f0f40
1fd36c981b933e25b1323a83e131b222fad82ff58c99b971c3c974ed3797cc37
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/images/icon-wave.svg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/sin-tour.css?ver=6.1.1
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Length: 522
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "20a-5de2a10f76a7b"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/plugins/widget-google-reviews/assets/img/powered_by_google_on_white.png
74.208.236.72200 OK 4.6 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/plugins/widget-google-reviews/assets/img/powered_by_google_on_white.png
IP 74.208.236.72:0
File type PNG image data, 288 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 60e8a8323a1f5c9dc59c6783d5974123
0aedcd31c35262334befb1b820ee68796a6c1db3
85e8811af8ce7aff2444abb675d1acff9189884726709c6c5d89badb6bb96828
GET /wp-content/plugins/widget-google-reviews/assets/img/powered_by_google_on_white.png HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 4550
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Mon, 13 Jun 2022 08:46:26 GMT
ETag: "11c6-5e15052d0b377"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2018/12/KDT-New-Logo-web.png
74.208.236.72200 OK 21 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2018/12/KDT-New-Logo-web.png
IP 74.208.236.72:0
File type PNG image data, 511 x 73, 8-bit/color RGBA, non-interlaced\012- data
Hash ee8baf8801896452dec976db701afb2a
bda403be05bcb7d7f53a71952c59612cae86f251
bbcc5883b6a339748f62b090cff680eb14afd157e5584a2803dcaf7b25889132
GET /wp-content/uploads/2018/12/KDT-New-Logo-web.png HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 21070
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 07:18:20 GMT
ETag: "524e-5de2a6e1cdb51"
Accept-Ranges: bytes
s.w.org/images/core/emoji/14.0.0/svg/1f60a.svg
192.0.77.48200 OK 1.1 kB URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f60a.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1055), with no line terminators
Hash 6f75b58eb746d08c2c18451573876292
edc2a3e044773349fb8243a7b8c097648ef4ac49
bda4e6d76f6b82b87f43755d551b36dd7cfb0d0117fb798435270e7c1127a87e
GET /images/core/emoji/14.0.0/svg/1f60a.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 11:51:05 GMT
content-type: image/svg+xml
content-length: 1055
last-modified: Tue, 12 Apr 2022 03:47:26 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
kashmirdreamtrips.com/wp-content/themes/traveler/v2/fonts/fontawesome-webfont.woff2?v=4.7.0
74.208.236.72200 OK 77 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 74.208.236.72:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/traveler/v2/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/font-awesome.min.css?ver=6.1.1
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Length: 77160
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "12d68-5de2a10f0369b"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2022/05/plane.png
74.208.236.72200 OK 6.1 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2022/05/plane.png
IP 74.208.236.72:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash a3b711e17c4846f578ac721fbd741436
3320594c7ef89e9683b126ead9a34b3c49ce56d3
7b154f4bf6b4b66231ccd931d4238bc9182d36613e5045690fcc72ff87f26cbf
GET /wp-content/uploads/2022/05/plane.png HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 6051
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Thu, 05 May 2022 16:40:40 GMT
ETag: "17a3-5de4666f8d7ba"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2022/05/hand.png
74.208.236.72200 OK 11 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2022/05/hand.png
IP 74.208.236.72:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d3bf6f6c4dc9dd3363137807282b5133
692467b531aa640715fc6ca1c187146c6fa62582
6ac3fb52fc810a294c8a9062a2c35aafd3c861b19e5fb519c162bd251c921b5d
GET /wp-content/uploads/2022/05/hand.png HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 10695
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Thu, 05 May 2022 16:41:14 GMT
ETag: "29c7-5de4669047faa"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2022/05/ribbon.png
74.208.236.72200 OK 5.9 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2022/05/ribbon.png
IP 74.208.236.72:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b05df65499918a7f8134e687f8ec5a07
92cc1a7e64f7431dbdd19510b8c8b1d3a949a26a
6c098b9519f1b393c5eb3815ed149a4df4e212436d5387a7b494cffb9da275c0
GET /wp-content/uploads/2022/05/ribbon.png HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 5942
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Thu, 05 May 2022 16:41:41 GMT
ETag: "1736-5de466aa342b8"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2018/12/KBP.png
74.208.236.72200 OK 401 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2018/12/KBP.png
IP 74.208.236.72:0
File type PNG image data, 994 x 994, 8-bit/color RGBA, non-interlaced\012- data
Size 401 kB (400636 bytes)
Hash 7d1121402d5f4987833e550706a13107
0d05f55da542a27777b5c7879f707fa0cd1c4532
86ff69d74200f879edd30b46857f7431aab7d7d182b0189d575316a3a1d9a7eb
GET /wp-content/uploads/2018/12/KBP.png HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 400636
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Fri, 29 Apr 2022 08:03:26 GMT
ETag: "61cfc-5ddc67a27ac5e"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2018/12/ladakh2-370x370.jpg
74.208.236.72200 OK 27 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2018/12/ladakh2-370x370.jpg
IP 74.208.236.72:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 370x370, components 3\012- data
Hash 6ad168f8c152a63d268db770452ec89f
340382473241c0fe209e997ed0afc04956e652bf
44f4374a03e7d5cb51d4ff51701e56ebcf501ea0e6e6fa9b378a074f274f21ef
GET /wp-content/uploads/2018/12/ladakh2-370x370.jpg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 27086
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Tue, 08 Mar 2022 15:59:56 GMT
ETag: "69ce-5d9b7127d5700"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2022/03/slide4-370x370.jpg
74.208.236.72200 OK 52 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2022/03/slide4-370x370.jpg
IP 74.208.236.72:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 370x370, components 3\012- data
Hash c1a340802628deca6e4da4093260d39f
d3aac7b32f899add84254f29e24182d9260fa8b9
7f294d37056ac613e4d01aca286a57c09de4dbfa0991fe01eea3e80780333339
GET /wp-content/uploads/2022/03/slide4-370x370.jpg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 51605
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Tue, 08 Mar 2022 16:08:46 GMT
ETag: "c995-5d9b732147f80"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2018/12/pahalgam-1-370x370.jpg
74.208.236.72200 OK 44 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2018/12/pahalgam-1-370x370.jpg
IP 74.208.236.72:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 370x370, components 3\012- data
Hash 6b67c3797be56d585599526f4796c14f
5d4a3140367cc66ff4379c71abaa56176d1cd200
55793ddaa23da6ff8194870591c994d2108e5ea061d57926a5d06903b1b1053c
GET /wp-content/uploads/2018/12/pahalgam-1-370x370.jpg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 44220
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Tue, 08 Mar 2022 15:59:56 GMT
ETag: "acbc-5d9b7127d5700"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2015/02/sonmarg-370x370.jpg
74.208.236.72200 OK 32 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2015/02/sonmarg-370x370.jpg
IP 74.208.236.72:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 370x370, components 3\012- data
Hash de04de1ebda45ed83dbdbc60065e831d
3c5ae519bcbc6da3098070e88e09bee4797c9ebd
88658fdc3199efd2a4ddf857c0ba80a2fadc1a62d87292f70c1a7a42dd931259
GET /wp-content/uploads/2015/02/sonmarg-370x370.jpg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 31901
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Tue, 08 Mar 2022 15:34:48 GMT
ETag: "7c9d-5d9b6b89b1600"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/images/html/icon_pre.svg
74.208.236.72200 OK 1.7 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/images/html/icon_pre.svg
IP 74.208.236.72:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (765), with CRLF line terminators
Hash 54186dedd53ea0f2ea857fc7b022502e
9dff58b25a49884094a6e23593c51ed9acafd4e8
bb311fa5d209ad5b4f800edcd002010c83b89e20d17a61e9a81980855d94e6e3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/images/html/icon_pre.svg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Length: 1682
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "692-5de2a10f4baef"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2017/06/Honeymoon-Holidays-LP-Banner-1-580x400-1-680x500.jpg
74.208.236.72200 OK 65 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2017/06/Honeymoon-Holidays-LP-Banner-1-580x400-1-680x500.jpg
IP 74.208.236.72:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 680x500, components 3\012- data
Hash 664abd6d94f78b91ee5ab07303627805
6d9c451ef5366f4e4bc55244d0e59e12a31e7ca3
b2ce8e4ad545592fb95632a0fe6badc2d053ef9fb4e8dba8eca7c5de32738abf
GET /wp-content/uploads/2017/06/Honeymoon-Holidays-LP-Banner-1-580x400-1-680x500.jpg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 65380
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 16:28:08 GMT
ETag: "ff64-5d9dfb305f600"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2015/02/home-370x370.jpg
74.208.236.72200 OK 32 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2015/02/home-370x370.jpg
IP 74.208.236.72:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 370x370, components 3\012- data
Hash 91cbee02bb27d7d831e701ddc33d3af1
3ff90505804fe0d9fdc2763835eb4b465cd604d9
dfedc39c5863d1f82ecb3d47e1eab9aa1bfdc9e3015667d4be7ea33f5c557223
GET /wp-content/uploads/2015/02/home-370x370.jpg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 31986
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Wed, 09 Mar 2022 05:43:52 GMT
ETag: "7cf2-5d9c2951ad600"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/images/html/icon_next.svg
74.208.236.72200 OK 1.6 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/images/html/icon_next.svg
IP 74.208.236.72:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (670), with CRLF line terminators
Hash df992ccbda8413cd34b4c305425cc6ec
e03655cbd47daa95ffca3582b769c08efc7b6b03
926641d97ebc47e05bec324ad23918055b5f3179261cc2f4f8b4df5be23fba04
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/images/html/icon_next.svg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Length: 1597
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "63d-5de2a10f4ab4f"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2015/02/kv-370x370.png
74.208.236.72200 OK 311 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2015/02/kv-370x370.png
IP 74.208.236.72:0
File type PNG image data, 370 x 370, 8-bit/color RGBA, non-interlaced\012- data
Size 311 kB (310719 bytes)
Hash 8d2fd7229db040ef5bdb1b7c6e519a7f
defb2d8a420c87bec7b68d9a541201a86926e497
b223616e3a71837b2b4ea7b589af5072cb87ae2eb96284e59e1de2f423327354
GET /wp-content/uploads/2015/02/kv-370x370.png HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 310719
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Wed, 09 Mar 2022 05:43:52 GMT
ETag: "4bdbf-5d9c2951ad600"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2018/12/kashmir-hd-wallpaper-540x740.jpg
74.208.236.72200 OK 86 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2018/12/kashmir-hd-wallpaper-540x740.jpg
IP 74.208.236.72:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 540x740, components 3\012- data
Hash 71862d2ff734b4c690f0ca979949c4c6
320f1e2a2927db4471bee4d6be70c59a0eca5707
066af7465c36467e6b2d99aca124465499d013c3e899d6d173b2a533652e57a1
GET /wp-content/uploads/2018/12/kashmir-hd-wallpaper-540x740.jpg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 85877
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 17:23:22 GMT
ETag: "14f75-5d9e0788d9680"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2018/12/leh-540x740.jpg
74.208.236.72200 OK 60 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2018/12/leh-540x740.jpg
IP 74.208.236.72:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 540x740, components 3\012- data
Hash 53e21ee42d3aa1e0d56392fc409c8f19
26f6f32979b61d8213c6fc64a234204d52ddacc2
06f7f5d6da2601e1ea35eb2c26826c66c20805730fd0526e80881e156f3c21e8
GET /wp-content/uploads/2018/12/leh-540x740.jpg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 59924
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 17:15:26 GMT
ETag: "ea14-5d9e05c2e6780"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2018/12/honeymon-540x740.jpg
74.208.236.72200 OK 71 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2018/12/honeymon-540x740.jpg
IP 74.208.236.72:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 540x740, components 3\012- data
Hash 1145086a1d38c707a5957b0f059819cb
8f5339166ae953e1a8296f38924d251432a6ca38
856da53e36c02efdfc7a4ba50aa85d0bd0291562820136d4a547e7e11f1eb542
GET /wp-content/uploads/2018/12/honeymon-540x740.jpg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 70793
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 17:24:04 GMT
ETag: "11489-5d9e07b0e7500"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2018/12/kk-scaled-540x740.jpg
74.208.236.72200 OK 119 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2018/12/kk-scaled-540x740.jpg
IP 74.208.236.72:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 540x740, components 3\012- data
Size 119 kB (118684 bytes)
Hash 5799143ac83f43f2470764bcf36b37a1
e64a5f6c82dee619ccddd478216e55089b0e1fe4
886829ad9c808756fde34dcc2ddfd28c9bed3342b537bc74f0583b16315e2b3e
GET /wp-content/uploads/2018/12/kk-scaled-540x740.jpg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 118684
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 08:23:02 GMT
ETag: "1cf9c-5d9d8ec2ba580"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2018/12/family-tour-packages-540x740.jpg
74.208.236.72200 OK 57 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2018/12/family-tour-packages-540x740.jpg
IP 74.208.236.72:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 540x740, components 3\012- data
Hash 713c556b6bfd8c36dab6700228a942aa
e1a35f12ec1e9cdcb421958383292a076660c8ca
050b7d7400914d3ad0cba87fd70817b0152d12e89a363f006c531879978af063
GET /wp-content/uploads/2018/12/family-tour-packages-540x740.jpg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 57069
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 17:23:22 GMT
ETag: "deed-5d9e0788d9680"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/images/html/icon_next_2.svg
74.208.236.72200 OK 988 B URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/images/html/icon_next_2.svg
IP 74.208.236.72:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash fb655570e233174dbd5fa419dc31a090
9bb08fba32b2d2048f6a6990119d94ff20ae31f0
6a49d45ca018183142b747f6bad3c1577ebaff9f8672b3e16e9146a4e20f483c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/images/html/icon_next_2.svg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/sin-tour.css?ver=6.1.1
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Length: 988
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "3dc-5de2a10f4baef"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2022/03/kashmir-tourism-places2-680x500.jpg
74.208.236.72200 OK 63 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2022/03/kashmir-tourism-places2-680x500.jpg
IP 74.208.236.72:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 680x500, components 3\012- data
Hash d10248fd7f62387e7d749f377c2e1664
44fd90dd7eb2fae71b8d4834747cf71c02e074de
de7514c37e2bc578edaeee4a00f931783393da6a5915e0aca40fd5138bba4e27
GET /wp-content/uploads/2022/03/kashmir-tourism-places2-680x500.jpg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 62710
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 16:59:26 GMT
ETag: "f4f6-5d9e022f5f780"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/fonts/nuFlD-vYSZviVYUb_rj3ij__anPXBYf9lW4e5g.woff2
74.208.236.72200 OK 27 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/fonts/nuFlD-vYSZviVYUb_rj3ij__anPXBYf9lW4e5g.woff2
IP 74.208.236.72:0
File type Web Open Font Format (Version 2), TrueType, length 26828, version 1.0\012- data
Hash df1d9fe12078f6d528730d21f8a653f8
6c7271fef87ad5cf9d8b33164ff5abf62f424cee
f7ba0cb6b9eaf1d9082e64213b35c76be267611d788d537d15372e5731733968
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/fonts/nuFlD-vYSZviVYUb_rj3ij__anPXBYf9lW4e5g.woff2 HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/style.css?ver=6.1.1
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Length: 26828
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:17 GMT
ETag: "68cc-5de2a10f101bf"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2022/03/Jammu-And-Kashmir-Jammu-Kashmir-Wallpaper-1080p-Hd--680x500.jpg
74.208.236.72200 OK 103 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2022/03/Jammu-And-Kashmir-Jammu-Kashmir-Wallpaper-1080p-Hd--680x500.jpg
IP 74.208.236.72:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 680x500, components 3\012- data
Size 103 kB (102652 bytes)
Hash 03978820f13c74b21967737e2e10e05c
cff2a65c2e6f4ee45d241f607226c9c256b05428
a7771fe47b7c8fb44352a3e0ee52773b643f2505d22b597d6a0cc47755f9cfe4
GET /wp-content/uploads/2022/03/Jammu-And-Kashmir-Jammu-Kashmir-Wallpaper-1080p-Hd--680x500.jpg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 102652
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 17:15:26 GMT
ETag: "190fc-5d9e05c2e6780"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/themes/traveler/v2/images/html/icon_pre_2.svg
74.208.236.72200 OK 1.1 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/images/html/icon_pre_2.svg
IP 74.208.236.72:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash e642008812531166229b97f68bb698f4
315ae328739cad125f4ce19b0bfd69594a403135
c415e8be7f58de8b95f0420dec1aa5dc75474482eb27e004b19fff820c381af4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/images/html/icon_pre_2.svg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/wp-content/themes/traveler/v2/css/sin-tour.css?ver=6.1.1
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Length: 1078
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "436-5de2a10f4baef"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2022/03/leh-2.jpg
74.208.236.72200 OK 110 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2022/03/leh-2.jpg
IP 74.208.236.72:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 762x762, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=3, software=paint.net 4.3.8], baseline, precision 8, 1350x759, components 3\012- data
Size 110 kB (109769 bytes)
Hash d30a8b54a4324a68767755b364f04d91
056aef641e9dad933d55cfd94ea83275280905b2
09413769a8ab0e8656c296b06b1c5cac704532b51b3b27bfe27555b9c43cbc7a
GET /wp-content/uploads/2022/03/leh-2.jpg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 109769
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 17:27:52 GMT
ETag: "1acc9-5d9e088a57600"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2022/03/kashmirawall-1.jpg
74.208.236.72200 OK 167 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2022/03/kashmirawall-1.jpg
IP 74.208.236.72:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 762x762, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=3, software=paint.net 4.3.8], baseline, precision 8, 1350x759, components 3\012- data
Size 167 kB (166587 bytes)
Hash bb5256a3d6ac84b46084d79416ef8159
605375cc9a3195d742b0915b9e9ec3fa8695e441
07a5f92771334b24ac3d6cade1b0e52fda646c275733c28e06f2f7878a98cd41
GET /wp-content/uploads/2022/03/kashmirawall-1.jpg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 166587
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 17:29:20 GMT
ETag: "28abb-5d9e08de43c00"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2022/03/tulip-festival.webp
74.208.236.72200 OK 203 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2022/03/tulip-festival.webp
IP 74.208.236.72:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x1080, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 203 kB (203372 bytes)
Hash 31c0682bb14c9be4d8bc94d5a9aead71
78a7338583077c46ac0830ba5348147f11d00204
7586404662a7fab636b09548a1aef1d94ed46f070ac5faa12ec8aa7231fc9edd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/03/tulip-festival.webp HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/webp
Content-Length: 203372
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Wed, 09 Mar 2022 12:48:54 GMT
ETag: "31a6c-5d9c885247980"
Accept-Ranges: bytes
kashmirdreamtrips.com/wp-content/uploads/2022/03/sll.jpg
74.208.236.72200 OK 929 kB URL HTTP/1.1 kashmirdreamtrips.com/wp-content/uploads/2022/03/sll.jpg
IP 74.208.236.72:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2022:03:10 13:05:06], baseline, precision 8, 1600x600, components 3\012- data
Size 929 kB (928855 bytes)
Hash 90ec768b895ea9456c2b333000e69290
9bbed88aeddb00243a7b88daddc0562d0789d6bb
bd03b54a6f0c42ea68258463757abca2d117e320fc165d84d2a1495fb7b869e8
GET /wp-content/uploads/2022/03/sll.jpg HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 928855
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:06 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 08:35:30 GMT
ETag: "e2c57-5d9d918c13880"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ebd276a987cbfec50bf95ce593a6dbc6
0b03e0bb38915c84e23d9369d7f2947d6d73bafb
de4074bc2d166b559380d23f3d9e70e7eda87fd0fef61d5104db6d2ba221f45c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ebd276a987cbfec50bf95ce593a6dbc6
0b03e0bb38915c84e23d9369d7f2947d6d73bafb
de4074bc2d166b559380d23f3d9e70e7eda87fd0fef61d5104db6d2ba221f45c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4289
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:51:07 GMT
Last-Modified: Fri, 02 Dec 2022 10:39:38 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
lh3.googleusercontent.com/-8hepWJzFXpE/AAAAAAAAAAI/AAAAAAAAAAA/I80WzYfIxCQ/s56-c/114307615494839964028.jpg
142.250.74.97200 OK 349 B URL HTTP/2 lh3.googleusercontent.com/-8hepWJzFXpE/AAAAAAAAAAI/AAAAAAAAAAA/I80WzYfIxCQ/s56-c/114307615494839964028.jpg
IP 142.250.74.97:0
File type PNG image data, 56 x 56, 8-bit colormap, non-interlaced\012- data
Hash f5044a6ee0006def6980c0d298f19c3c
f75d823f9b26bd028f5ad7e043d7e8503c409e81
c8764f346ea7f9f4e79e66b9890eec9f62026a2f9a6b5c829a7166db4894e684
GET /-8hepWJzFXpE/AAAAAAAAAAI/AAAAAAAAAAA/I80WzYfIxCQ/s56-c/114307615494839964028.jpg HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename=""
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 349
x-xss-protection: 0
date: Fri, 02 Dec 2022 10:49:58 GMT
expires: Sat, 03 Dec 2022 10:49:58 GMT
cache-control: public, max-age=86400, no-transform
content-type: image/png
age: 3669
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ebd276a987cbfec50bf95ce593a6dbc6
0b03e0bb38915c84e23d9369d7f2947d6d73bafb
de4074bc2d166b559380d23f3d9e70e7eda87fd0fef61d5104db6d2ba221f45c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ebd276a987cbfec50bf95ce593a6dbc6
0b03e0bb38915c84e23d9369d7f2947d6d73bafb
de4074bc2d166b559380d23f3d9e70e7eda87fd0fef61d5104db6d2ba221f45c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/sdk.js
157.240.240.1200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 157.240.240.1:0
File type ASCII text, with very long lines (1957)
Hash 50d4a8332d3b6abe65fb4b9c4c641d35
c2053a9fdf4e42ab52cdb732edae5c5f9d287a90
7f98d4d2d03181329ad01998416ad383b427cc586e3df04b2e810788358c8577
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: c631a67c247a82adb2354043b837eba3
etag: "1421b2ac4b279e09721a6b3a744b1eaa"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 02 Dec 2022 12:04:27 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: UNSoMy07ar5l+0ucTGQdNQ==
x-fb-debug: XK0ZssWmwTfFo4cLbbdIoAJJV/HU7FeU+xrjRh36GwN5ejI0+ypKKtzBtVYAmiNzwS1Bpuuc0qmj4w2wymsk2w==
content-length: 1684
x-fb-trip-id: 1679558926
date: Fri, 02 Dec 2022 11:51:07 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ebd276a987cbfec50bf95ce593a6dbc6
0b03e0bb38915c84e23d9369d7f2947d6d73bafb
de4074bc2d166b559380d23f3d9e70e7eda87fd0fef61d5104db6d2ba221f45c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:51:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4289
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:51:07 GMT
Last-Modified: Fri, 02 Dec 2022 10:39:38 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
lh3.googleusercontent.com/a/AATXAJxClMpVcsuMcPtNbVsoZ9KCaFuq_iplGZC2hPra=s56-c0x00000000-cc-rp-mo-ba3
142.250.74.97200 OK 2.5 kB URL HTTP/2 lh3.googleusercontent.com/a/AATXAJxClMpVcsuMcPtNbVsoZ9KCaFuq_iplGZC2hPra=s56-c0x00000000-cc-rp-mo-ba3
IP 142.250.74.97:0
File type PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 806c66f6888be7203b75dd0839fd324f
b1435515cce2071c76f2c5efeac9945c98b10296
2f79e00cf91771abf5c8021db35a28e92d8d74976ab5af9f7c254b5343d28175
GET /a/AATXAJxClMpVcsuMcPtNbVsoZ9KCaFuq_iplGZC2hPra=s56-c0x00000000-cc-rp-mo-ba3 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Sat, 03 Dec 2022 11:51:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 11:51:07 GMT
server: fife
content-length: 2485
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a/AATXAJwRKmPxFTXWd89hNqTDiY7-V2nEnoMx7z_ZpBeG=s56-c0x00000000-cc-rp-mo-ba2
142.250.74.97200 OK 2.6 kB URL HTTP/2 lh3.googleusercontent.com/a/AATXAJwRKmPxFTXWd89hNqTDiY7-V2nEnoMx7z_ZpBeG=s56-c0x00000000-cc-rp-mo-ba2
IP 142.250.74.97:0
File type PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash a4a8dc6650061faaca52e242d1448178
72b80c580f4ce34b512c10f4171af95064b9d861
80834971032554a5177b776ef29a5061b9a7e4419fd8000f5659dcd37853fcd9
GET /a/AATXAJwRKmPxFTXWd89hNqTDiY7-V2nEnoMx7z_ZpBeG=s56-c0x00000000-cc-rp-mo-ba2 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Sat, 03 Dec 2022 11:51:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 11:51:07 GMT
server: fife
content-length: 2589
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/AOh14Ghj3J1v6K2DjAgBCp6A8uvLjmnya01SPpPaS7ykYQ=s56-c0x00000000-cc-rp-mo
142.250.74.97200 OK 7.8 kB URL HTTP/2 lh3.googleusercontent.com/a-/AOh14Ghj3J1v6K2DjAgBCp6A8uvLjmnya01SPpPaS7ykYQ=s56-c0x00000000-cc-rp-mo
IP 142.250.74.97:0
File type PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash ec1aaec61939b3954a3d55ef171e9d29
9d54b171f49b4b0f6ec41b4147b1737bcf78ec60
a9dde7e86803457f5a27c152f8b3440bd1cfb7ebce8df833e1c797f7b9ef2ac5
GET /a-/AOh14Ghj3J1v6K2DjAgBCp6A8uvLjmnya01SPpPaS7ykYQ=s56-c0x00000000-cc-rp-mo HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1b31"
expires: Sat, 03 Dec 2022 11:51:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 11:51:07 GMT
server: fife
content-length: 7815
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a/AATXAJxyS8Dg4stjRnYIMNQTYUzHawdP2nwxleP1QcAk=s56-c0x00000000-cc-rp-mo-ba3
142.250.74.97200 OK 2.5 kB URL HTTP/2 lh3.googleusercontent.com/a/AATXAJxyS8Dg4stjRnYIMNQTYUzHawdP2nwxleP1QcAk=s56-c0x00000000-cc-rp-mo-ba3
IP 142.250.74.97:0
File type PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 637f902eaa19c7167424a7e2fcc1e5fa
2f229b975adff5a198d4c8aca83f1820f34b3794
806c94da97290d82848cc1eee2278980f17595218a5c2a8ca0f7ec8353548c41
GET /a/AATXAJxyS8Dg4stjRnYIMNQTYUzHawdP2nwxleP1QcAk=s56-c0x00000000-cc-rp-mo-ba3 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Sat, 03 Dec 2022 11:51:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 11:51:07 GMT
server: fife
content-length: 2458
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js?hash=be3c1838ceccee014c809ecb44dae08c
157.240.240.1200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=be3c1838ceccee014c809ecb44dae08c
IP 157.240.240.1:0
File type ASCII text, with very long lines (18530)
Hash 3f1027230d55d7299c85a87934499b21
2a3a1de10523ae00e48a4c44af7a5eae135521c1
428e4f5ad9db1e3022c9d53569443fc7c6b321ff4dc7aebe5c4ae8f4aedfe0e4
GET /en_US/sdk.js?hash=be3c1838ceccee014c809ecb44dae08c HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://kashmirdreamtrips.com
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: adbd087e678e1176a375c4aac8daf073
etag: "b9b393eb16db0d9ae1269fce3cec661d"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 02 Dec 2023 11:30:38 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: PxAnIw1V1ymchah5NEmbIQ==
x-fb-debug: kYH2ZRHhP8dHHK7fDgeyOOKUsfrzqiH5Fi7Q+z1lvORHFkyGuxPRzk/v+alkjC+qNllGJNDmOzVETEpiuE1lZw==
priority: u=3,i
content-length: 88359
x-fb-trip-id: 1679558926
date: Fri, 02 Dec 2022 11:51:07 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/custom.js
74.208.236.72200 OK 0 B URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/custom.js
IP 74.208.236.72:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/custom.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 196983
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "30177-5de2a10f46c80"
Accept-Ranges: bytes
fonts.googleapis.com/css?family=Poppins%3A400%2C500%2C600&ver=6.1.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins%3A400%2C500%2C600&ver=6.1.1
IP 142.250.74.106:0
GET /css?family=Poppins%3A400%2C500%2C600&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 11:51:03 GMT
date: Fri, 02 Dec 2022 11:51:03 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
nh.aliftechies.com/wp-content/uploads/2022/03/ladakh.jpg?id=8363
74.208.236.218404 Not Found 0 B URL HTTP/1.1 nh.aliftechies.com/wp-content/uploads/2022/03/ladakh.jpg?id=8363
IP 74.208.236.218:0
GET /wp-content/uploads/2022/03/ladakh.jpg?id=8363 HTTP/1.1
Host: nh.aliftechies.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://seaturtletravels.in/wp-json/>; rel="https://api.w.org/"
Set-Cookie: PHPSESSID=65e42d9392e0c8518e34400520bd6aa1; path=/
Content-Encoding: gzip
s.w.org/images/core/emoji/14.0.0/svg/1f642.svg
192.0.77.48200 OK 0 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f642.svg
IP 192.0.77.48:0
GET /images/core/emoji/14.0.0/svg/1f642.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 11:51:05 GMT
content-type: image/svg+xml
last-modified: Tue, 12 Apr 2022 03:50:59 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: br
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/jquery.mb.YTPlayer.min.js
74.208.236.72200 OK 0 B URL HTTP/1.1 kashmirdreamtrips.com/wp-content/themes/traveler/v2/js/jquery.mb.YTPlayer.min.js
IP 74.208.236.72:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/traveler/v2/js/jquery.mb.YTPlayer.min.js HTTP/1.1
Host: kashmirdreamtrips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kashmirdreamtrips.com/
Cookie: PHPSESSID=6a6c9b30d7643bf125e2f95c986361a8
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 59460
Connection: keep-alive
Keep-Alive: timeout=15
Date: Fri, 02 Dec 2022 11:51:05 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 06:52:18 GMT
ETag: "e844-5de2a10f46c80"
Accept-Ranges: bytes