r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aabe410b4bbe4d8beb0e4561d3aa158e
e1788632902ddea62cdd9e7ad6009a75ffb69788
ad535e27b201e92670770b2b868c58f7c05633ec66490a41ef4592f062834c1f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD535E27B201E92670770B2B868C58F7C05633EC66490A41EF4592F062834C1F"
Last-Modified: Wed, 09 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13712
Expires: Thu, 10 Nov 2022 18:34:53 GMT
Date: Thu, 10 Nov 2022 14:46:21 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a19a5555cc9ea92581b0cc504cb64345
01a86ce33d5eb33420ed76266360f32c62a96f31
9ebd48b4053bb4a7a27718670c44075b1f35d037be7fd16750fcbc3ffd68b18c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1174
Cache-Control: max-age=158660
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 14:46:21 GMT
Etag: "636cd2eb-1d7"
Expires: Sat, 12 Nov 2022 10:50:41 GMT
Last-Modified: Thu, 10 Nov 2022 10:31:07 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a19a5555cc9ea92581b0cc504cb64345
01a86ce33d5eb33420ed76266360f32c62a96f31
9ebd48b4053bb4a7a27718670c44075b1f35d037be7fd16750fcbc3ffd68b18c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1174
Cache-Control: max-age=158660
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 14:46:21 GMT
Etag: "636cd2eb-1d7"
Expires: Sat, 12 Nov 2022 10:50:41 GMT
Last-Modified: Thu, 10 Nov 2022 10:31:07 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2b57492bf85f4ae6abbd1641b17dc9ab
008e71ec05d47bf025ca64e17da2ea1bd8e71111
17894427c471f7fa02ca274795dc55df1bfc99d7bd83f9ee36249394035110fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17894427C471F7FA02CA274795DC55DF1BFC99D7BD83F9EE36249394035110FD"
Last-Modified: Wed, 09 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6253
Expires: Thu, 10 Nov 2022 16:30:34 GMT
Date: Thu, 10 Nov 2022 14:46:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 2bP91wPRd9llRRhEztWqTgu/WmS/NzLHRkP+SovGzTV2aT+iYcJDUBcE1wlHTf3uRuAB05fbLpg=
x-amz-request-id: VZK5G68Q82F2103H
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 10 Nov 2022 13:49:25 GMT
age: 3416
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 10 Nov 2022 14:46:21 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald%3A400&display=swap&ver=6.1
142.250.74.10200 OK 508 B URL HTTP/1.1 fonts.googleapis.com/css?family=Oswald%3A400&display=swap&ver=6.1
IP 142.250.74.10:0
Hash 0fad5706604122b2d564f96aa8737e34
e5b3356ff94569474daef87acc92e71fe26daa88
4b8b0ecf50c67a23d4b1e60b2c9c2e94599fa254cd9fe87269ed12c5eada451b
GET /css?family=Oswald%3A400&display=swap&ver=6.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 10 Nov 2022 14:46:22 GMT
Date: Thu, 10 Nov 2022 14:46:22 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 83b99092f19a38763c0b6ffc5e05e5aa
4cacf0a4adc46e28bc867d666a3fb45738dd1501
168478f1e03d83548fbfeed6dfad20ef23cb5a1dbf18f7312e5cf6dd290e9339
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 14:46:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 081ea13ba4390a4baab25cf57c2672f3
30cc9c329228e3d7bc6041f1aa553f06f8136eed
5a48c189581edd8ae4a4e58e2d54359bb75ba769828436394e4c256fe861814e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5189
Cache-Control: max-age=157620
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 14:46:22 GMT
Etag: "636cbf2d-1d7"
Expires: Sat, 12 Nov 2022 10:33:22 GMT
Last-Modified: Thu, 10 Nov 2022 09:06:53 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 83b99092f19a38763c0b6ffc5e05e5aa
4cacf0a4adc46e28bc867d666a3fb45738dd1501
168478f1e03d83548fbfeed6dfad20ef23cb5a1dbf18f7312e5cf6dd290e9339
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 14:46:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 83b99092f19a38763c0b6ffc5e05e5aa
4cacf0a4adc46e28bc867d666a3fb45738dd1501
168478f1e03d83548fbfeed6dfad20ef23cb5a1dbf18f7312e5cf6dd290e9339
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 14:46:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bokateria.com/
162.241.85.85200 OK 59 kB IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (30124), with CRLF, LF line terminators
Hash cac325d12393b071cdae2e16d386b02e
d1d45582ee52d844bed3ede0a3515dadc5c66858
ab312eb9354bc175d8aed44937e0f0386899a669a5febb5de41da69188efd8e0
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:21 GMT
Server: Apache
Link: <https://bokateria.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
bokateria.com/wp-content/plugins/convertkit/resources/frontend/css/broadcasts.css?ver=1.9.8.5
162.241.85.85200 OK 404 B URL HTTP/1.1 bokateria.com/wp-content/plugins/convertkit/resources/frontend/css/broadcasts.css?ver=1.9.8.5
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash b86c91c0e9f14db80b4157308791c949
4eb849960f46c70f10c2d45ba88bee544c3fea9f
9f873e99d0363552c9f3befe29ce8b6c3ce2de9db2e23f110ff152fea7399bae
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/convertkit/resources/frontend/css/broadcasts.css?ver=1.9.8.5 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:22 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 18 Oct 2022 20:10:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 404
Keep-Alive: timeout=5, max=75
Content-Type: text/css
bokateria.com/wp-includes/css/classic-themes.min.css?ver=1
162.241.85.85200 OK 189 B URL HTTP/1.1 bokateria.com/wp-includes/css/classic-themes.min.css?ver=1
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:22 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 02 Nov 2022 07:42:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 189
Keep-Alive: timeout=5, max=75
Content-Type: text/css
push.services.mozilla.com/
100.20.30.105101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 100.20.30.105:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HDpl1VC2kJeXbEJkE7hTfg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 81uSLzA2ksWEyJrYLEEr0lN7zsQ=
bokateria.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1
162.241.85.85200 OK 18 kB URL HTTP/1.1 bokateria.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (47826)
Hash ce0e5ecadb8556e34e8d0f0592d2a2c3
51f1555f20e4f6b175956c418043ded76723b319
47e01f663f19f36c4210924f522c89aebeefff2514281acae0d2682c73b3a86e
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:22 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 02 Nov 2022 07:42:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css
bokateria.com/wp-content/themes/soledad/css/font-awesome.4.7.0.swap.min.css?ver=4.7.0
162.241.85.85200 OK 7.1 kB URL HTTP/1.1 bokateria.com/wp-content/themes/soledad/css/font-awesome.4.7.0.swap.min.css?ver=4.7.0
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30855), with CRLF line terminators
Hash a529dbc4f2ecd144027c0769b03dcdad
a0040e82e1c965b3e21f8d6c3796e7f004a6c9f0
052809942e63b4e301bafbb249169dcb0581f00b26e72dcfc6281bfdd5ed96ed
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/soledad/css/font-awesome.4.7.0.swap.min.css?ver=4.7.0 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:22 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7129
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
bokateria.com/wp-content/themes/soledad/css/penci-icon.css?ver=8.2.7
162.241.85.85200 OK 1.3 kB URL HTTP/1.1 bokateria.com/wp-content/themes/soledad/css/penci-icon.css?ver=8.2.7
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6212)
Hash f3d583513a245af0b447bdfec06c072f
18eee7db02091976d360da809944f7a3ee80e646
a8060033fb74bf935b7d846a280487f70cc84e0851a7d5fc0f303a8753133025
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/soledad/css/penci-icon.css?ver=8.2.7 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:22 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1298
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
bokateria.com/wp-content/themes/soledad/style.css?ver=8.2.7
162.241.85.85200 OK 440 B URL HTTP/1.1 bokateria.com/wp-content/themes/soledad/style.css?ver=8.2.7
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 9f4de761512be7f11f90a6588da023ee
e13d0ae28eeedab1bfa53a7bd1f4f12aa3b75785
4bd535f91e35eb5270b7727f01659a77bc7aa2044e405e369034c94594e228f7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/soledad/style.css?ver=8.2.7 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:22 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 440
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
bokateria.com/wp-content/themes/soledad/css/social-counter.css?ver=8.2.7
162.241.85.85200 OK 946 B URL HTTP/1.1 bokateria.com/wp-content/themes/soledad/css/social-counter.css?ver=8.2.7
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 9b357d7f3a818075fb5293272dd8b7ed
76797eccbf959a3d29173dd731566dba589bc59b
598e49c0ca1cd5024b82c9cfe8170508140c80ee0c604fa5a03bae048aa969d8
GET /wp-content/themes/soledad/css/social-counter.css?ver=8.2.7 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:22 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 946
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
bokateria.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
162.241.85.85409 Conflict 83 B URL HTTP/1.1 bokateria.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 409 Conflict
Date: Thu, 10 Nov 2022 14:46:22 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
bokateria.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
162.241.85.85200 OK 4.0 kB URL HTTP/1.1 bokateria.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19233)
Hash 2701214b028ad24fa347df8335b36d12
156bc8a7ad2657f00881890637f07c6052636499
9a6e62615ceeec7a9763e4f9614e4715d04fd87873b23db2b3ead06c996cad27
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4008
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
bokateria.com/wp-content/uploads/elementor/css/post-6.css?ver=1665819296
162.241.85.85200 OK 356 B URL HTTP/1.1 bokateria.com/wp-content/uploads/elementor/css/post-6.css?ver=1665819296
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1117), with no line terminators
Hash 8292e3a43c45c385022f88fd6769af00
ea1672f5bbba3cab77ac79d6197d5f10cb475a7a
8d091683df27ae82b39f9cca8fa74ecf8333dd58cd9d79f2b3da23d8fef50f31
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-6.css?ver=1665819296 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:34:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 356
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
bokateria.com/wp-content/uploads/elementor/css/global.css?ver=1665819296
162.241.85.85200 OK 1.1 kB URL HTTP/1.1 bokateria.com/wp-content/uploads/elementor/css/global.css?ver=1665819296
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6697)
Hash 7925a5df5ac6e4c7abb8d166d2d59e79
5a01c01c75e565a3248d9736b1dbf3d8e538034c
22d0e4d10ed3b16e146e95047de05f9033bdd9c8b646ee9ff3fb7b60ceb6035c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/global.css?ver=1665819296 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:34:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1122
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
bokateria.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
162.241.85.85200 OK 4.6 kB URL HTTP/1.1 bokateria.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 14:36:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4618
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
bokateria.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8
162.241.85.85200 OK 22 kB URL HTTP/1.1 bokateria.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65497)
Hash 642dc3226e126a7e4d0f5bc69bded269
7223e14589b58f6c0128cf87df9d4c9433ba9b7f
c6edac26672e1cf794085d0cb1630ce969c70653617adc9638188532df28ee4a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
bokateria.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1
162.241.85.85200 OK 5.3 kB URL HTTP/1.1 bokateria.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Tue, 12 Apr 2022 11:26:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5321
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
bokateria.com/wp-content/plugins/convertkit/resources/frontend/js/broadcasts.js?ver=1.9.8.5
162.241.85.85200 OK 934 B URL HTTP/1.1 bokateria.com/wp-content/plugins/convertkit/resources/frontend/js/broadcasts.js?ver=1.9.8.5
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash aacfc84b48055d766b4b6e248ee786b3
fba70c71ede4c34934b47fcf0ad7efac985b902f
8a90a510a9bf83f1b5cab9a6e441601ff686678563cf82191d2e9d7d791ed13a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/convertkit/resources/frontend/js/broadcasts.js?ver=1.9.8.5 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 20:10:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 934
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1
142.250.74.10200 OK 1.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1
IP 142.250.74.10:0
Hash 2e490fa09df64168161b012fb3443c5f
069d61217f3321d6acab3d64438e3163eb8648df
f335876b0a521ca3689a14b5c50d64c3a442062031462a2e6ed511d57fbac3c9
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bokateria.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 10 Nov 2022 14:46:22 GMT
date: Thu, 10 Nov 2022 14:46:22 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bokateria.com/wp-content/themes/soledad/main.css?ver=8.2.7
162.241.85.85200 OK 227 kB URL HTTP/1.1 bokateria.com/wp-content/themes/soledad/main.css?ver=8.2.7
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Size 227 kB (226710 bytes)
Hash 0d3ffe2e743735eae0bde3c3ad0a91a4
78073f68157d3e29cf20635fc01fd3145e90b1cc
f5f1d63e7f89816633ac2ad231b739eb47081eda3e4c14e8e3cd7dc2e45f234e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/soledad/main.css?ver=8.2.7 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:22 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 15 Oct 2022 07:14:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css
bokateria.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
162.241.85.85409 Conflict 83 B URL HTTP/1.1 bokateria.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 409 Conflict
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
bokateria.com/wp-content/plugins/convertkit/resources/frontend/js/convertkit.js?ver=1.9.8.5
162.241.85.85200 OK 2.4 kB URL HTTP/1.1 bokateria.com/wp-content/plugins/convertkit/resources/frontend/js/convertkit.js?ver=1.9.8.5
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 2036c67b67cf16742850326e3bf67320
4a4e874a5bd86466fc37b090193d7d49d6b9524b
9c9accb49882a725664808964d1bc841e36e75fdc68f68829416658b87e5489d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/convertkit/resources/frontend/js/convertkit.js?ver=1.9.8.5 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 20:10:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2389
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
bokateria.com/wp-content/plugins/penci-review/js/jquery.easypiechart.min.js?ver=1.0
162.241.85.85200 OK 1.7 kB URL HTTP/1.1 bokateria.com/wp-content/plugins/penci-review/js/jquery.easypiechart.min.js?ver=1.0
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3765)
Hash ae7aba3aa801837d7d6408e02fb1d6a5
917bc7c3fc5df3bae78fa32e82f7e79118e84f94
bff748b8ebbfbab2558db905bd0b9ca9a88f456d86e1dea4abd017611344a285
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/penci-review/js/jquery.easypiechart.min.js?ver=1.0 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1738
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
bokateria.com/wp-content/plugins/penci-shortcodes/assets/play.js?ver=5.3
162.241.85.85200 OK 283 B URL HTTP/1.1 bokateria.com/wp-content/plugins/penci-shortcodes/assets/play.js?ver=5.3
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 503c85b42436078cd3ed0dfa0309a2fd
c0cf90e0f226271530a5fbae21902f13fef7b39e
c00bd0c09cdc3c209f010ef302b293d9bf74dcf806c91d57eca1cacfe79c382d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/penci-shortcodes/assets/play.js?ver=5.3 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:43 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 283
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
bokateria.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
162.241.85.85200 OK 39 kB URL HTTP/1.1 bokateria.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash 32f58a61f7c5a7e10f8b2dcf8e9a8e34
865c25589283ab1debd45bdfa6c4d8c6ecf15ad3
481cb2216fbdb0797af8c61b69c0bda2c10d025f7b11f2cdfac382d35dc45d63
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 02 Nov 2022 07:42:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: application/javascript
bokateria.com/wp-content/themes/soledad/js/main.js?ver=8.2.7
162.241.85.85200 OK 22 kB URL HTTP/1.1 bokateria.com/wp-content/themes/soledad/js/main.js?ver=8.2.7
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 501cc7341a5d63bb0a2426a93a2b971f
163e43a21398c952608cd12d7b2972c7fdfd3bdf
eb0b64248f8df4e68822ddf92f0dd414a79e4369a65dd4a976108a1b009a8df4
GET /wp-content/themes/soledad/js/main.js?ver=8.2.7 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
bokateria.com/wp-content/plugins/penci-review/js/review.js?ver=1.0
162.241.85.85200 OK 363 B URL HTTP/1.1 bokateria.com/wp-content/plugins/penci-review/js/review.js?ver=1.0
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 6c60a0a86e7d1534ada40b4859c7b38a
ecb473e684771c4e17178d27f50c4f71ade6341b
df0ddb9d6d2a4992ffa996568dc4e859cc28b5327ac2ec4a637e9ffb54f219bb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/penci-review/js/review.js?ver=1.0 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 15 Oct 2022 07:14:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 363
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
bokateria.com/wp-content/themes/soledad/js/penci-lazy.js?ver=8.2.7
162.241.85.85200 OK 3.5 kB URL HTTP/1.1 bokateria.com/wp-content/themes/soledad/js/penci-lazy.js?ver=8.2.7
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8290)
Hash e3530b58ce86eeac3fbdbc98fa341b65
c26b6fea1735e32d9ccef8a9d53fae513895b501
4e202f7a8c03641fe75418a4c72bcaf5ee5541ff6ded2c84f19bdd740c93cbb2
GET /wp-content/themes/soledad/js/penci-lazy.js?ver=8.2.7 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 15 Oct 2022 07:14:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3470
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
bokateria.com/wp-content/themes/soledad/js/post-like.js?ver=8.2.7
162.241.85.85200 OK 472 B URL HTTP/1.1 bokateria.com/wp-content/themes/soledad/js/post-like.js?ver=8.2.7
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash a79e19ecd4caae0abb4ebf02da0a2ee9
3b357aaadbd53f1147997d9808c02daa3810b240
e22754a357de3e1ee581c90bd63d73e07f3b305538a1661c323233825960bdf6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/soledad/js/post-like.js?ver=8.2.7 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 472
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
bokateria.com/wp-content/plugins/penci-recipe/js/jquery.rateyo.min.js?ver=3.3
162.241.85.85200 OK 4.5 kB URL HTTP/1.1 bokateria.com/wp-content/plugins/penci-recipe/js/jquery.rateyo.min.js?ver=3.3
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9050)
Hash 430411f5a6c0ec97762e799b18df0f9a
795a3b5da8d3a1b77e43e51edae9e6c719c2fdec
0abdbdd2b9a5171803f40ae215753d0218a16866b2f05f04921949028ec64b15
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/penci-recipe/js/jquery.rateyo.min.js?ver=3.3 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4532
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
bokateria.com/wp-content/plugins/penci-recipe/js/rating_recipe.js?ver=3.3
162.241.85.85200 OK 524 B URL HTTP/1.1 bokateria.com/wp-content/plugins/penci-recipe/js/rating_recipe.js?ver=3.3
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash af7929d921d8a59dd8b982981ab373bd
eef307db47460f22c2886152722e504b90b40034
63b3932285fbbf2f406012bad14f4cbfe5cb23bf5163796e2bcfb2a8214313cc
GET /wp-content/plugins/penci-recipe/js/rating_recipe.js?ver=3.3 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 524
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
soledad.pencidesign.net/soledad-book/wp-content/uploads/sites/20/2017/07/bannersidebar.jpg
172.67.128.42200 OK 24 kB URL HTTP/2 soledad.pencidesign.net/soledad-book/wp-content/uploads/sites/20/2017/07/bannersidebar.jpg
IP 172.67.128.42:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 340x283, components 3\012- data
Hash ad6391bff5e0cf9755a5e3f7b64b91dc
854cfc5b907c827b74ee5216a5ecb8f40db89d7d
9777b265fae98793125d4686649cc5b7c1dedf63c66c2e8a7fc56f0b902fc289
GET /soledad-book/wp-content/uploads/sites/20/2017/07/bannersidebar.jpg HTTP/1.1
Host: soledad.pencidesign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bokateria.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 10 Nov 2022 14:46:23 GMT
content-type: image/jpeg
content-length: 23779
last-modified: Mon, 17 Jul 2017 18:02:36 GMT
etag: "5ce3-5548734296700"
vary: User-Agent, Accept-Encoding
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EiYWi9qbF1u0saGQuEndGH%2B7pNycObDCTCz8C6AjCNudLkmXkkUd%2FBdo7d7ZhO9fbxQsJ45%2Fj6aVL1cPwyWRu%2BoWWtXbWcLFofFpgCYRgojFYKkWbE3DbdP2FkMkr75%2FQrj0LxIPORCIHg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 767f93c88c6eb4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bokateria.com/wp-content/plugins/penci-portfolio/js/penci-portfolio.js?ver=1.0
162.241.85.85200 OK 451 B URL HTTP/1.1 bokateria.com/wp-content/plugins/penci-portfolio/js/penci-portfolio.js?ver=1.0
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash fcc716b0c961040d92fe6d968de85601
8e12a9e5d84a326e7f95baf91f1de961ff29ca33
7d32ee08bf2ba5788c4e86501237616d39d142bd3cbc049162af4ef33e06f069
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/penci-portfolio/js/penci-portfolio.js?ver=1.0 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 451
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
bokateria.com/wp-content/plugins/penci-recipe/css/recipe.css?ver=3.3
162.241.85.85200 OK 5.9 kB URL HTTP/1.1 bokateria.com/wp-content/plugins/penci-recipe/css/recipe.css?ver=3.3
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash d609d91a50fa1a0133e96c8f097537fb
f11945573bbab43be9858ea7d4877185cc0b1dc7
358b2a54a0d3a9d986c2a1336b3a53a09b8527cd9a3d283d7a9f938d7e1b3824
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/penci-recipe/css/recipe.css?ver=3.3 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5939
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
bokateria.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.10
162.241.85.85200 OK 2.8 kB URL HTTP/1.1 bokateria.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.10
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6210), with no line terminators
Hash c74a284893e700efac7feda7f8ca29d9
e5f08422e3a5b9ed64676469e2d73ed9600ab3ee
01fb2bcfb32c7eabebccf5d1196cae451bae4f8ab247010f3cd6d86ef8521345
GET /wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.10 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2759
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
bokateria.com/wp-content/themes/soledad/js/libs-script.min.js?ver=8.2.7
162.241.85.85200 OK 63 kB URL HTTP/1.1 bokateria.com/wp-content/themes/soledad/js/libs-script.min.js?ver=8.2.7
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30308), with CRLF line terminators
Hash 7741eb2facb6bcff82ddb2e7749516b2
2df6822adef102c35ee59fac2c712152a5e90856
25aead8bf6831248a0b4ee98e7bc19c75e60928fe605123d8b604c3b62c54c05
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/soledad/js/libs-script.min.js?ver=8.2.7 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:23 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9100
Expires: Thu, 10 Nov 2022 17:18:03 GMT
Date: Thu, 10 Nov 2022 14:46:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9100
Expires: Thu, 10 Nov 2022 17:18:03 GMT
Date: Thu, 10 Nov 2022 14:46:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9100
Expires: Thu, 10 Nov 2022 17:18:03 GMT
Date: Thu, 10 Nov 2022 14:46:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9100
Expires: Thu, 10 Nov 2022 17:18:03 GMT
Date: Thu, 10 Nov 2022 14:46:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe468f92f-2486-4c80-ab37-4225f9f983cc.webp
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe468f92f-2486-4c80-ab37-4225f9f983cc.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5fc04eddc597d6b10db5d59c53f20aec
dddc0da13526d24aaea990cc1d68d9212612da43
a7e2d1fd141c4383de3411be95b8875c9d969d5f001020793a2b4d939aaa780b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe468f92f-2486-4c80-ab37-4225f9f983cc.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12268
x-amzn-requestid: cd9ea4f7-9a75-47b4-a0ad-817c821a592e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlpZHbBIAMFfUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1ca2-69a98f453929cc817bead2c7;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Xq1vIovXXR0pPaaHjKWeLcZszoEkISrYvqKvshtQ9dFTf6CUwxmIWA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 22:16:00 GMT
etag: "dddc0da13526d24aaea990cc1d68d9212612da43"
content-type: image/jpeg
age: 59423
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1301540a-8618-4725-97e7-ac03773f7ed0.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1301540a-8618-4725-97e7-ac03773f7ed0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a929256680885031f55121c35d626bcc
9caf2466f70995d5763b970f916c4944b364a4ff
9366db1c171fe9dae5946198415c9a02005a432fccd359896f94bce874c91027
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1301540a-8618-4725-97e7-ac03773f7ed0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9283
x-amzn-requestid: c800cccd-80cc-4cd6-8856-66cfd07141c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWmC2HnpIAMF3kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1d45-686eac2b6c65b8dd41dfb44a;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2SqQjq27y6Vrwzl9a_ho6sOPImE7Fpbyxie8_fuPGa6bf8fn-yX0Jw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 22:13:45 GMT
age: 59558
etag: "9caf2466f70995d5763b970f916c4944b364a4ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F790db4df-e6d4-48ab-92fb-179a770f76b7.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F790db4df-e6d4-48ab-92fb-179a770f76b7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c2db9097ad95b726c65a3130483daf7
2b6dbe326a49e03a0f8d1a5d15930fd7870f6f79
1da5e63e7a3e837c758bb365e5e99e6dfb6c54e9b2fe038c3eb1334a86dc4d74
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F790db4df-e6d4-48ab-92fb-179a770f76b7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7723
x-amzn-requestid: 1e07419e-8cd6-43d6-b0bb-61183502ee40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlpGHFKIAMFUUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1ca0-751c8b152ea5c28f5a78bf46;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:20 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: BXdwO74rhbF9575IFRz-DNbcEFNiX7JiCtsvghmUE8zOju0eyuFjow==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 22:16:00 GMT
etag: "2b6dbe326a49e03a0f8d1a5d15930fd7870f6f79"
content-type: image/jpeg
age: 59424
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb45d42fc-185c-4bf0-906b-55b0275ee2d4.jpeg
34.120.237.76200 OK 3.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb45d42fc-185c-4bf0-906b-55b0275ee2d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aeb648ba8ff2bcbb363004559ced5b87
25c8230dc14cfc31d8660b8ea8a72f3ac881ea7e
3eb0d98cc52b574f7496061ab00d6276c7a83ca1be7b7974a932a7827a9dd4b3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb45d42fc-185c-4bf0-906b-55b0275ee2d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3319
x-amzn-requestid: 4720d817-e198-4cae-b14c-b78972e7dd05
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlrkGdMIAMF8_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1cb0-6c3edabf3f07e37951156122;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:36 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DM1zgiiuwGAtsVQj7S-Nz7N8_NvgUdw8JceoQtBRJrNg9iUmpfBY3w==
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:43:10 GMT
age: 61394
etag: "25c8230dc14cfc31d8660b8ea8a72f3ac881ea7e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f570a6d-7e0c-4dc3-9a3f-7af7ccbae623.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f570a6d-7e0c-4dc3-9a3f-7af7ccbae623.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash feb275cc5fa7b13e70522cb76f001bbc
80ca9cf6cbbc73a884c3a839ace9a7aa191a8504
a5680637b55669355967b87fd4be4881a3e4dea746b7c420acf4dcb46b8a28de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f570a6d-7e0c-4dc3-9a3f-7af7ccbae623.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8242
x-amzn-requestid: 1ab9c180-7e6b-4eae-a6cf-6a45c96fdc4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlrkE_2oAMFk2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1cb0-0089846803d11bb649874507;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6xhB_vy5Aj6ScBQuTwWX93HFG5eS3SZHr7dP2Qsz-Q1P1pcXk339gQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:43:10 GMT
age: 61394
etag: "80ca9cf6cbbc73a884c3a839ace9a7aa191a8504"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F407f630c-7642-40eb-8db3-288b03315712.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F407f630c-7642-40eb-8db3-288b03315712.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 178b1b5efcd0c5997d0e5b820193abe2
460630852800c0304295c78df268bfec64416f98
9822d2ef4199dcc01f81a8e6d3a91d9545466c17abfca4eb30e0a49ca8301da6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F407f630c-7642-40eb-8db3-288b03315712.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3445
x-amzn-requestid: 92b5ba7a-e45a-495c-89ae-9738fd5644bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWloyHMpoAMF-Fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c9e-5508b96c349a34537809ef0e;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3-XU3AO60wbMDZcPshBPHvxEFAQHVs7-dlg52BfbxkSlDAEx9kaeeg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:50:01 GMT
age: 60983
etag: "460630852800c0304295c78df268bfec64416f98"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiZQ.woff2
216.58.207.195200 OK 9.8 kB URL HTTP/1.1 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiZQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 9840, version 1.0\012- data
Hash afda6e429fd299054de28e1f157c683d
c1847d6f3df5fe11d5e96fd5e6a59b73ff7ed96b
81cd29d1413ecf75834fb3ce1da572fe5c39e53b22c61f5dafec5b14ed4ee12e
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiZQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bokateria.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 9840
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 08 Nov 2022 04:58:58 GMT
Expires: Wed, 08 Nov 2023 04:58:58 GMT
Cache-Control: public, max-age=31536000
Age: 208046
Last-Modified: Mon, 18 Jul 2022 19:24:04 GMT
Content-Type: font/woff2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6bbfc6315b9228fd41cc16d1b2f54feb
2f2ca82eb3ca303268b03f7aa80af90f9380e8e2
9a593b197ba164b8fc74cfe6feccd57e05233a642d1dd8065c6723cee2c15701
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 14:46:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6bbfc6315b9228fd41cc16d1b2f54feb
2f2ca82eb3ca303268b03f7aa80af90f9380e8e2
9a593b197ba164b8fc74cfe6feccd57e05233a642d1dd8065c6723cee2c15701
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 14:46:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6bbfc6315b9228fd41cc16d1b2f54feb
2f2ca82eb3ca303268b03f7aa80af90f9380e8e2
9a593b197ba164b8fc74cfe6feccd57e05233a642d1dd8065c6723cee2c15701
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 14:46:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
216.58.207.195200 OK 33 kB URL HTTP/2 fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 32860, version 1.0\012- data
Hash d010a9f2d5c7a0374b3b84706a43d2ec
c1fe465db08785c3f115555d39db23838960cb66
9a3993918629dfd6a59c4563e9b4d464152b51d4113957ab8ebfbdcbcdc7f536
GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bokateria.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 04 Nov 2022 15:39:48 GMT
expires: Sat, 04 Nov 2023 15:39:48 GMT
cache-control: public, max-age=31536000
age: 515196
last-modified: Mon, 11 Jul 2022 19:12:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/alice/v20/OpNCnoEEmtHa6GcOrg4.woff2
216.58.207.195200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/alice/v20/OpNCnoEEmtHa6GcOrg4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 25212, version 1.0\012- data
Hash f72b46eb76c0664e28d8689a211ba63f
e48d171ae7756b459b725891323e826c1fc57694
73f21482958d69c7fb4481ea9f7741fe64be178081ef506805bd7bbd67cbff70
GET /s/alice/v20/OpNCnoEEmtHa6GcOrg4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bokateria.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25212
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 05:24:33 GMT
expires: Thu, 09 Nov 2023 05:24:33 GMT
cache-control: public, max-age=31536000
age: 120111
last-modified: Tue, 19 Apr 2022 17:50:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6bbfc6315b9228fd41cc16d1b2f54feb
2f2ca82eb3ca303268b03f7aa80af90f9380e8e2
9a593b197ba164b8fc74cfe6feccd57e05233a642d1dd8065c6723cee2c15701
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 10 Nov 2022 14:46:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bokateria.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
162.241.85.85409 Conflict 83 B URL HTTP/1.1 bokateria.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 409 Conflict
Date: Thu, 10 Nov 2022 14:46:24 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
bokateria.com/wp-content/themes/soledad/fonts/penciicon.ttf
162.241.85.85200 OK 34 kB URL HTTP/1.1 bokateria.com/wp-content/themes/soledad/fonts/penciicon.ttf
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 11 tables, 1st "GSUB", 16 names, Macintosh, type 1 string, flaticonRegularflaticonflaticonVersion 1.0flaticonGenerated by svg2ttf from Fontello project.htt\012- data
Hash 77070693c3a560ce9392be34be37f2f4
4de87061bbc3aa5713396030a66bcb02b663c903
0c6ba4901cfb68b03ca9a97ce1d7cbb688d6802c60819dd7cea0522aca8a0576
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/soledad/fonts/penciicon.ttf HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/wp-content/themes/soledad/css/penci-icon.css?ver=8.2.7
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:24 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:07 GMT
Accept-Ranges: bytes
Content-Length: 33648
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: font/ttf
bokateria.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
162.241.85.85409 Conflict 83 B URL HTTP/1.1 bokateria.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 409 Conflict
Date: Thu, 10 Nov 2022 14:46:24 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
bokateria.com/wp-content/themes/soledad/fonts/fontawesome-webfont.woff2?v=4.7.0
162.241.85.85200 OK 77 kB URL HTTP/1.1 bokateria.com/wp-content/themes/soledad/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/soledad/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://bokateria.com/wp-content/themes/soledad/css/font-awesome.4.7.0.swap.min.css?ver=4.7.0
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:24 GMT
Server: Apache
Last-Modified: Sat, 15 Oct 2022 07:14:07 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: font/woff2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 445e32da3c2374eb48cb5a8706f84223
fbc0a33f5b7b854338e7b345c370424d7d68fc8d
fe360c914bd6c9bb82eb5df696b9cc69d52e41c2c8b8ddee102e0679cec0b79b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE360C914BD6C9BB82EB5DF696B9CC69D52E41C2C8B8DDEE102E0679CEC0B79B"
Last-Modified: Wed, 09 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21546
Expires: Thu, 10 Nov 2022 20:45:30 GMT
Date: Thu, 10 Nov 2022 14:46:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 445e32da3c2374eb48cb5a8706f84223
fbc0a33f5b7b854338e7b345c370424d7d68fc8d
fe360c914bd6c9bb82eb5df696b9cc69d52e41c2c8b8ddee102e0679cec0b79b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE360C914BD6C9BB82EB5DF696B9CC69D52E41C2C8B8DDEE102E0679CEC0B79B"
Last-Modified: Wed, 09 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 10 Nov 2022 20:46:24 GMT
Date: Thu, 10 Nov 2022 14:46:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 40c71f6ea0ba56d0ce8c781ae0cfc5dd
e53d91b0b6f7c6bb488648354148307dea0cf048
c004824b0c5a8e30f867f3b4c3e506b224b14dc88f786b056ff8c962ad37024f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C004824B0C5A8E30F867F3B4C3E506B224B14DC88F786B056FF8C962AD37024F"
Last-Modified: Thu, 10 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21599
Expires: Thu, 10 Nov 2022 20:46:23 GMT
Date: Thu, 10 Nov 2022 14:46:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 445e32da3c2374eb48cb5a8706f84223
fbc0a33f5b7b854338e7b345c370424d7d68fc8d
fe360c914bd6c9bb82eb5df696b9cc69d52e41c2c8b8ddee102e0679cec0b79b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE360C914BD6C9BB82EB5DF696B9CC69D52E41C2C8B8DDEE102E0679CEC0B79B"
Last-Modified: Wed, 09 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21495
Expires: Thu, 10 Nov 2022 20:44:39 GMT
Date: Thu, 10 Nov 2022 14:46:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 445e32da3c2374eb48cb5a8706f84223
fbc0a33f5b7b854338e7b345c370424d7d68fc8d
fe360c914bd6c9bb82eb5df696b9cc69d52e41c2c8b8ddee102e0679cec0b79b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE360C914BD6C9BB82EB5DF696B9CC69D52E41C2C8B8DDEE102E0679CEC0B79B"
Last-Modified: Wed, 09 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21583
Expires: Thu, 10 Nov 2022 20:46:07 GMT
Date: Thu, 10 Nov 2022 14:46:24 GMT
Connection: keep-alive
bokateria.com/wp-content/uploads/2022/10/BABALU-Tale-of-A-Cute-Lil-Boy-Kedar-Pandharkar-Book-Review-263x175.jpg
162.241.85.85200 OK 9.8 kB URL HTTP/2 bokateria.com/wp-content/uploads/2022/10/BABALU-Tale-of-A-Cute-Lil-Boy-Kedar-Pandharkar-Book-Review-263x175.jpg
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x175, components 3\012- data
Hash 32300a0837fe0f6745c9381e43bdd46f
95a83ec7e1f1acd8ce5e9a0b2ff526ac372c82f8
8a19e6a10a7b262982658fe434117f909eaac54eaa5a5a64aa3d0bf5184a8560
GET /wp-content/uploads/2022/10/BABALU-Tale-of-A-Cute-Lil-Boy-Kedar-Pandharkar-Book-Review-263x175.jpg HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bokateria.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 20 Oct 2022 15:36:28 GMT
accept-ranges: bytes
content-length: 9825
content-type: image/jpeg
date: Thu, 10 Nov 2022 14:46:25 GMT
server: Apache
X-Firefox-Spdy: h2
bokateria.com/wp-content/uploads/2022/10/The-Curse-of-Kuldhara-by-Richa-S-Mukherjee-book-263x175.jpg
162.241.85.85200 OK 11 kB URL HTTP/2 bokateria.com/wp-content/uploads/2022/10/The-Curse-of-Kuldhara-by-Richa-S-Mukherjee-book-263x175.jpg
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x175, components 3\012- data
Hash 31d04e943644ef945f6187dbb85b393a
c8748aaee529864bb9f27f63f59d9fc72481e007
647a268d636cad5230b2a9a3fd2ef6d728811bffa39b1b39b5bf947daed99017
GET /wp-content/uploads/2022/10/The-Curse-of-Kuldhara-by-Richa-S-Mukherjee-book-263x175.jpg HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bokateria.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 20 Oct 2022 15:36:52 GMT
accept-ranges: bytes
content-length: 10955
content-type: image/jpeg
date: Thu, 10 Nov 2022 14:46:25 GMT
server: Apache
X-Firefox-Spdy: h2
bokateria.com/wp-content/uploads/2022/10/7C56C487-F90A-47D3-8292-56632FB53E73-263x175.jpeg
162.241.85.85200 OK 28 kB URL HTTP/2 bokateria.com/wp-content/uploads/2022/10/7C56C487-F90A-47D3-8292-56632FB53E73-263x175.jpeg
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 263x175, components 3\012- data
Hash 9846a134b889e55ba6ffe4f8d559df27
faba61df7d949bc6496fc0098831a3f2a5b06ae7
6d52d55f19a1dde878e058f615d92c9f744c6aca58ec591147bf4d9f8b92a280
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/10/7C56C487-F90A-47D3-8292-56632FB53E73-263x175.jpeg HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bokateria.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 20 Oct 2022 15:50:16 GMT
accept-ranges: bytes
content-length: 27581
content-type: image/jpeg
date: Thu, 10 Nov 2022 14:46:25 GMT
server: Apache
X-Firefox-Spdy: h2
bokateria.com/favicon.ico
162.241.85.85302 Found 0 B URL HTTP/1.1 bokateria.com/favicon.ico
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bokateria.com/
HTTP/1.1 302 Found
Date: Thu, 10 Nov 2022 14:46:25 GMT
Server: Apache
Link: <https://bokateria.com/wp-json/>; rel="https://api.w.org/"
X-Redirect-By: WordPress
Location: http://bokateria.com/wp-includes/images/w-logo-blue-white-bg.png
Content-Length: 0
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
bokateria.com/wp-content/uploads/2022/10/The-Greatest-Enemy-of-Rain-Stories-by-Manu-Bhattathiri-Book-263x175.jpg
162.241.85.85200 OK 13 kB URL HTTP/2 bokateria.com/wp-content/uploads/2022/10/The-Greatest-Enemy-of-Rain-Stories-by-Manu-Bhattathiri-Book-263x175.jpg
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 263x175, components 3\012- data
Hash bacf999cf3bf1f932ca66304494ade23
29724a1d619585090f729fb23f6d0183a3c43052
4f8ed8ae2b2ebf6de86c9c529bad1942de402e9f2b9c1655bf9e89d8d81399b0
GET /wp-content/uploads/2022/10/The-Greatest-Enemy-of-Rain-Stories-by-Manu-Bhattathiri-Book-263x175.jpg HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bokateria.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 20 Oct 2022 15:45:53 GMT
accept-ranges: bytes
content-length: 12616
content-type: image/jpeg
date: Thu, 10 Nov 2022 14:46:25 GMT
server: Apache
X-Firefox-Spdy: h2
bokateria.com/wp-content/uploads/2022/10/The-Greatest-Enemy-of-Rain-Stories-by-Manu-Bhattathiri-Book-585x390.jpg
162.241.85.85200 OK 49 kB URL HTTP/2 bokateria.com/wp-content/uploads/2022/10/The-Greatest-Enemy-of-Rain-Stories-by-Manu-Bhattathiri-Book-585x390.jpg
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 585x390, components 3\012- data
Hash 0af4ed494f4739b489f8dc5f5e563356
79d014d8eefe01d7c3e9b78b15c0f09d2f2f5105
0f4653f607ce52121961b0b7a768e66acec49c54608976055138723e7d8e1ebb
GET /wp-content/uploads/2022/10/The-Greatest-Enemy-of-Rain-Stories-by-Manu-Bhattathiri-Book-585x390.jpg HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bokateria.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 20 Oct 2022 15:45:53 GMT
accept-ranges: bytes
content-length: 48607
content-type: image/jpeg
date: Thu, 10 Nov 2022 14:46:25 GMT
server: Apache
X-Firefox-Spdy: h2
bokateria.com/wp-content/uploads/2022/10/Master-O-An-epic-of-the-future-by-Dhiraj-Singh-Book-Review-780x516.jpg
162.241.85.85200 OK 58 kB URL HTTP/2 bokateria.com/wp-content/uploads/2022/10/Master-O-An-epic-of-the-future-by-Dhiraj-Singh-Book-Review-780x516.jpg
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 780x516, components 3\012- data
Hash 375e50247cfb4f576d3d089e885ed767
d7f0dda26224aa759452c2816582f087ace30784
d9779114d36b94dc487022be0e554595741f184c5a177558bf6fbbdb8cde9616
GET /wp-content/uploads/2022/10/Master-O-An-epic-of-the-future-by-Dhiraj-Singh-Book-Review-780x516.jpg HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bokateria.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 20 Oct 2022 15:52:18 GMT
accept-ranges: bytes
content-length: 57732
content-type: image/jpeg
date: Thu, 10 Nov 2022 14:46:25 GMT
server: Apache
X-Firefox-Spdy: h2
bokateria.com/wp-content/uploads/2022/10/7C56C487-F90A-47D3-8292-56632FB53E73-446x390.jpeg
162.241.85.85200 OK 62 kB URL HTTP/2 bokateria.com/wp-content/uploads/2022/10/7C56C487-F90A-47D3-8292-56632FB53E73-446x390.jpeg
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 446x390, components 3\012- data
Hash bed24281eac3942e1a30a7c3473ab3f3
81a8bbe8e4d67e15e33b520538541353a4ab993f
64ae8173e408247d836aa6fadeaa365c77885739d666cf8b8435ea7172bd2405
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/10/7C56C487-F90A-47D3-8292-56632FB53E73-446x390.jpeg HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bokateria.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 20 Oct 2022 15:50:16 GMT
accept-ranges: bytes
content-length: 62443
content-type: image/jpeg
date: Thu, 10 Nov 2022 14:46:25 GMT
server: Apache
X-Firefox-Spdy: h2
bokateria.com/wp-content/uploads/2022/10/Master-O-An-epic-of-the-future-by-Dhiraj-Singh-Book-Review-585x390.jpg
162.241.85.85200 OK 37 kB URL HTTP/2 bokateria.com/wp-content/uploads/2022/10/Master-O-An-epic-of-the-future-by-Dhiraj-Singh-Book-Review-585x390.jpg
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 585x390, components 3\012- data
Hash 56820e5cb51ec9619de39659fc3b35fa
4ff64847c8be88b30c5a3aec6f8fead8b44c0532
85c67231ec995a80757c5f6f478d086936ee40b47e035debdb120f53c33b1394
GET /wp-content/uploads/2022/10/Master-O-An-epic-of-the-future-by-Dhiraj-Singh-Book-Review-585x390.jpg HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bokateria.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 20 Oct 2022 15:52:18 GMT
accept-ranges: bytes
content-length: 37290
content-type: image/jpeg
date: Thu, 10 Nov 2022 14:46:25 GMT
server: Apache
X-Firefox-Spdy: h2
bokateria.com/wp-includes/images/w-logo-blue-white-bg.png
162.241.85.85200 OK 4.1 kB URL HTTP/1.1 bokateria.com/wp-includes/images/w-logo-blue-white-bg.png
IP 162.241.85.85:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: bokateria.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://bokateria.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 10 Nov 2022 14:46:26 GMT
Server: Apache
Last-Modified: Tue, 16 Nov 2021 05:34:02 GMT
Accept-Ranges: bytes
Content-Length: 4119
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/png
fonts.googleapis.com/css?family=Roboto+Slab%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CAlice%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%26subset%3Dlatin%2Ccyrillic%2Ccyrillic-ext%2Cgreek%2Cgreek-ext%2Clatin-ext&display=swap&ver=8.2.7
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto+Slab%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CAlice%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%26subset%3Dlatin%2Ccyrillic%2Ccyrillic-ext%2Cgreek%2Cgreek-ext%2Clatin-ext&display=swap&ver=8.2.7
IP 142.250.74.10:0
GET /css?family=Roboto+Slab%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CAlice%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%26subset%3Dlatin%2Ccyrillic%2Ccyrillic-ext%2Cgreek%2Cgreek-ext%2Clatin-ext&display=swap&ver=8.2.7 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bokateria.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 10 Nov 2022 14:46:22 GMT
date: Thu, 10 Nov 2022 14:46:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2