thek9professional.com/
5.2.88.83301 Moved Permanently 238 B IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d44e7de086f7d2aa0dd01360ed409682
2cbd059c488b553fb28e7b543016bdcbce8acc50
9d946bfd7d244fde0ccaacdf42fc567790ae2b7932da5fd0270c6f3e0863c86b
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 04 Oct 2022 09:16:52 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 238
Connection: keep-alive
Location: https://thek9professional.com/
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Cache-Status: MISS
X-Server-Powered-By: Engintron
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9829
Expires: Tue, 04 Oct 2022 12:00:42 GMT
Date: Tue, 04 Oct 2022 09:16:53 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 08:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6GwwvhINF1_e-fjAkWDO7BNstOm9IY964o6ntO3CSH6kGJlvmRC0Fg==
Age: 1789
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wxS8vs_c1mL0c_tVNsU_sMhjM6sXKwmLmHVeh3hhmnb1ucxnbt9wqQ==
age: 13706
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b6fab3d0a0871b4c2f7531cc74b96c90
842447d4e2bc8ca69d2ae71b4ed9d937756b1d86
59875899b7dbcac85cf2f89e9452e341bdc9fd5e56277beb8437d69af84dd220
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59875899B7DBCAC85CF2F89E9452E341BDC9FD5E56277BEB8437D69AF84DD220"
Last-Modified: Sun, 02 Oct 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21579
Expires: Tue, 04 Oct 2022 15:16:32 GMT
Date: Tue, 04 Oct 2022 09:16:53 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 04 Oct 2022 08:29:33 GMT
Expires: Tue, 04 Oct 2022 09:26:52 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uBMgxRKOODsgdIcWHZfwG9yXQVopFqXmSQE-u7fd4WWGcLPIOICiag==
Age: 2840
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 321fa9a78e31dcb66601ac5890bfba73
c325580db79bde6fd00d2d0c7e3f675e4c0046bb
83029b324b4c36522ae47eef9614c124b0ad2994de412d7ea82f990ad8ae9d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6447
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:16:53 GMT
Last-Modified: Tue, 04 Oct 2022 07:29:26 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:16:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:16:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:16:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:16:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:16:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-BX15GSE5JP
142.250.74.168200 OK 75 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-BX15GSE5JP
IP 142.250.74.168:0
File type ASCII text, with very long lines (18966)
Hash 10cacaf2872740671a1e5260e1839450
b1aec408dbd6957d23aa3678c26949dce192112d
533a6015e1f053c37a28b30937941ef87e6e9b00d5b5a4c6c60a5c67dba2c71a
GET /gtag/js?id=G-BX15GSE5JP HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 09:16:53 GMT
expires: Tue, 04 Oct 2022 09:16:53 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74923
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
thek9professional.com/wp-content/uploads/2016/08/spotted_dogs-1-300x242.jpg
5.2.88.83301 Moved Permanently 291 B URL HTTP/1.1 thek9professional.com/wp-content/uploads/2016/08/spotted_dogs-1-300x242.jpg
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 11b3e6026ed1c356a98d3c8749efd1df
7d438a16819b482c970a15d8a36128798dd3f4ec
a3226b20d7e93b15ce131ec41873cd542881967ea68c755208a2ce2a5a5cdc9d
GET /wp-content/uploads/2016/08/spotted_dogs-1-300x242.jpg HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 04 Oct 2022 09:16:53 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 291
Connection: keep-alive
Location: https://thek9professional.com/wp-content/uploads/2016/08/spotted_dogs-1-300x242.jpg
Expires: Sat, 03 Dec 2022 09:16:53 GMT
Cache-Control: max-age=5184000
Pragma: public
thek9professional.com/wp-content/uploads/2016/08/blue-logo.png
5.2.88.83301 Moved Permanently 278 B URL HTTP/1.1 thek9professional.com/wp-content/uploads/2016/08/blue-logo.png
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 783fde6a3083a891d77376529a1207fc
8458b9aef1bc3826d03a90d1542d8ca21a153cfd
862fbd60e3c87200dbe5fa9057c97f64fb7507d0844b2ad013be8d7f5029001d
GET /wp-content/uploads/2016/08/blue-logo.png HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 04 Oct 2022 09:16:53 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 278
Connection: keep-alive
Location: https://thek9professional.com/wp-content/uploads/2016/08/blue-logo.png
Expires: Sat, 03 Dec 2022 09:16:53 GMT
Cache-Control: max-age=5184000
Pragma: public
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:16:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
thek9professional.com/wp-content/uploads/2016/08/2dogs.jpg
5.2.88.83200 OK 36 kB URL HTTP/2 thek9professional.com/wp-content/uploads/2016/08/2dogs.jpg
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 636x627, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 919c8a99eda7e0784392cd5f2c30a1ca
415cfcc357a2acbc1435af50a56a53d67005c5d2
81cc56a168f30f245c33edf2b48eccf43a99d25c78149d52b85fc32ee88cc780
GET /wp-content/uploads/2016/08/2dogs.jpg HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: image/webp
content-length: 36530
last-modified: Fri, 17 Jun 2022 21:27:57 GMT
expires: Sat, 03 Dec 2022 09:16:53 GMT
cache-control: max-age=5184000
pragma: public
accept-ranges: bytes
X-Firefox-Spdy: h2
thek9professional.com/wp-content/uploads/2016/08/hero_image_01-1-1-copy-1.png
5.2.88.83200 OK 36 kB URL HTTP/2 thek9professional.com/wp-content/uploads/2016/08/hero_image_01-1-1-copy-1.png
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type RIFF (little-endian) data, Web/P image\012- data
Hash 55d25e586d67a43b2e90556343dd9d1b
4df9c48bba64b205e572bb6c397eba54ab2bbaa1
dc0442b0f39393bdc5d515bc1eb04e3f8578e914f5357a30ef3add8417cee880
GET /wp-content/uploads/2016/08/hero_image_01-1-1-copy-1.png HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: image/webp
content-length: 36154
last-modified: Fri, 17 Jun 2022 22:05:21 GMT
expires: Sat, 03 Dec 2022 09:16:53 GMT
cache-control: max-age=5184000
pragma: public
accept-ranges: bytes
X-Firefox-Spdy: h2
thek9professional.com/wp-content/uploads/2016/08/DSC_7518.jpg
5.2.88.83200 OK 89 kB URL HTTP/2 thek9professional.com/wp-content/uploads/2016/08/DSC_7518.jpg
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x383, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2e403aa2d25fb70fbc5da6d5e4021fbe
c50d7be61cd741eb6c1034db7a4d0891a9bc0575
dc0307a1924eca4d8af107166340e39d958a21d985ebd3a65c540b224e8e25b4
GET /wp-content/uploads/2016/08/DSC_7518.jpg HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: image/webp
content-length: 89360
last-modified: Fri, 17 Jun 2022 22:25:39 GMT
expires: Sat, 03 Dec 2022 09:16:53 GMT
cache-control: max-age=5184000
pragma: public
accept-ranges: bytes
X-Firefox-Spdy: h2
thek9professional.com/wp-content/uploads/2016/08/mikejennglynn-dog.jpg
5.2.88.83200 OK 123 kB URL HTTP/2 thek9professional.com/wp-content/uploads/2016/08/mikejennglynn-dog.jpg
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1048x583, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 123 kB (122556 bytes)
Hash b8d4eabc11b6a93d4b89fc081146e855
9240fcedd2675fe46f256d96b330ac701a2b4c62
6ef70fceea9149feeee6959697d28ddb4dbbdd06e678096c58514bd6d3294cb5
GET /wp-content/uploads/2016/08/mikejennglynn-dog.jpg HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: image/webp
content-length: 122556
last-modified: Fri, 17 Jun 2022 22:18:56 GMT
expires: Sat, 03 Dec 2022 09:16:53 GMT
cache-control: max-age=5184000
pragma: public
accept-ranges: bytes
X-Firefox-Spdy: h2
thek9professional.com/wp-content/uploads/2016/08/blue-logo.png
5.2.88.83200 OK 13 kB URL HTTP/2 thek9professional.com/wp-content/uploads/2016/08/blue-logo.png
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type RIFF (little-endian) data, Web/P image\012- data
Hash 06a530d54429b8b0b077ab1d90dec2d8
ac4c6f6136fd0158164e7040cdcdd8d330b84f0d
edb4bc972a943d31d7eb35a50a9cb8add1fe0dd6556d48fc4cd6fc85e5db2314
GET /wp-content/uploads/2016/08/blue-logo.png HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: image/webp
content-length: 13326
last-modified: Fri, 17 Jun 2022 21:41:59 GMT
expires: Sat, 03 Dec 2022 09:16:53 GMT
cache-control: max-age=5184000
pragma: public
accept-ranges: bytes
X-Firefox-Spdy: h2
thek9professional.com/wp-content/uploads/2016/08/spotted_dogs-1-300x242.jpg
5.2.88.83200 OK 11 kB URL HTTP/2 thek9professional.com/wp-content/uploads/2016/08/spotted_dogs-1-300x242.jpg
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x242, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 06b6258b8744ec0f3faad629e64d6c52
83a49f7f52815b576dae0fd3e16c758970fd909a
fb690583c3ce0fd4dd23e87331315972a59e7f7735475b45528943d33d6938e9
GET /wp-content/uploads/2016/08/spotted_dogs-1-300x242.jpg HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: image/webp
content-length: 10910
last-modified: Fri, 17 Jun 2022 21:07:54 GMT
expires: Sat, 03 Dec 2022 09:16:53 GMT
cache-control: max-age=5184000
pragma: public
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.89.15.44101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.15.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EudVH+7I2yRxGUsH6lAkdw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0OBhCv/aEMUEKGMtoYW1Xe+YR4E=
thek9professional.com/wp-content/uploads/2016/08/team-red.jpg
5.2.88.83301 Moved Permanently 277 B URL HTTP/1.1 thek9professional.com/wp-content/uploads/2016/08/team-red.jpg
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ad669109171f3c6bb7f539a8e2d3f83d
b54d41de71eaf2276aec5b0fe4280269c16d7da7
8a2071b19eed5ffc9397a60a6e4a3142d10f1b8e0e46e354c1dadfb92ba6c790
GET /wp-content/uploads/2016/08/team-red.jpg HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 04 Oct 2022 09:16:54 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 277
Connection: keep-alive
Location: https://thek9professional.com/wp-content/uploads/2016/08/team-red.jpg
Expires: Sat, 03 Dec 2022 09:16:54 GMT
Cache-Control: max-age=5184000
Pragma: public
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:16:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
thek9professional.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.17.3
5.2.88.83200 OK 1.0 kB URL HTTP/2 thek9professional.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.17.3
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
Hash eae7ab0f743b2c213a701f789a3bbbda
c35e9a5acd1d5130259511f2ba9190e932533830
fc1f35f0670aa379504b35907554da7c70e90e3ef677c1025de805fb6163fe2d
GET /wp-content/themes/Divi/core/admin/js/common.js?ver=4.17.3 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 03 Jun 2022 21:10:11 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:16:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
thek9professional.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
5.2.88.83200 OK 92 kB URL HTTP/2 thek9professional.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data
Hash de27b3e66b2f8017e000aa9d8d24d60e
e6d716de8f35ba6daf55d57e7fe0ed8d8e50f1f7
d201a2c3118a00c82cc48e89815f5139f23956bbe248107dcf522acc77b97c09
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:54 GMT
content-type: x-font/ttf
content-length: 92400
last-modified: Fri, 03 Jun 2022 21:10:11 GMT
expires: Sat, 03 Dec 2022 09:16:54 GMT
cache-control: max-age=5184000
pragma: public
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:16:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:16:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://thek9professional.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 03:08:55 GMT
expires: Sun, 01 Oct 2023 03:08:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 281279
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
216.58.207.195200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data
Hash c26b97e7f5bb7a34d190703522d75e16
69d9e5aea0544dbaf9b78c1b65139c03eceece8f
96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://thek9professional.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:11:04 GMT
expires: Tue, 03 Oct 2023 21:11:04 GMT
cache-control: public, max-age=31536000
age: 43550
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17156, version 1.0\012- data
Hash 7e344afc10a492d516789f072fa6edfd
f38bd0b4e9d0577528f533b8ecd80801a0c6340f
c84423c305779f2aab07847a2e3870ac1ea4072e470d5eb149c01e0e0497eae3
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://thek9professional.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17156
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 18:31:20 GMT
expires: Tue, 03 Oct 2023 18:31:20 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 May 2022 18:33:24 GMT
content-type: font/woff2
age: 53134
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17116, version 1.0\012- data
Hash bcf3a3fb620dfbee774f84e2c8e71530
40a79d240acdd7e5a95e165515ac7c0958a37971
280aaa8929329764ac3213ca093c63505cfcc665347939c79905c426d33867c5
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://thek9professional.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:55:18 GMT
expires: Tue, 03 Oct 2023 21:55:18 GMT
cache-control: public, max-age=31536000
age: 40896
last-modified: Mon, 09 May 2022 18:31:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
thek9professional.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
5.2.88.83200 OK 12 kB URL HTTP/2 thek9professional.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
Hash 53bdc333e5aee8e67f84a519f40fcc8a
af43c62404f17d83292fe93462b03d7d308e6439
b291c81feb0eb1468f2b79dbf1bee03ab21ee8b13cb03276fe088835c873b0f6
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:54 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 12 Jul 2022 17:19:32 GMT
expires: Thu, 03 Nov 2022 09:16:54 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
thek9professional.com/wp-content/uploads/2016/08/glow_background-e1652668652992.png
5.2.88.83301 Moved Permanently 299 B URL HTTP/1.1 thek9professional.com/wp-content/uploads/2016/08/glow_background-e1652668652992.png
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b63d942dbc0b673d96506f7ff865aa40
b69ff0e1884a71e3bb32cc1f56edb573c2ced2de
ad26b7f91210bcd74262dde112097e1bdff30b43130243c21e4b6d1c9a43d9bf
GET /wp-content/uploads/2016/08/glow_background-e1652668652992.png HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 04 Oct 2022 09:16:54 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 299
Connection: keep-alive
Location: https://thek9professional.com/wp-content/uploads/2016/08/glow_background-e1652668652992.png
Expires: Sat, 03 Dec 2022 09:16:54 GMT
Cache-Control: max-age=5184000
Pragma: public
thek9professional.com/wp-content/uploads/2016/08/team-red.jpg
5.2.88.83200 OK 160 kB URL HTTP/2 thek9professional.com/wp-content/uploads/2016/08/team-red.jpg
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1800x1224, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 160 kB (159598 bytes)
Hash 627942ce0e0b607ba8ba13dff42b46c9
d228c76bf3ca55aafabc0cab79e4c98b2186f9f7
171d1881990588366c12cfed6a6b35d84f63043d3af40c0cc2fd9480a6e3a73d
GET /wp-content/uploads/2016/08/team-red.jpg HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:54 GMT
content-type: image/webp
content-length: 159598
last-modified: Fri, 17 Jun 2022 22:29:23 GMT
expires: Sat, 03 Dec 2022 09:16:54 GMT
cache-control: max-age=5184000
pragma: public
accept-ranges: bytes
X-Firefox-Spdy: h2
thek9professional.com/wp-content/uploads/2016/08/glow_background-e1652668652992.png
5.2.88.83200 OK 15 kB URL HTTP/2 thek9professional.com/wp-content/uploads/2016/08/glow_background-e1652668652992.png
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type RIFF (little-endian) data, Web/P image\012- data
Hash ca116e828196593642d98fa3a2f81a02
f8e54f7180403dfe22ca9cb50e7c6fb4fb8178bd
e4142794629c97f68950292bdc504918064512aa4847120e40004f6d441ebf74
GET /wp-content/uploads/2016/08/glow_background-e1652668652992.png HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:54 GMT
content-type: image/webp
content-length: 15066
last-modified: Fri, 17 Jun 2022 21:25:53 GMT
expires: Sat, 03 Dec 2022 09:16:54 GMT
cache-control: max-age=5184000
pragma: public
accept-ranges: bytes
X-Firefox-Spdy: h2
thek9professional.com/wp-content/uploads/2016/08/IMG_3250-scaled.jpg
5.2.88.83301 Moved Permanently 284 B URL HTTP/1.1 thek9professional.com/wp-content/uploads/2016/08/IMG_3250-scaled.jpg
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2383e069964d1b029a7faa753fa6eb07
c371a8a41220fe55d488e027d1bf8e8e4daef24b
38d495f197d0be14eb47e373232b0377290bbb12ef32be396ca6ca9d6d335c20
GET /wp-content/uploads/2016/08/IMG_3250-scaled.jpg HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 04 Oct 2022 09:16:54 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 284
Connection: keep-alive
Location: https://thek9professional.com/wp-content/uploads/2016/08/IMG_3250-scaled.jpg
Expires: Sat, 03 Dec 2022 09:16:54 GMT
Cache-Control: max-age=5184000
Pragma: public
thek9professional.com/wp-content/uploads/2016/08/bench-dog.jpg
5.2.88.83301 Moved Permanently 278 B URL HTTP/1.1 thek9professional.com/wp-content/uploads/2016/08/bench-dog.jpg
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 332fb361e31803e7d423738d004fd9b8
a77484a386c4820a93c093f2bd5bff9e6d1fd75d
f2f475e5c9813507bba1c58b514b36b5150d03d25eeed442f4a231c50c82a399
GET /wp-content/uploads/2016/08/bench-dog.jpg HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 04 Oct 2022 09:16:54 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 278
Connection: keep-alive
Location: https://thek9professional.com/wp-content/uploads/2016/08/bench-dog.jpg
Expires: Sat, 03 Dec 2022 09:16:54 GMT
Cache-Control: max-age=5184000
Pragma: public
thek9professional.com/wp-content/uploads/2016/08/calmDog.jpg
5.2.88.83301 Moved Permanently 276 B URL HTTP/1.1 thek9professional.com/wp-content/uploads/2016/08/calmDog.jpg
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6c5a7fd614ddd82a2698ca10de613853
4e3f48b803f6852925cfda78e32bbcc4484f27ce
bf603eeb059636be511d89729f1b689195cfe950dcfd81048e0b909d14162a16
GET /wp-content/uploads/2016/08/calmDog.jpg HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 04 Oct 2022 09:16:54 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 276
Connection: keep-alive
Location: https://thek9professional.com/wp-content/uploads/2016/08/calmDog.jpg
Expires: Sat, 03 Dec 2022 09:16:54 GMT
Cache-Control: max-age=5184000
Pragma: public
thek9professional.com/wp-content/uploads/2016/08/bench-dog.jpg
5.2.88.83200 OK 190 kB URL HTTP/2 thek9professional.com/wp-content/uploads/2016/08/bench-dog.jpg
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1800x1224, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 190 kB (190328 bytes)
Hash ff787859805500856a8f2886607399c8
f06063010211ecac72fe9a931577265364637267
4a111c626a8255b86dcd17b200457da47b220ec3c606001223e66c94fc5eb50c
GET /wp-content/uploads/2016/08/bench-dog.jpg HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga_BX15GSE5JP=GS1.1.1664875014.1.0.1664875014.0.0.0; _ga=GA1.1.797253768.1664875014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:54 GMT
content-type: image/webp
content-length: 190328
last-modified: Fri, 17 Jun 2022 22:31:21 GMT
expires: Sat, 03 Dec 2022 09:16:54 GMT
cache-control: max-age=5184000
pragma: public
accept-ranges: bytes
X-Firefox-Spdy: h2
thek9professional.com/wp-content/uploads/2016/08/IMG_3250-scaled.jpg
5.2.88.83200 OK 157 kB URL HTTP/2 thek9professional.com/wp-content/uploads/2016/08/IMG_3250-scaled.jpg
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 2560x1920, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 157 kB (156974 bytes)
Hash a46e4afe2eca706619c248ec24388906
6fc62715c0c6173824e7894f7b750bcdbbd19441
01a4ae85674d8f58310d5f0f283d949da1898e84718a9d51520895a656146a76
GET /wp-content/uploads/2016/08/IMG_3250-scaled.jpg HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga_BX15GSE5JP=GS1.1.1664875014.1.0.1664875014.0.0.0; _ga=GA1.1.797253768.1664875014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:54 GMT
content-type: image/webp
content-length: 156974
last-modified: Fri, 17 Jun 2022 21:35:38 GMT
expires: Sat, 03 Dec 2022 09:16:54 GMT
cache-control: max-age=5184000
pragma: public
accept-ranges: bytes
X-Firefox-Spdy: h2
thek9professional.com/wp-content/uploads/2016/08/calmDog.jpg
5.2.88.83200 OK 493 kB URL HTTP/2 thek9professional.com/wp-content/uploads/2016/08/calmDog.jpg
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1800x1224, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 493 kB (493422 bytes)
Hash c003375c8e9ed7b013a95ee3ab82e934
5507b6dc6c8184d7add56cb7b93480f5f9f2a121
a9512352f0b5ae938c15540bd731404deec75155d9359d6d219c2c788c2e6dab
GET /wp-content/uploads/2016/08/calmDog.jpg HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga_BX15GSE5JP=GS1.1.1664875014.1.0.1664875014.0.0.0; _ga=GA1.1.797253768.1664875014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:54 GMT
content-type: image/webp
content-length: 493422
last-modified: Fri, 17 Jun 2022 22:32:03 GMT
expires: Sat, 03 Dec 2022 09:16:54 GMT
cache-control: max-age=5184000
pragma: public
accept-ranges: bytes
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-BX15GSE5JP>m=2oe9s0&_p=488037970&cid=797253768.1664875014&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664875014&sct=1&seg=0&dl=https%3A%2F%2Fthek9professional.com%2F&dt=Home%20%7C%20K-9%20Express%20Specialist&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-BX15GSE5JP>m=2oe9s0&_p=488037970&cid=797253768.1664875014&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664875014&sct=1&seg=0&dl=https%3A%2F%2Fthek9professional.com%2F&dt=Home%20%7C%20K-9%20Express%20Specialist&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BX15GSE5JP>m=2oe9s0&_p=488037970&cid=797253768.1664875014&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664875014&sct=1&seg=0&dl=https%3A%2F%2Fthek9professional.com%2F&dt=Home%20%7C%20K-9%20Express%20Specialist&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://thek9professional.com
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://thek9professional.com
date: Tue, 04 Oct 2022 09:16:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16903
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 09:16:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16903
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 09:16:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16903
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 09:16:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16903
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 09:16:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16903
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 09:16:55 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8c08f8066cc732de8befd6ccd629a95
22aab05208a01ae5def4d63dc145085630f57bcb
f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 40861
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6c6882c60d7ca6f918c77104e3ad1d52
20ef861be49c652a938e0145e4ca3a60159367e2
861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ovm2wuk28PygH4EZNEUoPchoHQggWCyXbYHOjMV1tZmfyDrL6PjPZA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:29:19 GMT
age: 38856
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6779181f9c06975f2a662da743893939
585e7146fd24cdc2496b05baafea04091dc541e2
8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MiSh_FjAciKCaOakY2mM_EHBN1Z6GIDYIP8mwS4ikkrToQN3Ktsv2g==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:56:46 GMT
age: 40809
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae824db4a95391149198a4b6b8556c70
db07d58d8feff4ea01866d095e5264ee5c8e1ca3
19e96d204813247697e1858daf9e07d6c4cafd9ab1175a3bf39a7f07f6991521
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11101
x-amzn-requestid: f98e84d9-1e66-4436-b793-219a777f2ba0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqcvE8JoAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5784-25bd2b234c1093de70074c92;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: becOxfqUowywFrxzDSeK7F1lFdDVTSHIF1TLC5k5aSlLPpsR6F8gjw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:08:47 GMT
age: 40088
etag: "db07d58d8feff4ea01866d095e5264ee5c8e1ca3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:53 GMT
age: 16442
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8287b853-235b-49f5-9b5c-780827ac695b.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8287b853-235b-49f5-9b5c-780827ac695b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7b7345414898d451d930431b46d4bd00
a36475a0ec7d7b92593cadd4aa99ca38550f1cd1
79b541c69c78df0e4a4c26438431fd6b52754b589d80e929a4203063712a540c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8287b853-235b-49f5-9b5c-780827ac695b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9855
x-amzn-requestid: 15f15a2e-0028-40ac-be8f-8e20c37fd27e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHuGX7oAMFgDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-5fe693f30c91e4c82c8accb1;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ngoNHOX6fFTGa1Y_-yFOFUYYYqiLJCQOq3NISbmc3gX21YO0TLxx0w==
via: 1.1 b637bd7696854d7acbf96132dcf53200.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 23:37:00 GMT
etag: "a36475a0ec7d7b92593cadd4aa99ca38550f1cd1"
content-type: image/jpeg
age: 34795
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
thek9professional.com/favicon.ico
5.2.88.83302 Found 0 B URL HTTP/2 thek9professional.com/favicon.ico
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx
date: Tue, 04 Oct 2022 09:16:59 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://thek9professional.com/wp-includes/images/w-logo-blue-white-bg.png
link: <https://thek9professional.com/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
expires: Sat, 03 Dec 2022 09:16:59 GMT
cache-control: max-age=5184000
pragma: public
X-Firefox-Spdy: h2
thek9professional.com/wp-includes/images/w-logo-blue-white-bg.png
5.2.88.83200 OK 4.1 kB URL HTTP/2 thek9professional.com/wp-includes/images/w-logo-blue-white-bg.png
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://thek9professional.com/
Connection: keep-alive
Cookie: _ga_BX15GSE5JP=GS1.1.1664875014.1.0.1664875014.0.0.0; _ga=GA1.1.797253768.1664875014
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:59 GMT
content-type: image/png
content-length: 4119
last-modified: Fri, 03 Jun 2022 21:10:22 GMT
expires: Sat, 03 Dec 2022 09:16:59 GMT
cache-control: max-age=5184000
pragma: public
accept-ranges: bytes
X-Firefox-Spdy: h2
thek9professional.com/wp-content/plugins/wp-easycart/design/theme/base-responsive-v3/smoothness-jquery-ui.min.css?ver=6.0.2
5.2.88.83200 OK 0 B URL HTTP/2 thek9professional.com/wp-content/plugins/wp-easycart/design/theme/base-responsive-v3/smoothness-jquery-ui.min.css?ver=6.0.2
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
GET /wp-content/plugins/wp-easycart/design/theme/base-responsive-v3/smoothness-jquery-ui.min.css?ver=6.0.2 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 25 Aug 2021 21:35:22 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
thek9professional.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
5.2.88.83200 OK 0 B URL HTTP/2 thek9professional.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 03 Jun 2022 21:10:22 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
thek9professional.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
5.2.88.83200 OK 0 B URL HTTP/2 thek9professional.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 03 Jun 2022 21:10:22 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
thek9professional.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
5.2.88.83200 OK 0 B URL HTTP/2 thek9professional.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 03 Jun 2022 21:10:22 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
thek9professional.com/wp-content/plugins/wp-easycart/design/theme/base-responsive-v3/ec-store.js?ver=5_3_8
5.2.88.83200 OK 0 B URL HTTP/2 thek9professional.com/wp-content/plugins/wp-easycart/design/theme/base-responsive-v3/ec-store.js?ver=5_3_8
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-easycart/design/theme/base-responsive-v3/ec-store.js?ver=5_3_8 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 29 Sep 2022 21:54:14 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
thek9professional.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/motion-effects.js?ver=4.17.3
5.2.88.83200 OK 0 B URL HTTP/2 thek9professional.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/motion-effects.js?ver=4.17.3
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/motion-effects.js?ver=4.17.3 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 03 Jun 2022 21:10:11 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&subset=latin,latin-ext&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&subset=latin,latin-ext&display=swap
IP 142.250.74.10:0
GET /css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800&subset=latin,latin-ext&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 09:16:53 GMT
date: Tue, 04 Oct 2022 09:16:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
thek9professional.com/wp-content/plugins/wp-easycart/design/theme/base-responsive-v3/ec-store.css?ver=5_3_8
5.2.88.83200 OK 0 B URL HTTP/2 thek9professional.com/wp-content/plugins/wp-easycart/design/theme/base-responsive-v3/ec-store.css?ver=5_3_8
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-easycart/design/theme/base-responsive-v3/ec-store.css?ver=5_3_8 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 20 Sep 2022 22:18:50 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Nunito:200,200italic,300,300italic,regular,italic,600,600italic,700,700italic,800,800italic,900,900italic|Nunito+Sans:200,200italic,300,300italic,regular,italic,600,600italic,700,700italic,800,800italic,900,900italic|Roboto:100,100italic,300,300italic,regular,italic,500,500italic,700,700italic,900,900italic&subset=latin,latin-ext&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Nunito:200,200italic,300,300italic,regular,italic,600,600italic,700,700italic,800,800italic,900,900italic|Nunito+Sans:200,200italic,300,300italic,regular,italic,600,600italic,700,700italic,800,800italic,900,900italic|Roboto:100,100italic,300,300italic,regular,italic,500,500italic,700,700italic,900,900italic&subset=latin,latin-ext&display=swap
IP 142.250.74.10:0
GET /css?family=Nunito:200,200italic,300,300italic,regular,italic,600,600italic,700,700italic,800,800italic,900,900italic|Nunito+Sans:200,200italic,300,300italic,regular,italic,600,600italic,700,700italic,800,800italic,900,900italic|Roboto:100,100italic,300,300italic,regular,italic,500,500italic,700,700italic,900,900italic&subset=latin,latin-ext&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 09:16:53 GMT
date: Tue, 04 Oct 2022 09:16:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
thek9professional.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.17.3
5.2.88.83200 OK 0 B URL HTTP/2 thek9professional.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.17.3
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
GET /wp-content/themes/Divi/js/scripts.min.js?ver=4.17.3 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 03 Jun 2022 21:10:12 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
thek9professional.com/
5.2.88.83200 OK 0 B IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
link: <https://thek9professional.com/wp-json/>; rel="https://api.w.org/", <https://thek9professional.com/wp-json/wp/v2/pages/784>; rel="alternate"; type="application/json", <https://thek9professional.com/>; rel=shortlink
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-cache-status: UPDATING
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%7CMonda%7COpen+Sans%7CDroid+Serif&ver=6.0.2
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato%7CMonda%7COpen+Sans%7CDroid+Serif&ver=6.0.2
IP 142.250.74.10:0
GET /css?family=Lato%7CMonda%7COpen+Sans%7CDroid+Serif&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 09:16:53 GMT
date: Tue, 04 Oct 2022 09:16:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
thek9professional.com/wp-content/plugins/wp-easycart/design/theme/base-responsive-v3/owl.carousel.css?ver=6.0.2
5.2.88.83200 OK 0 B URL HTTP/2 thek9professional.com/wp-content/plugins/wp-easycart/design/theme/base-responsive-v3/owl.carousel.css?ver=6.0.2
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
GET /wp-content/plugins/wp-easycart/design/theme/base-responsive-v3/owl.carousel.css?ver=6.0.2 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 03 Sep 2021 18:30:14 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
thek9professional.com/wp-content/et-cache/784/et-divi-dynamic-784.css?ver=1663304012
5.2.88.83200 OK 0 B URL HTTP/2 thek9professional.com/wp-content/et-cache/784/et-divi-dynamic-784.css?ver=1663304012
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/et-cache/784/et-divi-dynamic-784.css?ver=1663304012 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 16 Sep 2022 04:53:32 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
thek9professional.com/wp-content/plugins/wp-easycart/design/theme/base-responsive-v3/owl.carousel.min.js?ver=5_3_8
5.2.88.83200 OK 0 B URL HTTP/2 thek9professional.com/wp-content/plugins/wp-easycart/design/theme/base-responsive-v3/owl.carousel.min.js?ver=5_3_8
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
GET /wp-content/plugins/wp-easycart/design/theme/base-responsive-v3/owl.carousel.min.js?ver=5_3_8 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 05 Aug 2021 21:42:44 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
thek9professional.com/wp-content/et-cache/784/et-core-unified-deferred-784.min.css?ver=1663304013
5.2.88.83200 OK 0 B URL HTTP/2 thek9professional.com/wp-content/et-cache/784/et-core-unified-deferred-784.min.css?ver=1663304013
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/et-cache/784/et-core-unified-deferred-784.min.css?ver=1663304013 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 16 Sep 2022 04:53:33 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
thek9professional.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.17.3
5.2.88.83200 OK 0 B URL HTTP/2 thek9professional.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.17.3
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.17.3 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 03 Jun 2022 21:10:11 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
thek9professional.com/wp-includes/css/dashicons.min.css?ver=6.0.2
5.2.88.83200 OK 0 B URL HTTP/2 thek9professional.com/wp-includes/css/dashicons.min.css?ver=6.0.2
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=6.0.2 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 03 Jun 2022 21:10:21 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
thek9professional.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
5.2.88.83200 OK 0 B URL HTTP/2 thek9professional.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 03 Jun 2022 21:10:22 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2
thek9professional.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1
5.2.88.83200 OK 0 B URL HTTP/2 thek9professional.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1
IP 5.2.88.83:0
ASN #198432 Ipcore Datacenters S.L
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1 HTTP/1.1
Host: thek9professional.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://thek9professional.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:16:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 03 Jun 2022 21:10:22 GMT
expires: Thu, 03 Nov 2022 09:16:53 GMT
cache-control: max-age=2592000
pragma: public
content-encoding: gzip
X-Firefox-Spdy: h2