r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9698
Expires: Sat, 04 Feb 2023 16:24:57 GMT
Date: Sat, 04 Feb 2023 13:43:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13235
Expires: Sat, 04 Feb 2023 17:23:54 GMT
Date: Sat, 04 Feb 2023 13:43:19 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 13:36:15 GMT
content-type: application/json
age: 424
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20890
Expires: Sat, 04 Feb 2023 19:31:29 GMT
Date: Sat, 04 Feb 2023 13:43:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ArTdb9weQakxK+bBoeUY30A2AIiZ/FIdwBgACsP8IHI7eLtnkbJ7d+4HvKN3hjTd80TbOkMVLDA=
x-amz-request-id: AQT7Y15W0F2JKATW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 13:24:01 GMT
age: 1158
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 13:43:19 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 12:49:07 GMT
age: 3252
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.perrysgroup.com/
192.254.184.96301 Moved Permanently 236 B IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bb83791e8aa8a3e40bbdffe4e6a9b980
97b69850ec7eb3c2bfb163c529644644feaa6ed3
0c01b1ef40f2963529c00acbf445b8c88d250a1f1c913f6c5d56f7321c78a04d
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 04 Feb 2023 13:43:19 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=7776000, enforce
Referrer-Policy: no-referrer-when-downgrade
X-Frame-Options: SAMEORIGIN
Permissions-Policy:
Location: https://www.perrysgroup.com/
Cache-Control: max-age=0
Expires: Sat, 04 Feb 2023 13:43:19 GMT
Content-Length: 236
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3869
Expires: Sat, 04 Feb 2023 14:47:48 GMT
Date: Sat, 04 Feb 2023 13:43:19 GMT
Connection: keep-alive
push.services.mozilla.com/
52.88.218.181101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.218.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BPiSpJr8RA47cjMTjBQgSA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wZy0wXmvdJ9VKJKxQGsk8Zep9rI=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9aa809b3ccec2dbd7dc3f612d9253be3
fa8aed58803e9d3e13b06d0d66fc2031080cb31c
0b0c32d04331aefefaf96f2ecf66dca0e6761358819db272cf58f8eeda24b739
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0B0C32D04331AEFEFAF96F2ECF66DCA0E6761358819DB272CF58F8EEDA24B739"
Last-Modified: Thu, 02 Feb 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 04 Feb 2023 19:43:20 GMT
Date: Sat, 04 Feb 2023 13:43:20 GMT
Connection: keep-alive
www.perrysgroup.com/
192.254.184.96301 Moved Permanently 0 B IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
x-redirect-by: WordPress
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
location: https://perrysgroup.com/
cache-control: max-age=0
expires: Sat, 04 Feb 2023 13:43:20 GMT
content-length: 0
content-type: text/html; charset=UTF-8
date: Sat, 04 Feb 2023 13:43:20 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4447
Expires: Sat, 04 Feb 2023 14:57:28 GMT
Date: Sat, 04 Feb 2023 13:43:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4447
Expires: Sat, 04 Feb 2023 14:57:28 GMT
Date: Sat, 04 Feb 2023 13:43:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4447
Expires: Sat, 04 Feb 2023 14:57:28 GMT
Date: Sat, 04 Feb 2023 13:43:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4447
Expires: Sat, 04 Feb 2023 14:57:28 GMT
Date: Sat, 04 Feb 2023 13:43:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 55980
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ac51fd6789cbe19c2d484c9022b0e39
bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9
300b5e50cb910f9f4905ee7313d98763b68f85f5874db499cc94469fb14cabfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9500
x-amzn-requestid: 8fe94388-e8d9-4329-b73a-e9a356df76bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9QEA1IAMF3Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8054-51f954ac4bec16d1055e38f5;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FkTJ6wQ4eFYBPDyS0l5vLeWvHHiQIx-cYyFzT4ggHJ8M5Gg3dozFxQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:30:36 GMT
age: 54765
etag: "bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: f95a2821-ae89-4ea9-93b2-43e570285df3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEC3FyboAMFe0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8078-7e2177f11d5715d4092cad2c;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dcFgY5x3Ef0J__7wGn3llTjZ9as5nX1H4HErIT3VlKfeQaQTjymW2g==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:33 GMT
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
age: 55968
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 99bf0073acf75f9e04b52a96bf47797b
fa68da2c92fa89ed3dafe9915e064fca022af21f
961b77616486483e5767f214d2417275b9c995614128acab3521b6cd2f8866e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8267
x-amzn-requestid: 8bf1f9c3-4508-489e-9f45-3ce50df74b0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEW0HM6IAMFXog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd80f8-2e7c768d54981cf1634830db;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:47:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: slDJVVNZDwjopU0kXbAvAJw4A0I_hGKXbRf9O15sXxmvu0JXe8yuPA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:17:59 GMT
etag: "fa68da2c92fa89ed3dafe9915e064fca022af21f"
content-type: image/jpeg
age: 55522
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:48:04 GMT
age: 57317
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G8F3Fflod6HB4QFtjpD09xzi-2LKPw_DBJT0PKYKU3bs3pvOwO_LRw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:32 GMT
age: 55969
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
perrysgroup.com/
192.254.184.96200 OK 23 kB IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash f6e95bb3728cb70ccc2aeeff06ae2cbe
9119d47099126f3c7a8f80dd8163270905bde860
89879e6b10c2dc305ef87642bd23a618822308e12633de7768dd62d9087a848e
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding,User-Agent
last-modified: Sat, 04 Feb 2023 04:56:01 GMT
accept-ranges: bytes
content-length: 23326
cache-control: max-age=0
expires: Sat, 04 Feb 2023 13:43:21 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 13:43:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 621b586028d5acaf29b8777ca0872ce1
9d2a358576d0acab58e2eacf7765b686cee9181f
a7c99a5217e394c715679780ae1e3e60202653547212b0a4fd2efab0e1a01015
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 13:43:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 13:43:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-Y1FRMFLVKT
142.250.74.40200 OK 80 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-Y1FRMFLVKT
IP 142.250.74.40:0
File type ASCII text, with very long lines (25667)
Hash 76e955f7b17fb4f7ce0feea1b61e42eb
0c94cd6e1586ea97dcbba8a2ed2cc6bb59a165c8
122cab7cb17babf4370a31fd501c47e8009f021152fb43df419e04df4e6bd40b
GET /gtag/js?id=G-Y1FRMFLVKT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://perrysgroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Feb 2023 13:43:21 GMT
expires: Sat, 04 Feb 2023 13:43:21 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79749
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 13:43:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6LfD-5EjAAAAAMIlvfh45SP8lmt56qlbo4kPJXMb&ver=1.1.1
142.250.74.164200 OK 585 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LfD-5EjAAAAAMIlvfh45SP8lmt56qlbo4kPJXMb&ver=1.1.1
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 5cdf7dc6cb93e5824cf76fbed2302c36
838e9e321102b059cc3eb814364ccbcac9d589f3
fd0b5443553f9dd2501bab980b1af19c05646ff10cce7f02c8751d67726688d2
GET /recaptcha/api.js?render=6LfD-5EjAAAAAMIlvfh45SP8lmt56qlbo4kPJXMb&ver=1.1.1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://perrysgroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 04 Feb 2023 13:43:21 GMT
date: Sat, 04 Feb 2023 13:43:21 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 13:43:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
perrysgroup.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
192.254.184.96200 OK 3.7 kB URL HTTP/2 perrysgroup.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15672), with no line terminators
Hash 607799bfa5d48117a95cd9dda8a17c2b
9a969f06c70600b753b160db19a5d37c9d249d10
78f67e192604e0dca624c2dcc8ea7cd6c54e14fe15918e7c9586ec1a22775876
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:21 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 3725
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-includes/css/classic-themes.min.css?ver=1
192.254.184.96200 OK 189 B URL HTTP/2 perrysgroup.com/wp-includes/css/classic-themes.min.css?ver=1
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:38 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 189
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/elementor/css/post-9.css?ver=1673835935
192.254.184.96200 OK 839 B URL HTTP/2 perrysgroup.com/wp-content/uploads/elementor/css/post-9.css?ver=1673835935
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3396)
Hash 7480d645b970218c104c1435da19453d
274df33caf0544189eb3ebb629a35ec8f98742e6
2668c1fdb0c7d9f49f7b92d6a2db199018006c74665c447a975cf9a8ffe35afb
GET /wp-content/uploads/elementor/css/post-9.css?ver=1673835935 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:35 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 839
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/themes/hello-theme-child-master/style.css?ver=1.0.0
192.254.184.96200 OK 373 B URL HTTP/2 perrysgroup.com/wp-content/themes/hello-theme-child-master/style.css?ver=1.0.0
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash ee38bac049025669093afeb0ad3f67c7
85bd4513170487ef1ea748bc581d5ff4a5a5853e
30b51790001f4235a352f0520aaf27636b49dfaeec9bef88c4ecce75a3e55704
GET /wp-content/themes/hello-theme-child-master/style.css?ver=1.0.0 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:21 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 373
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=1673835938
192.254.184.96200 OK 4.1 kB URL HTTP/2 perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=1673835938
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19673)
Hash f1df7b5454854db75f82577bd4651b01
fb7541b959351d31f015216d4293e9e8462c2545
c59f40f70fe6bc8d55e6b57b348765f4d9c4929f2407a2d84e0dca8719381bb5
GET /wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=1673835938 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:38 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 4063
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 13:43:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
perrysgroup.com/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
192.254.184.96200 OK 2.3 kB URL HTTP/2 perrysgroup.com/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6051), with no line terminators
Hash c0a774e614f840a7f380a9aa68f16ac3
d42d9e9c586feba86b3accaf869ca2a365469b54
294b8486de91d8403977d27d636c158fe64ed0c93ce11902ed2f2b10f31d113f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/hello-elementor/style.min.css?ver=2.6.1 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:21 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 2332
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/premium-addons-elementor/pa-frontend-61d9bdece.min.css?ver=1675486559
192.254.184.96200 OK 4.2 kB URL HTTP/2 perrysgroup.com/wp-content/uploads/premium-addons-elementor/pa-frontend-61d9bdece.min.css?ver=1675486559
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19712), with no line terminators
Hash 1db5783c2e17e55e350c7aa54226e6e5
22f16f17e2cde0457ff41e57dca009efb28099ef
c804abc14da70d6b7472a6e446794dc2b326692858b45f09551e5576e72a85f3
GET /wp-content/uploads/premium-addons-elementor/pa-frontend-61d9bdece.min.css?ver=1675486559 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 30 Jan 2023 10:58:37 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 4229
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.9.1
192.254.184.96200 OK 1.6 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.9.1
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8733)
Hash b08b2ddf3780c3c778a25261d7e24d42
430bc862d41fe47bd6b68a2f4dee52164470458c
c14e1c8b035c9abfa0f6573cd3005b06fc4b5198d0d5fd7a725919d73906083d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.9.1 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 03:15:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 1606
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/elementor/css/post-97.css?ver=1675054562
192.254.184.96200 OK 2.9 kB URL HTTP/2 perrysgroup.com/wp-content/uploads/elementor/css/post-97.css?ver=1675054562
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12154), with CRLF, LF line terminators
Hash 8fc572c517974cc9b301249657074369
29dea2ee23b19302bd08a1823fd5df38a67288f3
601faab2b8324d438ee830903d7f28e3d7f39a00c935ab3da04e10e3c81032fa
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-97.css?ver=1675054562 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 30 Jan 2023 04:56:02 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 2881
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/elementor/css/post-93.css?ver=1673835936
192.254.184.96200 OK 1.2 kB URL HTTP/2 perrysgroup.com/wp-content/uploads/elementor/css/post-93.css?ver=1673835936
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3999)
Hash b94195d1abcf5de726cf8d4f4930da3e
6481efbeef9818558d3671dbe6fb64d5249957f7
c276b4816f7cf248cf22f0782aa9d625532a6fe4a9041843a267d6604fa0e3cf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-93.css?ver=1673835936 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:36 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 1208
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/cache/min/1/wp-content/themes/hello-theme-child-master/css/main.css?ver=1673835938
192.254.184.96200 OK 287 B URL HTTP/2 perrysgroup.com/wp-content/cache/min/1/wp-content/themes/hello-theme-child-master/css/main.css?ver=1673835938
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (458), with no line terminators
Hash 83f51ad887460d4d50521e99dd10389e
dc85dd0c2f7c1e91fd6746c10828a3800f72d9c6
92bec8ef76637606a3d01841c889cd4c8cacfad08a0b6d3d13512e13e71bd6bc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-content/themes/hello-theme-child-master/css/main.css?ver=1673835938 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:38 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 287
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/wpmss/wpmssab.min.js?ver=1669389215
192.254.184.96200 OK 49 B URL HTTP/2 perrysgroup.com/wp-content/uploads/wpmss/wpmssab.min.js?ver=1669389215
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with no line terminators
Hash c6bb33cac10b5b25bdab003d0df25476
7c3a4b93abc60ca08704f9e5637c6454f82a1a76
a32f766f2db51e03c7b2ca639b479f52e620b26004302a5408ad3c59ac9aeefa
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/wpmss/wpmssab.min.js?ver=1669389215 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:21 GMT
accept-ranges: bytes
content-length: 49
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/themes/hello-theme-child-master/js/main.js?ver=1
192.254.184.96200 OK 0 B URL HTTP/2 perrysgroup.com/wp-content/themes/hello-theme-child-master/js/main.js?ver=1
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/hello-theme-child-master/js/main.js?ver=1 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:21 GMT
accept-ranges: bytes
content-length: 0
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=1671678297
192.254.184.96200 OK 39 B URL HTTP/2 perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=1671678297
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with no line terminators
Hash f39beb38bd09e8d2111deec9c1ff2bc1
e1e0ea37ddcc589d890e14e59bd892a320ae4466
89b87d53f74bf77c35b63352937c490fa8e07f70eb549d9307ea8e945fc00bc4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=1671678297 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Thu, 22 Dec 2022 03:04:57 GMT
accept-ranges: bytes
content-length: 39
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/elementor/css/post-89.css?ver=1673835936
192.254.184.96200 OK 3.4 kB URL HTTP/2 perrysgroup.com/wp-content/uploads/elementor/css/post-89.css?ver=1673835936
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11530)
Hash c0c179cbe2d93e1181178af7274653da
4621eff80c057f9d5527c2b311c547d1ac162d33
ab8ab0228d653091eeaaaaccfd9a8c2ca82f66e525dc164dabe110ecf29ce055
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-89.css?ver=1673835936 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:36 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 3381
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
192.254.184.96200 OK 8.3 kB URL HTTP/2 perrysgroup.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 838560e989767f2ef5951b9eeee20352
6bf8419cb4d68d9beced9e4b79b22b347ae16a46
72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:37 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 8344
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/koko-analytics/assets/dist/js/script.js?ver=1671678296
192.254.184.96200 OK 691 B URL HTTP/2 perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/koko-analytics/assets/dist/js/script.js?ver=1671678296
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1014)
Hash 2cb168862d289ae23c98bc2ac74035ae
b6ca5f63dabe3ef0addd2e52171253aed57b07d1
ce82fd4b81d57c4ba8251fd5984d74fd5376ecdc2702b8474414cbd548e1b526
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-content/plugins/koko-analytics/assets/dist/js/script.js?ver=1671678296 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Thu, 22 Dec 2022 03:04:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 691
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/elementor/css/post-3700.css?ver=1674823077
192.254.184.96200 OK 523 B URL HTTP/2 perrysgroup.com/wp-content/uploads/elementor/css/post-3700.css?ver=1674823077
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2043), with no line terminators
Hash 6f8b793e2aa584d6991f4c0f9c024ea0
a02d4162c6856e96cc8987cb30a4a5be409b1ed1
cfafa57ac2edec1ba3c5c4a3fdd2ae56cefe8da8fe8ada1b6657e99db58f3f6d
GET /wp-content/uploads/elementor/css/post-3700.css?ver=1674823077 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Fri, 27 Jan 2023 12:37:57 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 523
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
192.254.184.96200 OK 1.4 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9804)
Hash 068ae2f2243ff380eae839ccae3e4377
0cdfe75eca53dde2a73e6b9c0bdcb33f9b49dac9
62234075bf12528e8d80d3ed656c8647e4a105c54b1ce64f08cda29d47317638
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:24:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 1442
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/prettyPhoto.min.js?ver=4.9.46
192.254.184.96200 OK 7.4 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/prettyPhoto.min.js?ver=4.9.46
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (22025), with no line terminators
Hash 4ba0f8a5750f6fcce21379bc67503248
5acd95f25fe69ce486856d64220b92c7db1173f6
a78417d478e0405a2b9b93d1782ac1e67c5f1cd7ebb3ca720ebbfff1f6ceb50a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/prettyPhoto.min.js?ver=4.9.46 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:25 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 7412
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/elementor/css/post-4254.css?ver=1673835972
192.254.184.96200 OK 583 B URL HTTP/2 perrysgroup.com/wp-content/uploads/elementor/css/post-4254.css?ver=1673835972
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (2638), with no line terminators
Hash 5b540dffba22f7c800fbbf3a510c64db
ba2a15c828b56c235d8b1f7718e5d815d564aeb4
b564735e8bc2fc00d6849e0b011c74464ce26ccc6f12f7dc444b82872fa77033
GET /wp-content/uploads/elementor/css/post-4254.css?ver=1673835972 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:26:12 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 583
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor-pro/assets/css/widget-posts.min.css
192.254.184.96200 OK 3.0 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor-pro/assets/css/widget-posts.min.css
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (14105)
Hash d0be9e9f495d6c22415c19e9dd07d3cc
cea9cb60ad7898ca6f9618ecfb27a02a0a27fb3d
761ea220b563a981bba82729c2a5b0cc3a75b02bd77d1e96d5049ea0a938e0bb
GET /wp-content/plugins/elementor-pro/assets/css/widget-posts.min.css HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 03:15:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 3009
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/powerpack-elements/assets/lib/isotope/isotope.pkgd.min.js?ver=0.5.3
192.254.184.96200 OK 13 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/powerpack-elements/assets/lib/isotope/isotope.pkgd.min.js?ver=0.5.3
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32019)
Hash 79bdc8a5c2a9c6ba42ef1ec8ba415eec
260a40aaafeca5df5fedf236d22dea4d175f1dde
476c850c6c72f0e91c30758823a3e2959dff3c03d30accf5b026422dc824ad65
GET /wp-content/plugins/powerpack-elements/assets/lib/isotope/isotope.pkgd.min.js?ver=0.5.3 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:19 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 13105
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/premium-addons-elementor/pa-frontend-61d9bdece.min.js?ver=1675486559
192.254.184.96200 OK 3.8 kB URL HTTP/2 perrysgroup.com/wp-content/uploads/premium-addons-elementor/pa-frontend-61d9bdece.min.js?ver=1675486559
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10346), with no line terminators
Hash ced93f0a28a07db21f208d4f82e52dcb
81faf70a19dc776aa1a4a969055812d8d4dbd48f
9e4f2ecf4a7ca5b729a4374e0fd65f3e0eafff357d12f5e6570ac63ae38a1288
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/premium-addons-elementor/pa-frontend-61d9bdece.min.js?ver=1675486559 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 30 Jan 2023 10:58:37 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 3821
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/powerpack-elements/assets/lib/jquery-resize/jquery.resize.min.js?ver=0.5.3
192.254.184.96200 OK 1.3 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/powerpack-elements/assets/lib/jquery-resize/jquery.resize.min.js?ver=0.5.3
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3198), with no line terminators
Hash f9ebd31130d1ddc32fb25143be97cf88
93711c1fffc5701d2fcdd2a1cb8a5e271c8c2ea9
d81f82493ee13823ca335f2b4b72f61bce8adf3575c47d430897779556485c0f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/powerpack-elements/assets/lib/jquery-resize/jquery.resize.min.js?ver=0.5.3 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:19 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 1339
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
192.254.184.96200 OK 3.7 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:24:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 3747
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/powerpack-elements/assets/js/min/pp-posts.min.js?ver=2.9.14
192.254.184.96200 OK 3.3 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/powerpack-elements/assets/js/min/pp-posts.min.js?ver=2.9.14
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11425), with no line terminators
Hash 45646067f86e2764da390130365e4fdb
0410769e388c39ba3c843f1f081e0ccab7781cdf
b37795dbb7c7969df06a784cefa40c4aa96e306d57efe71b1a486b53aca97594
GET /wp-content/plugins/powerpack-elements/assets/js/min/pp-posts.min.js?ver=2.9.14 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:19 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 3298
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/mousewheel-smooth-scroll/js/SmoothScroll.min.js?ver=1.4.10
192.254.184.96200 OK 3.6 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/mousewheel-smooth-scroll/js/SmoothScroll.min.js?ver=1.4.10
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7551), with no line terminators
Hash 6939f1ef53a6bf89921d3bddf4919f25
41df4f0ba8f02c382da92f957d77f3c14e2f331f
ae71ff1212bd67cc004d1fc656025326b84be80629b7435b949f1b9ff7378b1a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/mousewheel-smooth-scroll/js/SmoothScroll.min.js?ver=1.4.10 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:04 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 3583
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
192.254.184.96200 OK 4.6 kB URL HTTP/2 perrysgroup.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:37 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 4618
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/wpmss/wpmss.min.js?ver=1669389215
192.254.184.96200 OK 152 B URL HTTP/2 perrysgroup.com/wp-content/uploads/wpmss/wpmss.min.js?ver=1669389215
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with no line terminators
Hash 8171cad7013c971d3c00a5baa1ae2793
8c93c03f3c96b050da799e2dc693125482ff729b
e8028da869cdfc8101285d66c42741ad7f8e800501cd44f3f058a979e41dcb04
GET /wp-content/uploads/wpmss/wpmss.min.js?ver=1669389215 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:21 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 152
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js
192.254.184.96200 OK 3.3 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8290)
Hash 2449a77badee23a0201f15cf944a9c19
ef49f2c5417427fadfcf2576b2abb36d95219cf6
16e6ae5c7a55506aef550837228b621a5f5a791a3af0ac6ded4a2e41a3fee0f3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:50 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 3270
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=1673835938
192.254.184.96200 OK 13 kB URL HTTP/2 perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=1673835938
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 06dd82cb7c70e6392964506ba16fc887
e9da810ab5f97574a0fc603c30ea82577f94aebd
55e46ac304b11918b18d89ff41430987e2183126960f2be999ebd19e491d690a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=1673835938 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:38 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 12980
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/elementor/css/post-4253.css?ver=1673835972
192.254.184.96200 OK 581 B URL HTTP/2 perrysgroup.com/wp-content/uploads/elementor/css/post-4253.css?ver=1673835972
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (2638), with no line terminators
Hash d143c6e6b59d5e2a5ce51eacfe13f797
0d575e7e8a77985392f032791e8307cb28fd5a16
d278d0fc826d2b4f09bd9d7e34fe81c6c9ad05f170e3c31053991c57043e54ff
GET /wp-content/uploads/elementor/css/post-4253.css?ver=1673835972 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:26:12 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 581
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=1673835939
192.254.184.96200 OK 360 B URL HTTP/2 perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=1673835939
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (896)
Hash d2bfc53854ba982c3fac734ddc991acf
25ce4c0c5b9e1736e7ec1211b1ca8dda71aa4429
0885f3f0b6d1293587b5d22020f2bf5ddf8031e744d604c6d0998933ebf528af
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=1673835939 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:39 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 360
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/prettyphoto.min.css?ver=4.9.46
192.254.184.96200 OK 3.9 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/prettyphoto.min.css?ver=4.9.46
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19729), with no line terminators
Hash adf480551672bbe7323f04b4d5493c39
e144c00368670f6b38957739a7a1eee58af43b7a
6447d2f9ef93fe7f773b154e48ec9141c31a935e065b8606c15956ac203cb436
GET /wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/prettyphoto.min.css?ver=4.9.46 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:25 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 3901
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
192.254.184.96200 OK 13 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (57726)
Hash dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:24:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 12577
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=1673835939
192.254.184.96200 OK 4.4 kB URL HTTP/2 perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=1673835939
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30283), with no line terminators
Hash c2c381b76f533a3992b1060b1e8275ed
8441603d412df07e265d70d72569bd3ed90c51ee
6b1c02e5f7f5a04d0320c0a69a67651c6c322b81dfcf1ad9ca29e0f7374cf613
GET /wp-content/cache/min/1/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=1673835939 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:39 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 4436
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
192.254.184.96200 OK 4.2 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (25900)
Hash e456e4a1cd41115a0f1d7c4c56628ef0
431a70074ccd9346a55105b74b00e86c4ab422e8
87fb481d443cb9e230dcf2da6cf5e06b933a2a32ba29a3ef33e069fd9683d171
GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 03:15:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 4181
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
192.254.184.96200 OK 7.6 kB URL HTTP/2 perrysgroup.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 66c68f2158dcf7d97a02f3719a17aab0
fdb04fb4c632b9fb4275006a4e402cd0d4fa393a
e4b360f0e6ae1afc06f05f958e8696e5ae45257912bc2ab0b9334bd1382a51aa
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:37 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 7621
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.9.1
192.254.184.96200 OK 8.1 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.9.1
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (27134)
Hash 67354c35ff9e38a0746983f6ffcc0b22
6678a0be83300a60ecf3573f23c7cd8ad65ddcfd
0618856888583986fa45468696716d4a8b38d74f3129a2c0c3e3daaa0dcc569e
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.9.1 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 03:15:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 8104
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.0
192.254.184.96200 OK 2.4 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.0
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4974)
Hash e547f793f6411cf52accd254a51a74e9
a49195a27e246d0bdda528f43786e88f3c65b0a8
ac963d8d4de61882bccf4fd3842f797cf424363c13f984eaaae85f1e3213c91c
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.0 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:24:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 2354
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=1671678297
192.254.184.96200 OK 6.3 kB URL HTTP/2 perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=1671678297
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18722), with no line terminators
Hash dd3cd75a6b74009fbffc8cb5f974758d
63835518bf39aa089df0ab836fc87ca2ce14c5fe
cb68a1e79bdcd4a52e1bcd96579df871c06c306991bdd923198239931268d56e
GET /wp-content/cache/min/1/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=1671678297 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Thu, 22 Dec 2022 03:04:57 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 6345
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.9.1
192.254.184.96200 OK 7.6 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.9.1
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (21520)
Hash 9013df4b2683a3c6ffc59ee763de605f
06ebac5f36f4abd74b0b7fc69c1f16e626dcf806
688704c9aa6595adae4c1ed6010294f9638810d9b89e35d58b6be3dff4c3886d
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.9.1 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 03:15:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 7624
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
192.254.184.96200 OK 9.6 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (25115)
Hash e99001fb08857cb6e0a1688b290f924f
d8f9fcd3ccdcfe0b20ed3d408a48e8e32930c3a9
e5727ab5ba79eabd8400fd8941413d844a55642198770193780558cd2afdfab0
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 03:15:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 9638
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.0
192.254.184.96200 OK 16 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.0
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (40802)
Hash dd4a1442bb73e2f1236eedab72e928f8
4f44f4429e53fddbedd389873ddacdaf17c4cd96
5c54410eb9517e459859013d97677e7baf4701f57465c4bdd3dbf30f99a0ac0f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.0 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:24:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 16265
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=1671678297
192.254.184.96200 OK 442 B URL HTTP/2 perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=1671678297
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (809), with no line terminators
Hash 7d36b05e73b89dadc0104e647537098f
dc030a33305b6934fc4c47c07695ce4256079fed
6ca1a51c13d96fdfd4ee6ae0e59cd6849673df5365e9a98fcab7b7aaca2d48f4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=1671678297 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Thu, 22 Dec 2022 03:04:57 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 442
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
192.254.184.96200 OK 2.1 kB URL HTTP/2 perrysgroup.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5477)
Hash f0bd7ad12acdee26cbb2701c1ba3610b
53c5d15129860868b60b74cb010b2c6050a64f69
e6d0cb19e56d22e8e511c23ca2bd233bedb40e3c7cf4ff38fe6f059bc7e0c64f
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:36 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 2103
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/powerpack-elements/assets/js/min/frontend.min.js?ver=2.9.14
192.254.184.96200 OK 13 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/powerpack-elements/assets/js/min/frontend.min.js?ver=2.9.14
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (36400), with no line terminators
Hash c4653636ca469f7373d6820081807d9b
8349b466d2bb67a0cfaff9c1d61693ce95a1f253
00a92f00d22d0d5b19683e35aa6f8735b92a3d8a7e61fbac5025206b21c1460b
GET /wp-content/plugins/powerpack-elements/assets/js/min/frontend.min.js?ver=2.9.14 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:19 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 13249
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.9.1
192.254.184.96200 OK 1.7 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.9.1
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3720)
Hash ad21b1bf229878a0b4ca799b70d05bf7
dd5e9bdc9bb91397ab5593525fd82d3d961ff54b
82a562fe89172f5aa4f56886e45f826846ccf8e1626aa3dc3be749e26cec44ff
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.9.1 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 03:15:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 1689
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.2
192.254.184.96200 OK 6.0 kB URL HTTP/2 perrysgroup.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.2
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18142)
Hash b8ec01ed152d9f94651489e750ecda6e
3dba94094a69268410b2f9df9ed4711280e760a9
1450efd6a46aeb2efeae13ac8798daa999282bdfaf41912297b5ba0a1606d601
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.2 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:37 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 6008
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.9.1
192.254.184.96200 OK 2.5 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.9.1
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5256)
Hash 4e666d835ece6ca98f9fcb8b6b2c63cd
1acd31c4034a4d0454ce9037f32c4427f6b03e12
24e39c3b0bdf1412ddede5f83a4e9e2f4e59f1ab1a3d0aaf8d74a160c72842a9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.9.1 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 03:15:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 2502
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/elementor/css/post-3647.css?ver=1673835971
192.254.184.96200 OK 659 B URL HTTP/2 perrysgroup.com/wp-content/uploads/elementor/css/post-3647.css?ver=1673835971
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1369)
Hash ecac95e911ea759430a0ab18a673e3ce
1f89e328aec2340392fde86faac93aa15be1cacd
898968611585a56ae7fa1a2a6fda4ce919b2f7b0d8d426e70568c6bb654b9f2a
GET /wp-content/uploads/elementor/css/post-3647.css?ver=1673835971 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:26:11 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 659
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/slick.min.css?ver=4.9.46
192.254.184.96200 OK 1.3 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/slick.min.css?ver=4.9.46
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3956), with no line terminators
Hash ccc1a9d52de60b459cbb317a009cc6c2
3b2fbb58110d16ae78adec35c9430dae4ba8e9b5
ff7b406b8c355f23253fe4ceed3c123c044b5b61909bd6fa0a8bf2d9466d296b
GET /wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-css/slick.min.css?ver=4.9.46 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:25 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 1270
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=1673835972
192.254.184.96200 OK 13 kB URL HTTP/2 perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=1673835972
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (60397)
Hash 4bec3c3885a3887c90cd32bb5f90734e
5d88280900fbaee32a59b41bcc40e33468aab6cb
5bceba105a8d90276586ac48947b8326b13cf00dd2a514923c6b775ca0c6c261
GET /wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=1673835972 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:26:12 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 13136
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/cache/min/1/wp-content/themes/hello-theme-child-master/js/plugin/jquery.cookie.js?ver=1671678297
192.254.184.96200 OK 913 B URL HTTP/2 perrysgroup.com/wp-content/cache/min/1/wp-content/themes/hello-theme-child-master/js/plugin/jquery.cookie.js?ver=1671678297
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 126e5af0345bf990f5435a2f10bebad7
69dfe62900755fbdbcde9a695f3c47587e8daba2
58b072d2d7994445e8abe3aba63c7e096a41f0f64c4f027968276b8430a9baae
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-content/themes/hello-theme-child-master/js/plugin/jquery.cookie.js?ver=1671678297 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Thu, 22 Dec 2022 03:04:57 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 913
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
192.254.184.96200 OK 4.2 kB URL HTTP/2 perrysgroup.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 3b62593186f7f91a9470ab6968ec5feb
bd7728c79c04f4f2f7a787097b0868e06ceba5ad
2a9920dc63cbd8228103c7d6bf2a044f06963041253c385c3cebb147297aa782
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:37 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 4233
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/powerpack-elements/assets/lib/fancybox/jquery.fancybox.min.css?ver=2.9.14
192.254.184.96200 OK 4.4 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/powerpack-elements/assets/lib/fancybox/jquery.fancybox.min.css?ver=2.9.14
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13890), with no line terminators
Hash 1e1f62fd1469feed9ef119959d2214c1
482e7de8caa3bb14ffcac181721451c9f1f7d766
b6a194b63d102c94f93df12b622a268cff61d46ddac69668da9ad766ba1bcbbb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/powerpack-elements/assets/lib/fancybox/jquery.fancybox.min.css?ver=2.9.14 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:19 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 4427
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/slick.min.js?ver=4.9.46
192.254.184.96200 OK 14 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/slick.min.js?ver=4.9.46
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (42736), with no line terminators
Hash c13d336dbd7375dc834fc6d9e6f939d8
5f38eda7c13ff88322fa4250cfec62d52d54fb7e
10c50f113d19a2382f37ed64ac8c9823fe5b30fd4aa6259543951f617e350abc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/premium-addons-for-elementor/assets/frontend/min-js/slick.min.js?ver=4.9.46 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:25 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 14261
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.2
192.254.184.96200 OK 1.2 kB URL HTTP/2 perrysgroup.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.2
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3224)
Hash 87f4bed252eb77668e3636037c916000
19ac51a9adf3a496fbfc0e6dfb54952ef8fae188
a3b5817302966ca45859092e630e4e0e847f3c20b9ef7b285233aa7ecef5c8bb
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.2 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:37 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 1229
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
192.254.184.96200 OK 1.7 kB URL HTTP/2 perrysgroup.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4875)
Hash 6a452794a68bc140a53b30519b94edf6
68046f5611ba3cf5da1c46087609aff18f59fdc1
259990a9e6191a72a51ac9d038d0c52bb56d880a2b0d460b1fca3f3fee7961ed
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:37 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 1712
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.0
192.254.184.96200 OK 14 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.0
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (35645)
Hash bc741e3d27c53d6c88c644a7db97d397
22c6d8166400b00b2d0dd02a61565dc462270668
1f09b274a1505d2f35f592aa9b5b9f33edc72a3604e27a75f636e362232d7b53
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.0 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:24:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 14304
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
192.254.184.96200 OK 2.7 kB URL HTTP/2 perrysgroup.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6475), with no line terminators
Hash 45bd1d6f7fc3a4069fc6fd400b90c961
903c7e28c7141e9fc1bdb4dfc62d043a97a01e2d
c638a0057b4be0a61cfb65b1860a855a327397e9871f5dde28fa2f138fb394dc
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:37 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-length: 2675
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 13:43:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/metrophobic/v19/sJoA3LZUhMSAPV_u0qwiAQ-O5X8.woff2
142.250.74.35200 OK 19 kB URL HTTP/2 fonts.gstatic.com/s/metrophobic/v19/sJoA3LZUhMSAPV_u0qwiAQ-O5X8.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 18608, version 1.0\012- data
Hash bd09b437d0840ee050d0242019081942
1127d18764d37c594e0d4d3f4b7994d1794b7f85
3084249fbc55202b0bcbc9228797a9ad61ca0b8899f24ec9ff3480f70991ecd8
GET /s/metrophobic/v19/sJoA3LZUhMSAPV_u0qwiAQ-O5X8.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://perrysgroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18608
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 01:18:54 GMT
expires: Fri, 02 Feb 2024 01:18:54 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 15:51:53 GMT
content-type: font/woff2
age: 217468
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/2022/11/PERRYS-HERO3.png
192.254.184.96200 OK 261 kB URL HTTP/2 perrysgroup.com/wp-content/uploads/2022/11/PERRYS-HERO3.png
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 3360 x 1208, 8-bit colormap, non-interlaced\012- data
Size 261 kB (260566 bytes)
Hash 22effe9354a87fa663f334f23de7ce04
1885df3be07827a4b53b1119390b8c56352a599d
72a7342e2fc76183cc16271618835c8f8b1d154ee5a50fdd816932f61c588c15
GET /wp-content/uploads/2022/11/PERRYS-HERO3.png HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Fri, 27 Jan 2023 12:27:45 GMT
accept-ranges: bytes
content-length: 260566
cache-control: max-age=10368000, public
expires: Sun, 04 Jun 2023 13:43:22 GMT
content-type: image/png
date: Sat, 04 Feb 2023 13:43:22 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/chivo/v18/va9I4kzIxd1KFrBoQeM.woff2
142.250.74.35200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/chivo/v18/va9I4kzIxd1KFrBoQeM.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 31216, version 1.0\012- data
Hash 9d57cf636bfec7981ca5ce494303afd5
442c8d98b87190d0937dfba2e55b500bfc8a95d8
64aa7a01c38e5f51aa6b7cd48decf2bd9ef228857df6ff47b0f58b38c1bdfc30
GET /s/chivo/v18/va9I4kzIxd1KFrBoQeM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://perrysgroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31216
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 02:11:45 GMT
expires: Sat, 03 Feb 2024 02:11:45 GMT
cache-control: public, max-age=31536000
age: 127897
last-modified: Thu, 17 Nov 2022 15:51:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/aleo/v11/c4mg1nF8G8_syLbsxDJJnw.woff2
142.250.74.35200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/aleo/v11/c4mg1nF8G8_syLbsxDJJnw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 25184, version 1.0\012- data
Hash 2b11d37c52a63b34b94a9f41d7e44569
8ce6d0ac53a5dcd6a8f88f63d145fc6a1f4a47d3
b8d66ac9fd1ff6e3a9e3bd50dec6c269697787363cdc1e42d1fbb470f1f61ad9
GET /s/aleo/v11/c4mg1nF8G8_syLbsxDJJnw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://perrysgroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25184
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 19:41:28 GMT
expires: Thu, 01 Feb 2024 19:41:28 GMT
cache-control: public, max-age=31536000
age: 237714
last-modified: Tue, 19 Apr 2022 18:52:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 13:43:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
perrysgroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
192.254.184.96200 OK 78 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=1673835972
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
last-modified: Mon, 16 Jan 2023 02:24:56 GMT
accept-ranges: bytes
content-length: 78196
cache-control: max-age=10368000
expires: Sun, 04 Jun 2023 13:43:22 GMT
vary: Accept-Encoding
content-type: font/woff2
date: Sat, 04 Feb 2023 13:43:22 GMT
server: Apache
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-Y1FRMFLVKT>m=45je3210&_p=1894780753&cid=1969926635.1675518239&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675518238&sct=1&seg=0&dl=https%3A%2F%2Fperrysgroup.com%2F&dt=Perry%27s%20Group&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-Y1FRMFLVKT>m=45je3210&_p=1894780753&cid=1969926635.1675518239&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675518238&sct=1&seg=0&dl=https%3A%2F%2Fperrysgroup.com%2F&dt=Perry%27s%20Group&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-Y1FRMFLVKT>m=45je3210&_p=1894780753&cid=1969926635.1675518239&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675518238&sct=1&seg=0&dl=https%3A%2F%2Fperrysgroup.com%2F&dt=Perry%27s%20Group&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://perrysgroup.com
Connection: keep-alive
Referer: https://perrysgroup.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://perrysgroup.com
date: Sat, 04 Feb 2023 13:43:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/2020/08/flag.png
192.254.184.96200 OK 960 B URL HTTP/2 perrysgroup.com/wp-content/uploads/2020/08/flag.png
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 70 x 74, 8-bit colormap, non-interlaced\012- data
Hash 5c93ae685f71fcd9e5fd4e488ed664ba
d80c99178504d413fc9cd43c3f9289e3c372697c
484f24dd162d3fb3c1b91bdc3eddc2fa6f64d2173aedee4a96e81964c840bc31
GET /wp-content/uploads/2020/08/flag.png HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Fri, 13 Jan 2023 05:36:48 GMT
accept-ranges: bytes
content-length: 960
cache-control: max-age=10368000, public
expires: Sun, 04 Jun 2023 13:43:23 GMT
content-type: image/png
date: Sat, 04 Feb 2023 13:43:23 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/2022/11/Perrys-Original.jpg
192.254.184.96200 OK 9.7 kB URL HTTP/2 perrysgroup.com/wp-content/uploads/2022/11/Perrys-Original.jpg
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x78, components 3\012- data
Hash 00eef7e9fc6fed0202ce83dab7051ed3
11894c6336f852d77d153c7efdf521ad80996fda
78c1a5b8057a6d43f00553168f386c926a5cb0d7c69d8b72536ca832c77c8ced
GET /wp-content/uploads/2022/11/Perrys-Original.jpg HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Wed, 21 Dec 2022 08:24:07 GMT
accept-ranges: bytes
content-length: 9674
cache-control: max-age=10368000, public
expires: Sun, 04 Jun 2023 13:43:23 GMT
content-type: image/jpeg
date: Sat, 04 Feb 2023 13:43:23 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Metrophobic%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CChivo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAleo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap
142.250.74.74200 OK 248 kB URL HTTP/2 fonts.googleapis.com/css?family=Metrophobic%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CChivo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAleo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap
IP 142.250.74.74:0
Size 248 kB (248061 bytes)
Hash d912420f3714f80d1d7a5d4f924e8e93
77d909a7d49616a31d1d9e80ad7ca4ecb9a7cd2b
ca4d58cd3daf8d27305515d5edfba2e7a44a24b07171dfbbde821cc398188c99
GET /css?family=Metrophobic%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CChivo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAleo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://perrysgroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 13:43:21 GMT
date: Sat, 04 Feb 2023 13:43:21 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
192.254.184.96200 OK 672 B URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1320)
Hash bc4887e40a832e826d8bb54d8f7f7b1a
dfa1cd11a27d45ad11a89b9a8cc9c6e572dd7460
2a88ca7a5d4ac1a995d3fc6d920200f00afb4b8429bc0384808cac37e6d9e1ad
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Cookie: _ga_Y1FRMFLVKT=GS1.1.1675518238.1.0.1675518238.0.0.0; _ga=GA1.1.1969926635.1675518239
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:24:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:23 GMT
content-encoding: gzip
content-length: 672
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:23 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor/assets/js/lightbox.062e482fd73fca037d19.bundle.min.js
192.254.184.96200 OK 11 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor/assets/js/lightbox.062e482fd73fca037d19.bundle.min.js
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (28954)
Hash 5d227a6dadc35a815f17ddd31c1d7daa
b981fd330a191cb56969a7d48d8e402bfbd70adb
3148bce03feca6ed22b59ccb9685f96c2eb06313cf5fb376cbe385fd32f1ac25
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/lightbox.062e482fd73fca037d19.bundle.min.js HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Cookie: _ga_Y1FRMFLVKT=GS1.1.1675518238.1.0.1675518238.0.0.0; _ga=GA1.1.1969926635.1675518239
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:24:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:23 GMT
content-encoding: gzip
content-length: 11353
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:23 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js
192.254.184.96200 OK 1.4 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3262)
Hash 701e648a1ea827372f61157ee4cb8107
58b40b8953194bbfe53b38ab24925ff330282aca
83e406edea8c478c38fa360ff07976d953bac64762f90c80e3b45362c67b9463
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Cookie: _ga_Y1FRMFLVKT=GS1.1.1675518238.1.0.1675518238.0.0.0; _ga=GA1.1.1969926635.1675518239
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 03:15:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:23 GMT
content-encoding: gzip
content-length: 1408
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:23 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
192.254.184.96200 OK 4.2 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10544)
Hash 552977febe8ef2c71b0806dfaefd2552
01baebfd09383c5d44f066e7b5540fcca6a5eae4
7895907f5a4f54c08c4705b1a194e21c556d68027c5e0a70d4c05b377e712b1d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Cookie: _ga_Y1FRMFLVKT=GS1.1.1675518238.1.0.1675518238.0.0.0; _ga=GA1.1.1969926635.1675518239
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:24:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:23 GMT
content-encoding: gzip
content-length: 4200
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:23 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.10.0
192.254.184.96200 OK 1.2 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.10.0
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2620), with no line terminators
Hash 55936584085d0d310919b755eda1ab3f
be317c3b2ed5143669375295b3107e591bf708da
aad2265c39cafa6e01b791b1ef5025a2d237ee91346ef446beb722fdcd578d58
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.10.0 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Cookie: _ga_Y1FRMFLVKT=GS1.1.1675518238.1.0.1675518238.0.0.0; _ga=GA1.1.1969926635.1675518239
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:24:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:23 GMT
content-encoding: gzip
content-length: 1187
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
216.58.211.3200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (633)
Size 164 kB (163841 bytes)
Hash fe98364486b3206867b17008f995646f
35a5e9aa210970f7abd718d99e629c6982a3cc02
1fd703cb16e3f6f3f7192109d19c69d6e5ac1cfa0feb5b105a86564b7970d28a
GET /recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://perrysgroup.com
Connection: keep-alive
Referer: https://perrysgroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163841
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 08:53:11 GMT
expires: Wed, 31 Jan 2024 08:53:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 31 Jan 2023 02:51:47 GMT
content-type: text/javascript
age: 363013
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 21:48:03 GMT
expires: Fri, 02 Feb 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 143722
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 16:40:43 GMT
expires: Fri, 02 Feb 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 162162
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor-pro/assets/js/posts.397aa4bedda9268558a6.bundle.min.js
192.254.184.96200 OK 1.4 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor-pro/assets/js/posts.397aa4bedda9268558a6.bundle.min.js
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3317)
Hash f47a0b9c55d053bad46b03d172d638d3
a2641badeaf12d9eb922e7bed94a799530c98f7a
ea86efba1af920968971f1daf7f18ebca60a505030b25f4c168cc18f47b5d821
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/posts.397aa4bedda9268558a6.bundle.min.js HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Cookie: _ga_Y1FRMFLVKT=GS1.1.1675518238.1.0.1675518238.0.0.0; _ga=GA1.1.1969926635.1675518239
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 03:15:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:24 GMT
content-encoding: gzip
content-length: 1380
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:24 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor-pro/assets/js/load-more.1e7cd12b282961ba238e.bundle.min.js
192.254.184.96200 OK 1.7 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor-pro/assets/js/load-more.1e7cd12b282961ba238e.bundle.min.js
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4935)
Hash efad866a2d04183db9556842044078c0
77ebf61844d251d3fc7f6faa49e1a358b46cc7ea
249e30393b34664b7ce76701ce86653f1db8990c794cae45ce33933461ca00f1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/load-more.1e7cd12b282961ba238e.bundle.min.js HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Cookie: _ga_Y1FRMFLVKT=GS1.1.1675518238.1.0.1675518238.0.0.0; _ga=GA1.1.1969926635.1675518239
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 03:15:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:24 GMT
content-encoding: gzip
content-length: 1668
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:24 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.17.0
192.254.184.96200 OK 93 kB URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.17.0
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 93444, version 1.0\012- data
Hash 0d1a44bc222da28ed1cf0c6f29e73c55
ad1e7b04dbccbc51c2c3bd4f45f7381820b9647f
15ecd2c95dbae27cb05d094955791c6cabbc022fff88c43ad375a61642666f52
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.17.0 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=1673835938
Connection: keep-alive
Cookie: _ga_Y1FRMFLVKT=GS1.1.1675518238.1.0.1675518238.0.0.0; _ga=GA1.1.1969926635.1675518239
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
last-modified: Mon, 16 Jan 2023 02:24:56 GMT
accept-ranges: bytes
content-length: 93444
cache-control: max-age=10368000
expires: Sun, 04 Jun 2023 13:43:24 GMT
vary: Accept-Encoding
content-type: font/woff2
date: Sat, 04 Feb 2023 13:43:24 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/2022/12/perrys-group-favicon-150x150.jpg
192.254.184.96200 OK 1.9 kB URL HTTP/2 perrysgroup.com/wp-content/uploads/2022/12/perrys-group-favicon-150x150.jpg
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash 813e97f53f1ef6bbdf21a69bf7b0712b
d4e583a27691b260cc89fd76f40aa9ea47f79d42
849d9d738b63c19b177fef3c65b0f3c0b6573e4f250388f11e1f2e90dd932fe7
GET /wp-content/uploads/2022/12/perrys-group-favicon-150x150.jpg HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Cookie: _ga_Y1FRMFLVKT=GS1.1.1675518238.1.0.1675518238.0.0.0; _ga=GA1.1.1969926635.1675518239
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Wed, 21 Dec 2022 08:05:31 GMT
accept-ranges: bytes
content-length: 1882
cache-control: max-age=10368000, public
expires: Sun, 04 Jun 2023 13:43:25 GMT
content-type: image/jpeg
date: Sat, 04 Feb 2023 13:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/2022/12/perrys-group-favicon.jpg
192.254.184.96200 OK 2.1 kB URL HTTP/2 perrysgroup.com/wp-content/uploads/2022/12/perrys-group-favicon.jpg
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x200, components 3\012- data
Hash fd1962a396ea7e72648c72d5028dc2e7
3b2bfad64dae176c5aa08a958f3e1a1e941772d0
9e037749502548575bab60eeb82d05cc6da34b273548a0cd67f39144e310c335
GET /wp-content/uploads/2022/12/perrys-group-favicon.jpg HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Cookie: _ga_Y1FRMFLVKT=GS1.1.1675518238.1.0.1675518238.0.0.0; _ga=GA1.1.1969926635.1675518239
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Wed, 21 Dec 2022 08:05:30 GMT
accept-ranges: bytes
content-length: 2087
cache-control: max-age=10368000, public
expires: Sun, 04 Jun 2023 13:43:25 GMT
content-type: image/jpeg
date: Sat, 04 Feb 2023 13:43:25 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/2022/11/Boosted-and-Vaccinated.mp4
192.254.184.96206 Partial Content 0 B URL HTTP/2 perrysgroup.com/wp-content/uploads/2022/11/Boosted-and-Vaccinated.mp4
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/11/Boosted-and-Vaccinated.mp4 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://perrysgroup.com/
Range: bytes=0-
Connection: keep-alive
Cookie: _ga_Y1FRMFLVKT=GS1.1.1675518238.1.0.1675518238.0.0.0; _ga=GA1.1.1969926635.1675518239
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
last-modified: Tue, 20 Dec 2022 02:30:23 GMT
accept-ranges: bytes
content-length: 357358
cache-control: max-age=10368000, public
expires: Sun, 04 Jun 2023 13:43:23 GMT
vary: Accept-Encoding
content-range: bytes 0-357357/357358
content-type: video/mp4
date: Sat, 04 Feb 2023 13:43:23 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.8.0
192.254.184.96200 OK 0 B URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.8.0
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.8.0 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:24:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.10.0
192.254.184.96200 OK 0 B URL HTTP/2 perrysgroup.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.10.0
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.10.0 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:24:56 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/2022/11/Boosted-and-Vaccinated.mp4
192.254.184.96206 Partial Content 0 B URL HTTP/2 perrysgroup.com/wp-content/uploads/2022/11/Boosted-and-Vaccinated.mp4
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/11/Boosted-and-Vaccinated.mp4 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://perrysgroup.com/
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
last-modified: Tue, 20 Dec 2022 02:30:23 GMT
accept-ranges: bytes
content-length: 357358
cache-control: max-age=10368000, public
expires: Sun, 04 Jun 2023 13:43:23 GMT
vary: Accept-Encoding
content-range: bytes 0-357357/357358
content-type: video/mp4
date: Sat, 04 Feb 2023 13:43:23 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=1671678297
192.254.184.96200 OK 0 B URL HTTP/2 perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=1671678297
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/min/1/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=1671678297 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Thu, 22 Dec 2022 03:04:57 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/2022/11/Marc-Perry-1.mp4
192.254.184.96206 Partial Content 0 B URL HTTP/2 perrysgroup.com/wp-content/uploads/2022/11/Marc-Perry-1.mp4
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/11/Marc-Perry-1.mp4 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://perrysgroup.com/
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
last-modified: Tue, 20 Dec 2022 02:30:24 GMT
accept-ranges: bytes
content-length: 13012058
cache-control: max-age=10368000, public
expires: Sun, 04 Jun 2023 13:43:23 GMT
vary: Accept-Encoding
content-range: bytes 0-13012057/13012058
content-type: video/mp4
date: Sat, 04 Feb 2023 13:43:23 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=1673835939
192.254.184.96200 OK 0 B URL HTTP/2 perrysgroup.com/wp-content/cache/min/1/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=1673835939
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/cache/min/1/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=1673835939 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:39 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/2022/11/Marc-Perry-1.mp4
192.254.184.96206 Partial Content 0 B URL HTTP/2 perrysgroup.com/wp-content/uploads/2022/11/Marc-Perry-1.mp4
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/11/Marc-Perry-1.mp4 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://perrysgroup.com/
Range: bytes=0-
Connection: keep-alive
Cookie: _ga_Y1FRMFLVKT=GS1.1.1675518238.1.0.1675518238.0.0.0; _ga=GA1.1.1969926635.1675518239
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
last-modified: Tue, 20 Dec 2022 02:30:24 GMT
accept-ranges: bytes
content-length: 13012058
cache-control: max-age=10368000, public
expires: Sun, 04 Jun 2023 13:43:23 GMT
vary: Accept-Encoding
content-range: bytes 0-13012057/13012058
content-type: video/mp4
date: Sat, 04 Feb 2023 13:43:23 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
192.254.184.96200 OK 0 B URL HTTP/2 perrysgroup.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:37 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/powerpack-elements/assets/lib/fancybox/jquery.fancybox.min.js?ver=2.9.14
192.254.184.96200 OK 0 B URL HTTP/2 perrysgroup.com/wp-content/plugins/powerpack-elements/assets/lib/fancybox/jquery.fancybox.min.js?ver=2.9.14
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/powerpack-elements/assets/lib/fancybox/jquery.fancybox.min.js?ver=2.9.14 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:19 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
192.254.184.96200 OK 0 B URL HTTP/2 perrysgroup.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 02:30:38 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/uploads/2022/12/Unveiling-2022-AVP-Final-480p-1.mp4
192.254.184.96206 Partial Content 0 B URL HTTP/2 perrysgroup.com/wp-content/uploads/2022/12/Unveiling-2022-AVP-Final-480p-1.mp4
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/12/Unveiling-2022-AVP-Final-480p-1.mp4 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://perrysgroup.com/
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
last-modified: Tue, 20 Dec 2022 02:30:34 GMT
accept-ranges: bytes
content-length: 111961448
cache-control: max-age=10368000, public
expires: Sun, 04 Jun 2023 13:43:23 GMT
vary: Accept-Encoding
content-range: bytes 0-111961447/111961448
content-type: video/mp4
date: Sat, 04 Feb 2023 13:43:23 GMT
server: Apache
X-Firefox-Spdy: h2
perrysgroup.com/wp-content/plugins/powerpack-elements/assets/css/min/frontend.min.css?ver=2.9.14
192.254.184.96200 OK 0 B URL HTTP/2 perrysgroup.com/wp-content/plugins/powerpack-elements/assets/css/min/frontend.min.css?ver=2.9.14
IP 192.254.184.96:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/powerpack-elements/assets/css/min/frontend.min.css?ver=2.9.14 HTTP/1.1
Host: perrysgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://perrysgroup.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy:
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 02:25:19 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Sun, 04 Feb 2024 13:43:21 GMT
content-encoding: gzip
content-type: text/css; charset=utf-8
date: Sat, 04 Feb 2023 13:43:21 GMT
server: Apache
X-Firefox-Spdy: h2