r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7187
Expires: Tue, 29 Nov 2022 08:03:29 GMT
Date: Tue, 29 Nov 2022 06:03:42 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3653
Cache-Control: max-age=106112
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:03:42 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:32:14 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19895
Expires: Tue, 29 Nov 2022 11:35:17 GMT
Date: Tue, 29 Nov 2022 06:03:42 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 05:17:52 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2750
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6aM4i2G2Bicbm71a5Wvs7xfcaSNLInGvQGQCKVBeP/z/60s/o7EgLb/M0x8xSAZDYdLL2DaQxMc=
x-amz-request-id: P4S52X8B6GFMF7RX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 05:45:20 GMT
age: 1102
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:03:42 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
valluva.com/
18.143.106.125301 Moved Permanently 228 B IP 18.143.106.125:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a2fa4d243f7153c3490d56cdc856315c
ecf6b979a8fbb7a9a380527302c2f35095ff3b11
66878e12ffd01ec3a6b8def5c08c6689afc32bcf35f421ff4985b6d9b17c58f7
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 29 Nov 2022 06:03:43 GMT
Server: Apache
Location: https://valluva.com/
Content-Length: 228
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 05:08:56 GMT
cache-control: public,max-age=3600
age: 3287
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1716
Cache-Control: max-age=99108
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:03:43 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 09:35:31 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.242.41.15101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.242.41.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0LupRHKSPvJZryV5ZTl/QQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 73yMS6tw77FydaVH9INRxroE0KM=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11374
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 06:03:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11374
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 06:03:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11374
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 06:03:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11374
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 06:03:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d574c4db20a68295dbd06cb08f5990b
433061bbb226048765a711deca3026ee3e52372f
8cc1a4d18e242f8bfc8ab94637f635b73554b903462c29b06d0ec67872542afb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9203
x-amzn-requestid: 8cba52d6-3c1c-495c-bb9d-3ba6f0adc7e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cHcHmGmQoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fa6fd-73abfa592ff223061401af9a;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 17:16:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UmhWm03jrsV8dFagrzIA0E-8eL8dykoO5kw3cYOBd172dCGqNdAX-Q==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:05:38 GMT
age: 7087
etag: "433061bbb226048765a711deca3026ee3e52372f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cce27a1fe8c0222811a5ce0e7f89e1cb
28c165bac8cf68cd1b0763c311aece00672cb3a5
4530e34a47ef78c2c2b0d34a0511253a61f1927b192ab42f82361002ff10819e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9376
x-amzn-requestid: c52b3092-90d2-4289-b6e0-ab99c9d4710a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPmz3EVUoAMFWUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382eb4b-39f46c89238eff696e9f2dba;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 04:44:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ofQEhaEiX1vE25a_1xHeab9Px9zgGpk8omlX_aHmLE1oN1aZTPzWxQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:58:57 GMT
age: 29088
etag: "28c165bac8cf68cd1b0763c311aece00672cb3a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06723cdab42df9b5334f540a8c7ebc60
3bbc44cb84a37ce6a067db4301dd81647a77c29f
9f6f064b16044c510650635690c61003fb2f6439021a2e681431136f5e7a08b3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3905
x-amzn-requestid: bf50db76-dd95-44fc-abbe-1a26a5559ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMFcYHE6IAMFmpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638182b5-50b6d010058c6cb75c05c6de;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 03:06:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 73Fr-7-mRcw9_OVt8Wdi4pjFBHkqi_vBa-zgLtbHKEx1ay9s8wDSgQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 06:26:11 GMT
age: 85054
etag: "3bbc44cb84a37ce6a067db4301dd81647a77c29f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpbgEFOIAMF71A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 07:40:08 GMT
age: 80617
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9868f6d6-e29b-42b5-89c4-eec4771663b2.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9868f6d6-e29b-42b5-89c4-eec4771663b2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash faf3524970b0c3256eb5708f4ccf11ce
47295f2cf1b039c4b85cbe463d7893671a563989
ba0c2ce23eae865936caa7fb47dd1ef6346b8a7bc8340db700df6e2f5e27ec27
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9868f6d6-e29b-42b5-89c4-eec4771663b2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8402
x-amzn-requestid: d2d62f85-b6be-4394-9668-1d913e4120d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYeaGbgoAMFdCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d45c-2b6bfdcc72011cf01ddbd66b;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:07:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1il1ILDPBUseZWYjae_R0BQhpdyPTqqI0GycCljovgxjqhYezCwxCA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:18:26 GMT
age: 6319
etag: "47295f2cf1b039c4b85cbe463d7893671a563989"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c808183085a429c53515508678fc7ab2
6567069d9f5199205ba1ca7a937fcb0a52f95d06
c7ca95730cbc97d7c243e05b23520166faefcd2dfe90f36f70fad1f7e4537e4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9162
x-amzn-requestid: f7fb3b99-6f1c-4ab3-9547-a337d54e8c9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVjI8E9poAMFaQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63854bd2-0679b83d1aa3b7c71aa6bf1c;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 00:01:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RAAJeCuVxs-hpp4wMmcBEmqPf71bUMueBvhwLaYTixj9IiIGNp0ZIQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 00:28:27 GMT
age: 20118
etag: "6567069d9f5199205ba1ca7a937fcb0a52f95d06"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.6.0.js
69.16.175.42200 OK 85 kB URL HTTP/2 code.jquery.com/jquery-3.6.0.js
IP 69.16.175.42:0
Hash 416559bad4fc1149eba631e644a23a6e
20f8f18f94c74dbc1bde934719cbfa87d51828cf
37508a443be057a2fab1c4eee8d03632f406eaed15d09a26ac8dabe7877616e2
GET /jquery-3.6.0.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://valluva.com
Connection: keep-alive
Referer: https://valluva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 06:03:45 GMT
content-encoding: gzip
content-length: 84714
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-46744"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669701825.dop067.sk1.t,1669701825.cds212.sk1.hn,1669701825.cds214.sk1.c
X-Firefox-Spdy: h2
valluva.com/wp-content/themes/astra/style.css
18.143.106.125200 OK 11 kB URL HTTP/1.1 valluva.com/wp-content/themes/astra/style.css
IP 18.143.106.125:0
File type ASCII text, with very long lines (901)
Hash 4fc54b1ba64fcdc57e0c5dd0e31de50d
5fa161be01d4aeaa9cc5acd90f63145f5b9453c8
7e107f43972a2c1c90605c09b87dcb31496087b1efb90ebed2340b4ee034029a
GET /wp-content/themes/astra/style.css HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:45 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:22 GMT
Accept-Ranges: bytes
Content-Length: 11380
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:03:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:03:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:03:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:03:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-102672356-2
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-102672356-2
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 64fbef97dbc0c85da576dc236d264613
97cd8051339b1e849721e5d2658a4feeb6393cbd
bb5c556b20867e80b90d6604a4995a8d32749f2750a68d45bd2b79f96289c196
GET /gtag/js?id=UA-102672356-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 06:03:46 GMT
expires: Tue, 29 Nov 2022 06:03:46 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43680
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:03:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=AW-845269751
142.250.74.168200 OK 53 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-845269751
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 283e3ba036250e8255a40e7ab0f9a0b7
4bd7cae207a68d43099c6a2737809909ad289702
5726afae30fea56b06c31551996e6ea0567c7735001b5fb2263e4755aa760a63
GET /gtag/js?id=AW-845269751 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 06:03:46 GMT
expires: Tue, 29 Nov 2022 06:03:46 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 53030
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:03:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Nunito%20Sans
142.250.74.10200 OK 959 B URL HTTP/2 fonts.googleapis.com/css?family=Nunito%20Sans
IP 142.250.74.10:0
Hash c0fd586225010c0abe4e3319f2750de7
592fb5b94050bbc376cf530b9bbc513fec5c48bf
f46399ff471054ca7ec36fb75b4c6648b120d7dbff838906112170d70087ae43
GET /css?family=Nunito%20Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 06:03:46 GMT
date: Tue, 29 Nov 2022 06:03:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
valluva.com/wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.3.2
18.143.106.125200 OK 69 kB URL HTTP/1.1 valluva.com/wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.3.2
IP 18.143.106.125:0
File type ASCII text, with very long lines (63459), with CRLF line terminators
Hash cba36d50dc42a5e51982824ec434f656
11fe14239aa90b710748dd76cbcb227cdb83f88d
89c3c181208df9c28323403e1d75581b97d94312d81dc557580aea7a6afa66dc
GET /wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.3.2 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:46 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:18 GMT
Accept-Ranges: bytes
Content-Length: 69277
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=3.3.2
18.143.106.125200 OK 3.4 kB URL HTTP/1.1 valluva.com/wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=3.3.2
IP 18.143.106.125:0
File type ASCII text, with very long lines (3412), with no line terminators
Hash 730e0907dfd019baf0c555a21f373670
6bef5d7aab1206ca5095e6f589c47c9912873ac7
b6e169ac07a49b2c9d2b726bb3c384097badcc093dc6322c9a2ba066ae8e06a8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=3.3.2 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:46 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:18 GMT
Accept-Ranges: bytes
Content-Length: 3412
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=5.5.1
18.143.106.125200 OK 3.3 kB URL HTTP/1.1 valluva.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=5.5.1
IP 18.143.106.125:0
File type ASCII text, with very long lines (3276), with no line terminators
Hash 1acc6d05dce5567e977de5bb00610c80
72c307774f03749c32c313565da58fa3b8a80830
ae707ec81b142f04b6d5f785a5d4f7e8301bdb62a95288dee1f3e58930d21c7a
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=5.5.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:46 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:01 GMT
Accept-Ranges: bytes
Content-Length: 3276
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.4
18.143.106.125200 OK 2.7 kB URL HTTP/1.1 valluva.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.4
IP 18.143.106.125:0
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.4 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:47 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:28 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/themes/astra/assets/css/minified/compatibility/contact-form-7-main.min.css?ver=3.3.2
18.143.106.125200 OK 850 B URL HTTP/1.1 valluva.com/wp-content/themes/astra/assets/css/minified/compatibility/contact-form-7-main.min.css?ver=3.3.2
IP 18.143.106.125:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 7124b199eb60e27375b63b4848351295
38a84403e33d9e2209e1198c343ca2c20da55d0e
41c7e05e604e0bc6b8814d00221eac3e3db342d996362a2cfa1cd057ad2c809b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/astra/assets/css/minified/compatibility/contact-form-7-main.min.css?ver=3.3.2 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:47 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:18 GMT
Accept-Ranges: bytes
Content-Length: 850
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
valluva.com/
18.143.106.125200 OK 256 kB IP 18.143.106.125:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (28637), with CRLF, LF line terminators
Size 256 kB (255810 bytes)
Hash fb498c46d77cd0deb00099ebbf557cc3
18f5944703d062bb34c4ad4cfdc6ab90cd15ebe7
225b8796565f0a9e9104bc816d13ae487f337db0afb787d6117d6dc301f6a00b
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:44 GMT
Server: Apache
Link: <https://valluva.com/wp-json/>; rel="https://api.w.org/", <https://valluva.com/wp-json/wp/v2/pages/3525>; rel="alternate"; type="application/json", <https://valluva.com/>; rel=shortlink
Set-Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; secure; HttpOnly
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
valluva.com/wp-content/plugins/country-phone-field-contact-form-7/assets/css/intlTelInput.min.css?ver=5.8
18.143.106.125200 OK 21 kB URL HTTP/1.1 valluva.com/wp-content/plugins/country-phone-field-contact-form-7/assets/css/intlTelInput.min.css?ver=5.8
IP 18.143.106.125:0
File type ASCII text, with very long lines (21275), with no line terminators
Hash c26ea90689731a83344139b2a3b61bbf
bcd616d9f266a5069ca83fc6c03e536dcd47a7d8
e83e04798b38e55e49ddbe5cfb258009bbc02aae25b04599775a0309425a0fe4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/country-phone-field-contact-form-7/assets/css/intlTelInput.min.css?ver=5.8 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:47 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:39:43 GMT
Accept-Ranges: bytes
Content-Length: 21275
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8
18.143.106.125200 OK 81 kB URL HTTP/1.1 valluva.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8
IP 18.143.106.125:0
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 43c4bc05b5e3b0a6684a7c3a52e63590
ed6d95d525a710a82e8b8583e9ba7bce3b2a4722
9110fc122dda3067c424d9b8ff7747e2030b0bd9298f69a3683d399ad3373a6a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:46 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:09 GMT
Accept-Ranges: bytes
Content-Length: 80574
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=5.8
18.143.106.125200 OK 58 kB URL HTTP/1.1 valluva.com/wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=5.8
IP 18.143.106.125:0
File type ASCII text, with very long lines (57835), with no line terminators
Hash 82401d1c4a9d74ff4a191bf0c1fe4bb4
0f1110d497c6b1021adb14fa9adf9d15e035a6ea
e480a877a3a00d6fa45547c1e677918d8c108784d5f127be2a42efb082d9b2ac
GET /wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=5.8 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:47 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:21 GMT
Accept-Ranges: bytes
Content-Length: 57835
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=5.6.0
18.143.106.125200 OK 3.3 kB URL HTTP/1.1 valluva.com/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=5.6.0
IP 18.143.106.125:0
File type ASCII text, with very long lines (3287), with no line terminators
Hash e65cbce40458e232c2d8c7661dfeab7a
9aea5882139ac04bc182d376c34ac6c6e9b95842
8bdb4e5d2066e5a29a162cee6b418adeb546ce98025ab4741107dfaa8485415f
GET /wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=5.6.0 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:47 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:41:14 GMT
Accept-Ranges: bytes
Content-Length: 3287
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a0fe20d41a043db700a84924cd9793f3
c0da481fef6cd00558f6e68b074acb34bef8292f
03caeb65ab9e22f6d6fe0d344d327950d20ee9ed144e2da0e5e062943a03fc56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
valluva.com/wp-content/plugins/country-phone-field-contact-form-7/assets/css/countrySelect.min.css?ver=5.8
18.143.106.125200 OK 20 kB URL HTTP/1.1 valluva.com/wp-content/plugins/country-phone-field-contact-form-7/assets/css/countrySelect.min.css?ver=5.8
IP 18.143.106.125:0
File type ASCII text, with very long lines (20493), with no line terminators
Hash 6d76ad12adc116d09b29229fcc11800b
8bd31ac0712ee8c9c2cdc85118f7a5686c2cded3
77402f4f26c61fd2572093b0316d47f8e12ae3c29976c6ae0356f84c7fc65345
GET /wp-content/plugins/country-phone-field-contact-form-7/assets/css/countrySelect.min.css?ver=5.8 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:47 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:39:43 GMT
Accept-Ranges: bytes
Content-Length: 20493
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.google.com/recaptcha/api.js?render=6Ld2piUeAAAAACdWTG9B-f6RR0xTaIyFZ-7FSzcQ&ver=3.0
142.250.74.164400 Bad Request 119 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6Ld2piUeAAAAACdWTG9B-f6RR0xTaIyFZ-7FSzcQ&ver=3.0
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 96612d2b1b529ecfcf09798c3eb100bf
4f32d5d3ccf4d44ae71309dfa8d6f9d396614a27
7c58bfa17d0c600b7455e6bfb3d8371fbf93da20a7a53ed1efad37d692f1cba0
GET /recaptcha/api.js?render=6Ld2piUeAAAAACdWTG9B-f6RR0xTaIyFZ-7FSzcQ&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Tue, 29 Nov 2022 06:03:47 GMT
expires: Tue, 29 Nov 2022 06:03:47 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 119
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash abd55ecd24d357a9f02612558f723a90
6a1e6963864f0b53ddc6205d35225e6cf0bcbeec
195fa531e0462be58d5c62ebbe6060e147c94bdb1d38ff46c341c74e0ab2671a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
valluva.com/wp-content/plugins/download-manager/assets/css/front.css?ver=5.8
18.143.106.125200 OK 66 kB URL HTTP/1.1 valluva.com/wp-content/plugins/download-manager/assets/css/front.css?ver=5.8
IP 18.143.106.125:0
File type ASCII text, with very long lines (482)
Hash 0454dff5d6791655b955dfee5e264a6b
b8e133512bf309dbb868bb90b26a3155b9f6222e
452505d859be1f526ec45492acb695a3d822f50e56f93e1928948233b246cda0
GET /wp-content/plugins/download-manager/assets/css/front.css?ver=5.8 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:47 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:21 GMT
Accept-Ranges: bytes
Content-Length: 65568
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=5.5.1
18.143.106.125200 OK 182 kB URL HTTP/1.1 valluva.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=5.5.1
IP 18.143.106.125:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size 182 kB (182136 bytes)
Hash dea45f0e1a9b50b1c50f1839edc47cc6
676a0c017708de6f28abe8f3a52b037a0d2f025d
151c1e1a788f16d0416faa66ca63d7ab79c503508a9a9fded978c0b4de7c50a8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=5.5.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:47 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:01 GMT
Accept-Ranges: bytes
Content-Length: 182136
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/download-manager/assets/fontawesome/css/all.css?ver=5.8
18.143.106.125200 OK 46 kB URL HTTP/1.1 valluva.com/wp-content/plugins/download-manager/assets/fontawesome/css/all.css?ver=5.8
IP 18.143.106.125:0
File type ASCII text, with very long lines (45507)
Hash 826c57385f3d35cfed5478ba7b1f5c03
20d2d431065fc6b38c1187eda564639527e2428e
ce91e2144ea27f82292ef2c87c5d9e1d0b9994df63836130293865aca18fc550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/download-manager/assets/fontawesome/css/all.css?ver=5.8 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:47 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:22 GMT
Accept-Ranges: bytes
Content-Length: 45687
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/widgetkit-for-elementor/dist/css/bootstrap.css?ver=2.3.12
18.143.106.125200 OK 50 kB URL HTTP/1.1 valluva.com/wp-content/plugins/widgetkit-for-elementor/dist/css/bootstrap.css?ver=2.3.12
IP 18.143.106.125:0
File type ASCII text, with very long lines (388)
Hash f894285fbbd52c6adaa5f17e21f278ca
6823844a90904f6c49fa64b434ab44feabedcc06
244cf9994fa5ee6e4dc6a27f3df9213a1ca78c58259cafc8dacd22fbf876e378
GET /wp-content/plugins/widgetkit-for-elementor/dist/css/bootstrap.css?ver=2.3.12 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:47 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:40:24 GMT
Accept-Ranges: bytes
Content-Length: 50112
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout-grid.min.css?ver=3.3.2
18.143.106.125200 OK 15 kB URL HTTP/1.1 valluva.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout-grid.min.css?ver=3.3.2
IP 18.143.106.125:0
File type ASCII text, with very long lines (15012), with no line terminators
Hash 4c91b449e4f57230e1d1b17a931eac1c
77784b1dcf9b63b7fcd17c722dae1c0b53a7ede2
08977993f5584b2a6ecb1a10658e0e5d2ed6828e68b5a844a380e0abe43fe510
GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout-grid.min.css?ver=3.3.2 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:48 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:18 GMT
Accept-Ranges: bytes
Content-Length: 15012
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/post-slider-and-carousel/assets/css/owl.carousel.min.css?ver=1.0.1
18.143.106.125200 OK 3.3 kB URL HTTP/1.1 valluva.com/wp-content/plugins/post-slider-and-carousel/assets/css/owl.carousel.min.css?ver=1.0.1
IP 18.143.106.125:0
File type ASCII text, with very long lines (3164)
Hash 8ceb9a7033a24c26d4e994bf2b3ede66
f288b71890a4370ac5bc085636eb76434c466603
ff982073c4009480e46009ff449536d37d33199b691e63d067563092da5f3779
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/post-slider-and-carousel/assets/css/owl.carousel.min.css?ver=1.0.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:48 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:40:21 GMT
Accept-Ranges: bytes
Content-Length: 3331
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/post-slider-and-carousel/assets/css/psac-public.css?ver=1.0.1
18.143.106.125200 OK 9.5 kB URL HTTP/1.1 valluva.com/wp-content/plugins/post-slider-and-carousel/assets/css/psac-public.css?ver=1.0.1
IP 18.143.106.125:0
File type ASCII text, with very long lines (430)
Hash 7aa8df7ed742eb3cc977c2952bce4bfe
1ad4ef9083e89fbd9cf95c4b21c80f627a1ef610
bf519c96bf4dd10876a914c9d29ea2d745aee51f4a3fbc0cf526b04e25198f72
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/post-slider-and-carousel/assets/css/psac-public.css?ver=1.0.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:48 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:40:21 GMT
Accept-Ranges: bytes
Content-Length: 9464
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/widgetkit-for-elementor/dist/css/uikit.custom.min.css?ver=2.3.12
18.143.106.125200 OK 124 kB URL HTTP/1.1 valluva.com/wp-content/plugins/widgetkit-for-elementor/dist/css/uikit.custom.min.css?ver=2.3.12
IP 18.143.106.125:0
File type ASCII text, with very long lines (360)
Size 124 kB (123702 bytes)
Hash 5062162fb907842fbb75e81b60a1fe1b
39e8db9fb51e3f1c1b198d71c78de5258297ba13
2051a74f9f29c601c9e924148c8fed018a788c3f4dd25c6c229494dc4ad72a2c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/widgetkit-for-elementor/dist/css/uikit.custom.min.css?ver=2.3.12 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:47 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:40:24 GMT
Accept-Ranges: bytes
Content-Length: 123702
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/widgetkit-for-elementor/dist/css/widgetkit.css?ver=2.3.12
18.143.106.125200 OK 163 kB URL HTTP/1.1 valluva.com/wp-content/plugins/widgetkit-for-elementor/dist/css/widgetkit.css?ver=2.3.12
IP 18.143.106.125:0
File type assembler source, ASCII text
Size 163 kB (163060 bytes)
Hash a7d32103161726376d9c2f5a1b13168b
a6c7a45a2542a156d43f9d7f7a36d9f6ab8f820b
ff6a4e4a0e31825f218d7922df775a7fd193b052d3173ea05975f987f2724791
GET /wp-content/plugins/widgetkit-for-elementor/dist/css/widgetkit.css?ver=2.3.12 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:47 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:40:25 GMT
Accept-Ranges: bytes
Content-Length: 163060
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8
18.143.106.125200 OK 18 kB URL HTTP/1.1 valluva.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8
IP 18.143.106.125:0
File type ASCII text, with very long lines (15224)
Hash 116c86c56f8db0bb63f15ceda50fdc98
75e308982ecf7cd43644b8b426e6aa1a0b0fbe26
def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:48 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:14 GMT
Accept-Ranges: bytes
Content-Length: 18181
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/wpdm-premium-packages/assets/css/wpdmpp.css?ver=5.8
18.143.106.125200 OK 11 kB URL HTTP/1.1 valluva.com/wp-content/plugins/wpdm-premium-packages/assets/css/wpdmpp.css?ver=5.8
IP 18.143.106.125:0
Hash 44bc8f1c7a7cce3d2495dc2954f4d10f
56dc55ca675bee6a935410db7952d2a67b21bd94
245ccbeec59e6db563002a5b0a85562608c277df6e6b4adf486c85bc04c65650
GET /wp-content/plugins/wpdm-premium-packages/assets/css/wpdmpp.css?ver=5.8 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:48 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:11 GMT
Accept-Ranges: bytes
Content-Length: 10743
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.5.8
18.143.106.125200 OK 493 B URL HTTP/1.1 valluva.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.5.8
IP 18.143.106.125:0
File type ASCII text, with very long lines (493), with no line terminators
Hash 0bd862d8b78b9015ac139754724d6ea6
f599971fd15ce582752806ae3534603008e8ea83
469c7b0fd207c34aec54bcf4d8d824f4f9f8b2c62627aa5e2e8d578ea14718b3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.5.8 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:48 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:40:18 GMT
Accept-Ranges: bytes
Content-Length: 493
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.11.0
18.143.106.125200 OK 17 kB URL HTTP/1.1 valluva.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.11.0
IP 18.143.106.125:0
File type ASCII text, with very long lines (17186), with CRLF line terminators
Hash f2dc5a18b96b36d2a0e9e697c5017935
c663c285bc03f3c0c4b98e0f99dec38a91272934
b1390f834e2fb8c48d4a5c67aed73d56356f7b70975beadbc6bfc7fa77b1f5bd
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.11.0 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:48 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:39:50 GMT
Accept-Ranges: bytes
Content-Length: 17233
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.2.1
18.143.106.125200 OK 18 kB URL HTTP/1.1 valluva.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.2.1
IP 18.143.106.125:0
File type ASCII text, with very long lines (10019), with CRLF line terminators
Hash 00d995fa29c832545fd43b836b226aff
ba58c7105f77d1b95e4122e7711df7c2993f163a
f08f58ced56b56f630a2ce9ed647bb41a1e63589f65450765ec1e0e12d3bb57f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.2.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:48 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:39:49 GMT
Accept-Ranges: bytes
Content-Length: 18469
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-grid.min.css?ver=3.3.2
18.143.106.125200 OK 105 kB URL HTTP/1.1 valluva.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-grid.min.css?ver=3.3.2
IP 18.143.106.125:0
File type Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Size 105 kB (104727 bytes)
Hash 5e4dac96a905d5dad2ca495738b4317e
2684b86851f9fafef6795875573ec88aa85d0c56
d0617c46fb82379b46a7119da18617e9b907d20049eb994e988d9d43ca3f755a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-grid.min.css?ver=3.3.2 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:48 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:18 GMT
Accept-Ranges: bytes
Content-Length: 104727
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/uploads/elementor/css/post-3987.css?ver=1636519321
18.143.106.125200 OK 949 B URL HTTP/1.1 valluva.com/wp-content/uploads/elementor/css/post-3987.css?ver=1636519321
IP 18.143.106.125:0
File type ASCII text, with very long lines (949), with no line terminators
Hash 7fba7536e29243a28eecbbe313bc414a
564a0a978a6013673ea4ee37a742ec1b6721f790
c0549cf429c3ee035060d787d75e2ef25069b5ccced5260b7defd92957d2517f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-3987.css?ver=1636519321 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:48 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:35 GMT
Accept-Ranges: bytes
Content-Length: 949
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/stratum/assets/css/style.min.css?ver=1.3.12
18.143.106.125200 OK 142 kB URL HTTP/1.1 valluva.com/wp-content/plugins/stratum/assets/css/style.min.css?ver=1.3.12
IP 18.143.106.125:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 142 kB (142525 bytes)
Hash c40916248a44711b1d0b7b47203330ec
b2baaa21213b7fb0a16429e8aded1b49e10df07c
ac9267f6dcdbdd099bc4a6bc9ce5a17985485f6636fb8553445ebc6addadbbc2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/stratum/assets/css/style.min.css?ver=1.3.12 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:48 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:26 GMT
Accept-Ranges: bytes
Content-Length: 142525
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/uploads/elementor/css/global.css?ver=1623827548
18.143.106.125200 OK 54 kB URL HTTP/1.1 valluva.com/wp-content/uploads/elementor/css/global.css?ver=1623827548
IP 18.143.106.125:0
File type ASCII text, with very long lines (19285), with CRLF, LF line terminators
Hash b0037e74323c1ea0f7e3f1a4a6e665fc
dfec9203da46519d0adc49ef7fc7e21b3628a76c
c9f0bde306c99f531a93d9b809dfe890ba391664005bc763c2f900d966332a0a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/global.css?ver=1623827548 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:48 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:35 GMT
Accept-Ranges: bytes
Content-Length: 54062
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/uploads/elementor/css/post-3525.css?ver=1645616052
18.143.106.125200 OK 21 kB URL HTTP/1.1 valluva.com/wp-content/uploads/elementor/css/post-3525.css?ver=1645616052
IP 18.143.106.125:0
File type ASCII text, with very long lines (10396), with CRLF line terminators
Hash cb420cbee686bca927e40030893d37fb
27063351664030983689ed1747d2181bbd2de5f7
0e3f83e18f1d3bca545b0909a2de4da50767fa750107ab6fdd84c2f9ec1919e0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-3525.css?ver=1645616052 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:48 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:35 GMT
Accept-Ranges: bytes
Content-Length: 20582
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.5.8
18.143.106.125200 OK 77 kB URL HTTP/1.1 valluva.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.5.8
IP 18.143.106.125:0
File type Unicode text, UTF-8 text, with very long lines (1646), with CRLF line terminators
Hash 0719c03b43723d58974ba0d10d281644
33362c55fc7949f1a4be2c2b70dc2715e4fbdb1d
169a13c678565cd6348b37b3bd2d59e4b59981df4f8983eee717733d90099d26
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.5.8 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:48 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:40:20 GMT
Accept-Ranges: bytes
Content-Length: 76827
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.2.1
18.143.106.125200 OK 118 kB URL HTTP/1.1 valluva.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.2.1
IP 18.143.106.125:0
File type ASCII text, with very long lines (65496), with CRLF line terminators
Size 118 kB (118266 bytes)
Hash 585e53b4db01e8809e025a73e315a53e
67582d7b748559499a4644a0969d32e7e2b8e519
72b937e6df709c0d241c45d31330d0ebc3aea13d2bc67836e1c8b64e3d191955
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.2.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:48 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:39:46 GMT
Accept-Ranges: bytes
Content-Length: 118266
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/uploads/elementor/css/post-342.css?ver=1648797110
18.143.106.125200 OK 164 B URL HTTP/1.1 valluva.com/wp-content/uploads/elementor/css/post-342.css?ver=1648797110
IP 18.143.106.125:0
File type ASCII text, with no line terminators
Hash ae8c8e244fa9f6ed427a59304af1d9f3
cffa484d41570c187aca42073a615d0911032e83
c7210f15008092e969718cfde392687b2df694f72d93e160f0a5863dfea1b31a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-342.css?ver=1648797110 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:35 GMT
Accept-Ranges: bytes
Content-Length: 164
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/plugins/jquery-validation-for-contact-form-7/includes/assets/css/jvcf7_client.css?ver=5.1
18.143.106.125200 OK 303 B URL HTTP/1.1 valluva.com/wp-content/plugins/jquery-validation-for-contact-form-7/includes/assets/css/jvcf7_client.css?ver=5.1
IP 18.143.106.125:0
File type ASCII text, with CRLF line terminators
Hash 11cdd6c918c6949bc193d978edd28253
aa22dd25ca341b24b679e0e6a68923b1572a821e
d22b66d85f390af3889a96a72edfd02b1e0449f9fb989f162c683609cab5f1cc
GET /wp-content/plugins/jquery-validation-for-contact-form-7/includes/assets/css/jvcf7_client.css?ver=5.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:20 GMT
Accept-Ranges: bytes
Content-Length: 303
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
18.143.106.125200 OK 90 kB URL HTTP/1.1 valluva.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 18.143.106.125:0
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:15 GMT
Accept-Ranges: bytes
Content-Length: 89521
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
18.143.106.125200 OK 11 kB URL HTTP/1.1 valluva.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 18.143.106.125:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:15 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-includes/js/jquery/jquery.form.min.js?ver=4.2.1
18.143.106.125200 OK 16 kB URL HTTP/1.1 valluva.com/wp-includes/js/jquery/jquery.form.min.js?ver=4.2.1
IP 18.143.106.125:0
File type ASCII text, with very long lines (16116), with no line terminators
Hash 8374f7f8ffb16adccc989da30f2fa16f
2438f234a5fe533c1aa752c4b077f4d0f16a4d1d
7dcbd9ddb813cf06084d60b6158da5289b9e33ba3f9e7c463fd20e7ec8462014
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.form.min.js?ver=4.2.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:15 GMT
Accept-Ranges: bytes
Content-Length: 16116
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=5.8
18.143.106.125200 OK 21 kB URL HTTP/1.1 valluva.com/wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=5.8
IP 18.143.106.125:0
File type ASCII text, with very long lines (21084)
Hash c6946dff4854d4611da8aef36666b938
9118198bd2a853baa4644c6e819427150ca35160
7028ef6262d35db7dc22b05df3cbb3e93595ce90cd340fdc356620d961b01224
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=5.8 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:21 GMT
Accept-Ranges: bytes
Content-Length: 21218
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=5.8
18.143.106.125200 OK 62 kB URL HTTP/1.1 valluva.com/wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=5.8
IP 18.143.106.125:0
File type ASCII text, with very long lines (62161)
Hash 99e3544139e4735274587a831002ebae
24a900bdfcefd52cbcff3bc36440af9b87cd5067
4b24eee82c2b7ce85ace76193e8a25570dabc6863b94a60a42fa9bb6a37ddc72
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=5.8 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:21 GMT
Accept-Ranges: bytes
Content-Length: 62440
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.34
18.143.106.125200 OK 40 kB URL HTTP/1.1 valluva.com/wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.34
IP 18.143.106.125:0
File type ASCII text, with very long lines (4122)
Hash 23e21b730855e815510da406687ff619
22a6dd980e86f07f835ab5aee0aa60855582920b
4358a96884097724055a07c198c9eda6732136d6377c01e8ce5699993eff6d46
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.34 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:23 GMT
Accept-Ranges: bytes
Content-Length: 40144
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/jq-sticky-anything.min.js?ver=2.1.1
18.143.106.125200 OK 7.5 kB URL HTTP/1.1 valluva.com/wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/jq-sticky-anything.min.js?ver=2.1.1
IP 18.143.106.125:0
File type ASCII text, with very long lines (7353), with CRLF line terminators
Hash 25be92e32565352cfa7d09034e048c3b
a5dcf5f0e604b404ee5ae357eda1753721c6a491
a26faad0e000fc66242f75aff308c79232abb99cc2e6dab878c539de3ef8ae94
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/jq-sticky-anything.min.js?ver=2.1.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:28 GMT
Accept-Ranges: bytes
Content-Length: 7515
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/wpdm-premium-packages/assets/js/wpdmpp-front.js?ver=5.8
18.143.106.125200 OK 22 kB URL HTTP/1.1 valluva.com/wp-content/plugins/wpdm-premium-packages/assets/js/wpdmpp-front.js?ver=5.8
IP 18.143.106.125:0
File type ASCII text, with very long lines (393)
Hash af6c0d8a7205d1fb555e6436f3b1028b
2309d6ee7bdfa806179a1260c184403cd949f48e
78d20853651574cf0791a5795750132aa5480e586ec4f36df5ba6d1477b62e2a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpdm-premium-packages/assets/js/wpdmpp-front.js?ver=5.8 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:12 GMT
Accept-Ranges: bytes
Content-Length: 21769
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=5.6.0
18.143.106.125200 OK 7.9 kB URL HTTP/1.1 valluva.com/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=5.6.0
IP 18.143.106.125:0
File type ASCII text, with very long lines (7887), with no line terminators
Hash e9832bf9ac8e609f5ece62974257220d
feb78d4ff80fd84163c98a67ded3ad06ef7bacb9
0070e220521a6a69cb33f7da37bd5c1aa7e76d0865fb9cdba6672eb5ba50e425
GET /wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=5.6.0 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:41:14 GMT
Accept-Ranges: bytes
Content-Length: 7887
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:03:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16980, version 1.0\012- data
Hash 8a97f720d330e75ccdbda9ae0e9f5e90
8e4fee916581ab48d385187705667cebc7500afe
97d5a594e7f76c7e50045b67667fd6b74b268515efe6425097be1b2647079787
GET /s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://valluva.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 08:32:12 GMT
expires: Thu, 23 Nov 2023 08:32:12 GMT
cache-control: public, max-age=31536000
age: 509497
last-modified: Mon, 09 May 2022 18:33:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:03:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
valluva.com/wp-content/plugins/stratum/assets/js/editor-panel.min.js?ver=1.3.12
18.143.106.125200 OK 14 kB URL HTTP/1.1 valluva.com/wp-content/plugins/stratum/assets/js/editor-panel.min.js?ver=1.3.12
IP 18.143.106.125:0
File type ASCII text, with very long lines (11864)
Hash 35237e04bc41f8cec80d84b2ef17ea2a
9c13d269a9021a5f8f6bb4054f2bd51984ed8d60
1fd49442ba91e4be1574ecced26b1cd6286571002ba544264ce6e35ab5d5b9cc
GET /wp-content/plugins/stratum/assets/js/editor-panel.min.js?ver=1.3.12 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:26 GMT
Accept-Ranges: bytes
Content-Length: 13615
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.3.2
18.143.106.125200 OK 16 kB URL HTTP/1.1 valluva.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.3.2
IP 18.143.106.125:0
File type ASCII text, with very long lines (16313), with no line terminators
Hash f861a5ba690044ad29eb3221bc52717e
a0ebc86f53f0715c0259b481c1fa2c8d1d222f17
ab4a59813096c707fe765279408d544c2009fd82743e8cd276989ae09a2c1c56
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.3.2 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:19 GMT
Accept-Ranges: bytes
Content-Length: 16313
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.5.2
18.143.106.125200 OK 4.4 kB URL HTTP/1.1 valluva.com/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.5.2
IP 18.143.106.125:0
File type ASCII text, with very long lines (4401), with no line terminators
Hash 4760a308cc61cdf315595bcd9ecd3c05
c1e762aaf7a43b37b75319160ed2dc5acba58602
5064759a0360c16691dd45b9f71ffa942c37296d549f671dacd12eb97711e06c
GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/332.app.js?ver=3.5.2 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:18 GMT
Accept-Ranges: bytes
Content-Length: 4401
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7
18.143.106.125200 OK 6.4 kB URL HTTP/1.1 valluva.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7
IP 18.143.106.125:0
File type ASCII text, with very long lines (6406), with no line terminators
Hash 8fe2803a01c9fa77cb1a2618c3552dce
2230dd8f0604e4328e7c2a3f9437a6bf2986f592
e87a1c5e24f9a7c7dcb437417f0b05b0a3c12947ce32d65c990c988a8b5ed4d7
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:15 GMT
Accept-Ranges: bytes
Content-Length: 6406
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
18.143.106.125200 OK 16 kB URL HTTP/1.1 valluva.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 18.143.106.125:0
File type Unicode text, UTF-8 text, with very long lines (16323)
Hash 38400d9c6ba7d41239fccfaa9f523558
fe9a1548961441ce82e5399444f2be5408d2644c
293913879d30bab7499013e935009f5183facbddd63bfc9656a859622590b80b
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:15 GMT
Accept-Ranges: bytes
Content-Length: 16470
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.4
18.143.106.125200 OK 9.7 kB URL HTTP/1.1 valluva.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.4
IP 18.143.106.125:0
File type HTML document, ASCII text, with very long lines (9720), with no line terminators
Hash cfb428c02811f0cbe515d5f3dca61de6
e95f8696fbe29a706e66ccf582b36d9bd650ab9f
679e44f9b4bbbc2ad0c4000c1413fd3a88627d83f1cba8ebdac26f81bc7edb78
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.4 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:49 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:28 GMT
Accept-Ranges: bytes
Content-Length: 9720
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen-grid.min.css?ver=3.3.2
18.143.106.125200 OK 5.7 kB URL HTTP/1.1 valluva.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen-grid.min.css?ver=3.3.2
IP 18.143.106.125:0
File type ASCII text, with very long lines (5728), with no line terminators
Hash 5b0c480697415e439a38ae0363292cc3
9ba0777d3bc86c06f2a7068878991b4fb8147047
e57033635c81b0c8dae62a3721ff0450d51428319879689391e35b3188156bdd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen-grid.min.css?ver=3.3.2 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:50 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:18 GMT
Accept-Ranges: bytes
Content-Length: 5728
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
valluva.com/wp-content/uploads/2021/04/icon3-1.png
18.143.106.125200 OK 5.4 kB URL HTTP/1.1 valluva.com/wp-content/uploads/2021/04/icon3-1.png
IP 18.143.106.125:0
File type PNG image data, 143 x 142, 8-bit colormap, non-interlaced\012- data
Hash c219e9932c25bd5de0964969c4a2b56a
dd7afac749dec068d66fdda5e80098da305a7d9e
530f3306da1f3467b059c807012cbdc5b4981dff29a212b83a970d3c64a5e094
GET /wp-content/uploads/2021/04/icon3-1.png HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:50 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:25 GMT
Accept-Ranges: bytes
Content-Length: 5438
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
valluva.com/wp-content/plugins/country-phone-field-contact-form-7/assets/js/intlTelInput.min.js?ver=5.8
18.143.106.125200 OK 24 kB URL HTTP/1.1 valluva.com/wp-content/plugins/country-phone-field-contact-form-7/assets/js/intlTelInput.min.js?ver=5.8
IP 18.143.106.125:0
File type Unicode text, UTF-8 text, with very long lines (23026)
Hash e06f9c0759f4417168d9f339c93a46cd
333f1db38590301d519c75aa1b66a204dfecf3e6
a81bcb14202d3a3874277d5010e94b8ca2ed4b705a47b20501084db201698528
GET /wp-content/plugins/country-phone-field-contact-form-7/assets/js/intlTelInput.min.js?ver=5.8 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:50 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:39:43 GMT
Accept-Ranges: bytes
Content-Length: 23839
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/country-phone-field-contact-form-7/assets/js/countrySelect.min.js?ver=5.8
18.143.106.125200 OK 17 kB URL HTTP/1.1 valluva.com/wp-content/plugins/country-phone-field-contact-form-7/assets/js/countrySelect.min.js?ver=5.8
IP 18.143.106.125:0
File type Unicode text, UTF-8 text, with very long lines (16597), with no line terminators
Hash 8bd0a2fbf0532c50e262040ae059802f
44fdd262442ddb1d7d8a7fcb243d3875b1e7877a
37d0f8b07b5358d209cf39ca8bd3c7be679a610afa59c5b5ea4f164131204f38
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/country-phone-field-contact-form-7/assets/js/countrySelect.min.js?ver=5.8 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:50 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:39:43 GMT
Accept-Ranges: bytes
Content-Length: 17280
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de
18.143.106.125200 OK 5.4 kB URL HTTP/1.1 valluva.com/wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de
IP 18.143.106.125:0
File type ASCII text, with very long lines (5405)
Hash 10eb2a823cb3051e10c7395768745f5b
d1002d92d3b59802d22742cd8172a4ec8918ffad
04e6fb814fccce3a0aecb83be0bc24665cf3e6a5e993f296471a63708f63e138
GET /wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:50 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:15 GMT
Accept-Ranges: bytes
Content-Length: 5440
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79
18.143.106.125200 OK 9.9 kB URL HTTP/1.1 valluva.com/wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79
IP 18.143.106.125:0
Hash cbad4ec75d85df02210165d43d02461b
5c05cfb56bfc7334715f063d596761bab76aa91a
dceda745a0fb58233a95eff6d10796026df6792cb960cdf675eb7b8a6750a2d2
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:50 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:15 GMT
Accept-Ranges: bytes
Content-Length: 9866
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/stickThis.js?ver=2.1.1
18.143.106.125200 OK 726 B URL HTTP/1.1 valluva.com/wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/stickThis.js?ver=2.1.1
IP 18.143.106.125:0
File type ASCII text, with CRLF line terminators
Hash 94b28304fdc64ff51ccb7c38a01839b0
eea1799314b356e54f5434d23b99cf760a6124c6
8fc646c9ba5a91dded24716aec18659da956f775f3342854241fad3a53340f70
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/sticky-menu-or-anything-on-scroll/assets/js/stickThis.js?ver=2.1.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:50 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:28 GMT
Accept-Ranges: bytes
Content-Length: 726
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.5.6.0
18.143.106.125200 OK 9.5 kB URL HTTP/1.1 valluva.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.5.6.0
IP 18.143.106.125:0
File type ASCII text, with very long lines (9151)
Hash 2e96f622673104a3fb67ab56f849c073
f4c17ae4709cad9bc997357581f4e30fc4bbee2c
b49498d1142de7f2e16afc2cd4250d2ba30c5df4de5d291f51d7cf69727efdbe
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.5.6.0 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:50 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:41:19 GMT
Accept-Ranges: bytes
Content-Length: 9545
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/uploads/2021/04/bg-banner.jpg
18.143.106.125200 OK 60 kB URL HTTP/1.1 valluva.com/wp-content/uploads/2021/04/bg-banner.jpg
IP 18.143.106.125:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, datetime=2021:04:22 15:51:36], progressive, precision 8, 1920x968, components 3\012- data
Hash af7bc0582bba333c764901764c922da4
b20f8e4e1ccb59a8da0d7940187d1e7d12c2f051
0c250f2306967dacea4278189020ca4b4c8b00239eeb8ba43d4c4f62612ce2a9
GET /wp-content/uploads/2021/04/bg-banner.jpg HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/wp-content/uploads/elementor/css/post-3525.css?ver=1645616052
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:50 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:25 GMT
Accept-Ranges: bytes
Content-Length: 59856
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
valluva.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.10.0
18.143.106.125200 OK 86 kB URL HTTP/1.1 valluva.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.10.0
IP 18.143.106.125:0
File type Web Open Font Format (Version 2), TrueType, length 85840, version 1.0\012- data
Hash eed427836ac6bcd7d04fb0d4af70efef
4049039b044856eee00fb5f305bb2c3381d3e502
5dd416142a868b8eb9ac36445af1f3652195c6020c0ea339f4d9b14ab9a459df
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.10.0 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://valluva.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.2.1
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:50 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:39:50 GMT
Accept-Ranges: bytes
Content-Length: 85840
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: font/woff2
valluva.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.6.0
18.143.106.125200 OK 3.0 kB URL HTTP/1.1 valluva.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.6.0
IP 18.143.106.125:0
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 8bc2109ef48cabf7a26b73d7c3536c5f
0e0dfee3a3975eafc3dd55f190d1deb3c6c55d3b
8634aa7a3ac0bc6d359b458c8922e9d3269f64c1355b329bfe215beb12773af8
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=5.6.0 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:50 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:41:18 GMT
Accept-Ranges: bytes
Content-Length: 3037
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.5.6.0
18.143.106.125200 OK 1.8 kB URL HTTP/1.1 valluva.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.5.6.0
IP 18.143.106.125:0
File type ASCII text, with very long lines (1668)
Hash d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.5.6.0 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:50 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:41:19 GMT
Accept-Ranges: bytes
Content-Length: 1834
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.6.0
18.143.106.125200 OK 2.1 kB URL HTTP/1.1 valluva.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.6.0
IP 18.143.106.125:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=5.6.0 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:50 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:41:19 GMT
Accept-Ranges: bytes
Content-Length: 2139
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.6.0
18.143.106.125200 OK 2.9 kB URL HTTP/1.1 valluva.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.6.0
IP 18.143.106.125:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 51af5d767f0300f23ecec6298b707395
5eb2d3d937fe0392a974937125d0420666b9396c
9c7c023f91428234ca0ea4df1199758686f4dcd04da96ba63571788fb3389c0b
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=5.6.0 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:50 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:41:18 GMT
Accept-Ranges: bytes
Content-Length: 2938
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/jquery-validation-for-contact-form-7/includes/assets/js/jquery.validate.min.js?ver=5.1
18.143.106.125200 OK 27 kB URL HTTP/1.1 valluva.com/wp-content/plugins/jquery-validation-for-contact-form-7/includes/assets/js/jquery.validate.min.js?ver=5.1
IP 18.143.106.125:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (24304), with CRLF line terminators
Hash a5cbf47ebbdaa199470f058ce53b9874
7ce4a8a2d233b14def90cc2092ba78b5205c3c77
a09112fa7520aadd490ff56d630980c07a5fba352f736410a5d9b19b809419c2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jquery-validation-for-contact-form-7/includes/assets/js/jquery.validate.min.js?ver=5.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:51 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:21 GMT
Accept-Ranges: bytes
Content-Length: 26983
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/jquery-validation-for-contact-form-7/includes/assets/js/jvcf7_validation.js?ver=5.1
18.143.106.125200 OK 1.6 kB URL HTTP/1.1 valluva.com/wp-content/plugins/jquery-validation-for-contact-form-7/includes/assets/js/jvcf7_validation.js?ver=5.1
IP 18.143.106.125:0
File type ASCII text, with CRLF line terminators
Hash 9ccfa4624bd0be3bb895e427924c1a14
5a915a92400a0e882f79fd8873272a0baaf8314d
1c4d4e76094ec183db8f840ca9ebab76c60661540c0d0c8eb99c76644a466f02
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jquery-validation-for-contact-form-7/includes/assets/js/jvcf7_validation.js?ver=5.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:51 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:21 GMT
Accept-Ranges: bytes
Content-Length: 1649
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-includes/js/wp-embed.min.js?ver=5.8
18.143.106.125200 OK 1.4 kB URL HTTP/1.1 valluva.com/wp-includes/js/wp-embed.min.js?ver=5.8
IP 18.143.106.125:0
File type ASCII text, with very long lines (1391)
Hash 905225d5711b559d3092387d5ffbedbd
6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d
5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=5.8 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:51 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:14 GMT
Accept-Ranges: bytes
Content-Length: 1426
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.4
18.143.106.125200 OK 999 B URL HTTP/1.1 valluva.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.4
IP 18.143.106.125:0
File type ASCII text, with very long lines (999), with no line terminators
Hash 6a0e8318d42803736d2fafcc12238026
c955314a7e0a9a9871329b0f042c8f0b5df49a78
2648a1333fa24d383fd73a6beaac17156ae78f4267ff7407ad60e05a788df44c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.4 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:51 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:28 GMT
Accept-Ranges: bytes
Content-Length: 999
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/post-slider-and-carousel/assets/js/owl.carousel.min.js?ver=1.0.1
18.143.106.125200 OK 45 kB URL HTTP/1.1 valluva.com/wp-content/plugins/post-slider-and-carousel/assets/js/owl.carousel.min.js?ver=1.0.1
IP 18.143.106.125:0
File type ASCII text, with very long lines (31997)
Hash 29f29930e94c21b843c99dc695e497f2
a7c58eb33163f01381d0af9fb47fbfe9d83f505f
d64645bf91e3300a02e39f7e4f80203042885d5667c1d4699c2cb440cafeed03
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/post-slider-and-carousel/assets/js/owl.carousel.min.js?ver=1.0.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:51 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:40:21 GMT
Accept-Ranges: bytes
Content-Length: 44715
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/post-slider-and-carousel/assets/js/psac-public.js?ver=1.0.1
18.143.106.125200 OK 2.0 kB URL HTTP/1.1 valluva.com/wp-content/plugins/post-slider-and-carousel/assets/js/psac-public.js?ver=1.0.1
IP 18.143.106.125:0
Hash c4625d9681304c78de59dabff3cca233
129cba3513024ab64ae381e644e34346d0395386
9e560a15455cea56c4702bc604cca72fee884e6f7d2264689e719abd5c0838f8
GET /wp-content/plugins/post-slider-and-carousel/assets/js/psac-public.js?ver=1.0.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:51 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:40:21 GMT
Accept-Ranges: bytes
Content-Length: 2021
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/stratum/vendors/donutty/donutty-jquery.min.js?ver=2.0.0
18.143.106.125200 OK 6.0 kB URL HTTP/1.1 valluva.com/wp-content/plugins/stratum/vendors/donutty/donutty-jquery.min.js?ver=2.0.0
IP 18.143.106.125:0
File type ASCII text, with very long lines (5805)
Hash fb0b01bc888196f14867f2c41486b920
81689842e009e0a790e829b9e0ef520b3c98038d
7293997eea0a001d4782fa11603a4a9e607919067f2d61fa23cf0068922bd1f4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/stratum/vendors/donutty/donutty-jquery.min.js?ver=2.0.0 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:51 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:27 GMT
Accept-Ranges: bytes
Content-Length: 5982
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/stratum/vendors/waypoints/jquery.waypoints.min.js?ver=4.0.1
18.143.106.125200 OK 9.0 kB URL HTTP/1.1 valluva.com/wp-content/plugins/stratum/vendors/waypoints/jquery.waypoints.min.js?ver=4.0.1
IP 18.143.106.125:0
File type Unicode text, UTF-8 text, with very long lines (8863)
Hash 7d05f92297dede9ecfe3706efb95677a
56bdb149d9baf64474a4c24ae66445769a28254e
368daab67b1a5b2b2802edbbac79a2aa4ba992a2ebf9c67b98ad784d8004018c
GET /wp-content/plugins/stratum/vendors/waypoints/jquery.waypoints.min.js?ver=4.0.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:51 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:42:27 GMT
Accept-Ranges: bytes
Content-Length: 9028
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/widgetkit-for-elementor/dist/js/widgetkit.js?ver=2.3.12
18.143.106.125200 OK 5.0 kB URL HTTP/1.1 valluva.com/wp-content/plugins/widgetkit-for-elementor/dist/js/widgetkit.js?ver=2.3.12
IP 18.143.106.125:0
File type ASCII text, with very long lines (4956), with no line terminators
Hash 0a99c41a568591442ca4a2b82743c560
a62fa0df3758bc26ef8df1fe0517cf43a74ff8d9
1f14ed7f6ad9f6f40c03862c72227daed7a8d055680e66fda0da8ffb65558cc9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/widgetkit-for-elementor/dist/js/widgetkit.js?ver=2.3.12 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:51 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:40:27 GMT
Accept-Ranges: bytes
Content-Length: 4956
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/widgetkit-for-elementor/dist/js/uikit-icons.min.js?ver=2.3.12
18.143.106.125200 OK 64 kB URL HTTP/1.1 valluva.com/wp-content/plugins/widgetkit-for-elementor/dist/js/uikit-icons.min.js?ver=2.3.12
IP 18.143.106.125:0
File type ASCII text, with very long lines (63904), with no line terminators
Hash dc094c0867d3334abf051aeb59865e2f
4eb99a3115a1c8f2fe6dd567e701d265497bb478
8ec12bdabd99a0f3a684b5ff69ce11a04dc997f2fcd0cca0ba6cc071ed21c32b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/widgetkit-for-elementor/dist/js/uikit-icons.min.js?ver=2.3.12 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:51 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:40:27 GMT
Accept-Ranges: bytes
Content-Length: 63904
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.2.1
18.143.106.125200 OK 4.8 kB URL HTTP/1.1 valluva.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.2.1
IP 18.143.106.125:0
File type ASCII text, with very long lines (4730)
Hash af3c5dced002ac8e8f6119863bad365d
a735d15fe885613ffa6dc983a8d2b0ed7d95ac54
326eac512d383e6cc9376b67078caf6196adbba5d9a483744c01e22031a3d827
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.2.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:51 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:39:49 GMT
Accept-Ranges: bytes
Content-Length: 4769
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
18.143.106.125200 OK 12 kB URL HTTP/1.1 valluva.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 18.143.106.125:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash 3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:51 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:39:54 GMT
Accept-Ranges: bytes
Content-Length: 12198
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/widgetkit-for-elementor/dist/js/uikit.min.js?ver=2.3.12
18.143.106.125200 OK 134 kB URL HTTP/1.1 valluva.com/wp-content/plugins/widgetkit-for-elementor/dist/js/uikit.min.js?ver=2.3.12
IP 18.143.106.125:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 134 kB (134083 bytes)
Hash 9d6d93a388fddfe78539a8b21a03eb08
06b79a207a9152cec982932f23a4167a04da4a43
33d464abf4bfb65bae84565004f3a479b223ecf9c0fe66c2faa139869ba4760b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/widgetkit-for-elementor/dist/js/uikit.min.js?ver=2.3.12 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:51 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:40:27 GMT
Accept-Ranges: bytes
Content-Length: 134083
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
18.143.106.125200 OK 21 kB URL HTTP/1.1 valluva.com/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
IP 18.143.106.125:0
File type ASCII text, with very long lines (7973)
Hash 49fa677b9cd7ddf221dc06537b35e10f
7485f3f99c3c1a57197f2b099f3f8d68b8609d06
0cd851e5b33af0fbb354df65506da39807b998e07723f3d08aba5179fa2ed97e
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:51 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:38:15 GMT
Accept-Ranges: bytes
Content-Length: 20787
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.8
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.8
IP 142.250.74.10:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.8 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 06:03:46 GMT
date: Tue, 29 Nov 2022 06:03:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Nunito+Sans&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Nunito+Sans&display=swap
IP 142.250.74.10:0
GET /css2?family=Nunito+Sans&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 06:03:46 GMT
date: Tue, 29 Nov 2022 06:03:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
valluva.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.2.1
18.143.106.125200 OK 0 B URL HTTP/1.1 valluva.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.2.1
IP 18.143.106.125:0
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.2.1 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:51 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:39:49 GMT
Accept-Ranges: bytes
Content-Length: 64914
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
valluva.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
18.143.106.125200 OK 0 B URL HTTP/1.1 valluva.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 18.143.106.125:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: valluva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://valluva.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 06:03:51 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 13:39:54 GMT
Accept-Ranges: bytes
Content-Length: 139153
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript