Report - www.chelancove.com/bigdummysguidetotheas400pdf-_verified

Report Overview

Submitted URL
www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/
IP
107.180.55.21
ASN
#26496 AS-26496-GO-DADDY-COM-LLC
Submitted
2022-09-13 09:48:48
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
50

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.162.35.244
lenti.hr	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	320 B	240 kB	185.103.219.62
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
www.chelancove.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	13 kB	255 kB	107.180.55.21
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	731 B	2.7 kB	142.250.74.10
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	420 B	46 kB	142.250.74.163
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.35
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.33.119.27
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	50 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-13	medium	www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.5.0	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.5.3	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/themes/amax/libraries/omFont/omFont.css?ver=4.5.26	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/themes/amax/css/responsive-mobile.css?ver=4.5.26	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/themes/amax/css/layerslider/skins.css?ver=4.5.26	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/themes/amax/libraries/prettyphoto/css/prettyPhoto.custom.css?ver=4.5.26	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/themes/amax/style.css?ver=1.0.12	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/plugins/contact-widgets/assets/css/style.min.css?ver=1.0.1	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/plugins/godaddy-email-marketing-sign-up-forms/css/gem.min.css?ver=1.4.3	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/themes/amax/libraries/fontawesome/css/font-awesome.min.css?ver=4.5.0	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/themes/amax/libraries/prettyphoto/js/jquery.prettyPhoto.custom.min.js?ver=4.5.26	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.5.3	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/themes/amax/js/libraries.js?ver=4.5.26	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/themes/amax/js/jquery.omslider.min.js?ver=4.5.26	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/themes/amax/js/jquery.lazyload.min.js?ver=4.5.26	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=4.11.2.1	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/themes/amax/js/isotope.pkgd.om.min.js?ver=4.5.26	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/themes/amax/js/custom.js?ver=1.0.12	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/themes/amax/js/jquery.smoothscroll.js?ver=4.5.26	Phishing
2022-09-13	medium	www.chelancove.com/wp-includes/js/comment-reply.min.js?ver=4.5.26	Phishing
2022-09-13	medium	www.chelancove.com/wp-includes/js/wp-embed.min.js?ver=4.5.26	Phishing
2022-09-13	medium	www.chelancove.com/wp-content/themes/amax/libraries/omFont/fonts/omFont.woff?-2v2zek	Phishing
2022-09-13	medium	www.chelancove.com/hd-online-player-garfield-1-tamil-dubbed-movie-267/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (25)

	URL	Size	First Seen	Last Seen
	www.chelancove.com/wp-content/themes/amax/libraries/prettyphoto/js/jquery.prettyPhoto.custom.min.js?ver=4.5.26	22 kB	2023-03-07	2024-01-23
Pretty URL www.chelancove.com/wp-content/themes/amax/libraries/prettyphoto/js/jquery.prettyPhoto.custom.min.js?ver=4.5.26 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:48:51 Last Seen2024-01-23 00:15:16 Times Seen51 Hash c3f2e7e799fb244e15ef0f6faf9d4367 ec6d7d28b1342c90649be0804adad426e060fb32 6f2a8a77d8524d17465ceb1f2d87ab2f236b881a19e7eb91c50ac62f19409c61 Loading...

	www.chelancove.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.5.3	56 kB	2023-03-07	2024-02-04
Pretty URL www.chelancove.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.5.3 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:48:51 Last Seen2024-02-04 22:38:53 Times Seen96 Hash d02ac859097091aeb60380aa5b17c9ce bba58403c9860441ad20fb61d7b57f316aef6333 3c3b9337f21a2a711b7b5f614554333208bd8fbe6ad108c3817abe3645de03ba Loading...

	www.chelancove.com/wp-content/themes/amax/js/isotope.pkgd.om.min.js?ver=4.5.26	38 kB	2023-03-07	2024-01-23
Pretty URL www.chelancove.com/wp-content/themes/amax/js/isotope.pkgd.om.min.js?ver=4.5.26 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:48:51 Last Seen2024-01-23 00:15:16 Times Seen45 Hash a45ad3b25d9d7c6fe41037537f5c1aed 8600e43002f34b406e44b39f891e02e99399ba92 bb9f2423e33e6c2dae4175cbf0466a28a560e432f273696a35c4d321ec6046ae Loading...

	www.chelancove.com/wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=4.11.2.1	8.0 kB	2023-03-07	2024-04-17
Pretty URL www.chelancove.com/wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=4.11.2.1 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:35 Last Seen2024-04-17 05:53:59 Times Seen2092 Hash ac5840cf0870ecc0833ec7f0b46abdac b01f657a7b0d93cfd47fa06bd07dd6c9e6605629 8d73392f1f569c51f57b7f9a30278358484f1795584aa2cd540e5b8ea650593e Loading...

	www.chelancove.com/wp-content/themes/amax/js/jquery.omslider.min.js?ver=4.5.26	2.8 kB	2023-03-07	2024-01-23
Pretty URL www.chelancove.com/wp-content/themes/amax/js/jquery.omslider.min.js?ver=4.5.26 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:48:51 Last Seen2024-01-23 00:15:16 Times Seen45 Hash 25f1ace6dcd089f65b3184f856508269 b658ede55eed5a370ddf1f94ef94b7dc033c1981 bd761e52c4384828a6c06aed6de76d61f15cfcb3a6a975dbeca2f7c75b4857da Loading...

	www.chelancove.com/wp-content/themes/amax/js/jquery.lazyload.min.js?ver=4.5.26	3.4 kB	2023-03-07	2024-04-19
Pretty URL www.chelancove.com/wp-content/themes/amax/js/jquery.lazyload.min.js?ver=4.5.26 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:08 Last Seen2024-04-19 02:00:25 Times Seen1536 Hash 89c45121934ed4664ff3ca811a008226 848216f1d67cc7c6c6214db1a771f8c4653f06d6 e576f12e82c468567e420386b68476ff7045815976395bc6baad1a822c7368a7 Loading...

	www.chelancove.com/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8	53 kB	2023-03-07	2024-04-18
Pretty URL www.chelancove.com/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:31 Last Seen2024-04-18 15:49:15 Times Seen368 Hash 56e948a35fc41c4eaaa5f270a5cc8b4d 5517e32adfa6eadbb224883c8c55e966e26c2ce7 9bd12ebf830c8336c57ddcaae4afb1715d94da795eb6a5b48aee5cedc2a4d25e Loading...

	www.chelancove.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	10 kB	2023-03-07	2024-04-19
Pretty URL www.chelancove.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-19 01:19:39 Times Seen37082 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	www.chelancove.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.5.3	105 kB	2023-03-07	2024-04-08
Pretty URL www.chelancove.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.5.3 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:55:12 Last Seen2024-04-08 17:17:44 Times Seen265 Hash 2efaa0160fcdba7794941b24a79e9764 5ca2b54faabe6feb82c2321dc02129d9483991e5 1c4ade9c74a5cf4f95a1ddff5199906b69f670c9fe8a1dba53beba5493ebd4a6 Loading...

	www.chelancove.com/wp-content/themes/amax/js/libraries.js?ver=4.5.26	8.2 kB	2023-03-07	2024-01-23
Pretty URL www.chelancove.com/wp-content/themes/amax/js/libraries.js?ver=4.5.26 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:48:51 Last Seen2024-01-23 00:15:16 Times Seen45 Hash 112356a2f3ae6229f5e0f53adb2c6cb7 e3ff4f1c7794d3ac9abe07f46f197eaadde96aff 5db6a29bbd5caa1ab1a050ec1034b7df18e91400e77a551fd51106432f0cc235 Loading...

	www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/	99 B	2023-03-07	2024-04-16
Pretty URL www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/ IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:48:51 Last Seen2024-04-16 09:51:23 Times Seen31 Hash 75884a1e88366f1775375a097b93949b 1b6871b8976ac95ae1ab70ceae07e6e6651973a1 3047e4bdda32900d8b04c89900994fc8a1607c24123d1e81b9e296f7f41e5be2 Loading...

	www.chelancove.com/wp-content/themes/amax/js/jquery.superfish.min.js?ver=4.5.26	4.5 kB	2023-03-07	2024-01-23
Pretty URL www.chelancove.com/wp-content/themes/amax/js/jquery.superfish.min.js?ver=4.5.26 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:48:51 Last Seen2024-01-23 00:15:16 Times Seen51 Hash 2d12bb8eca3ede776a6081df5562cc67 0337775a2067e8845f8c565f9e25ac5e305ba193 aa281d1e7cc90f2c096c0ebf69a4b7c8ab202de7a2654b7a4a855178ec38d248 Loading...

	www.chelancove.com/wp-content/themes/amax/js/custom.js?ver=1.0.12	23 kB	2023-03-07	2023-12-02
Pretty URL www.chelancove.com/wp-content/themes/amax/js/custom.js?ver=1.0.12 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:48:51 Last Seen2023-12-02 14:57:49 Times Seen43 Hash 2ced93467f57e97608541dae219b9c74 fa0f18ee595df215aa535053e692b8724b825859 a38e2640f1d9ae54b9e0e4fc2114a30a3698e8da7521550914ddb4b34ff4cc97 Loading...

	www.chelancove.com/wp-content/themes/amax/js/jquery.smoothscroll.js?ver=4.5.26	5.0 kB	2023-03-07	2024-01-23
Pretty URL www.chelancove.com/wp-content/themes/amax/js/jquery.smoothscroll.js?ver=4.5.26 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:48:51 Last Seen2024-01-23 00:15:16 Times Seen51 Hash 42b20ec83cff3ac53969b0f24ccff7ed 90bdfa1b134ed2f4babd519bc883f70dbb0bd73c 8b73e8e145ea800aafa786f62478f6cba274b4dd49e578ce233a75a624dced9b Loading...

	www.chelancove.com/wp-includes/js/jquery/jquery.js?ver=1.12.4	97 kB	2023-03-07	2024-04-18
Pretty URL www.chelancove.com/wp-includes/js/jquery/jquery.js?ver=1.12.4 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-04-18 21:08:33 Times Seen10179 Hash dc5ba5044fccc0297be7b262ce669a7c f137ff98ae379e35b0702967d3b6866a0a40e3be cf34e1b87bbfd9d9b185dec994924a496e279d8dc9387ad8d35bc0110134c4d3 Loading...

	www.chelancove.com/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.5.0	54 kB	2023-03-07	2024-03-16
Pretty URL www.chelancove.com/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.5.0 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:48:51 Last Seen2024-03-16 21:28:38 Times Seen85 Hash 0d332a30b5ad3175a1bd414a32f10cf9 48ae7c5b561f4c66d796014ee1b1f8a3fb24c961 8e376c1e52d1444d91d744e8fbac19885ba3bd3be05d92b500de31c1116b7e64 Loading...

	www.chelancove.com/wp-includes/js/comment-reply.min.js?ver=4.5.26	1.1 kB	2023-03-07	2024-04-18
Pretty URL www.chelancove.com/wp-includes/js/comment-reply.min.js?ver=4.5.26 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:31 Last Seen2024-04-18 21:08:33 Times Seen2158 Hash 9ef21a469fc37e845d6303fcfea70897 a86ec94ec7bee9227bcdf8d6374cabe82ae43e49 6b2e2d56e7b0e80d919bc65dd94f8cd95e57ad9298fc4fecc005301ea8339c9f Loading...

	www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/	320 B	2023-03-07	2024-03-11
Pretty URL www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/ IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:38:19 Last Seen2024-03-11 09:28:35 Times Seen136 Hash c6b118186693698c8aa33cc8b9aaf597 4f15d154e367b6b59f7c525934bfb79cd7cc8738 d8ec1ebe6f87ea8ebc9259127775954b49464df6876606bd8a9d5d9de1783e6a Loading...

	www.chelancove.com/wp-content/plugins/godaddy-email-marketing-sign-up-forms/js/gem.min.js?ver=1.4.3	2.2 kB	2023-03-07	2024-03-11
Pretty URL www.chelancove.com/wp-content/plugins/godaddy-email-marketing-sign-up-forms/js/gem.min.js?ver=1.4.3 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:38:18 Last Seen2024-03-11 09:28:35 Times Seen242 Hash 3cc485a5df5319dd5fccf61cee3c12a8 bc9274cf8da5a6ae39be626eb0329217411daec4 6eba7ed8e0d2585eb33a250d85cf2dd0cc88dfee7b7d07c724442adf6ef24aff Loading...

	www.chelancove.com/wp-includes/js/wp-embed.min.js?ver=4.5.26	1.4 kB	2023-03-07	2024-02-27
Pretty URL www.chelancove.com/wp-includes/js/wp-embed.min.js?ver=4.5.26 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2024-02-27 20:06:46 Times Seen393 Hash 2a9a2f64687bc94523f4c50c9335cc0f 33c874cafe5df3ea8c8756be8642f675f9cf5289 4114f99c5992bab27f43ae5e3c7c196ce63fac0b4b43915af913c1a30ca1f3da Loading...

	www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/	1.9 kB	2023-03-07	2023-12-02
Pretty URL www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/ IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:48:51 Last Seen2023-12-02 14:57:49 Times Seen21 Hash abcfc2cfe57f755f4b564a643757d919 b402aee4cefcfaa522dca5a7586e0a24c6bc01dc 5d61c2d8f16d1f09ad5c24b91249b42d12392239229f6680877c21af132ca08d Loading...

	www.chelancove.com/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.5.0	21 kB	2023-03-07	2024-04-18
Pretty URL www.chelancove.com/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.5.0 IP 107.180.55.21 ASN #26496 AS-26496-GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:32 Last Seen2024-04-18 15:49:15 Times Seen823 Hash 767519d48621df8e1ebf4f5eb423aae3 a97c92b93f5251420bfbc4c1dcb3e27c4314b260 2526c2cb3ad7b06822bbab38206805235ce3669f7ab0b09e4ab6d247acdf1f8c Loading...

		Size	First Seen	Last Seen
	#1 Eval - 8852de33f6bba727a29d790b8828c08a	70 kB	2023-03-07	2024-04-18
Pretty Observations First Seen2023-03-07 01:03:32 Last Seen2024-04-18 15:49:14 Times Seen286 Hash 8852de33f6bba727a29d790b8828c08a edce6518d39f781b63d92e3e2cbaec7b1552fd4d e2f21cda784dd2e3f2d0d1d145f4fa8925d71381e36e3cbd21d54695ff9bdb85 Loading...

	#2 Eval - d9e91302b643dafba1eb4d58e103b820	80 kB	2023-03-07	2024-03-16
Pretty Observations First Seen2023-03-07 13:48:51 Last Seen2024-03-16 21:28:38 Times Seen55 Hash d9e91302b643dafba1eb4d58e103b820 2769e2893361883e9e37b52dcfcca9aa64646765 e10c8bacee7741d38614f49be90695dc69720287649b05b6ba7e35a3493f3669 Loading...

	#3 Eval - fe9927c9fe0e7712a78f3a265e171f59	50 kB	2023-03-07	2024-04-18
Pretty Observations First Seen2023-03-07 01:03:32 Last Seen2024-04-18 15:49:14 Times Seen989 Hash fe9927c9fe0e7712a78f3a265e171f59 f035e76d78dc68701d2af62386a866e08cd10e8f 9794de1edf2a49e65673ad2f34f1d410b2570313514b270465df3ad3fbe2ca71 Loading...

HTTP Transactions (56)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 13 Sep 2022 09:14:09 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jvDN9IHTQLxEHItcxbP2zelQlSxIXJJnJgyuxWWPypLaAFMypUFWKw==
Age: 2068

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6447
Expires: Tue, 13 Sep 2022 11:36:04 GMT
Date: Tue, 13 Sep 2022 09:48:37 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 13 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: P31BxGtuGXZJJlfStAMjNbZifUdLgyfq3cl0-lZtvJzkWPwqFHblWQ==
age: 18803
X-Firefox-Spdy: h2

www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

107.180.55.21

200 OK

6.5 kB

URL HTTP/1.1
www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3397), with CRLF, LF line terminators
Size
6.5 kB (6542 bytes)
Hash
a5171301b7e2ce12e284457770d0e56b
37b946041b9c2932658dc6ac6e2766c0067a3d62
945c791d5348e8467a791be9784305a8fa55762a14161b0a89d9bf5e6e254269

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /bigdummysguidetotheas400pdf-_verified_/ HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:37 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
X-Pingback: http://www.chelancove.com/xmlrpc.php
Link: <http://www.chelancove.com/wp-json/>; rel="https://api.w.org/", <http://www.chelancove.com/?p=29057>; rel=shortlink
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6542
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 09:48:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext

142.250.74.10

200 OK

943 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
943 B (943 bytes)
Hash
499ce1b88322bf73725886c03337fb1a
e4ef4aeae044ee651072a4f43615ee833f1496ed
3f479351b866c360ea55f98fd63eb7a380c086d37b87ffd00b6acc03a7667bf8

HTTP Headers

GET /css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 13 Sep 2022 09:48:38 GMT
Date: Tue, 13 Sep 2022 09:48:38 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

fonts.googleapis.com/css?family=Open+Sans%3A400%2C700&ver=4.5.26

142.250.74.10

200 OK

639 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Open+Sans%3A400%2C700&ver=4.5.26
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
639 B (639 bytes)
Hash
6dc4baedd3a6a34b4800ab2056734f87
0085daa1e87ec503a28a7aeb03d74ab24b1004fe
87925a851551ae6e978f673ee9169022699d71ec3011e4a4a84d809e573d0416

HTTP Headers

GET /css?family=Open+Sans%3A400%2C700&ver=4.5.26 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 13 Sep 2022 09:48:38 GMT
Date: Tue, 13 Sep 2022 09:48:38 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

www.chelancove.com/wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.5.0

107.180.55.21

200 OK

3.0 kB

URL HTTP/1.1
www.chelancove.com/wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.5.0
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
3.0 kB (3044 bytes)
Hash
1811315f559d111bc9bf151b01995707
f6de1413feae3c2c6119e5b527ade4d2c096330d
d72585cac4e03af85b315de18dcf2fe0b3e3bef77ee3b2838e8c0fb0cfa68b97

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/css/layerslider.css?ver=5.5.0 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 06 Jul 2016 04:36:38 GMT
ETag: "640148b-3d5c-536f01d832376-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3044
Keep-Alive: timeout=5
Content-Type: text/css

www.chelancove.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.5.3

107.180.55.21

200 OK

7.9 kB

URL HTTP/1.1
www.chelancove.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.5.3
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
Unicode text, UTF-8 text, with very long lines (352), with CRLF line terminators
Size
7.9 kB (7910 bytes)
Hash
fd3aee2a0db758085ac3760e6d8a85ea
46bf99e474dd1ce21f3f8d44783a41a9c7410847
f537d9beeab31f3dbc4452e25215498c8a3a0038c4f695dde03e681a7ad47d36

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.2.5.3 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 05:35:35 GMT
ETag: "6401aaf-8f74-536f0f04f5132-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7910
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css

www.chelancove.com/wp-content/themes/amax/libraries/omFont/omFont.css?ver=4.5.26

107.180.55.21

200 OK

743 B

URL HTTP/1.1
www.chelancove.com/wp-content/themes/amax/libraries/omFont/omFont.css?ver=4.5.26
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
743 B (743 bytes)
Hash
a074a0aea39480e9d003d95252f7a5d9
95841191d459d8aaceeed91138f4708c7d7e5f1a
164f2d6b3c866ff43fb337ed3f2c52eae600123ab16c8abfc8224107e5bfc49b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/amax/libraries/omFont/omFont.css?ver=4.5.26 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 06 Jul 2016 05:30:14 GMT
ETag: "6400b17-b62-536f0dd2e2bfd-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 743
Keep-Alive: timeout=5
Content-Type: text/css

www.chelancove.com/wp-content/themes/amax/css/responsive-mobile.css?ver=4.5.26

107.180.55.21

200 OK

1.7 kB

URL HTTP/1.1
www.chelancove.com/wp-content/themes/amax/css/responsive-mobile.css?ver=4.5.26
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
1.7 kB (1650 bytes)
Hash
c5e9e70a1efe0636e15a9dc54bb6b9eb
6ab351fb43dddbbe26ebd1f23d18464a193cda7c
082e9f452b9decb46d880add61846d58bb1a5689561b8c447c682281dd962414

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/amax/css/responsive-mobile.css?ver=4.5.26 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 05:29:16 GMT
ETag: "640168e-1a1e-536f0d9c01afa-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1650
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css

www.chelancove.com/wp-content/themes/amax/css/layerslider/skins.css?ver=4.5.26

107.180.55.21

200 OK

194 B

URL HTTP/1.1
www.chelancove.com/wp-content/themes/amax/css/layerslider/skins.css?ver=4.5.26
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
194 B (194 bytes)
Hash
083d6c0411e0a639e4f1a07bf5a8d9ce
70d782c3cea2e2c5bbdecb09561b018d7b44a721
1298a9978d494a24e6f33de53292156e21b5f57f4bf7c54cd686774a593d4604

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/amax/css/layerslider/skins.css?ver=4.5.26 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 06 Jul 2016 05:29:16 GMT
ETag: "64006c2-1fa-536f0d9bfc122-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 194
Keep-Alive: timeout=5
Content-Type: text/css

www.chelancove.com/wp-content/themes/amax/libraries/prettyphoto/css/prettyPhoto.custom.css?ver=4.5.26

107.180.55.21

200 OK

2.1 kB

URL HTTP/1.1
www.chelancove.com/wp-content/themes/amax/libraries/prettyphoto/css/prettyPhoto.custom.css?ver=4.5.26
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (785)
Size
2.1 kB (2071 bytes)
Hash
f974cd9a11d56970578e225aa6d33777
3e5a28cf2f3c5a9d17bf3e207437a3a670375eaa
e3f2234ba3813e6b9f00eb21a03247a9a923ba0f9519643c3c0563b9c78203dd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/amax/libraries/prettyphoto/css/prettyPhoto.custom.css?ver=4.5.26 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 06 Jul 2016 05:31:13 GMT
ETag: "64012e5-15db-536f0e0aed2e1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2071
Keep-Alive: timeout=5
Content-Type: text/css

www.chelancove.com/wp-content/themes/amax/style.css?ver=1.0.12

107.180.55.21

200 OK

25 kB

URL HTTP/1.1
www.chelancove.com/wp-content/themes/amax/style.css?ver=1.0.12
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (370)
Size
25 kB (24823 bytes)
Hash
597aba9d69694fe8e3a4e3ba27e90c2e
3227e46166ea33ae5b07721358f2c92f189428ae
f7dadf6ed589d09984ff2235eeb9cc2ae8303ac70fcbae5f8dd4f89073297464

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/amax/style.css?ver=1.0.12 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 06 Jul 2016 06:00:56 GMT
ETag: "6401b6e-273d2-536f14b0112e9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 24823
Keep-Alive: timeout=5
Content-Type: text/css

www.chelancove.com/wp-content/plugins/contact-widgets/assets/css/style.min.css?ver=1.0.1

107.180.55.21

200 OK

303 B

URL HTTP/1.1
www.chelancove.com/wp-content/plugins/contact-widgets/assets/css/style.min.css?ver=1.0.1
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (1225), with no line terminators
Size
303 B (303 bytes)
Hash
e2d5afff4810e5215c513467e65b1579
04b8538cc92372b58cee01db66b6e4a0d50e0943
cd9b42e265b8b4348e7af2b69041fe90d0b9db0c92068e32bf7a11635c751e8f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-widgets/assets/css/style.min.css?ver=1.0.1 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Fri, 15 Nov 2019 23:59:35 GMT
ETag: "67807d5-4c9-5976b63d44e94-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 303
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css

www.chelancove.com/wp-content/plugins/godaddy-email-marketing-sign-up-forms/css/gem.min.css?ver=1.4.3

107.180.55.21

200 OK

368 B

URL HTTP/1.1
www.chelancove.com/wp-content/plugins/godaddy-email-marketing-sign-up-forms/css/gem.min.css?ver=1.4.3
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (639), with no line terminators
Size
368 B (368 bytes)
Hash
e4e41ea8d320b4094513a83609fc3d65
7be0b8ec0463eeb7627a9616bbd1ae3d70888ef5
1658dbd88ef28c84468d21307c5daba63ccae912e152c91e5356e876dff4a0dc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/godaddy-email-marketing-sign-up-forms/css/gem.min.css?ver=1.4.3 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Tue, 14 Apr 2020 12:26:27 GMT
ETag: "64008ad-27f-5a33f4eff042e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 368
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css

www.chelancove.com/wp-content/themes/amax/libraries/fontawesome/css/font-awesome.min.css?ver=4.5.0

107.180.55.21

200 OK

6.2 kB

URL HTTP/1.1
www.chelancove.com/wp-content/themes/amax/libraries/fontawesome/css/font-awesome.min.css?ver=4.5.0
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (27303)
Size
6.2 kB (6243 bytes)
Hash
f14f185447db679e05c7b381ec56b6a9
f3e14686cab8519fd93955410d5b281ae86d6e69
26c6be13c6ab47c65829a0584e5c8af70013edb222abb8eb94f5a92bb7702863

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/amax/libraries/fontawesome/css/font-awesome.min.css?ver=4.5.0 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 05:31:01 GMT
ETag: "6400c03-6b4a-536f0dfff2191-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6243
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css

www.chelancove.com/wp-content/themes/amax/style-custom.css?rev=44370&ver=4.5.26

107.180.55.21

200 OK

3.9 kB

URL HTTP/1.1
www.chelancove.com/wp-content/themes/amax/style-custom.css?rev=44370&ver=4.5.26
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (16941), with no line terminators
Size
3.9 kB (3942 bytes)
Hash
5d77769da0c74bfc39a9a0fa3a74500b
09471d770cf5ec665bb0b5a89beecd72577156c0
b57121b361da903a0aef0733372fb994418bd62663fcdf8da0c111b4f5d86b93

HTTP Headers

GET /wp-content/themes/amax/style-custom.css?rev=44370&ver=4.5.26 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Tue, 24 Nov 2020 00:00:03 GMT
ETag: "6401b6d-422d-5b4cefe20fe0e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3942
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css

www.chelancove.com/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8

107.180.55.21

200 OK

25 kB

URL HTTP/1.1
www.chelancove.com/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (52549)
Size
25 kB (24930 bytes)
Hash
1773fcc934d2583de716eff2119eadf2
1039eddf1e4d6e4a48d31f4025671b61ff3691f6
35206b140206600776f6d5015899b1c5ffba22e4fe8ca76f5d92a21cc3224448

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.8 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 04:36:40 GMT
ETag: "64014cf-cf12-536f01d972c6a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 24930
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-includes/js/jquery/jquery.js?ver=1.12.4

107.180.55.21

200 OK

34 kB

URL HTTP/1.1
www.chelancove.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (31997)
Size
34 kB (33776 bytes)
Hash
6b2ceda6218e6810713286b29db017fb
71175271d84c90ca5f05ecc04d7f7a1052873380
de7a4d9a1cb75f0d1a4bf1a71907a44b85b9356da5c4f9e7f6729b8e69a38974

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 04 Sep 2019 21:48:52 GMT
ETag: "64012bd-17a6a-591c12bbbd900-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33776
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

107.180.55.21

200 OK

4.0 kB

URL HTTP/1.1
www.chelancove.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (9959)
Size
4.0 kB (4014 bytes)
Hash
a6c81e2f02bd04160d2de88c4e8f3559
e3f3c91427d785820ca97dabe738f01faf041f36
b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 01 Jun 2016 12:25:31 GMT
ETag: "64012b7-2748-5343695e144c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4014
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.5.0

107.180.55.21

200 OK

3.2 kB

URL HTTP/1.1
www.chelancove.com/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.5.0
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (20890)
Size
3.2 kB (3190 bytes)
Hash
b3aa8c67ec2755b174a584326aabe1d0
7b2cee308d45978ccc2f218044c3b99f0b2e96ad
78aa15e45f3ac28adf3287cfdfef9f842bc8b1455fe40ae49300d48b1f166603

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.5.0 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 04:36:39 GMT
ETag: "64014bb-5267-536f01d90fa76-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3190
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.5.0

107.180.55.21

200 OK

19 kB

URL HTTP/1.1
www.chelancove.com/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.5.0
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (53875)
Size
19 kB (19065 bytes)
Hash
80ed09027984a563687f2aa8fbcf8ae3
ab41fe518e253aee11a1f31a66e9663dab79e5e7
658416b3c95a7c26b0e3f47f9fab9bc8b11fdea93b1d72111e384d8d50cecf36

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.5.0 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 04:36:39 GMT
ETag: "64014bc-d328-536f01d91eca7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19065
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.5.3

107.180.55.21

200 OK

36 kB

URL HTTP/1.1
www.chelancove.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.5.3
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (26755), with CRLF line terminators
Size
36 kB (36264 bytes)
Hash
6277377d8f0a0bf026eb7702b48ff72f
02b0be59c7e711df75ed5fe1efe6ad5baaa83072
149e43db39a752398309d3190dd899532c5a1080c059e537a2c607d4d237908a

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.2.5.3 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 05:35:35 GMT
ETag: "6400e27-19b6a-536f0f04c18f7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 36264
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-content/themes/amax/libraries/prettyphoto/js/jquery.prettyPhoto.custom.min.js?ver=4.5.26

107.180.55.21

200 OK

6.0 kB

URL HTTP/1.1
www.chelancove.com/wp-content/themes/amax/libraries/prettyphoto/js/jquery.prettyPhoto.custom.min.js?ver=4.5.26
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (21256)
Size
6.0 kB (5996 bytes)
Hash
2cbb374b9423b80271e59730869cc927
ac27ff7761e153a7ee55a8e70da29c0c5317febe
3c2d11edf0521d432f9bfec80d80c2da36c88633fe2ae17580b0aed57fd70767

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/amax/libraries/prettyphoto/js/jquery.prettyPhoto.custom.min.js?ver=4.5.26 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 05:31:14 GMT
ETag: "64012e8-544a-536f0e0bdd6b1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5996
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.5.3

107.180.55.21

200 OK

15 kB

URL HTTP/1.1
www.chelancove.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.5.3
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (32011), with CRLF line terminators
Size
15 kB (15373 bytes)
Hash
54ab7b612a2db479a06727c7899987be
e353f3231231320e2a5d9780a4adda3cde432578
3e539eb0f5fe7df03f894b01d46c71ff963ea20d9ee69f3b556247c054ad86f2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.2.5.3 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 05:35:35 GMT
ETag: "6400e26-dae8-536f0f04c150f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15373
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-content/themes/amax/js/libraries.js?ver=4.5.26

107.180.55.21

200 OK

2.3 kB

URL HTTP/1.1
www.chelancove.com/wp-content/themes/amax/js/libraries.js?ver=4.5.26
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (4785)
Size
2.3 kB (2346 bytes)
Hash
246fce3e00ef912fac5fc0376f6b0995
b69a0ff7e649d10aa26d05c65c238554dbbe648c
affc4668ea046bf85de2d4814e494ba13491ad156b7ef93c84f70ebea7dd21d3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/amax/js/libraries.js?ver=4.5.26 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 05:30:08 GMT
ETag: "64002c3-1ff8-536f0dcd499eb-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2346
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 13 Sep 2022 09:03:22 GMT
Cache-Control: max-age=3600
Expires: Tue, 13 Sep 2022 09:05:16 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ocCqZlNsdg2S1tpqiME4x_gWWIWgfH0FZgwMN28ko4if22zssMTYLw==
Age: 2716

www.chelancove.com/wp-content/themes/amax/js/jquery.superfish.min.js?ver=4.5.26

107.180.55.21

200 OK

1.8 kB

URL HTTP/1.1
www.chelancove.com/wp-content/themes/amax/js/jquery.superfish.min.js?ver=4.5.26
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (4169)
Size
1.8 kB (1830 bytes)
Hash
1e63dc00c38c88372036786d84cd5aaf
d02bcbaad269b69ee094ebe64b958ed73d40cf18
749631e303afdd5509bae54b9224ed59c30bdcab5063319f443ed9bbff59c0e3

HTTP Headers

GET /wp-content/themes/amax/js/jquery.superfish.min.js?ver=4.5.26 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 05:30:08 GMT
ETag: "64002c1-1168-536f0dccdd76c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1830
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-content/themes/amax/js/jquery.omslider.min.js?ver=4.5.26

107.180.55.21

200 OK

1.2 kB

URL HTTP/1.1
www.chelancove.com/wp-content/themes/amax/js/jquery.omslider.min.js?ver=4.5.26
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
HTML document, ASCII text, with very long lines (2733)
Size
1.2 kB (1163 bytes)
Hash
05f857fa9fbf95319c55416f5094fb3b
40404d57f83bc1712a6500a2d380cbf5c2d9924f
56f4e7e817b80c94a411b0b7f78cce17ef8df6fc654db40e17bcc4fb0cfad4d6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/amax/js/jquery.omslider.min.js?ver=4.5.26 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 05:30:07 GMT
ETag: "64002bf-b13-536f0dcc8c686-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1163
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-content/themes/amax/js/jquery.lazyload.min.js?ver=4.5.26

107.180.55.21

200 OK

1.3 kB

URL HTTP/1.1
www.chelancove.com/wp-content/themes/amax/js/jquery.lazyload.min.js?ver=4.5.26
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (3309)
Size
1.3 kB (1297 bytes)
Hash
0145d4b5067cfd6324d991a17c5a9a44
f4e1b19bb2b71c585f09e1bef839a939692688f2
579a99a3a85dfc8d5eff5989e6bc4a7f43c3b5d82861f98d28ccd0055caf1e92

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/amax/js/jquery.lazyload.min.js?ver=4.5.26 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 05:30:07 GMT
ETag: "64002be-d35-536f0dcc6bb14-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1297
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=4.11.2.1

107.180.55.21

200 OK

2.6 kB

URL HTTP/1.1
www.chelancove.com/wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=4.11.2.1
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (7808)
Size
2.6 kB (2615 bytes)
Hash
ce37923565b26522f8e8cbd5070f03a1
139bdb311e96f326a2a7040e012a32bfa5331251
2c3ab394646b898c62e876a367ca8ac8dd9a81ff46559d3e4765487b7125b0d3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=4.11.2.1 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 05:40:46 GMT
ETag: "6420985-1f6c-536f102e0f335-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2615
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-content/themes/amax/js/isotope.pkgd.om.min.js?ver=4.5.26

107.180.55.21

200 OK

10 kB

URL HTTP/1.1
www.chelancove.com/wp-content/themes/amax/js/isotope.pkgd.om.min.js?ver=4.5.26
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (37770)
Size
10 kB (10012 bytes)
Hash
a14eb4315318ae16b35a30983e6ef66d
a25d9c97daa700f074f326e9303465d5a7bad4cd
e09fd1ddd9e86be82bbc204c33f0fec91edbee44ba0505e33f8fc11345e22fff

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/amax/js/isotope.pkgd.om.min.js?ver=4.5.26 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 05:30:07 GMT
ETag: "64002bc-9490-536f0dcc16f96-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10012
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-content/themes/amax/js/custom.js?ver=1.0.12

107.180.55.21

200 OK

6.6 kB

URL HTTP/1.1
www.chelancove.com/wp-content/themes/amax/js/custom.js?ver=1.0.12
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text
Size
6.6 kB (6603 bytes)
Hash
330cf68d8ba1f739631b7b6e7688782b
4b8237674b8db827c170accbe9e4d97d15357aa4
6fde572bb2614560b678b9229932aad42c49aeb4bbd721fbe9601b75331f5e58

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/amax/js/custom.js?ver=1.0.12 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 05:30:06 GMT
ETag: "64002ba-5a5e-536f0dcbcc441-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6603
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-content/themes/amax/js/jquery.smoothscroll.js?ver=4.5.26

107.180.55.21

200 OK

2.2 kB

URL HTTP/1.1
www.chelancove.com/wp-content/themes/amax/js/jquery.smoothscroll.js?ver=4.5.26
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (4779)
Size
2.2 kB (2193 bytes)
Hash
91fcf1cb02f833251167ab7806223303
4583d7e6e29bfcd77077ba214c893bd585784872
45a59fc77782c50a863a3861150b43f690547fb5eee1301d7324e013fe3117a8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/amax/js/jquery.smoothscroll.js?ver=4.5.26 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 05:30:08 GMT
ETag: "64002c0-1363-536f0dccd3743-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2193
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-includes/js/comment-reply.min.js?ver=4.5.26

107.180.55.21

200 OK

580 B

URL HTTP/1.1
www.chelancove.com/wp-includes/js/comment-reply.min.js?ver=4.5.26
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (1076), with no line terminators
Size
580 B (580 bytes)
Hash
03610c833b0a8cd39a5cfd87a20dd104
038ccb657a60f77c5eaf6a707bd4d0834d08da42
9feb345568ea18a6f4cee3c910adb99c956a06161a6c75e2c3a1a916f2129baa

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=4.5.26 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Fri, 05 Feb 2021 04:20:44 GMT
ETag: "640120d-434-5ba8f24cc1f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 580
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.163

200 OK

45 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.chelancove.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 12 Sep 2022 21:39:27 GMT
Expires: Tue, 12 Sep 2023 21:39:27 GMT
Cache-Control: public, max-age=31536000
Age: 43751
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2

www.chelancove.com/wp-content/plugins/godaddy-email-marketing-sign-up-forms/js/gem.min.js?ver=1.4.3

107.180.55.21

200 OK

1.0 kB

URL HTTP/1.1
www.chelancove.com/wp-content/plugins/godaddy-email-marketing-sign-up-forms/js/gem.min.js?ver=1.4.3
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (2210), with no line terminators
Size
1.0 kB (1002 bytes)
Hash
399f17235a299a8e37f46ad540af4391
77299561952fabe6ad2c94a26127a7091f175479
9a62f69c6f809078abc59c580a4e64ff300cdfa2df2e36e681f9767d2ca0ac5a

HTTP Headers

GET /wp-content/plugins/godaddy-email-marketing-sign-up-forms/js/gem.min.js?ver=1.4.3 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Tue, 14 Apr 2020 12:26:27 GMT
ETag: "64008fb-8a2-5a33f4f0107d0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1002
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-includes/js/wp-embed.min.js?ver=4.5.26

107.180.55.21

200 OK

733 B

URL HTTP/1.1
www.chelancove.com/wp-includes/js/wp-embed.min.js?ver=4.5.26
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (1384), with no line terminators
Size
733 B (733 bytes)
Hash
b33ec51a91e80b6ec465ae6b3f7a7948
41dd8a38051c338609e872b50f52341ae66ca29a
b34255b006c8b1f1d04237f2a3727151ff4ae3b7123e925c9d681fd22a0d2f01

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=4.5.26 HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Fri, 05 Feb 2021 04:20:44 GMT
ETag: "640129e-568-5ba8f24cc1f00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 733
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript

www.chelancove.com/wp-content/uploads/2016/07/logo.png

107.180.55.21

200 OK

7.9 kB

URL HTTP/1.1
www.chelancove.com/wp-content/uploads/2016/07/logo.png
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
PNG image data, 244 x 38, 8-bit/color RGBA, non-interlaced\012- data
Size
7.9 kB (7861 bytes)
Hash
51d1043ada3d8fddcc1f55760f2f18e1
a3fda7daff6c6e10fa73b0b2883bd4a4cee0e963
5c105baaa41647434defeb5f7b823eca0fbabd8586439a2e409b607c871ba9ec

HTTP Headers

GET /wp-content/uploads/2016/07/logo.png HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 05:48:18 GMT
ETag: "6401b4e-1eb5-536f11dc7ad00"
Accept-Ranges: bytes
Content-Length: 7861
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png

www.chelancove.com/wp-content/themes/amax/libraries/omFont/fonts/omFont.woff?-2v2zek

107.180.55.21

200 OK

4.9 kB

URL HTTP/1.1
www.chelancove.com/wp-content/themes/amax/libraries/omFont/fonts/omFont.woff?-2v2zek
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type
Web Open Font Format, TrueType, length 4868, version 1.0\012- data
Size
4.9 kB (4868 bytes)
Hash
af985972fbf5a6199d52d327e7171f9e
e7f76175701c7febc6f087008ca948bd2f010c8b
2215f04607e4e47106df8d9fed2e0e256f20b810ce3d476460a58d26b6ef1fd9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/amax/libraries/omFont/fonts/omFont.woff?-2v2zek HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.chelancove.com/wp-content/themes/amax/libraries/omFont/omFont.css?ver=4.5.26

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2016 05:31:12 GMT
ETag: "64012e1-1304-536f0e0a1134a"
Accept-Ranges: bytes
Content-Length: 4868
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
cb674936db4af4be99c3c397eff8c6ae
de79d76bac3fae5799b0ff35ecc19360595dfb06
992b884b64f9f6fdb76a6ba91c48fed329325b95b99d8003b282879a52093c08

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6188
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 09:48:38 GMT
Last-Modified: Tue, 13 Sep 2022 08:05:30 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

www.chelancove.com/favicon.ico

107.180.55.21

200 OK

0 B

URL HTTP/1.1
www.chelancove.com/favicon.ico
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:38 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon

push.services.mozilla.com/

35.162.35.244

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.162.35.244:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nQhqjMdv222ersrXeYs6Xg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: vahgUoIAr9zrFND/RVETlnPOHpo=

lenti.hr/modules/smartblog/images/7-single-default.jpg

185.103.219.62

200 OK

240 kB

URL HTTP/1.1
lenti.hr/modules/smartblog/images/7-single-default.jpg
IP
185.103.219.62:0
ASN
#61094 CRATIS d.o.o.

File type
PNG image data, 870 x 534, 8-bit/color RGBA, non-interlaced\012- data
Size
240 kB (240076 bytes)
Hash
e12101f6a8bdfc34e1affa7ed585c95c
e47018191c800a755057ae96db957f0e306627e9
ceff09ab53552a19d4dfe023ad6f5b6a6bd1cff62a0035b250aa14ec72f752b3

HTTP Headers

GET /modules/smartblog/images/7-single-default.jpg HTTP/1.1
Host: lenti.hr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.chelancove.com/

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 09:48:39 GMT
Content-Type: image/jpeg
Content-Length: 240076
Last-Modified: Tue, 13 Sep 2022 06:15:16 GMT
Connection: keep-alive
ETag: "63201ff4-3a9cc"
X-Powered-By: PleskLin
Accept-Ranges: bytes

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4695
Expires: Tue, 13 Sep 2022 11:06:55 GMT
Date: Tue, 13 Sep 2022 09:48:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4695
Expires: Tue, 13 Sep 2022 11:06:55 GMT
Date: Tue, 13 Sep 2022 09:48:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4695
Expires: Tue, 13 Sep 2022 11:06:55 GMT
Date: Tue, 13 Sep 2022 09:48:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4695
Expires: Tue, 13 Sep 2022 11:06:55 GMT
Date: Tue, 13 Sep 2022 09:48:40 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10366 bytes)
Hash
8c1314c7778ea0d32e8c69dae0c38b6d
c4772b9b182f9f905fead84f3761fe296073ca65
5fc8dc23f9b4d150b834aa69b358edd9f9f5f449607df07d579df66098d8aac6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10366
x-amzn-requestid: c66a0e06-d45c-4d16-ba0c-bf6a2368cfc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YVQPkH2RoAMFX2w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ec730-5174741f2d86d3ea018e452f;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 05:44:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 0ieBLVDdyIQuPO5pdM8wzjY2XwaMhLJhJWAUtsLfgiWTKVBTOws1tQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:58:04 GMT
etag: "c4772b9b182f9f905fead84f3761fe296073ca65"
content-type: image/jpeg
age: 42636
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496d6130-e9a6-4131-bec3-e54582de0a2a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (5039 bytes)
Hash
0ed03673d192cb0e41d2ea8b02c4f491
82fbdaeea5e3fc8d25fe46c2409ae3ca81c9588f
82e966d41f89a217f481ea64ce4532c5d6bc335cf32c79e3b93f48b036353667

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496d6130-e9a6-4131-bec3-e54582de0a2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5039
x-amzn-requestid: a5fc7041-0cb3-47c7-9c1b-fbe1ad627d94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUIyRGDsIAMFoqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e54db-7ff83b9a00a620960fc471ec;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:36:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: cj1J_zo83GfZnMircbv1neJTXjOvZp0TF10GMXL93zsQ-5lh7KL5Ww==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 06:02:58 GMT
age: 13542
etag: "82fbdaeea5e3fc8d25fe46c2409ae3ca81c9588f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabb8ed52-93ad-47ae-a006-da7de9e3d841.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5209 bytes)
Hash
8b9c6d44f93a72d6c03ebcfadda1a48a
f6100190de6244ae74b6c1250b997749a381ed89
4bf351795fb3a9e8a1a917d6ab202b1c75007bd5dc450a869b4db5dbfdd81dc4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabb8ed52-93ad-47ae-a006-da7de9e3d841.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5209
x-amzn-requestid: 8335006d-add1-4ab7-9930-e2304a6d1de2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQn93FGxIAMFSkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ced25-067cb6e120bd359b719bb421;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 20:01:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1L31YAxvPdmy1k0o-p11NcSM6ujk8NNaii936rsRrI9XoAxYF7CjIg==
via: 1.1 04e6cfc6f03b8f5e6f5459aacc86b372.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:58:11 GMT
age: 42629
etag: "f6100190de6244ae74b6c1250b997749a381ed89"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc781d2a6-7a39-471c-a1a0-2e29918b63e9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6530 bytes)
Hash
ed996f863e0d0dcce9e48acb79fd6827
af756dc52f6b5b042d99c3ceba7a64dcbfaa73b5
57ea1317d878e2727fd8b0f3823e6f14053c7d1d16c5e1872b23a510ab1efdd7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc781d2a6-7a39-471c-a1a0-2e29918b63e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6530
x-amzn-requestid: dd634daa-0aee-4859-a956-c54d5eecf1be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YSKEyHGlIAMFVcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d8a1e-51f715224318bfcf76d1c3ab;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 07:11:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5eOI6ekYGxiTjYHTY1hZaonUZlGnOglgzgiFDk5eURtY-IL5-T3vOw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 01:03:56 GMT
age: 31484
etag: "af756dc52f6b5b042d99c3ceba7a64dcbfaa73b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69e8f1cd-31bf-4844-9738-9405f7d06c28.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8881 bytes)
Hash
2046dcdfa0a6c46d8d18b54cadfd2cf1
5e4d409aa55bb8682b1accbbc9608f627d2f0eb0
677bb5de367bb264121fea40e8b7c97867b543c56844f52907064671e8749aa2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69e8f1cd-31bf-4844-9738-9405f7d06c28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8881
x-amzn-requestid: bb64b6ca-90e4-42b0-93cd-6d2a63b92c80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLAqWG76oAMFwDQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631aae42-55583af101f8ec380c0d1026;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 03:08:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dCmXSCw6BLyu3glIdrXkehroMpiUX5CSQmEVme7jrt0RPn4zbMjQ4w==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 04:34:00 GMT
age: 18880
etag: "5e4d409aa55bb8682b1accbbc9608f627d2f0eb0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106eeeca-4365-4ffc-b701-f952d0b09dcb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7965 bytes)
Hash
47e1f64348aa12d707bf070f39877c7e
7a1f13d32de956fd50fccba0f813fb71bda79f63
9b3cee8039a2adb1291006a9ad55cd5032a2a6c10de3c5f57222692b02c0faac

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106eeeca-4365-4ffc-b701-f952d0b09dcb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7965
x-amzn-requestid: c0ddd7c6-9709-4251-8e7b-4a551f9a7d2f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBro8EjxIAMFi0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316f305-26023e0714937dca063dcbfa;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 07:13:09 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: jj0LCxD4MdspTSEvLVsUaEbdNjjae7G-gogDBKtx1IE9VZauS4BblQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 23:11:59 GMT
age: 38201
etag: "7a1f13d32de956fd50fccba0f813fb71bda79f63"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.chelancove.com/hd-online-player-garfield-1-tamil-dubbed-movie-267/

107.180.55.21

200 OK

0 B

URL HTTP/1.1
www.chelancove.com/hd-online-player-garfield-1-tamil-dubbed-movie-267/
IP
107.180.55.21:0
ASN
#26496 AS-26496-GO-DADDY-COM-LLC

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /hd-online-player-garfield-1-tamil-dubbed-movie-267/ HTTP/1.1
Host: www.chelancove.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Moz: prefetch
Connection: keep-alive
Referer: http://www.chelancove.com/bigdummysguidetotheas400pdf-_verified_/

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 09:48:39 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
X-Pingback: http://www.chelancove.com/xmlrpc.php
Link: <http://www.chelancove.com/wp-json/>; rel="https://api.w.org/", <http://www.chelancove.com/?p=29059>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6630
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (25)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations