r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6684
Expires: Thu, 08 Dec 2022 18:02:03 GMT
Date: Thu, 08 Dec 2022 16:10:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3173
Expires: Thu, 08 Dec 2022 17:03:32 GMT
Date: Thu, 08 Dec 2022 16:10:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19371
Expires: Thu, 08 Dec 2022 21:33:30 GMT
Date: Thu, 08 Dec 2022 16:10:39 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 16:08:13 GMT
content-type: application/json
age: 146
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DAOYUOiPh/YcDqoBmura+Z45MRyQqHgWckd4kR9wWcF5J2oJvrmT6XyiFe+aOw4Z35EmYhnjRGc=
x-amz-request-id: 3325WHVYXQYHPBYC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 15:47:58 GMT
age: 1361
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
lightningstrike.ru/
149.56.25.3200 OK 206 B IP 149.56.25.3:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 1e18c8eccfb782026fca828e43da0cd8
4191f5d4287c32ee605daf7b71154ed148db634e
b0cea81f0bc28c17e2664e43b23fb03bb611a64b066ab4021c6abee059193cd2
GET / HTTP/1.1
Host: lightningstrike.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 16:10:39 GMT
Content-Type: text/html
Content-Length: 206
Connection: keep-alive
Last-Modified: Wed, 07 Mar 2018 14:53:43 GMT
ETag: "ce-566d3b9b2469e"
Accept-Ranges: bytes
X-Powered-By: PleskLin
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:39 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
lightningstrike.ru/favicon.ico
149.56.25.3404 Not Found 209 B URL HTTP/1.1 lightningstrike.ru/favicon.ico
IP 149.56.25.3:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 18ffb59b61525f781cf9251045be575d
bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642
GET /favicon.ico HTTP/1.1
Host: lightningstrike.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lightningstrike.ru/
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 08 Dec 2022 16:10:39 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 209
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 16:07:55 GMT
age: 164
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.lightningstrike-usa.com/
149.56.25.3301 Moved Permanently 1 B URL HTTP/1.1 www.lightningstrike-usa.com/
IP 149.56.25.3:0
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.lightningstrike-usa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lightningstrike.ru/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 08 Dec 2022 16:10:40 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://lightningstrike.global/
X-Cache-Status: MISS
X-Powered-By: PHP/8.0.25, PleskLin
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1100
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:10:40 GMT
Last-Modified: Thu, 08 Dec 2022 15:52:20 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
lightningstrike.global/
149.56.25.3301 Moved Permanently 239 B IP 149.56.25.3:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6a2ce7ebccc482f5c7b0cd66b97d839e
23c3b6a4bc4f14d74affc52114fd931e390da207
447d1cca78cd97878f30c5546b317d19451693268d860fe93f7dcee508a8ec56
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://lightningstrike.ru/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 08 Dec 2022 16:10:40 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 239
Connection: keep-alive
Location: https://lightningstrike.global/
X-Cache-Status: STALE
X-Powered-By: PleskLin
push.services.mozilla.com/
52.89.136.7101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.136.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SHt+5Qr/05yq9ipYcvEg7A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yYVlIseJ7jQSlJw3FiW5w8FpDcU=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e1ccb274ea79c99184c1c6bd74c83624
c0cd0f67e7bcb90e374e6d6d2a6cedfddaa8ac72
9139aa160470f5205fb78d6d7adffeb7e311f8171a26537249bd8dbf4ea37030
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9139AA160470F5205FB78D6D7ADFFEB7E311F8171A26537249BD8DBF4EA37030"
Last-Modified: Thu, 08 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 08 Dec 2022 22:10:40 GMT
Date: Thu, 08 Dec 2022 16:10:40 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8274b291596906eb3779dccb82ec41cb
b2ec554df1fa55e18a4316b76ac617dc626b7598
69129be0a1c2e3d1dfc602aea4ef004ea01b3bfa6c5863bd225843472f1bb7c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4f48748dc87020a0f1368e6d3bb9a24c
4eeade3f02cc6b02390af43bd5e7d67da4a707e0
7cb746c8d9392ac22b2a06ce10ef0266bebf5a7a09febdafeea27a29fa0bd1a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6Lc1QJoUAAAAALEfHrnHZM4Jjl0xOhD28Poa7hzb&ver=3.0
142.250.74.164200 OK 553 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6Lc1QJoUAAAAALEfHrnHZM4Jjl0xOhD28Poa7hzb&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 1309ff133720d219cc98090d66a051ed
b96fc5a893e42be16d687d7abdecdb13d348a019
358683c66634ea5ee3021c93111d8621d583880bcbbfadf3ec2ff87a15ea1038
GET /recaptcha/api.js?render=6Lc1QJoUAAAAALEfHrnHZM4Jjl0xOhD28Poa7hzb&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 08 Dec 2022 16:10:41 GMT
date: Thu, 08 Dec 2022 16:10:41 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4f48748dc87020a0f1368e6d3bb9a24c
4eeade3f02cc6b02390af43bd5e7d67da4a707e0
7cb746c8d9392ac22b2a06ce10ef0266bebf5a7a09febdafeea27a29fa0bd1a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a938af990a97b9856e1174d11c72cbf7
b57716fd0ea9a1e9e0a0595ff593f939560c0abf
6ab769333b231097d077edfbc1c3fc9560de5ae9bfeb5b8360dea8b7fadbcb44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lightningstrike.global/wp-content/themes/Divi/js/scripts.min.js?ver=4.18.0
149.56.25.3200 OK 57 kB URL HTTP/2 lightningstrike.global/wp-content/themes/Divi/js/scripts.min.js?ver=4.18.0
IP 149.56.25.3:0
File type ASCII text, with very long lines (65467)
Hash dd22c2f9170b39c0e49d434235695928
99095273d70549eb73825106d66ada0edd2970ba
1af5757e9d3fa973ffa9fbb31f19b699e8a21cbfe668eb20c32aa3ab2a8b2824
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/js/scripts.min.js?ver=4.18.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 11:04:42 GMT
etag: W/"6324584a-42e58"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11225
Expires: Thu, 08 Dec 2022 19:17:46 GMT
Date: Thu, 08 Dec 2022 16:10:41 GMT
Connection: keep-alive
lightningstrike.global/wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1669223483
149.56.25.3200 OK 2.3 kB URL HTTP/2 lightningstrike.global/wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1669223483
IP 149.56.25.3:0
File type ASCII text, with very long lines (10160), with no line terminators
Hash da28f311ebb70d848ab84f8dffd03852
4cefd6afb9c168a14b74963cc42d2aef8ecbc84b
daa88bfcd2ab81e2fb90e648f3f69204689757b172aa1260ba35c30d56e4e2e8
GET /wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1669223483 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: text/css
last-modified: Wed, 23 Nov 2022 17:11:23 GMT
etag: W/"637e543b-27b0"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c94003641bb5a7595e7004f80f95d22
3446450df60d732f9021d5bfd5f5f7c6c870d9ec
4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:16:35 GMT
age: 60846
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/monarch/js/custom.js?ver=1.4.14
149.56.25.3200 OK 12 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/monarch/js/custom.js?ver=1.4.14
IP 149.56.25.3:0
File type ASCII text, with very long lines (351)
Hash 3c80e5a246a03590f3e7135a248d4dcf
24077d383b8f971276b71ba38553492828b86af7
b0e5f7b85c78dc43412202143ea973ecc2b43b8259f944ae42517f1205418ae4
GET /wp-content/plugins/monarch/js/custom.js?ver=1.4.14 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Fri, 02 Apr 2021 07:19:33 GMT
etag: W/"6066c585-6855"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
149.56.25.3200 OK 12 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 149.56.25.3:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 43ca101f4fff994d7d1dd2bbe914fe24
79bcf9648fb8da1fd43dafc5b7852d4e4e445cb6
8e6ef8eb2c4d39e73ded4e16473275ee2ea85eecde86b5bad3408c8bdf254160
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 16:24:41 GMT
etag: W/"635024c9-3016"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
149.56.25.3200 OK 12 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 149.56.25.3:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash 27a22f8613da0bac74de59a2691ec03a
997304bd637a24cf469ad1b1909f39845c07684f
1944634a7e38c3f909ae0dc9c3e7674bcc6c2a279bff73317401222820809634
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 16:24:41 GMT
etag: W/"635024c9-26d1"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/contact-form-7-style/js/frontend-min.js?ver=3.1.9
149.56.25.3200 OK 13 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/contact-form-7-style/js/frontend-min.js?ver=3.1.9
IP 149.56.25.3:0
File type ASCII text, with very long lines (1632), with no line terminators
Hash 2cc828311f1bfffe4ef60ea3de513e48
286ace0cafdf112809b6d8670194776c8c2810de
a55d89216ace4fb0b756430f1e156e24e04a988965272b235a9c56756279222d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7-style/js/frontend-min.js?ver=3.1.9 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Thu, 22 Oct 2020 07:21:51 GMT
etag: W/"5f91330f-660"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/cf7-material-design.js?ver=1.1
149.56.25.3200 OK 10 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/cf7-material-design.js?ver=1.1
IP 149.56.25.3:0
Hash 8399f741034bc06f3810d3d983964248
bd0b7d130589ffbe1884ef88c55405b53afe49ff
464926ac93fd6a1556172dd431f89449a4119f484d843caae21ce6027342e704
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/cf7-material-design.js?ver=1.1 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Jan 2021 07:23:16 GMT
etag: W/"60053764-33a2"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/lib/autosize.min.js?ver=1.0
149.56.25.3200 OK 1.7 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/lib/autosize.min.js?ver=1.0
IP 149.56.25.3:0
File type ASCII text, with very long lines (3504)
Hash 59bdd0b8c57232dff2ded85ca8104f46
cb5881c98e4bae5cc4d1fd7d044bf236670b25a1
7c3338dbfaa44489455a575472ef8452b52735b887b5bb18cc7f8c000c86f7f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/lib/autosize.min.js?ver=1.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Jan 2021 07:23:16 GMT
etag: W/"60053764-dfa"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
142.250.74.35200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:28:49 GMT
expires: Thu, 07 Dec 2023 19:28:49 GMT
cache-control: public, max-age=31536000
age: 74512
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.18.0
149.56.25.3200 OK 3.3 kB URL HTTP/2 lightningstrike.global/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.18.0
IP 149.56.25.3:0
File type ASCII text, with very long lines (7584)
Hash 45bd06e1068cecd4995c94ec4b9cff70
e1b79dd439480a9649ca2e6e4d67539b2578f055
c3b8f3e9da659582804f97caa953d2aea15a4b546dff3884d64339c99ee25c5a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.18.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 11:04:23 GMT
etag: W/"63245837-1f18"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.18.0
149.56.25.3200 OK 3.4 kB URL HTTP/2 lightningstrike.global/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.18.0
IP 149.56.25.3:0
Hash a0aec5873fcbd3e2819ac931e7d55480
89bc6c79daf5182e00c125d9c1abbe0ef6af2cb5
d3208423f0c8cca03af72f5070b0e49f60a38a0f1e4c10cef1c622863b4b7fe2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.18.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 11:04:22 GMT
etag: W/"63245836-2466"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main.css?ver=4.9.6
149.56.25.3200 OK 8.1 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main.css?ver=4.9.6
IP 149.56.25.3:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash c1a30dc008b77bdd980c6e14804e4a69
46feba73cd1cae5e908d1d3ab68ce2c891586c96
705fe08a808eeba80c43cfcdf08603c34a020bb0b80a22f8e24a0047774149e6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main.css?ver=4.9.6 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: text/css
last-modified: Mon, 05 Dec 2022 16:02:42 GMT
etag: W/"638e1622-143d1"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/06/slide1.jpg
149.56.25.3200 OK 201 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/06/slide1.jpg
IP 149.56.25.3:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Windows), datetime=2017:06:12 10:50:15], progressive, precision 8, 1920x800, components 3\012- data
Size 201 kB (201263 bytes)
Hash a16c7bae542cee79ef8e4926100427bc
37600c38bfe06e4e7636ddab8429320b46fb00a3
41e04bde4c05b1a7484d6e591e719ca9726795b517268a2d44b96ec1dffe581b
GET /wp-content/uploads/2017/06/slide1.jpg HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: image/jpeg
content-length: 201263
last-modified: Wed, 07 Mar 2018 17:29:36 GMT
etag: "5aa02180-3122f"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3
149.56.25.3200 OK 133 kB URL HTTP/2 lightningstrike.global/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3
IP 149.56.25.3:0
File type ASCII text, with very long lines (1191), with no line terminators
Size 133 kB (132559 bytes)
Hash b3cbdfa98f5f9af7a303cb0d20fd85fd
ef2fa1305f15d0f0656e4ba8d9ead53504d1f45a
f49f4c7a661575a4b8a175e5f51a9ef2cf0a009a8b8c2e8e96061d8377ff7d64
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 10:58:02 GMT
etag: W/"632456ba-4a7"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:52:41 GMT
expires: Tue, 05 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 249480
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:33:54 GMT
expires: Thu, 07 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 74207
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cardo/v19/wlp_gwjKBV1pqiv8.woff
142.250.74.35200 OK 206 kB URL HTTP/2 fonts.gstatic.com/s/cardo/v19/wlp_gwjKBV1pqiv8.woff
IP 142.250.74.35:0
File type Web Open Font Format, TrueType, length 205656, version 1.1\012- data
Size 206 kB (205656 bytes)
Hash c9a0fa355936cd94eecc9d24ff5534a0
5619e181c308f04917cd99d46010149903bf6be5
70a9b14da31c09b05cd965f12c27af52b0aedc5016861a58e47f47b18c58cda1
GET /s/cardo/v19/wlp_gwjKBV1pqiv8.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 205656
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 08:54:50 GMT
expires: Fri, 08 Dec 2023 08:54:50 GMT
cache-control: public, max-age=31536000
age: 26151
last-modified: Thu, 21 Apr 2022 16:59:01 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ruluko/v21/xMQVuFNZVaODtm0pDg.woff2
142.250.74.35200 OK 9.8 kB URL HTTP/2 fonts.gstatic.com/s/ruluko/v21/xMQVuFNZVaODtm0pDg.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 9776, version 1.0\012- data
Hash f242478fc81205c9f7108f9f7749a56b
22dcb33f241ea168bcc407d7074e3df3df78b21c
cef8588866726f79c813737ea78e995350b3054fca4827cb9cf0a6984a5285ad
GET /s/ruluko/v21/xMQVuFNZVaODtm0pDg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 21:29:35 GMT
expires: Wed, 06 Dec 2023 21:29:35 GMT
cache-control: public, max-age=31536000
age: 153666
last-modified: Wed, 27 Apr 2022 15:46:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cardo/v19/wlp_gwjKBV1pqiv6.woff2
142.250.74.35200 OK 144 kB URL HTTP/2 fonts.gstatic.com/s/cardo/v19/wlp_gwjKBV1pqiv6.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 143816, version 1.0\012- data
Size 144 kB (143816 bytes)
Hash 38dd72784c6b23c167328ebd888bf6f8
5c1d047c4ac3a584a01293fd83c766cb1620557b
88c0ebceba5c86993bce227a73c91895a5ab5494a456a03fe872a1deae3c3ded
GET /s/cardo/v19/wlp_gwjKBV1pqiv6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 143816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 21:12:20 GMT
expires: Fri, 01 Dec 2023 21:12:20 GMT
cache-control: public, max-age=31536000
age: 586701
last-modified: Thu, 21 Apr 2022 16:58:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cardo/v19/wlpxgwjKBV1pqhv93IE.woff2
142.250.74.35200 OK 104 kB URL HTTP/2 fonts.gstatic.com/s/cardo/v19/wlpxgwjKBV1pqhv93IE.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 104420, version 1.0\012- data
Size 104 kB (104420 bytes)
Hash 0b691ab1fc7bc898404f7521ac1b8632
e0a1b903828d5e1e4879142cfcfa1a45226de160
6bb51353eeb80fb31dd26387bbff593843b7c0f87487f502808ac0639fb4b0c4
GET /s/cardo/v19/wlpxgwjKBV1pqhv93IE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 104420
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 21:16:19 GMT
expires: Fri, 01 Dec 2023 21:16:19 GMT
cache-control: public, max-age=31536000
age: 586462
last-modified: Thu, 21 Apr 2022 16:54:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lightningstrike.global/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3
149.56.25.3200 OK 11 kB URL HTTP/2 lightningstrike.global/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3
IP 149.56.25.3:0
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash 5169439234aeaca76e62e23c4080b5ad
d1bb8b25040109c0f0fef29f1bb18ca3403cd519
7531263e862b713da028bc5e1ea3eda20f5cd5e81ca8b82c92bc9ad2110233c3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Thu, 04 Feb 2021 04:40:49 GMT
etag: W/"38a-5ba7b4ecad062"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
149.56.25.3200 OK 24 kB URL HTTP/2 lightningstrike.global/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 149.56.25.3:0
File type ASCII text, with very long lines (43771)
Hash 0401be77e4ba2f3564520fcfca483548
555cf86d285549ba58cd338391ec05061cc74278
5e582f545515c9a3a73372c55703f2be4103b15f014c429d464cac911cabb33a
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: text/css
last-modified: Fri, 16 Sep 2022 10:57:43 GMT
etag: W/"632456a7-15b64"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/monarch/css/style.css?ver=1.4.14
149.56.25.3200 OK 50 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/monarch/css/style.css?ver=1.4.14
IP 149.56.25.3:0
File type Unicode text, UTF-8 text, with very long lines (718)
Hash 7b1ba69d881aee53a7cde9ee15435db7
8895bc877e00abc8f186a46241297a99d58099b1
caf7d7be3dfc7ee195db8322b4f78ed9e791c6d23640b6e229a00af2c51c829f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/monarch/css/style.css?ver=1.4.14 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: text/css
last-modified: Fri, 02 Apr 2021 07:19:33 GMT
etag: W/"6066c585-1c56d"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/et-cache/239/et-divi-dynamic-239.css?ver=1669223550
149.56.25.3200 OK 35 kB URL HTTP/2 lightningstrike.global/wp-content/et-cache/239/et-divi-dynamic-239.css?ver=1669223550
IP 149.56.25.3:0
File type ASCII text, with very long lines (14024)
Hash 3f0842c765e8a1d33832f03c9a2ad054
18e83f84e04989065dad145b3ca496321fee44ff
89a5c9cabb892fdc01d9f07f67d8e570e1cc4e17bd5310531a47d5642388bd94
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/et-cache/239/et-divi-dynamic-239.css?ver=1669223550 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: text/css
last-modified: Wed, 23 Nov 2022 17:12:30 GMT
etag: W/"637e547e-bd6d"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4
149.56.25.3200 OK 29 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4
IP 149.56.25.3:0
File type ASCII text, with very long lines (999), with no line terminators
Hash 68a0f77773734d3b7d88124bac3563c9
0f8fbc51dd01d5c94d31aa235fd38edcdd625633
5398ddd87e2d4a98140811c48c51760ad30eaa14356631049ec2186d4ab62136
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Wed, 19 Oct 2022 16:24:41 GMT
etag: W/"3e7-5eb65a551eb5e"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs18NvgUQ.woff2
142.250.74.35200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs18NvgUQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 25828, version 1.0\012- data
Hash be415c2ce9c9abd447b40b1baea395c9
79e64fd54e929f0161b4ee46764bc64da26f5583
637453c4d3f0ce30e85f267812a45a3d4fba44b1f98b1ebcf0aa2400984f75ab
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs18NvgUQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25828
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 21:13:49 GMT
expires: Tue, 05 Dec 2023 21:13:49 GMT
cache-control: public, max-age=31536000
age: 241012
last-modified: Mon, 18 Jul 2022 19:25:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USewo.woff2
142.250.74.35200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USewo.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 27104, version 1.0\012- data
Hash 48020f9aedbe3a9f79f4f3a140d553e1
0df6e31cf579116eb92f63f269dc6788d8cfee85
2cf3f2c1b4c605ece4c58bf5846625036c3766d9073c80e67ace0d99b0242512
GET /s/lato/v23/S6u9w4BMUTPHh7USewo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27104
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 05:17:16 GMT
expires: Fri, 08 Dec 2023 05:17:16 GMT
cache-control: public, max-age=31536000
age: 39205
last-modified: Tue, 26 Apr 2022 16:52:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/megamenu-pro/icons/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
149.56.25.3200 OK 77 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/megamenu-pro/icons/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 149.56.25.3:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/plugins/megamenu-pro/icons/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://lightningstrike.global/wp-content/plugins/megamenu-pro/icons/fontawesome/css/font-awesome.min.css?ver=2.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: font/woff2
content-length: 77160
last-modified: Mon, 04 Jan 2021 19:43:30 GMT
etag: "5ff36fe2-12d68"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/monarch/css/fonts/monarch.ttf
149.56.25.3200 OK 15 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/monarch/css/fonts/monarch.ttf
IP 149.56.25.3:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, monarch \012- data
Hash 402ae848e7488fbc1da63531f327066a
ba1fd4d145958f3d2d86587cb134ef5a590cb50a
8c102baea959329be23bb8a5d6bc268ce1668484995f0d23c2f88b46d7653c4f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/monarch/css/fonts/monarch.ttf HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/wp-content/plugins/monarch/css/style.css?ver=1.4.14
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/font-sfnt
content-length: 15096
last-modified: Fri, 02 Apr 2021 07:19:33 GMT
etag: "6066c585-3af8"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/js/hoverIntent.min.js?ver=1.10.2
149.56.25.3200 OK 28 kB URL HTTP/2 lightningstrike.global/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 149.56.25.3:0
File type ASCII text, with very long lines (1464)
Hash 4ec4b328d53fbaa01f9d32d3cd176753
4a2773881c847ccf426daf33ba38a17b32db18ec
7a49f98e26097c923aeb268362de76c2c89179d74c68470a9dc5ed0830a9eddb
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 10:58:01 GMT
etag: W/"632456b9-5db"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2018/05/new_Logo_blue.png
149.56.25.3200 OK 37 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2018/05/new_Logo_blue.png
IP 149.56.25.3:0
File type PNG image data, 502 x 484, 8-bit/color RGBA, non-interlaced\012- data
Hash 2bb715dc8121c0227cc5bc52873a4c5a
fb36ba9c74dcc0fd57f3c35d6c02ea82e7605535
73a699dff8c318b309ce1a9dd07eb5b0cb7aee4fea56d17e0d274ea9ee7456ae
GET /wp-content/uploads/2018/05/new_Logo_blue.png HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: image/png
content-length: 36600
last-modified: Tue, 29 May 2018 06:36:08 GMT
etag: "5b0cf4d8-8ef8"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/monarch/js/idle-timer.min.js?ver=1.4.14
149.56.25.3200 OK 69 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/monarch/js/idle-timer.min.js?ver=1.4.14
IP 149.56.25.3:0
File type ASCII text, with very long lines (2516)
Hash 38fa5bb7350ea32b93bd93aa01f6d1e1
ce42e75b7f52e80357459a6170b35b22247524d5
4fe3e7d8e25cdece896550ac895ecc4043fd81ba5101ce9f7925af63a19bf9e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/monarch/js/idle-timer.min.js?ver=1.4.14 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Fri, 02 Apr 2021 07:19:33 GMT
etag: W/"6066c585-a4b"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/scripts/main.js?ver=4.9.6
149.56.25.3200 OK 139 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/scripts/main.js?ver=4.9.6
IP 149.56.25.3:0
File type ASCII text, with very long lines (31964)
Size 139 kB (139198 bytes)
Hash e29ef4ea3ce59ef3c01b6ac0a4436996
cedb48cb69bd085b69cb76bbe339c9705adcbd48
aa656377dea123f4934a22bb0d48e4edcbe5be27c4477e68b27d565ea2b51de5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gdpr-cookie-compliance/dist/scripts/main.js?ver=4.9.6 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Mon, 05 Dec 2022 16:02:42 GMT
etag: W/"638e1622-e819"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2018/10/textured-background-4.png
149.56.25.3200 OK 76 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2018/10/textured-background-4.png
IP 149.56.25.3:0
File type PNG image data, 1980 x 1000, 8-bit/color RGBA, non-interlaced\012- data
Hash 7257ae536aa09db4fd6ccddd22d05166
1fc63abc1ea2f215a5adea09b111eb01cd7211f1
b7121db3b486372a9da3236565b81e8189af0a6f917d2c678f6dbee7f5e4767c
GET /wp-content/uploads/2018/10/textured-background-4.png HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:42 GMT
content-type: image/png
content-length: 75512
last-modified: Wed, 03 Oct 2018 10:38:04 GMT
etag: "5bb49c0c-126f8"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/10/black_bg.png
149.56.25.3200 OK 5.6 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/10/black_bg.png
IP 149.56.25.3:0
File type PNG image data, 74 x 74, 8-bit/color RGB, non-interlaced\012- data
Hash 318cfb507933f6d946ffd03c94e830a9
404ba767d79d59bdfbdea784bb35e03d107e4b4f
7ec4f5f0c30630a549c986dcbbf812c12e5974da09ad2f1deef10863a0d44200
GET /wp-content/uploads/2017/10/black_bg.png HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:42 GMT
content-type: image/png
content-length: 5631
last-modified: Wed, 07 Mar 2018 17:29:34 GMT
etag: "5aa0217e-15ff"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2018/10/textured-background-1.png
149.56.25.3200 OK 38 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2018/10/textured-background-1.png
IP 149.56.25.3:0
File type PNG image data, 1980 x 1000, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d9688c812e91d45045225a66582d340
a1f2457db7fa72be9e018bb6a55f24ed6f06841f
e91c72bd04ed8ccba88450d3c8b04b7595b9178e62bc48df4c6a2c8c72f8d6cb
GET /wp-content/uploads/2018/10/textured-background-1.png HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:42 GMT
content-type: image/png
content-length: 38477
last-modified: Wed, 03 Oct 2018 10:48:13 GMT
etag: "5bb49e6d-964d"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/06/AdobeStock_54287288.jpg
149.56.25.3200 OK 234 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/06/AdobeStock_54287288.jpg
IP 149.56.25.3:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=15, height=2696, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=4288], progressive, precision 8, 1920x800, components 3\012- data
Size 234 kB (233859 bytes)
Hash a9fce0650051934f9b30d4fac29b9c06
fa665faea1fc9dd25f3e57811181161c500157a9
4073940854eaf580485a8fcfcb85c56c91fd4355d470c53ed41e62c1d3c7714d
GET /wp-content/uploads/2017/06/AdobeStock_54287288.jpg HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:42 GMT
content-type: image/jpeg
content-length: 233859
last-modified: Wed, 07 Mar 2018 17:29:36 GMT
etag: "5aa02180-39183"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/06/AdobeStock_83394666-2.jpg
149.56.25.3200 OK 200 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/06/AdobeStock_83394666-2.jpg
IP 149.56.25.3:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=18, height=3744, bps=230, PhotometricIntepretation=RGB, description=Silhouette of man on top of mountain sunlight and white cloud. Conceptual scene., manufacturer=Canon, model=Canon EOS 5D Mark II, orientation=upper-left, width=5616], progressive, precision 8, 1920x1280, components 3\012- data
Size 200 kB (199664 bytes)
Hash d5ccbfb26141ad462ce607ed2d8a7748
20ad88a9523cb30946f165b74a89123d12d940ae
f91968da89a7c3a045812f361fef2db59723e7cec92ce4806f7e37d852d8dc60
GET /wp-content/uploads/2017/06/AdobeStock_83394666-2.jpg HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:42 GMT
content-type: image/jpeg
content-length: 199664
last-modified: Wed, 07 Mar 2018 17:29:36 GMT
etag: "5aa02180-30bf0"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4
149.56.25.3200 OK 4.0 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4
IP 149.56.25.3:0
File type ASCII text, with very long lines (7874)
Hash 96d41ece18b823d51bdc89c9dfd01926
05163a5c4e5b2f647ae1800299429eeb4323dabe
bd2eefe980fd5c6d3aa696ffa80a85114e4b9e85dd0cdb539879a1e1311fb11c
GET /wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.12.4 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Fri, 18 Nov 2022 05:12:40 GMT
etag: W/"63771448-1ef2"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c7a5f887bbc7d30b9cfe15163c3d8ddb
21d65790a1d10a06d198b54218365aa474126e1c
2a2e7930f967d947cc5293c95221913e24596773577bbf56ff402db6236bbda1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:10:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c7a5f887bbc7d30b9cfe15163c3d8ddb
21d65790a1d10a06d198b54218365aa474126e1c
2a2e7930f967d947cc5293c95221913e24596773577bbf56ff402db6236bbda1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:10:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 08 Dec 2022 14:46:55 GMT
expires: Thu, 08 Dec 2022 16:46:55 GMT
cache-control: public, max-age=7200
age: 5027
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
216.58.211.3200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 13:40:02 GMT
expires: Thu, 07 Dec 2023 13:40:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 95440
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash d83e31a76bd95c65b07478433e9ecfc0
9558c3bd9ffbd256cdc80960624b53dd7a0ce530
ba2b8471e2ff6bcc22156b9da1e85f61236e9eba459589b2796fdb44ce89b16b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=99900
Date: Thu, 08 Dec 2022 16:10:42 GMT
Etag: "6390d7ac-1d7"
Expires: Fri, 09 Dec 2022 19:55:42 GMT
Last-Modified: Wed, 07 Dec 2022 18:13:00 GMT
Server: ECS (nyb/1D0F)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Hd3tiIxFIy6M66NM1w-Zva6VNKdlP1t-5MEphXFGavszZ6xijhq5cQ==
Age: 6162
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash d83e31a76bd95c65b07478433e9ecfc0
9558c3bd9ffbd256cdc80960624b53dd7a0ce530
ba2b8471e2ff6bcc22156b9da1e85f61236e9eba459589b2796fdb44ce89b16b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=100276
Date: Thu, 08 Dec 2022 16:10:42 GMT
Etag: "6390d7ac-1d7"
Expires: Fri, 09 Dec 2022 20:01:58 GMT
Last-Modified: Wed, 07 Dec 2022 18:13:00 GMT
Server: ECS (dcb/7F80)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iVy0C3xtbC44A0giHfADmKmYeDNhyw0cHgvrUo_U-so1JvDo2q_ROA==
Age: 6538
l.sharethis.com/log?event=ibl&title=&url=http%3A%2F%2Flightningstrike.ru%2F&fcmp=false&fcmpv2=false&has_segmentio=false&product=ga&publisher=59e5ae670b49600011e10f1b&refDomain=lightningstrike.ru&refQuery=&source=sharethis.js&ts=1670515840933&sop=true&cms=unknown&description=
52.29.164.226204 No Content 0 B URL HTTP/1.1 l.sharethis.com/log?event=ibl&title=&url=http%3A%2F%2Flightningstrike.ru%2F&fcmp=false&fcmpv2=false&has_segmentio=false&product=ga&publisher=59e5ae670b49600011e10f1b&refDomain=lightningstrike.ru&refQuery=&source=sharethis.js&ts=1670515840933&sop=true&cms=unknown&description=
IP 52.29.164.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /log?event=ibl&title=&url=http%3A%2F%2Flightningstrike.ru%2F&fcmp=false&fcmpv2=false&has_segmentio=false&product=ga&publisher=59e5ae670b49600011e10f1b&refDomain=lightningstrike.ru&refQuery=&source=sharethis.js&ts=1670515840933&sop=true&cms=unknown&description= HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 08 Dec 2022 16:10:42 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
lightningstrike.global/wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/lib/material-components-web.min.js?ver=1.0
149.56.25.3200 OK 16 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/lib/material-components-web.min.js?ver=1.0
IP 149.56.25.3:0
File type ASCII text, with very long lines (32013)
Hash 8a6c965fab8f249532dd4cc8dd4f3387
6f304c2a538f6bcc29ff2f4ef4e3d44c089b2385
7681c044fb835431592af86f8056d08e706448848dded5ddab481faea4b78e90
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/lib/material-components-web.min.js?ver=1.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Mon, 18 Jan 2021 07:23:16 GMT
etag: W/"60053764-17d7d"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
buttons-config.sharethis.com/js/59e5ae670b49600011e10f1b.js
54.230.111.123200 OK 30 B URL HTTP/2 buttons-config.sharethis.com/js/59e5ae670b49600011e10f1b.js
IP 54.230.111.123:0
File type ASCII text, with no line terminators
Hash e6e1643313740711175f51662a65b42f
c3fc7a03fea3138a1497dab12d5b4e40fd4aeaef
2c29defe29114d0e8b948e78d50ebb281035df53a9167089deb1e77e801bbd2f
GET /js/59e5ae670b49600011e10f1b.js HTTP/1.1
Host: buttons-config.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 30
last-modified: Tue, 17 Oct 2017 07:16:56 GMT
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Dec 2022 16:10:44 GMT
cache-control: max-age=60,public
etag: "e6e1643313740711175f51662a65b42f"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nKPTjnJn3WaRTBN47gy5LNBZZ82tVbdh0Nwf1n9Dekmp-6lX064h9A==
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/06/Logo_blue.png
149.56.25.3200 OK 49 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/06/Logo_blue.png
IP 149.56.25.3:0
File type PNG image data, 250 x 239, 8-bit/color RGBA, non-interlaced\012- data
Hash ca1478ea253701c56f4f099748475855
181298c4ebf220241e3a4cd262421b4dbfd0dd00
156601a89385435d70da2dedbcade3a49ebac2b61973b233f80bf133b865f41e
GET /wp-content/uploads/2017/06/Logo_blue.png HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:43 GMT
content-type: image/png
content-length: 49353
last-modified: Wed, 07 Mar 2018 17:29:35 GMT
etag: "5aa0217f-c0c9"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/07/Optim..jpg
149.56.25.3200 OK 264 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/07/Optim..jpg
IP 149.56.25.3:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=19, height=3222, bps=0, PhotometricIntepretation=RGB, description=Optimization on Pocket Watch Face with Close View of Watch Mechanism. Time Concept. Vintage Effect., orientation=upper-left, width=5733], progressive, precision 8, 1920x600, components 3\012- data
Size 264 kB (264394 bytes)
Hash b618a421fad80055bf1d0cc254b64f91
da2daf9a6547f195dddb9546f6b8ee1d119db9e5
0f8ac488cdd321251058c41ac2e7f8a19184b800670a192ecfc4b45894f8a8cf
GET /wp-content/uploads/2017/07/Optim..jpg HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:43 GMT
content-type: image/jpeg
content-length: 264394
last-modified: Wed, 07 Mar 2018 17:29:34 GMT
etag: "5aa0217e-408ca"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/07/des.jpg
149.56.25.3200 OK 64 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/07/des.jpg
IP 149.56.25.3:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=17, height=3456, bps=218, PhotometricIntepretation=RGB, manufacturer=Canon, model=Canon EOS 60D, orientation=upper-left, width=5184], progressive, precision 8, 1920x600, components 3\012- data
Hash c01b2e3747637a0b9ddd6c003cbddd6a
72ffdd893260c67d4a1fbd3500ad235cac438e78
2f6ecceb851dc8f9d7072d1022673e920fafc52ee21d1516e519cb94eb35f0f3
GET /wp-content/uploads/2017/07/des.jpg HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:43 GMT
content-type: image/jpeg
content-length: 64532
last-modified: Wed, 07 Mar 2018 17:29:34 GMT
etag: "5aa0217e-fc14"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/themes/Divi/includes/builder/images/marker.png
149.56.25.3200 OK 1.9 kB URL HTTP/2 lightningstrike.global/wp-content/themes/Divi/includes/builder/images/marker.png
IP 149.56.25.3:0
File type PNG image data, 46 x 43, 8-bit/color RGBA, non-interlaced\012- data
Hash 68f127f04a872a0b03556c49bade901d
178a6a53ab8b9eec4795030179a5327dfe24ff6e
3a30593166f6143d8c589e8a4f9d14dc6caab7811703e97b36cb328c68abb0fc
GET /wp-content/themes/Divi/includes/builder/images/marker.png HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:43 GMT
content-type: image/png
content-length: 1940
last-modified: Fri, 16 Sep 2022 11:04:17 GMT
etag: "63245831-794"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/07/butterflyinhandongrass.jpg
149.56.25.3200 OK 129 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/07/butterflyinhandongrass.jpg
IP 149.56.25.3:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=17, height=4918, bps=218, PhotometricIntepretation=RGB, manufacturer=Canon, model=Canon EOS 5D Mark III, orientation=upper-left, width=5760], progressive, precision 8, 1920x600, components 3\012- data
Size 129 kB (129417 bytes)
Hash 51d46254e3ccd93591555b2db51d1bbd
5b2c7857920814bebd26d7526e4ac44a4800c1b9
0ee64b682ff006936cef194e6eecfadfe43ae44bf683fc6272d1fb9a277df3a9
GET /wp-content/uploads/2017/07/butterflyinhandongrass.jpg HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:43 GMT
content-type: image/jpeg
content-length: 129417
last-modified: Wed, 07 Mar 2018 17:29:34 GMT
etag: "5aa0217e-1f989"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2018/10/3-1-1080x627.jpg
149.56.25.3200 OK 132 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2018/10/3-1-1080x627.jpg
IP 149.56.25.3:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1080x627, components 3\012- data
Size 132 kB (132358 bytes)
Hash b31fb87d69dabb720fba3206d7f7e45b
24679167bf07695f8896c4191cfbd5bcbda704c1
e43d9a3c3dd08bc06f76bac3f9d77f34c82ab94bfb922db2f2841fdab430ec7a
GET /wp-content/uploads/2018/10/3-1-1080x627.jpg HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:43 GMT
content-type: image/jpeg
content-length: 132358
last-modified: Thu, 28 Mar 2019 07:41:55 GMT
etag: "5c9c7ac3-20506"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
149.56.25.3200 OK 89 kB URL HTTP/2 lightningstrike.global/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 149.56.25.3:0
File type ASCII text, with very long lines (11126)
Hash 2f38b815a2048de7c634c79064dc9754
db28e2f184dcd962a4ff7b71725bd70579e1c743
b2b6427fe23f072bc8b919b14f8fe0c147c2c02590b61ef6dcc4cdce9d09d9f0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Mon, 04 Jan 2021 19:42:11 GMT
etag: W/"5ff36f93-2bd8"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/06/Logo_blue-150x150.png
149.56.25.3200 OK 24 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/06/Logo_blue-150x150.png
IP 149.56.25.3:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 3b16f038069934f083c455fc14c61e26
738b5d11a12fb92b99a29275a00ccd2291a312a6
ecbc70a6ef576eae73f2dcd604f8755467b63b2d37f6524914c189207f538f80
GET /wp-content/uploads/2017/06/Logo_blue-150x150.png HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:44 GMT
content-type: image/png
content-length: 23572
last-modified: Wed, 07 Mar 2018 17:29:35 GMT
etag: "5aa0217f-5c14"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/12/IP_Logo_blue-150x150.png
149.56.25.3200 OK 13 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/12/IP_Logo_blue-150x150.png
IP 149.56.25.3:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 48dd8b5b3ba84ae980b4385713ae0e55
0993043c4abe02c7f35be1272bc198f905d18e31
77f778d547a89361497037a335134e5838c44fb6f091f5bca567bb55496a6339
GET /wp-content/uploads/2017/12/IP_Logo_blue-150x150.png HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:44 GMT
content-type: image/png
content-length: 12824
last-modified: Wed, 07 Mar 2018 17:29:30 GMT
etag: "5aa0217a-3218"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/07/Innovation.jpg
149.56.25.3200 OK 235 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/07/Innovation.jpg
IP 149.56.25.3:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=16, height=3300, bps=0, PhotometricIntepretation=RGB, description=Innovation with Special Light Bulb Lit As Concept, orientation=upper-left, width=5100], progressive, precision 8, 1920x600, components 3\012- data
Size 235 kB (234826 bytes)
Hash c5117991b2a334c54d4a91a9aece1d6f
2f06c5af3ab805ce958bbb18161768a770c0e6a2
e438e12a41107b89abed81ca14bc7d25687c9ef2b8b87cfd0e4aa24275e2fcc7
GET /wp-content/uploads/2017/07/Innovation.jpg HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:44 GMT
content-type: image/jpeg
content-length: 234826
last-modified: Wed, 07 Mar 2018 17:29:34 GMT
etag: "5aa0217e-3954a"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/06/Logo_blue-1-150x150.png
149.56.25.3200 OK 10 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/06/Logo_blue-1-150x150.png
IP 149.56.25.3:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash aab60fe72d4e7e49f64a93a63bd2fb69
6f3dd295516a3b8561645fddd8a403caabbfba71
282c72e05a00b37dacd79bb5c672934028bff2ad0d90b311a59efccae006d72a
GET /wp-content/uploads/2017/06/Logo_blue-1-150x150.png HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:44 GMT
content-type: image/png
content-length: 10510
last-modified: Wed, 07 Mar 2018 17:29:35 GMT
etag: "5aa0217f-290e"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-700.woff2
149.56.25.3200 OK 19 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-700.woff2
IP 149.56.25.3:0
File type Web Open Font Format (Version 2), TrueType, length 18912, version 1.0\012- data
Hash f937643e9e2d39b98a3ae9ada057e740
fe2534a5e2bf00d090f50ba03a536a0e76e8e9a6
cdc28355b0b7217392395460dd7dfbc65a4cf0822c986a7533f4ca7434799e53
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-700.woff2 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main.css?ver=4.9.6
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:44 GMT
content-type: font/woff2
content-length: 18912
last-modified: Mon, 05 Dec 2022 16:02:42 GMT
etag: "638e1622-49e0"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-regular.woff2
149.56.25.3200 OK 19 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-regular.woff2
IP 149.56.25.3:0
File type Web Open Font Format (Version 2), TrueType, length 18796, version 1.0\012- data
Hash e5ab24fb2b666576b0f199e25e1b5c09
cf8cfb1025573f69d37688b617931ff10da62fd8
623b62596e07df1fbf3a9fc0219c238e373bec6e55349826b0315b50ed2a7a7d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-regular.woff2 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main.css?ver=4.9.6
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:44 GMT
content-type: font/woff2
content-length: 18796
last-modified: Mon, 05 Dec 2022 16:02:42 GMT
etag: "638e1622-496c"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
maps.gstatic.com/mapfiles/openhand_8_8.cur
142.250.74.99200 OK 326 B URL HTTP/2 maps.gstatic.com/mapfiles/openhand_8_8.cur
IP 142.250.74.99:0
File type MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @8x8\012- data
Hash feff9159f56cb2069041d660b484eb07
0d0a08cf25a258511957f357b89d3908f3c5e6e3
7342f390b12f636d14e25f698fc5e38cf6240994dc0c07fefbbb4e78ec4d03c7
GET /mapfiles/openhand_8_8.cur HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/bmp
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 326
date: Thu, 08 Dec 2022 16:10:44 GMT
expires: Thu, 08 Dec 2022 16:10:44 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.gstatic.com/mapfiles/transparent.png
142.250.74.99200 OK 68 B URL HTTP/2 maps.gstatic.com/mapfiles/transparent.png
IP 142.250.74.99:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 8327a6037ae00a5be9f75e63ee1b9fbe
a812c79b0d125e4946b33446eae0353f518627e2
fe67e12a6497f8518ef1673fd8cf5622871935ff85f204715e78b2009dd48588
GET /mapfiles/transparent.png HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 68
date: Thu, 08 Dec 2022 16:10:44 GMT
expires: Thu, 08 Dec 2022 16:10:44 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Source+Sans+Pro%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&subset=latin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cgreek-ext%2Cgreek%2Cvietnamese&ver=6.0.3
142.250.74.74200 OK 9.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Source+Sans+Pro%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&subset=latin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cgreek-ext%2Cgreek%2Cvietnamese&ver=6.0.3
IP 142.250.74.74:0
Hash 06ea98c1d0991503ad06368589c8fc8c
81fa8d15972fae00ef7f94541258ad0bf6a35dcc
9810174a067e7db9bf6d719bc4b5924b6980309db295cc4e1555c68e8c1c76ac
GET /css?family=Source+Sans+Pro%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&subset=latin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cgreek-ext%2Cgreek%2Cvietnamese&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 16:10:41 GMT
date: Thu, 08 Dec 2022 16:10:41 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/maxmegamenu/style.css?ver=6be988
149.56.25.3200 OK 48 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/maxmegamenu/style.css?ver=6be988
IP 149.56.25.3:0
File type ASCII text, with very long lines (977)
Hash 5d9c7bf475e6719ed48933f59b4b9257
edd10d306b45dd2a7ec804d3d1e9286b0354a71f
c8cc8117ad9f060bb0d4f278786e6fd6bddf0bd9695e1b6774e4968006af2303
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/maxmegamenu/style.css?ver=6be988 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: text/css
last-modified: Fri, 25 Jan 2019 09:18:43 GMT
etag: W/"5c4ad473-13d86"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/megamenu-pro/icons/genericons/genericons/genericons.css?ver=2.2
149.56.25.3200 OK 24 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/megamenu-pro/icons/genericons/genericons/genericons.css?ver=2.2
IP 149.56.25.3:0
File type ASCII text, with very long lines (19226)
Hash 4425b70e56cd3a6d2481c9bd5ffe88b5
e5244b4c8886c198b2aeec60447129b2682e2fe6
6e7c5bcf81e1c68bea6151d8bde81623c169f0687e729fbaa9efa3499d26624e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/megamenu-pro/icons/genericons/genericons/genericons.css?ver=2.2 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: text/css
last-modified: Mon, 04 Jan 2021 19:43:30 GMT
etag: W/"5ff36fe2-6b84"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400,500
142.250.74.74200 OK 13 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,500
IP 142.250.74.74:0
Hash 191d0ed674b5d7e8420e562f580e92c7
23ebfea6f2e2a6488608fcd1a1792459b3001741
4f8258bc00a0860a4b22e79aee13f66917acea2b9323a01c40dfa72e3f773d20
GET /css?family=Roboto:400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 16:10:41 GMT
date: Thu, 08 Dec 2022 16:10:41 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/megamenu-pro/icons/fontawesome/css/font-awesome.min.css?ver=2.2
149.56.25.3200 OK 16 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/megamenu-pro/icons/fontawesome/css/font-awesome.min.css?ver=2.2
IP 149.56.25.3:0
File type ASCII text, with very long lines (30837)
Hash d97881a03ecd586f439a6e1e4705becc
7580be45816b1c8152d35b9a9cb60be00b84bfbf
62c75595e49a789fae60f148b6e37e0b2b66a41853c6a7c20d31246845dd803c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/megamenu-pro/icons/fontawesome/css/font-awesome.min.css?ver=2.2 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: text/css
last-modified: Mon, 04 Jan 2021 19:43:30 GMT
etag: W/"5ff36fe2-7918"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3d44d17585c9a536c8da0e75ed90d175
9dc35d0f6b251004bc1ddc83aea9ee71c95aedd1
6d14a5b5c43b39244434560a83a2bfea6604a4d072943b6147293b7adfd1b7b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10164
x-amzn-requestid: a0cb7259-0a07-44f5-91cd-e96b8d9c9cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cnAPOGSnoAMFUUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c472e-799b6ee425e29fb70ff7e4ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 07:07:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5Q2LRCrEYVZz_KldQARUQ26O1mv0G7rMAPQXGkBzUnERF-WjtZPMJA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 12:11:26 GMT
age: 14362
etag: "9dc35d0f6b251004bc1ddc83aea9ee71c95aedd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700
IP 142.250.74.74:0
GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 16:10:41 GMT
date: Thu, 08 Dec 2022 16:10:41 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Mon, 13 Sep 2021 12:35:27 GMT
etag: W/"613f458f-15db1"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: text/css
last-modified: Mon, 04 Jan 2021 19:42:12 GMT
etag: W/"5ff36f94-2bf8"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/06/AdobeStock_127729475.jpg
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/06/AdobeStock_127729475.jpg
IP 149.56.25.3:0
GET /wp-content/uploads/2017/06/AdobeStock_127729475.jpg HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: image/jpeg
content-length: 480308
last-modified: Wed, 07 Mar 2018 17:29:36 GMT
etag: "5aa02180-75434"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/
149.56.25.3200 OK 0 B IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://lightningstrike.ru/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: frame
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:40 GMT
content-type: text/html; charset=UTF-8
link: <https://lightningstrike.global/wp-json/>; rel="https://api.w.org/", <https://lightningstrike.global/wp-json/wp/v2/pages/239>; rel="alternate"; type="application/json", <https://lightningstrike.global/>; rel=shortlink
x-cache-status: STALE
x-powered-by: PHP/8.0.25, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 149.56.25.3:0
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 16:24:41 GMT
etag: W/"635024c9-aab"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/contact-form-7-style/css/frontend.css?ver=3.1.9
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/plugins/contact-form-7-style/css/frontend.css?ver=3.1.9
IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7-style/css/frontend.css?ver=3.1.9 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: text/css
last-modified: Thu, 22 Oct 2020 07:21:51 GMT
etag: W/"5f91330f-9c71"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/css/dashicons.min.css?ver=6.0.3
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-includes/css/dashicons.min.css?ver=6.0.3
IP 149.56.25.3:0
GET /wp-includes/css/dashicons.min.css?ver=6.0.3 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: text/css
last-modified: Thu, 15 Apr 2021 04:51:04 GMT
etag: W/"6077c638-e688"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/megamenu-pro/icons/fontawesome5/css/all.min.css?ver=2.2
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/plugins/megamenu-pro/icons/fontawesome5/css/all.min.css?ver=2.2
IP 149.56.25.3:0
GET /wp-content/plugins/megamenu-pro/icons/fontawesome5/css/all.min.css?ver=2.2 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: text/css
last-modified: Mon, 04 Jan 2021 19:43:30 GMT
etag: W/"5ff36fe2-d81d"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3
IP 149.56.25.3:0
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: text/css
last-modified: Tue, 14 Jan 2020 07:14:45 GMT
etag: W/"5e1d6a65-105a"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.18.0
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.18.0
IP 149.56.25.3:0
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.18.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 11:04:23 GMT
etag: W/"63245837-d15"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
platform-api.sharethis.com/js/sharethis.js
143.204.55.106200 OK 0 B URL HTTP/2 platform-api.sharethis.com/js/sharethis.js
IP 143.204.55.106:0
GET /js/sharethis.js HTTP/1.1
Host: platform-api.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-encoding: gzip
edge-control: cache-maxage=60m,downstream-ttl=60m
x-frame-options: SAMEORIGIN
cache-control: max-age=600, public
date: Thu, 08 Dec 2022 16:10:20 GMT
etag: W/"30217-4R/x1mcbHYoN8J5L8eO1d9Nv/qY"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PzlNZYLp63ZA07H-rnOi6SfKEdf3FQkw5vt-HRkzxdgRypCcPxG9AQ==
age: 21
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/material-design-for-contact-form-7/v1/assets/css/cf7-material-design.css?ver=2.0
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/plugins/material-design-for-contact-form-7/v1/assets/css/cf7-material-design.css?ver=2.0
IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/material-design-for-contact-form-7/v1/assets/css/cf7-material-design.css?ver=2.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 07:23:16 GMT
etag: W/"60053764-24b2a"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 10:58:00 GMT
etag: W/"632456b8-194b"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/themes/Divi/js/smoothscroll.js?ver=4.18.0
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/themes/Divi/js/smoothscroll.js?ver=4.18.0
IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/js/smoothscroll.js?ver=4.18.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 11:04:41 GMT
etag: W/"63245849-1652"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/contact-form-7-style/css/responsive.css?ver=3.1.9
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/plugins/contact-form-7-style/css/responsive.css?ver=3.1.9
IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7-style/css/responsive.css?ver=3.1.9 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:10:41 GMT
content-type: text/css
last-modified: Thu, 22 Oct 2020 07:21:51 GMT
etag: W/"5f91330f-1fed"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2