vikodek.com/
145.239.140.147200 OK 11 kB IP 145.239.140.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4451), with CRLF, LF line terminators
Hash 6bffa3263b84bf072ec7affdf70682e0
065993c233971a581c7dd56cf73337014279ee68
aca883a08b46267af363b99e2702543e1391f5c03e238108f5be2a08def6d943
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:54 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 11035
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 27 Jan 2023 08:54:41 GMT
ETag: "2b1b-5f33b041dce7a"
Accept-Ranges: bytes
Referrer-Policy: no-referrer-when-downgrade
Pragma: public
Cache-Control: max-age=3600, public
Content-Encoding: gzip
X-Powered-By: PleskLin
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11675
Expires: Fri, 27 Jan 2023 12:29:29 GMT
Date: Fri, 27 Jan 2023 09:14:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18659
Expires: Fri, 27 Jan 2023 14:25:53 GMT
Date: Fri, 27 Jan 2023 09:14:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 27 Jan 2023 08:35:19 GMT
content-type: application/json
age: 2375
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11669
Expires: Fri, 27 Jan 2023 12:29:23 GMT
Date: Fri, 27 Jan 2023 09:14:54 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: amwZqQbDgCr7s2E+nv5zvwrKWMwxVEVtZPioSYCrPm2x/EOsDAVXp8lrqf0AbWXm5Df/PzMW+hY=
x-amz-request-id: GCSW73NRC20A8X0K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 27 Jan 2023 08:49:21 GMT
age: 1533
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800%7Citalic%7CCourgette&subset=latin%2Clatin-ext
142.250.74.74200 OK 821 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800%7Citalic%7CCourgette&subset=latin%2Clatin-ext
IP 142.250.74.74:0
Hash e4d222f07635791814c0a826286551b4
f16ce3ce00101999d39f6d7ac1ec0c9daab1fbfe
28b73c65ff962711e3b1b2f8790ddbbf0651119d5356dbe3722d8e0330ed2e63
GET /css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800%7Citalic%7CCourgette&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://vikodek.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 27 Jan 2023 09:14:54 GMT
Date: Fri, 27 Jan 2023 09:14:54 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 09:14:54 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
code.jquery.com/jquery-migrate-1.2.1.min.js
69.16.175.10200 OK 3.1 kB URL HTTP/1.1 code.jquery.com/jquery-migrate-1.2.1.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (7085)
Hash e1084a25976d8b8999acadc7350ffb48
99b723d38b78d8347e8dfa60193b12864a370227
b98359c65420aa3864d5b86ef94c4c9a5fb8c772a905884a5ba4ce55319a3d13
GET /jquery-migrate-1.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://vikodek.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 09:14:54 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 3063
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 16 Feb 2022 10:50:39 GMT
Accept-Ranges: bytes
Server: nginx
ETag: W/"620cd6ff-1c1f"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1674810894.dop203.sk1.t,1674810894.cds242.sk1.c
code.jquery.com/jquery-1.11.0.min.js
69.16.175.10200 OK 33 kB URL HTTP/1.1 code.jquery.com/jquery-1.11.0.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (32341)
Hash 665423f5df5f30d3e991653d594fd1cd
ad2be638c57e37aa00adacc89d233d70d5c5c927
fce13e871876bba3561cf18484a8f4fcab2d1b954079b78c1d8ff7a727583b33
GET /jquery-1.11.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://vikodek.com/
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 09:14:54 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 33357
Content-Type: application/javascript; charset=utf-8
Last-Modified: Fri, 20 Aug 2021 17:47:53 GMT
Accept-Ranges: bytes
Server: nginx
ETag: W/"611feac9-1787d"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1674810894.dop210.sk1.t,1674810894.cds206.sk1.c
vikodek.com/wp-includes/css/dist/block-library/style.min.css
145.239.140.147200 OK 81 kB URL HTTP/1.1 vikodek.com/wp-includes/css/dist/block-library/style.min.css
IP 145.239.140.147:0
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 43c4bc05b5e3b0a6684a7c3a52e63590
ed6d95d525a710a82e8b8583e9ba7bce3b2a4722
9110fc122dda3067c424d9b8ff7747e2030b0bd9298f69a3683d399ad3373a6a
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:54 GMT
Content-Type: text/css
Content-Length: 80574
Last-Modified: Fri, 14 Jan 2022 12:14:48 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:54 GMT
ETag: "61e16938-13abe"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/plugins/ultimate-wp-query-search-filter/themes/default.css
145.239.140.147200 OK 1.4 kB URL HTTP/1.1 vikodek.com/wp-content/plugins/ultimate-wp-query-search-filter/themes/default.css
IP 145.239.140.147:0
Hash 8f1ef9f3abf160863c572788cac82f06
ca034af490b380ae9364ca1fd7a27f3c53a6d4c2
e04c152aee42b74ac36f094e63fcc91646429ee1885eadbfc9846ebfddfbdf7f
GET /wp-content/plugins/ultimate-wp-query-search-filter/themes/default.css HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:54 GMT
Content-Type: text/css
Content-Length: 1427
Last-Modified: Thu, 06 Dec 2018 13:32:08 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:54 GMT
ETag: "5c0924d8-593"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js
145.239.140.147200 OK 6.3 kB URL HTTP/1.1 vikodek.com/wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js
IP 145.239.140.147:0
File type ASCII text, with very long lines (6274)
Hash c0dc04a574108028bf6bde0c0e6d8e88
61237ccd1f8af2ae508382ded36af62bd54cb6c2
1a54a1907a6443e3c81608130bfed4546eb0ce5d0c8897e1d7a3b43d89ecc367
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 6275
Last-Modified: Mon, 07 Feb 2022 09:04:53 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:54 GMT
ETag: "6200e0b5-1883"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/plugins/contact-form-7/includes/css/styles.css
145.239.140.147200 OK 2.7 kB URL HTTP/1.1 vikodek.com/wp-content/plugins/contact-form-7/includes/css/styles.css
IP 145.239.140.147:0
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
GET /wp-content/plugins/contact-form-7/includes/css/styles.css HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: text/css
Content-Length: 2731
Last-Modified: Wed, 19 Jan 2022 10:45:53 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:54 GMT
ETag: "61e7ebe1-aab"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/themes/appointment/style.css
145.239.140.147200 OK 51 kB URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/style.css
IP 145.239.140.147:0
File type ASCII text, with very long lines (1087)
Hash c5cf04e2cc0aee27a818f1975ec4567e
7f9bfaf48afa577ae5b9420419a38c6c91423e34
b083c99af3a441e921263a3ed9a1dd8b9cb39d8897808ddcd30f55f461101f56
GET /wp-content/themes/appointment/style.css HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:54 GMT
Content-Type: text/css
Content-Length: 51255
Last-Modified: Sun, 17 Feb 2019 22:07:29 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:54 GMT
ETag: "5c69db21-c837"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/themes/appointment/css/default.css
145.239.140.147200 OK 8.0 kB URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/css/default.css
IP 145.239.140.147:0
File type assembler source, ASCII text, with very long lines (863)
Hash abf1b68256348717ae993957bce392a2
11257120334081b895efbd503b2e63ad24f5b6ce
16825de6f55e6fe7ac738c2274fe8da353122c1bb7dda5f2a6a5a1022d58cbae
GET /wp-content/themes/appointment/css/default.css HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: text/css
Content-Length: 7989
Last-Modified: Tue, 08 Feb 2022 10:24:58 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "620244fa-1f35"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/themes/appointment/css/theme-menu.css
145.239.140.147200 OK 4.4 kB URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/css/theme-menu.css
IP 145.239.140.147:0
Hash ad2193de2e14730cff1d89a18035fae6
0d48ee02df3215be1e619cea5002f0b6b5b2982e
e34de25d755e28506ed3b3a5717e02b6521effeec6725d0eed9a93a2de7b533a
GET /wp-content/themes/appointment/css/theme-menu.css HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: text/css
Content-Length: 4415
Last-Modified: Tue, 16 Oct 2018 13:16:24 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "5bc5e4a8-113f"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/themes/appointment/css/element.css
145.239.140.147200 OK 7.4 kB URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/css/element.css
IP 145.239.140.147:0
File type assembler source, ASCII text
Hash 23821d7c3e0a59caa607aa91d7a760da
497e0898733bd62d41ec755b9f7776d1e9e274a7
cc0ac7da3ae17a04635f4613bfe854912b6c2f8abec8c6ec06b520d286acdb8a
GET /wp-content/themes/appointment/css/element.css HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: text/css
Content-Length: 7382
Last-Modified: Thu, 06 Dec 2018 13:13:32 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "5c09207c-1cd6"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 82e3abc4a7b17efedca67cf215f4bb60
e20e55d87591af7db3a4bcfc429048f85e389b85
df8901d4d87686fb11e17986f5d53cf513f675b4dd71f0a2e35c7ffbefa7fb9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vikodek.com/wp-content/themes/appointment/css/media-responsive.css
145.239.140.147200 OK 8.5 kB URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/css/media-responsive.css
IP 145.239.140.147:0
Hash 32d1dcd482f6681ae78d4e6a3b4ebc1d
7514ce342e24f1b5ee50ee486f11e60d0774bc7b
dee35cb1aa0c31bb965b54a7d449ebfbc63d7eb8423fb0d65f68d4c83d19dbff
GET /wp-content/themes/appointment/css/media-responsive.css HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: text/css
Content-Length: 8546
Last-Modified: Wed, 21 Feb 2018 06:17:46 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "5a8d0f0a-2162"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 82e3abc4a7b17efedca67cf215f4bb60
e20e55d87591af7db3a4bcfc429048f85e389b85
df8901d4d87686fb11e17986f5d53cf513f675b4dd71f0a2e35c7ffbefa7fb9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vikodek.com/wp-content/plugins/easy-fancybox/css/jquery.fancybox.min.css
145.239.140.147200 OK 4.1 kB URL HTTP/1.1 vikodek.com/wp-content/plugins/easy-fancybox/css/jquery.fancybox.min.css
IP 145.239.140.147:0
File type ASCII text, with very long lines (4058), with no line terminators
Hash bc588054d45f910494ceba6455ac77f2
59c47f34f56e8a5ff2434ff6e339a5b4e0badebd
f34bb7d9c8f2db0e78e5d7b226bc169182f8c22e7cd1a3e7b5767519b709c1bc
GET /wp-content/plugins/easy-fancybox/css/jquery.fancybox.min.css HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: text/css
Content-Length: 4058
Last-Modified: Wed, 19 Jan 2022 10:46:03 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "61e7ebeb-fda"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/themes/appointment/css/font-awesome/css/font-awesome.min.css
145.239.140.147200 OK 31 kB URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/css/font-awesome/css/font-awesome.min.css
IP 145.239.140.147:0
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /wp-content/themes/appointment/css/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: text/css
Content-Length: 31000
Last-Modified: Wed, 21 Feb 2018 06:17:46 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "5a8d0f0a-7918"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/themes/appointment/css/bootstrap.css
145.239.140.147200 OK 137 kB URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/css/bootstrap.css
IP 145.239.140.147:0
File type ASCII text, with very long lines (540)
Size 137 kB (137067 bytes)
Hash d2ab08de4855f3f73d2ecec6da794293
0b53e330c67cd6f8551b7dc12e033b31e4ab1bdb
a60a31e4e77b8fb6360b986653ac24762db5249892d8907099b7109d2194110c
GET /wp-content/themes/appointment/css/bootstrap.css HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: text/css
Content-Length: 137067
Last-Modified: Wed, 21 Feb 2018 06:17:46 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "5a8d0f0a-2176b"
X-Powered-By: PleskLin
Accept-Ranges: bytes
www.googletagmanager.com/gtag/js?id=UA-61887605-31
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-61887605-31
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash cdc3a3e9ca2ce5bf00dbd3abd82500aa
82dcae4913ecc5a42d97040bbe34571d1a8986f5
0e728f898746677a89d3ee01933f0c86828cf64ecf97b1e6ee2a33511599cb6d
GET /gtag/js?id=UA-61887605-31 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://vikodek.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 27 Jan 2023 09:14:55 GMT
expires: Fri, 27 Jan 2023 09:14:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44019
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-G1P5EDK078
142.250.74.168200 OK 77 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-G1P5EDK078
IP 142.250.74.168:0
File type ASCII text, with very long lines (19467)
Hash 0d0b2a4de2cdcfb2887750a273f1bed7
22b7f87fa52dd4ad492f39bf368651b03c3084ee
f8ffcefc8d3b446a55fb0b6e294ce1d44522aba1778a29923ccf631759f09363
GET /gtag/js?id=G-G1P5EDK078 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://vikodek.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 27 Jan 2023 09:14:55 GMT
expires: Fri, 27 Jan 2023 09:14:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77195
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vikodek.com/wp-content/themes/appointment/js/bootstrap.min.js
145.239.140.147200 OK 36 kB URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/js/bootstrap.min.js
IP 145.239.140.147:0
File type ASCII text, with very long lines (32087)
Hash 2616d3564578d8f845813483352802a9
5ada7c103fc1deabc925cc1fdbbb6e451c21fc70
f971b901aeb9e55b07d472afee09bd5ae05159e1119dbd16d993e473565e7fc0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/appointment/js/bootstrap.min.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 35601
Last-Modified: Wed, 21 Feb 2018 06:17:46 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "5a8d0f0a-8b11"
X-Powered-By: PleskLin
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 82e3abc4a7b17efedca67cf215f4bb60
e20e55d87591af7db3a4bcfc429048f85e389b85
df8901d4d87686fb11e17986f5d53cf513f675b4dd71f0a2e35c7ffbefa7fb9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vikodek.com/wp-content/themes/appointment/js/page-scroll.js
145.239.140.147200 OK 336 B URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/js/page-scroll.js
IP 145.239.140.147:0
Hash 0c0e287fc30451c07389a0e5fe166784
af651fd9e240656f70f24b4821d1a028ba42bb5a
a0967a3540f51aee9bb50337ef7227f231f45eecffe41102de5068d5b8d16e81
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/appointment/js/page-scroll.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 336
Connection: keep-alive
Vary: Accept-Encoding
X-Accel-Version: 0.01
Last-Modified: Wed, 21 Feb 2018 06:17:46 GMT
ETag: "241-565b2e2ba5680-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
Referrer-Policy: no-referrer-when-downgrade
Pragma: public
X-Powered-By: PleskLin
vikodek.com/wp-content/themes/appointment/js/menu/menu.js
145.239.140.147200 OK 140 B URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/js/menu/menu.js
IP 145.239.140.147:0
Hash c244a38cc286b353452fa8dec103c090
af05ae775c13c2b88f7efe4ccd101321e3e73929
583facd3d00d717668912504b65dc278fcc6b07c81843265139de2cd67193809
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/appointment/js/menu/menu.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 140
Connection: keep-alive
Vary: Accept-Encoding
X-Accel-Version: 0.01
Last-Modified: Wed, 21 Feb 2018 06:17:46 GMT
ETag: "cd-565b2e2ba5680-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
Referrer-Policy: no-referrer-when-downgrade
Pragma: public
X-Powered-By: PleskLin
vikodek.com/wp-includes/js/jquery/jquery-migrate.min.js
145.239.140.147200 OK 11 kB URL HTTP/1.1 vikodek.com/wp-includes/js/jquery/jquery-migrate.min.js
IP 145.239.140.147:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 11224
Last-Modified: Fri, 14 Jan 2022 12:14:47 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "61e16937-2bd8"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-includes/js/jquery/jquery.min.js
145.239.140.147200 OK 90 kB URL HTTP/1.1 vikodek.com/wp-includes/js/jquery/jquery.min.js
IP 145.239.140.147:0
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 89521
Last-Modified: Fri, 14 Jan 2022 12:14:47 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "61e16937-15db1"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/themes/appointment/slick/slick.css
145.239.140.147200 OK 1.8 kB URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/slick/slick.css
IP 145.239.140.147:0
Hash f38b2db10e01b1572732a3191d538707
a94a059b3178b4adec09e3281ace2819a30095a4
de1e399b07289f3b0a8d35142e363e128124a1185770e214e25e58030dad48e5
GET /wp-content/themes/appointment/slick/slick.css HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: text/css
Content-Length: 1776
Last-Modified: Tue, 03 Oct 2017 08:49:28 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "59d34f18-6f0"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/themes/appointment/js/carousel.js
145.239.140.147200 OK 257 B URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/js/carousel.js
IP 145.239.140.147:0
Hash bc5f5d91a91883349a7ff01b4841cc7a
7b3c6a24658a4a4c2eb4fce90b10e23ed625fb37
594d0d042006d561a092512161560f8efb0c315e59885c3e95aa3b3fec19f6cb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/appointment/js/carousel.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 257
Connection: keep-alive
Vary: Accept-Encoding
X-Accel-Version: 0.01
Last-Modified: Wed, 21 Feb 2018 06:17:46 GMT
ETag: "1ed-565b2e2ba5680-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
Referrer-Policy: no-referrer-when-downgrade
Pragma: public
X-Powered-By: PleskLin
vikodek.com/wp-content/themes/appointment/slick/slick-theme.css
145.239.140.147200 OK 3.1 kB URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/slick/slick-theme.css
IP 145.239.140.147:0
Hash f9faba678c4d6dcfdde69e5b11b37a2e
81a434f94f2b1124f3232bb86f2944f82fb23ac0
7adaf08052c6a6a0f8a0d0055b4f191fd07389fe41c972b69573472b2ecb406a
GET /wp-content/themes/appointment/slick/slick-theme.css HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: text/css
Content-Length: 3145
Last-Modified: Tue, 03 Oct 2017 08:49:28 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "59d34f18-c49"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/themes/appointment/slick/slick.js
145.239.140.147200 OK 89 kB URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/slick/slick.js
IP 145.239.140.147:0
Hash 5f8f4aed010e1afe499184d8197309f9
097f6a1b4f115e9b6ebefa70d76d830733bcc9ba
0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/appointment/slick/slick.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 88955
Last-Modified: Tue, 03 Oct 2017 08:49:28 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "59d34f18-15b7b"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/plugins/ewww-image-optimizer/includes/lazysizes.min.js
145.239.140.147200 OK 12 kB URL HTTP/1.1 vikodek.com/wp-content/plugins/ewww-image-optimizer/includes/lazysizes.min.js
IP 145.239.140.147:0
File type ASCII text, with very long lines (11507), with no line terminators
Hash 256584a2477a60deea6901ee6b153587
20d0f021b12819844a1cdfc92446a7081037f137
a1790a7910ec2ecb48fd04ea34066eb3848b0b25fd58ba901583ef0ce447dfa8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ewww-image-optimizer/includes/lazysizes.min.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 11507
Last-Modified: Sun, 06 Feb 2022 11:53:04 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "61ffb6a0-2cf3"
X-Powered-By: PleskLin
Accept-Ranges: bytes
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 27 Jan 2023 08:49:03 GMT
age: 1552
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
vikodek.com/wp-content/plugins/contact-form-7/includes/js/index.js
145.239.140.147200 OK 12 kB URL HTTP/1.1 vikodek.com/wp-content/plugins/contact-form-7/includes/js/index.js
IP 145.239.140.147:0
File type HTML document, ASCII text, with very long lines (11862), with no line terminators
Hash 862c82d8373e4d69aa5af6c994389bda
042bb60eee9e7dbffcbd43d529517e562f97f455
d0ba7e2275cddbdf3d2473a60565d950efb8474ba7bda393cc64f56ff39d85ce
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 11862
Last-Modified: Wed, 19 Jan 2022 10:45:53 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "61e7ebe1-2e56"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js
145.239.140.147200 OK 6.4 kB URL HTTP/1.1 vikodek.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js
IP 145.239.140.147:0
File type ASCII text, with very long lines (6406), with no line terminators
Hash 8fe2803a01c9fa77cb1a2618c3552dce
2230dd8f0604e4328e7c2a3f9437a6bf2986f592
e87a1c5e24f9a7c7dcb437417f0b05b0a3c12947ce32d65c990c988a8b5ed4d7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 6406
Last-Modified: Fri, 14 Jan 2022 12:14:44 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "61e16934-1906"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-includes/js/dist/vendor/wp-polyfill.min.js
145.239.140.147200 OK 16 kB URL HTTP/1.1 vikodek.com/wp-includes/js/dist/vendor/wp-polyfill.min.js
IP 145.239.140.147:0
File type Unicode text, UTF-8 text, with very long lines (16323)
Hash 38400d9c6ba7d41239fccfaa9f523558
fe9a1548961441ce82e5399444f2be5408d2644c
293913879d30bab7499013e935009f5183facbddd63bfc9656a859622590b80b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 16470
Last-Modified: Fri, 14 Jan 2022 12:14:44 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "61e16934-4056"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/plugins/easy-fancybox/js/jquery.fancybox.min.js
145.239.140.147200 OK 20 kB URL HTTP/1.1 vikodek.com/wp-content/plugins/easy-fancybox/js/jquery.fancybox.min.js
IP 145.239.140.147:0
File type HTML document, ASCII text, with very long lines (19791), with no line terminators
Hash 31022b7ea75250e0e9fb3117253fcb2f
f721d770eecb3a8fa48eeeed9f52faf4512d5493
948f0c154ad97428bc1d1dee456f2e20ec4e0e302b0d3189e08a4573cb63cdb3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/easy-fancybox/js/jquery.fancybox.min.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 19791
Last-Modified: Wed, 19 Jan 2022 10:46:03 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "61e7ebeb-4d4f"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/plugins/easy-fancybox/js/jquery.easing.min.js
145.239.140.147200 OK 2.3 kB URL HTTP/1.1 vikodek.com/wp-content/plugins/easy-fancybox/js/jquery.easing.min.js
IP 145.239.140.147:0
File type ASCII text, with very long lines (2301)
Hash adf739cca147aff5e39fd65e6e64f420
ce3bb19811c619220dd2329165eb8a8166094fec
0ec98adf593ebcc01bec60b1f494dacd47522abfef9038a714101d83f45e165d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/easy-fancybox/js/jquery.easing.min.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 2302
Last-Modified: Wed, 19 Jan 2022 10:46:03 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "61e7ebeb-8fe"
X-Powered-By: PleskLin
Accept-Ranges: bytes
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://vikodek.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 24 Jan 2023 18:35:14 GMT
Expires: Wed, 24 Jan 2024 18:35:14 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
Age: 225581
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
216.58.207.227200 OK 31 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31320, version 1.0\012- data
Hash 3fe71527811fbfedd2c07962e1bc49e7
f63e158a0480c5d711b5e268db0e75e57d87a8a5
24c0e724005344165ee0a0ff4c96a914e174bb4caa20c8a533fb194d92853e95
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://vikodek.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 31320
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 06:46:53 GMT
Expires: Sat, 27 Jan 2024 06:46:53 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 15 Aug 2022 18:11:37 GMT
Content-Type: font/woff2
Age: 8882
vikodek.com/wp-content/plugins/ultimate-wp-query-search-filter/classes/scripts/uwpqsfscript.js
145.239.140.147200 OK 2.4 kB URL HTTP/1.1 vikodek.com/wp-content/plugins/ultimate-wp-query-search-filter/classes/scripts/uwpqsfscript.js
IP 145.239.140.147:0
Hash 57baf4db8c89fb6cf5fab34ab66985f3
253388ce26f47e12d15616df1e7ec189f0c5de49
f82339447cb930c48e8175574cba7c3c7ced5f83c85e21249471c83a7342c60f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ultimate-wp-query-search-filter/classes/scripts/uwpqsfscript.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 2447
Last-Modified: Fri, 22 May 2015 03:03:18 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "555e9c76-98f"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/plugins/easy-fancybox/js/jquery.mousewheel.min.js
145.239.140.147200 OK 2.6 kB URL HTTP/1.1 vikodek.com/wp-content/plugins/easy-fancybox/js/jquery.mousewheel.min.js
IP 145.239.140.147:0
File type ASCII text, with very long lines (2608)
Hash 963b3f6599b02889ea79808c5c8189d0
c2b5156772ddbaf09d18f00c31cddfb86bc1f1f1
dd9bfe5f04d4e393463f42b4f503763c36693306dffef16d481e0c071b61ae64
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/easy-fancybox/js/jquery.mousewheel.min.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 2609
Last-Modified: Wed, 19 Jan 2022 10:46:03 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "61e7ebeb-a31"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/themes/appointment/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
145.239.140.147200 OK 77 kB URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 145.239.140.147:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/appointment/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://vikodek.com/wp-content/themes/appointment/css/font-awesome/css/font-awesome.min.css
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/font-woff2
Content-Length: 77160
Last-Modified: Wed, 21 Feb 2018 06:17:46 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "5a8d0f0a-12d68"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-includes/js/wp-emoji-release.min.js
145.239.140.147200 OK 18 kB URL HTTP/1.1 vikodek.com/wp-includes/js/wp-emoji-release.min.js
IP 145.239.140.147:0
File type ASCII text, with very long lines (15224)
Hash 116c86c56f8db0bb63f15ceda50fdc98
75e308982ecf7cd43644b8b426e6aa1a0b0fbe26
def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 18181
Last-Modified: Fri, 14 Jan 2022 12:14:47 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "61e16937-4705"
X-Powered-By: PleskLin
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17516
Expires: Fri, 27 Jan 2023 14:06:51 GMT
Date: Fri, 27 Jan 2023 09:14:55 GMT
Connection: keep-alive
vikodek.com/wp-includes/js/wp-embed.min.js
145.239.140.147200 OK 1.4 kB URL HTTP/1.1 vikodek.com/wp-includes/js/wp-embed.min.js
IP 145.239.140.147:0
File type ASCII text, with very long lines (1391)
Hash 905225d5711b559d3092387d5ffbedbd
6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d
5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://vikodek.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: application/x-javascript
Content-Length: 1426
Last-Modified: Fri, 14 Jan 2022 12:14:48 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "61e16938-592"
X-Powered-By: PleskLin
Accept-Ranges: bytes
vikodek.com/wp-content/themes/appointment/images/callout-bg.jpg
145.239.140.147200 OK 98 kB URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/images/callout-bg.jpg
IP 145.239.140.147:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1300x614, components 3\012- data
Hash bfb57d90617c5f7cef9e07ca7f0c337f
a670f9a0e3edf3bb53081c0041595479e365c740
005cb4f514ece55e09b8e783fbb7e5a5a894ac75de3c78863da307a957d05c3c
GET /wp-content/themes/appointment/images/callout-bg.jpg HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://vikodek.com/wp-content/themes/appointment/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 09:14:55 GMT
Content-Type: image/jpeg
Content-Length: 98272
Last-Modified: Wed, 13 Feb 2019 22:33:39 GMT
Connection: keep-alive
Cache-Control: max-age=31536000, public
Expires: Sat, 27 Jan 2024 09:14:55 GMT
ETag: "5c649b43-17fe0"
X-Powered-By: PleskLin
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e219b886607a890d9b11864b22d8de79
84f0023a37617478a9c93e75279605b04b2a4390
9a5126d5ffe2b1112d50e7f59cfb87e3bf49de984083885a7f3f0570cd141966
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9A5126D5FFE2B1112D50E7F59CFB87E3BF49DE984083885A7F3F0570CD141966"
Last-Modified: Wed, 25 Jan 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21534
Expires: Fri, 27 Jan 2023 15:13:49 GMT
Date: Fri, 27 Jan 2023 09:14:55 GMT
Connection: keep-alive
vikodek.com/wp-content/uploads/2018/12/new-logo.png
145.239.140.147200 OK 9.2 kB URL HTTP/2 vikodek.com/wp-content/uploads/2018/12/new-logo.png
IP 145.239.140.147:0
File type PNG image data, 166 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash c3db30f5854d02656c8dcfb017230e46
a1464334339b1fbe97fccc0b247ceaa2b610e28a
14ca00f3f8bc4505acc472d35baeb65f445cd2a661c749dcd221fc862a03f1f2
GET /wp-content/uploads/2018/12/new-logo.png HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://vikodek.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 09:14:55 GMT
content-type: image/png
content-length: 9201
last-modified: Sun, 06 Feb 2022 12:02:22 GMT
cache-control: max-age=31536000, public
expires: Sat, 27 Jan 2024 09:14:55 GMT
etag: "61ffb8ce-23f1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
vikodek.com/wp-content/themes/appointment/images/slider/01.jpg
145.239.140.147200 OK 135 kB URL HTTP/2 vikodek.com/wp-content/themes/appointment/images/slider/01.jpg
IP 145.239.140.147:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x500, components 3\012- data
Size 135 kB (135137 bytes)
Hash 8051953fa0927aa69926cbb01477365e
7f1c5cfb268d6404cb1ce880127552736cd76c6e
80ee59f9b4700dff0fd8c7a4131ca8c5f05d55b13e270fc1ada2e45336b06cb3
GET /wp-content/themes/appointment/images/slider/01.jpg HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://vikodek.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 09:14:55 GMT
content-type: image/jpeg
content-length: 135137
last-modified: Wed, 13 Feb 2019 21:28:02 GMT
cache-control: max-age=31536000, public
expires: Sat, 27 Jan 2024 09:14:55 GMT
etag: "5c648be2-20fe1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.213.106.99101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.213.106.99:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0Bsr9Zo64GMfzgH9qYd+xQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: igBOrEQ3Rf7nMSIvmh30RrOGBho=
www.google-analytics.com/analytics.js
216.239.32.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.32.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://vikodek.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 27 Jan 2023 07:45:20 GMT
expires: Fri, 27 Jan 2023 09:45:20 GMT
cache-control: public, max-age=7200
age: 5376
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=1453633358&t=pageview&_s=1&dl=http%3A%2F%2Fvikodek.com%2F&ul=en-us&de=UTF-8&dt=VIKODEK%20-%20Current%20Transformers%20From%20Manufacturer&sd=24-bit&sr=1280x1024&vp=1268x927&je=0&_u=YADAAUABAAAAACAAI~&jid=1009073686&gjid=695451456&cid=2146513184.1674810895&tid=UA-61887605-31&_gid=54298808.1674810896&_r=1&_slc=1>m=2ou1p0&z=760322221
216.239.32.178200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1453633358&t=pageview&_s=1&dl=http%3A%2F%2Fvikodek.com%2F&ul=en-us&de=UTF-8&dt=VIKODEK%20-%20Current%20Transformers%20From%20Manufacturer&sd=24-bit&sr=1280x1024&vp=1268x927&je=0&_u=YADAAUABAAAAACAAI~&jid=1009073686&gjid=695451456&cid=2146513184.1674810895&tid=UA-61887605-31&_gid=54298808.1674810896&_r=1&_slc=1>m=2ou1p0&z=760322221
IP 216.239.32.178:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j99&a=1453633358&t=pageview&_s=1&dl=http%3A%2F%2Fvikodek.com%2F&ul=en-us&de=UTF-8&dt=VIKODEK%20-%20Current%20Transformers%20From%20Manufacturer&sd=24-bit&sr=1280x1024&vp=1268x927&je=0&_u=YADAAUABAAAAACAAI~&jid=1009073686&gjid=695451456&cid=2146513184.1674810895&tid=UA-61887605-31&_gid=54298808.1674810896&_r=1&_slc=1>m=2ou1p0&z=760322221 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://vikodek.com
Connection: keep-alive
Referer: http://vikodek.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: http://vikodek.com
date: Fri, 27 Jan 2023 09:14:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
vikodek.com/wp-content/uploads/2018/10/cropped-favicon-32x32.png
145.239.140.147200 OK 1.5 kB URL HTTP/2 vikodek.com/wp-content/uploads/2018/10/cropped-favicon-32x32.png
IP 145.239.140.147:0
File type PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced\012- data
Hash b01c94869600473a8aec8d5ab6473038
308d051f95c7c4573b45fabeba347b365afdb168
d9d89ad1cadd2e69b60d52e5e4dc9da9dc9523aa6d69b0a25d95afb8aca0ab16
GET /wp-content/uploads/2018/10/cropped-favicon-32x32.png HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://vikodek.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 09:14:56 GMT
content-type: image/png
content-length: 1472
last-modified: Fri, 05 Oct 2018 13:25:18 GMT
cache-control: max-age=31536000, public
expires: Sat, 27 Jan 2024 09:14:56 GMT
etag: "5bb7663e-5c0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
vikodek.com/wp-content/uploads/2018/10/cropped-favicon-192x192.png
145.239.140.147200 OK 17 kB URL HTTP/2 vikodek.com/wp-content/uploads/2018/10/cropped-favicon-192x192.png
IP 145.239.140.147:0
File type PNG image data, 192 x 192, 8-bit/color RGB, non-interlaced\012- data
Hash 933946eb3b6e2bfbbbc672dcc91bf34f
af6598b23ae6d1712976b9cc63627fea9a529fa4
9ca1c2d01f0781ae6ab2c2b27ee953bd8a2ee7179ccf623d7909baf0e08a6ae3
GET /wp-content/uploads/2018/10/cropped-favicon-192x192.png HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://vikodek.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 09:14:56 GMT
content-type: image/png
content-length: 17173
last-modified: Fri, 05 Oct 2018 13:25:18 GMT
cache-control: max-age=31536000, public
expires: Sat, 27 Jan 2024 09:14:56 GMT
etag: "5bb7663e-4315"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 97ccaa279f6ade845b71b57615d40388
5186089108dca0136feab418da66a9e027c7e427
515128c713e98c9a0546c35d9a1e0719057136509b5b2312e4af56a9acc80ec2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-G1P5EDK078>m=2oe1p0&_p=1453633358&cid=2146513184.1674810895&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674810895&sct=1&seg=0&dl=http%3A%2F%2Fvikodek.com%2F&dt=VIKODEK%20-%20Current%20Transformers%20From%20Manufacturer&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-G1P5EDK078>m=2oe1p0&_p=1453633358&cid=2146513184.1674810895&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674810895&sct=1&seg=0&dl=http%3A%2F%2Fvikodek.com%2F&dt=VIKODEK%20-%20Current%20Transformers%20From%20Manufacturer&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-G1P5EDK078>m=2oe1p0&_p=1453633358&cid=2146513184.1674810895&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674810895&sct=1&seg=0&dl=http%3A%2F%2Fvikodek.com%2F&dt=VIKODEK%20-%20Current%20Transformers%20From%20Manufacturer&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://vikodek.com
Connection: keep-alive
Referer: http://vikodek.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://vikodek.com
date: Fri, 27 Jan 2023 09:14:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/4248d311/www-player.css
142.250.74.78200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/4248d311/www-player.css
IP 142.250.74.78:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8a6331ed48be29c59230b0c7360068de
22a20436f427d6b8e26eb30ed9aab51a43d389bf
72f0818ab04697fc29d331b2add584f3cd5e269446c7297300701a4666c9d95e
GET /s/player/4248d311/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/bOHCwHn0q-o?rel=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49911
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 05:19:38 GMT
expires: Fri, 26 Jan 2024 05:19:38 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 12 Jan 2023 01:15:11 GMT
content-type: text/css
age: 100518
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/4248d311/www-embed-player.vflset/www-embed-player.js
142.250.74.78200 OK 109 kB URL HTTP/2 www.youtube.com/s/player/4248d311/www-embed-player.vflset/www-embed-player.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (679)
Size 109 kB (109432 bytes)
Hash 711fcfe6f1ab52d89ab3474d437c1e48
b2f3e69e9d40b193de5e76ae13c6ad9ce0a8e537
361236d1317543e128074c35d22d65a2ba70f6ce9906b07a543e6b3c96239019
GET /s/player/4248d311/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/bOHCwHn0q-o?rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 109432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 06:26:37 GMT
expires: Sat, 27 Jan 2024 06:26:37 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 12 Jan 2023 01:15:11 GMT
content-type: text/javascript
age: 10099
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/4248d311/fetch-polyfill.vflset/fetch-polyfill.js
142.250.74.78200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/4248d311/fetch-polyfill.vflset/fetch-polyfill.js
IP 142.250.74.78:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/4248d311/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/bOHCwHn0q-o?rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:37:27 GMT
expires: Sat, 27 Jan 2024 07:37:27 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 12 Jan 2023 01:15:11 GMT
content-type: text/javascript
age: 5849
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/embed/bOHCwHn0q-o?rel=0
142.250.74.78200 OK 638 kB URL HTTP/2 www.youtube.com/embed/bOHCwHn0q-o?rel=0
IP 142.250.74.78:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58646)
Size 638 kB (638492 bytes)
Hash 40f5468b941561014d323c9195515977
415982688bae95546b276821348317d80f4d2b63
350a07f51db884b7d7ce653f0bf6ab83f9e9bd73f6398e68b371a6b7bfd77e10
GET /embed/bOHCwHn0q-o?rel=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://vikodek.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 27 Jan 2023 09:14:56 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=OKW0PmoIqUE; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TXpJMU9EQXlOalUwTnpBMU5EY3pNdz09EJCszp4GGJCszp4G; Domain=.youtube.com; Expires=Wed, 26-Jul-2023 09:14:56 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=xrDIRuBMK1o; Domain=.youtube.com; Expires=Wed, 26-Jul-2023 09:14:56 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+926; expires=Sun, 26-Jan-2025 09:14:56 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 97ccaa279f6ade845b71b57615d40388
5186089108dca0136feab418da66a9e027c7e427
515128c713e98c9a0546c35d9a1e0719057136509b5b2312e4af56a9acc80ec2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 16:40:43 GMT
expires: Fri, 26 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 59653
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a74494062e6a7972fc90481d1e630c64
ffe981a21eb348523070407acd3cdd38e3d2246c
d203fd0d814143acff3b5ffbe352337fb0e5d4c283b945ff74f9085b22d42840
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7b8dcc42710b2f68c0ec782d2b2a3ae3
b865da423aa26e774270b8e3942b6fbe76793133
2da0fcf67d020f7c563946fca7ade89803cbe7cfe484f123640f8a9950b3f2b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.102200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.102:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 09:12:52 GMT
expires: Fri, 27 Jan 2023 09:27:52 GMT
cache-control: public, max-age=900
age: 125
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.130302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 27 Jan 2023 09:14:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a74494062e6a7972fc90481d1e630c64
ffe981a21eb348523070407acd3cdd38e3d2246c
d203fd0d814143acff3b5ffbe352337fb0e5d4c283b945ff74f9085b22d42840
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7b8dcc42710b2f68c0ec782d2b2a3ae3
b865da423aa26e774270b8e3942b6fbe76793133
2da0fcf67d020f7c563946fca7ade89803cbe7cfe484f123640f8a9950b3f2b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 27 Jan 2023 09:14:57 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3ebf9d7211aba4c70b84fb470a61b414
28fe29a24e47d6abda88eeeb5e22eddda03c7fca
a8276e099d9d8452b65b70d161a459fae25afb37cea7eff9cc5563b7de972acc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.170200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.170:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash cd54630cc9638f1144533b208311cc3a
8e4874a2752cdce973076309c5fb1cd2e864bcc6
8eb13c2b7d2901b382ccf06721e0f37fb618999bb4941338a3a9893228137077
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 27 Jan 2023 09:14:57 GMT
server: ESF
cache-control: private
content-length: 30868
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a4154f9780d4ef7c61b45ccfff91e5ee
fa97c53e69a2e72e10ee12627c31b5201d36c14c
73f37cd9a981be0d639f75cb30582ab2d7a4e92ce1c47cee30856b2f7d7e8207
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/vZiBg5JoqdQQKgXoq-svHbVcMWDYe2VdTCeCl-YUwqY.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/vZiBg5JoqdQQKgXoq-svHbVcMWDYe2VdTCeCl-YUwqY.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (35941)
Hash ca51a54f0583237ffb1a221db4d8cb81
f44e799aae6a7bef32f4f82e2523a9ffdebf18ed
8f9302bc83fe1e2be0af5ffc39e8e52c6e12ab268cfb8605b0253d47257c6d7e
GET /js/th/vZiBg5JoqdQQKgXoq-svHbVcMWDYe2VdTCeCl-YUwqY.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14142
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 02:19:02 GMT
expires: Fri, 26 Jan 2024 02:19:02 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 24 Jan 2023 13:30:00 GMT
content-type: text/javascript
age: 111355
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7271
Expires: Fri, 27 Jan 2023 11:16:08 GMT
Date: Fri, 27 Jan 2023 09:14:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7271
Expires: Fri, 27 Jan 2023 11:16:08 GMT
Date: Fri, 27 Jan 2023 09:14:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47dfbf8f-d762-4550-83d7-2992a8c8fe66.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47dfbf8f-d762-4550-83d7-2992a8c8fe66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bad60daf652c598a06510ff955137b69
235bf4642e726bb6a303fe1b69238e2e973414cb
d655c5ac17274a30a89c31674e14dc9c1b6bc39bfff94db1c9ff0d8006bb673b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47dfbf8f-d762-4550-83d7-2992a8c8fe66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12508
x-amzn-requestid: 68787c38-72fe-4d8a-9521-aeb9efa56b05
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fBYWyGIHoAMF-LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca075e-1ee9488d2dd0437728beac94;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 03:15:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0lNizMpeWOcOlokaaW-WB7LXRReZwaFfPE38C-SmsS_PbxJPhcRYfw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 15:21:30 GMT
age: 64407
etag: "235bf4642e726bb6a303fe1b69238e2e973414cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
i.ytimg.com/vi/bOHCwHn0q-o/hqdefault.jpg?sqp=-oaymwEmCOADEOgC8quKqQMa8AEB-AG2BIACwAKKAgwIABABGH8gEygaMA8=&rs=AOn4CLAjiNekQOW1upXdOUT6RM0vSzneBw
142.250.74.150200 OK 8.3 kB URL HTTP/2 i.ytimg.com/vi/bOHCwHn0q-o/hqdefault.jpg?sqp=-oaymwEmCOADEOgC8quKqQMa8AEB-AG2BIACwAKKAgwIABABGH8gEygaMA8=&rs=AOn4CLAjiNekQOW1upXdOUT6RM0vSzneBw
IP 142.250.74.150:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 2c90a55d579acda02048f78f8c50773c
de67eb4875afcc776f090d2ded29d9474fb24414
4d653da8f9d01fa30f34292325b72c26956f704897bfa18511e31aa3ef6310cb
GET /vi/bOHCwHn0q-o/hqdefault.jpg?sqp=-oaymwEmCOADEOgC8quKqQMa8AEB-AG2BIACwAKKAgwIABABGH8gEygaMA8=&rs=AOn4CLAjiNekQOW1upXdOUT6RM0vSzneBw HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 8344
date: Fri, 27 Jan 2023 09:14:57 GMT
expires: Fri, 27 Jan 2023 11:14:57 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 05:20:00 GMT
age: 14097
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KY05WKpINERD5g9o2QLYdsNMSuuy_YKn2Tl7Qkn7YaAOaPTDfLteeA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:49:48 GMT
age: 41109
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e7158416f60576804ccff03307319fe
a342f94625e913fa6b8d862a59979f1e3ad80dd1
5c525df7d169cc7e033d920c11f4a0163a781c025a22b70530882b56964a9a52
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5737
x-amzn-requestid: 23239d1f-0228-4722-b826-40dc8c9a4af2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVzDbEacIAMFZtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d23215-1604c24e272fbb657b9925cc;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:56:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -_8PZoms7W6Lvw__KsoTwL_CzjfyWChzoSWDc9yCk9zCR8cTs87oNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 16:31:35 GMT
age: 60202
etag: "a342f94625e913fa6b8d862a59979f1e3ad80dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e96f3ea585b5fa8ed6446ed16e2b4b2
f90c205f370a2426dffe3c21b24bfa551b385556
6967ba25887f87200fcb39a3e6f065fd27596b2ebcf0d33a2751c655d6e724f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4272
x-amzn-requestid: 90778100-cfb9-46c5-b75d-caafc1fdbae9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEMjeEB1oAMFl8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb27af-5743a4b077fde951558d49bd;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 23:45:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ev8Pkhb87rHNaINJOl0VO5ze6SbLktZjmFANNbIOnVs74H8saNsmOg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 12:34:55 GMT
age: 74402
etag: "f90c205f370a2426dffe3c21b24bfa551b385556"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52a1f3b3-38ab-4f58-ad1a-ca4c9f82503e.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52a1f3b3-38ab-4f58-ad1a-ca4c9f82503e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1695371c247eedad65b4cac82f01215d
50510052f0e22e23f747c761d57cdf72910ac533
aadde426229f04f6a489b87d6949a485b19d4fd035cb244b6094549efc08013f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52a1f3b3-38ab-4f58-ad1a-ca4c9f82503e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6394
x-amzn-requestid: 215e6698-30e7-45b0-8f8f-96a05c5f6992
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fOirZG1doAMFW_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf4b15-3e1bec6759816cf84467339b;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 03:05:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tG3T0HguJWldw-LJ9SJSuuUT4ubLCWViwQFB-dZhNfEswMEexb7Tcw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 04:26:09 GMT
age: 17328
etag: "50510052f0e22e23f747c761d57cdf72910ac533"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
vikodek.com/wp-content/themes/appointment/slick/fonts/slick.woff
145.239.140.147404 Not Found 22 kB URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/slick/fonts/slick.woff
IP 145.239.140.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1820), with CRLF, LF line terminators
Hash a8a9c5538825e616e4b36056aaa0393b
b5a460a341976099f3c2a14acf752f89c909871a
7f852f69146fd58d10749884be9ed26e6d17ccdedb00318bd1d9b6f2875d42a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/appointment/slick/fonts/slick.woff HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://vikodek.com/wp-content/themes/appointment/slick/slick-theme.css
Cookie: pll_language=en; _ga_G1P5EDK078=GS1.1.1674810895.1.0.1674810895.0.0.0; _ga=GA1.1.2146513184.1674810895
HTTP/1.1 404 Not Found
Server: nginx
Date: Fri, 27 Jan 2023 09:14:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://vikodek.com/wp-json/>; rel="https://api.w.org/"
Referrer-Policy: no-referrer-when-downgrade
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a4154f9780d4ef7c61b45ccfff91e5ee
fa97c53e69a2e72e10ee12627c31b5201d36c14c
73f37cd9a981be0d639f75cb30582ab2d7a4e92ce1c47cee30856b2f7d7e8207
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5f57a83befb5510821576265e691190f
136d15f2cbbc6416d808afcb8f48a19b346937fc
b3d3b78aaea9273c95224d6242a3817bac9be7fc46800e741da32bba13db5fa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vikodek.com/wp-content/themes/appointment/slick/ajax-loader.gif
145.239.140.147404 Not Found 22 kB URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/slick/ajax-loader.gif
IP 145.239.140.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1820), with CRLF, LF line terminators
Hash 9f67395cbd2689da861c0e0fa476e24a
fc242189c3960e08f76504207ecaaf9ff73151ed
c8d9ca044c04584116b5bae6519a6883fb8129240b5fb8b65ddf639953b90ae8
GET /wp-content/themes/appointment/slick/ajax-loader.gif HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://vikodek.com/wp-content/themes/appointment/slick/slick-theme.css
Cookie: pll_language=en; _ga_G1P5EDK078=GS1.1.1674810895.1.0.1674810895.0.0.0; _ga=GA1.1.2146513184.1674810895
HTTP/1.1 404 Not Found
Server: nginx
Date: Fri, 27 Jan 2023 09:14:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://vikodek.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
yt3.ggpht.com/QUtAG4oxN0YqsBvTSapkrhQvZZCHdz3OdiUWxGOyajRvnWDGnizFzuemuf_ggYigzHP1CjSofO8=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.3 kB URL HTTP/2 yt3.ggpht.com/QUtAG4oxN0YqsBvTSapkrhQvZZCHdz3OdiUWxGOyajRvnWDGnizFzuemuf_ggYigzHP1CjSofO8=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 8fbadb8fee8427ec4e3d5dccc13d7856
89b6648dbd74abf29da2860fb1fca2a6184cfa0a
b41672f08c98954114d98f975181df8c92c960b3ebb31e20994c5ad44fa4cacf
GET /QUtAG4oxN0YqsBvTSapkrhQvZZCHdz3OdiUWxGOyajRvnWDGnizFzuemuf_ggYigzHP1CjSofO8=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2272
x-xss-protection: 0
date: Fri, 27 Jan 2023 09:14:57 GMT
expires: Sun, 22 Jan 2023 10:14:36 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5f57a83befb5510821576265e691190f
136d15f2cbbc6416d808afcb8f48a19b346937fc
b3d3b78aaea9273c95224d6242a3817bac9be7fc46800e741da32bba13db5fa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 09:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 27 Jan 2023 09:14:57 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.170200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.170:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 77b8102db6e664f5b63ec6ac9ac9cdcf
e6166e7ed4c47f9585b23e4b46395d582d8371c9
39ae21299bf11b741b399b2ed06461cd0c06799b8cae5be5098ba0871e1e8305
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1063
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 27 Jan 2023 09:14:57 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vikodek.com/wp-content/themes/appointment/slick/fonts/slick.ttf
145.239.140.147404 Not Found 22 kB URL HTTP/1.1 vikodek.com/wp-content/themes/appointment/slick/fonts/slick.ttf
IP 145.239.140.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1820), with CRLF, LF line terminators
Hash 8b247d5df7685eca045fe37d47fe2c51
8ae5755bcbda8946b214006d3f4dd4e1c7a97008
7ae7b64f7d1b25e8fd3f6237d033264831ef0c0e1e63779ce15235126c7f22ef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/appointment/slick/fonts/slick.ttf HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://vikodek.com/wp-content/themes/appointment/slick/slick-theme.css
Cookie: pll_language=en; _ga_G1P5EDK078=GS1.1.1674810895.1.0.1674810895.0.0.0; _ga=GA1.2.2146513184.1674810895; _gid=GA1.2.54298808.1674810896; _gat_gtag_UA_61887605_31=1
HTTP/1.1 404 Not Found
Server: nginx
Date: Fri, 27 Jan 2023 09:14:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://vikodek.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
vikodek.com/wp-content/uploads/2018/10/SVT-155B-4.jpg
145.239.140.147200 OK 56 kB URL HTTP/2 vikodek.com/wp-content/uploads/2018/10/SVT-155B-4.jpg
IP 145.239.140.147:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13, height=2763, bps=0, PhotometricIntepretation=RGB, width=4159], baseline, precision 8, 800x531, components 3\012- data
Hash 860c17b3e25ce0ad3c2da200e24bb283
4b144708819117fefff466e98d6b5cf0f7d4ca38
2c49dd1484945779234bad622d6e6b53eea53bb18e810a2a6ca8bd0865675dc3
GET /wp-content/uploads/2018/10/SVT-155B-4.jpg HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://vikodek.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 09:14:58 GMT
content-type: image/jpeg
content-length: 55853
last-modified: Thu, 07 Mar 2019 10:04:29 GMT
cache-control: max-age=31536000, public
expires: Sat, 27 Jan 2024 09:14:58 GMT
etag: "5c80ecad-da2d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
vikodek.com/wp-content/uploads/2018/10/SVT-155C-8.jpg
145.239.140.147200 OK 56 kB URL HTTP/2 vikodek.com/wp-content/uploads/2018/10/SVT-155C-8.jpg
IP 145.239.140.147:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13, height=2848, bps=0, PhotometricIntepretation=RGB, width=4288], baseline, precision 8, 800x531, components 3\012- data
Hash a9337de190403e5582e097d92320ba70
310092c6eb2adef97b5a33cfca10a759dc6e8b69
b2ae3f6546df93316bd3a865f9981aaaf7371773f2223c09dba5397b36597f31
GET /wp-content/uploads/2018/10/SVT-155C-8.jpg HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://vikodek.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 09:14:58 GMT
content-type: image/jpeg
content-length: 55887
last-modified: Thu, 07 Mar 2019 10:20:33 GMT
cache-control: max-age=31536000, public
expires: Sat, 27 Jan 2024 09:14:58 GMT
etag: "5c80f071-da4f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
vikodek.com/wp-content/uploads/2018/10/SVT-125A-4.jpg
145.239.140.147200 OK 52 kB URL HTTP/2 vikodek.com/wp-content/uploads/2018/10/SVT-125A-4.jpg
IP 145.239.140.147:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13, height=2848, bps=0, PhotometricIntepretation=RGB, width=4288], baseline, precision 8, 800x531, components 3\012- data
Hash e650e273dcb0a238ddc88dc358b5c1b6
f2fe66b56d27d77b0e05e53cfae95ccc63074899
6e214bf26bdac49dfb33d01294e68a4bf2d8e212e4bf75cead73d03766325e93
GET /wp-content/uploads/2018/10/SVT-125A-4.jpg HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://vikodek.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 09:14:58 GMT
content-type: image/jpeg
content-length: 52146
last-modified: Thu, 07 Mar 2019 10:23:51 GMT
cache-control: max-age=31536000, public
expires: Sat, 27 Jan 2024 09:14:58 GMT
etag: "5c80f137-cbb2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
vikodek.com/wp-content/uploads/2018/10/SVT-155A.jpg
145.239.140.147200 OK 54 kB URL HTTP/2 vikodek.com/wp-content/uploads/2018/10/SVT-155A.jpg
IP 145.239.140.147:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=13, height=2848, bps=0, PhotometricIntepretation=RGB, width=4288], baseline, precision 8, 800x531, components 3\012- data
Hash d5c5bdc1ec28938c38fd55049331dc5e
0c8c3e712f27d543d7b16565c031e65e746b3af9
798dd96daa8b77eeded1d1a3a2213bc3f8ed92320b4672a3ee7593a349546e4c
GET /wp-content/uploads/2018/10/SVT-155A.jpg HTTP/1.1
Host: vikodek.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://vikodek.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 09:14:58 GMT
content-type: image/jpeg
content-length: 53754
last-modified: Thu, 07 Mar 2019 09:49:20 GMT
cache-control: max-age=31536000, public
expires: Sat, 27 Jan 2024 09:14:58 GMT
etag: "5c80e920-d1fa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2