r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9278
Expires: Tue, 29 Nov 2022 10:46:10 GMT
Date: Tue, 29 Nov 2022 08:11:32 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5072
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:11:32 GMT
Last-Modified: Tue, 29 Nov 2022 06:47:00 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5127
Expires: Tue, 29 Nov 2022 09:36:59 GMT
Date: Tue, 29 Nov 2022 08:11:32 GMT
Connection: keep-alive
lightningstrike.ru/
149.56.25.3200 OK 206 B IP 149.56.25.3:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 1e18c8eccfb782026fca828e43da0cd8
4191f5d4287c32ee605daf7b71154ed148db634e
b0cea81f0bc28c17e2664e43b23fb03bb611a64b066ab4021c6abee059193cd2
GET / HTTP/1.1
Host: lightningstrike.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:11:32 GMT
Content-Type: text/html
Content-Length: 206
Connection: keep-alive
Last-Modified: Wed, 07 Mar 2018 14:53:43 GMT
ETag: "ce-566d3b9b2469e"
Accept-Ranges: bytes
X-Powered-By: PleskLin
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 07:17:52 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3220
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: gGip3cHQrfIDW8kmv7oNwgY/gY6P5BGXrIqxulAUOz6XgfKzxzL7EiBE+6Jp1Z+CAk/Gxhdm4a5Qp97XRacFVw==
x-amz-request-id: 4JT9C8SE2JHKCEY7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 07:42:25 GMT
age: 1747
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:32 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
lightningstrike.ru/favicon.ico
149.56.25.3404 Not Found 209 B URL HTTP/1.1 lightningstrike.ru/favicon.ico
IP 149.56.25.3:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 18ffb59b61525f781cf9251045be575d
bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642
GET /favicon.ico HTTP/1.1
Host: lightningstrike.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lightningstrike.ru/
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 29 Nov 2022 08:11:32 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 209
Connection: keep-alive
www.lightningstrike-usa.com/
149.56.25.3301 Moved Permanently 1 B URL HTTP/1.1 www.lightningstrike-usa.com/
IP 149.56.25.3:0
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.lightningstrike-usa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lightningstrike.ru/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 29 Nov 2022 08:11:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://lightningstrike.global/
X-Cache-Status: MISS
X-Powered-By: PHP/8.0.25, PleskLin
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 08:08:56 GMT
cache-control: public,max-age=3600
age: 157
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
lightningstrike.global/
149.56.25.3301 Moved Permanently 239 B IP 149.56.25.3:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6a2ce7ebccc482f5c7b0cd66b97d839e
23c3b6a4bc4f14d74affc52114fd931e390da207
447d1cca78cd97878f30c5546b317d19451693268d860fe93f7dcee508a8ec56
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://lightningstrike.ru/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 29 Nov 2022 08:11:33 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 239
Connection: keep-alive
Location: https://lightningstrike.global/
X-Cache-Status: STALE
X-Powered-By: PleskLin
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5322
Cache-Control: max-age=95044
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:11:33 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:35:37 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ca85ccdd527d99b5d5ac11e138c5d24
2410aba68482884f0970485087228052c7b7fecb
aa84e9b1db9677ad62e6b10c41315c2aecdd89622eccf8abfc617073f3a66656
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA84E9B1DB9677AD62E6B10C41315C2AECDD89622ECCF8ABFC617073F3A66656"
Last-Modified: Tue, 29 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21585
Expires: Tue, 29 Nov 2022 14:11:18 GMT
Date: Tue, 29 Nov 2022 08:11:33 GMT
Connection: keep-alive
push.services.mozilla.com/
34.212.166.60101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.212.166.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: s4Q3kcclWYPnLtq7iv6O/g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fJ3EFtGcPkj7BoByY5G7iKk+8oE=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:11:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:11:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform-api.sharethis.com/js/sharethis.js
143.204.55.116200 OK 44 kB URL HTTP/2 platform-api.sharethis.com/js/sharethis.js
IP 143.204.55.116:0
Hash 5e23656a8b3322abaf84f1be61bb686e
67acc0ff0b38811aae97ce99bd7a1ddc9be5838c
dcf16ef508f8a5e326565d025c34d1826764b41ee3a24f6f11f0fab69e664edb
GET /js/sharethis.js HTTP/1.1
Host: platform-api.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-encoding: gzip
edge-control: cache-maxage=60m,downstream-ttl=60m
x-frame-options: SAMEORIGIN
date: Tue, 29 Nov 2022 08:11:33 GMT
cache-control: max-age=600, public
etag: W/"30217-4R/x1mcbHYoN8J5L8eO1d9Nv/qY"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AugDe6Zh41m8IYYiFXDkf_aak96fUzsG1-P3kYt8o6_Cl9HlvkaZrA==
age: 73
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a0fe20d41a043db700a84924cd9793f3
c0da481fef6cd00558f6e68b074acb34bef8292f
03caeb65ab9e22f6d6fe0d344d327950d20ee9ed144e2da0e5e062943a03fc56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:11:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6Lc1QJoUAAAAALEfHrnHZM4Jjl0xOhD28Poa7hzb&ver=3.0
142.250.74.164200 OK 553 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6Lc1QJoUAAAAALEfHrnHZM4Jjl0xOhD28Poa7hzb&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 1309ff133720d219cc98090d66a051ed
b96fc5a893e42be16d687d7abdecdb13d348a019
358683c66634ea5ee3021c93111d8621d583880bcbbfadf3ec2ff87a15ea1038
GET /recaptcha/api.js?render=6Lc1QJoUAAAAALEfHrnHZM4Jjl0xOhD28Poa7hzb&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 29 Nov 2022 08:11:33 GMT
date: Tue, 29 Nov 2022 08:11:33 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:11:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps/api/js?v=3&key=AIzaSyC5XfsLQKQnQSTLT5QYJLSi619v9QhZDCU&ver=4.18.0
142.250.74.10200 OK 53 kB URL HTTP/2 maps.googleapis.com/maps/api/js?v=3&key=AIzaSyC5XfsLQKQnQSTLT5QYJLSi619v9QhZDCU&ver=4.18.0
IP 142.250.74.10:0
File type ASCII text, with very long lines (2458)
Hash e1ecbf1639dd5e913abfc8778d3745cd
61cf5e81e7cd7c1dcfb47f380cca379c5233c4bd
6add0005313dc4281280bf02351688024c885e12506f62ed0cefb19a9d2f20e6
GET /maps/api/js?v=3&key=AIzaSyC5XfsLQKQnQSTLT5QYJLSi619v9QhZDCU&ver=4.18.0 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Tue, 29 Nov 2022 08:11:33 GMT
expires: Tue, 29 Nov 2022 08:41:33 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=27
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash abd55ecd24d357a9f02612558f723a90
6a1e6963864f0b53ddc6205d35225e6cf0bcbeec
195fa531e0462be58d5c62ebbe6060e147c94bdb1d38ff46c341c74e0ab2671a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:11:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lightningstrike.global/wp-content/themes/Divi/core/admin/js/common.js?ver=4.18.0
149.56.25.3200 OK 963 B URL HTTP/2 lightningstrike.global/wp-content/themes/Divi/core/admin/js/common.js?ver=4.18.0
IP 149.56.25.3:0
Hash bdcebade9c01d69f7027c154f4f741e9
8511ccf56d242e0c3c662876caea2c20ace0e177
9343f071426d32f93ef50c97008d4129ebcd79a29049f2ecdd5da97876130531
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/js/common.js?ver=4.18.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 11:04:48 GMT
etag: W/"63245850-53f"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/lib/autosize.min.js?ver=1.0
149.56.25.3200 OK 1.7 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/lib/autosize.min.js?ver=1.0
IP 149.56.25.3:0
File type ASCII text, with very long lines (3504)
Hash b08aa09ec08b982eb3e01b5e7dffcb62
e9878e797e9aa1649b7b2790a35a58111e13bb56
349641844a5147bae1ac3ffba97d56fcc2b31ca92f42fe12acd4fde09e10bb8d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/lib/autosize.min.js?ver=1.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Mon, 18 Jan 2021 07:23:16 GMT
etag: W/"60053764-dfa"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/themes/Divi/js/scripts.min.js?ver=4.18.0
149.56.25.3200 OK 188 kB URL HTTP/2 lightningstrike.global/wp-content/themes/Divi/js/scripts.min.js?ver=4.18.0
IP 149.56.25.3:0
File type ASCII text, with very long lines (65467)
Size 188 kB (188478 bytes)
Hash 9c90c6e0a9490668e16845e548d702f6
902155f17aa9c8239bfa4b7b7830050910fb6c00
14cc1593ba79a0189e4771aea0c9b7813d61a71dd168cd5d590e839e114db494
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/js/scripts.min.js?ver=4.18.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 11:04:42 GMT
etag: W/"6324584a-42e58"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.18.0
149.56.25.3200 OK 48 kB URL HTTP/2 lightningstrike.global/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.18.0
IP 149.56.25.3:0
File type ASCII text, with very long lines (7584)
Hash b3ad94ee32d3074f023507e8e89a4e3a
1168208b99531ba5660f84d5329fccf820f521b3
f5248cbef3846c192b793cb73be89fabb419158da943136229b3c0e4121ad448
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=4.18.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 11:04:23 GMT
etag: W/"63245837-1f18"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.18.0
149.56.25.3200 OK 19 kB URL HTTP/2 lightningstrike.global/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.18.0
IP 149.56.25.3:0
Hash 389e702316242bccf54b8618587e52ac
0da854ca9a8c330ba5ba5c8adf9b0e5430178aa9
f6f2860b6cd75d804221fa6223000fec82d75dcaeff123dc6d2cdb2f9aee852e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.18.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 11:04:22 GMT
etag: W/"63245836-2466"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:26:57 GMT
expires: Thu, 23 Nov 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 477877
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/monarch/js/idle-timer.min.js?ver=1.4.14
149.56.25.3200 OK 145 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/monarch/js/idle-timer.min.js?ver=1.4.14
IP 149.56.25.3:0
File type ASCII text, with very long lines (2516)
Size 145 kB (144815 bytes)
Hash bbe5db1ae57ee159d03cb8d6702f3cba
dc0b1b3c645b79d2e17c59bb92508972696d77a6
a5afa4f7117c3aefac898865ccbfeeb3f98b29e27cd4e5dc03a554d6931d9677
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/monarch/js/idle-timer.min.js?ver=1.4.14 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Fri, 02 Apr 2021 07:19:33 GMT
etag: W/"6066c585-a4b"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cardo/v19/wlpxgwjKBV1pqhv93IE.woff2
216.58.207.195200 OK 104 kB URL HTTP/2 fonts.gstatic.com/s/cardo/v19/wlpxgwjKBV1pqhv93IE.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 104420, version 1.0\012- data
Size 104 kB (104420 bytes)
Hash 0b691ab1fc7bc898404f7521ac1b8632
e0a1b903828d5e1e4879142cfcfa1a45226de160
6bb51353eeb80fb31dd26387bbff593843b7c0f87487f502808ac0639fb4b0c4
GET /s/cardo/v19/wlpxgwjKBV1pqhv93IE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 104420
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 14:12:50 GMT
expires: Thu, 23 Nov 2023 14:12:50 GMT
cache-control: public, max-age=31536000
age: 496724
last-modified: Thu, 21 Apr 2022 16:54:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:11:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lightningstrike.global/wp-content/themes/Divi/js/smoothscroll.js?ver=4.18.0
149.56.25.3200 OK 12 kB URL HTTP/2 lightningstrike.global/wp-content/themes/Divi/js/smoothscroll.js?ver=4.18.0
IP 149.56.25.3:0
File type ASCII text, with very long lines (5644)
Hash 798f75c7f96f98d6e5a62577a7238305
38f1f78ed76dcdc2f8bac984c7bf9bce1c9ed266
f57c0f715559c01fa25d8e00673f6ec0783e3a1f5d960c02fb9fbaf8510d69c8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/js/smoothscroll.js?ver=4.18.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 11:04:41 GMT
etag: W/"63245849-1652"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
149.56.25.3200 OK 212 kB URL HTTP/2 lightningstrike.global/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 149.56.25.3:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Size 212 kB (212505 bytes)
Hash 57d63b736ba7b3a7a0b0c9147664fdfb
86f6cbc02a95c70901f7050d1ef24facb355a0e6
f74a24128b903fa6bdd821a5eb1268003c829beecdddbb5f68b859a005e0f5d2
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:34 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 10:58:01 GMT
etag: W/"632456b9-4ac6"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.18.0
149.56.25.3200 OK 12 kB URL HTTP/2 lightningstrike.global/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.18.0
IP 149.56.25.3:0
File type HTML document, ASCII text
Hash 8098b1f47953ab99caee236931be33a4
38d6d710c0d21c9a85b870c0206ff722039cdf42
4b1040f6b15b4df0b146e8eca4068ba9f7ef0bbe57569e6a079ede7109ae7616
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.18.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 11:04:23 GMT
etag: W/"63245837-d15"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/megamenu-pro/assets/public.js?ver=2.2
149.56.25.3200 OK 19 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/megamenu-pro/assets/public.js?ver=2.2
IP 149.56.25.3:0
Hash a751978ae16490c81bc32b8b555cb189
e9152723fd8c917b70770d3b2d8a5424d39a372d
66837553f8c8b95be1d60aca258e2aff08d9ff7f25b1c94e5b3d6e416d33fa32
GET /wp-content/plugins/megamenu-pro/assets/public.js?ver=2.2 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:34 GMT
content-type: application/javascript
last-modified: Mon, 04 Jan 2021 19:43:30 GMT
etag: W/"5ff36fe2-5bb5"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/cf7-material-design.js?ver=1.1
149.56.25.3200 OK 484 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/cf7-material-design.js?ver=1.1
IP 149.56.25.3:0
Size 484 kB (483872 bytes)
Hash 5f5b6cbf3e4146b4f6a5fdd82b4f36f2
6b81600c678daa71fc9bfe1473548e6d6e1725ae
05ba1ee325bacbbef40b7a913412aa4718a9b5d6a26d6093708e06f91cf115c9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/cf7-material-design.js?ver=1.1 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Mon, 18 Jan 2021 07:23:16 GMT
etag: W/"60053764-33a2"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/lib/material-components-web.min.js?ver=1.0
149.56.25.3200 OK 217 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/lib/material-components-web.min.js?ver=1.0
IP 149.56.25.3:0
File type ASCII text, with very long lines (32013)
Size 217 kB (217166 bytes)
Hash 78f78b9377ffc89bbd7e76d9ff36f39c
73b94c3e4fa5b53b60c30a92677da3a4aa29d5a0
ba9f678406c839a0e856971482e6530cb8a25f956e1bb4ee9f16895b35ed0978
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/material-design-for-contact-form-7/v1/assets/js/lib/material-components-web.min.js?ver=1.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Mon, 18 Jan 2021 07:23:16 GMT
etag: W/"60053764-17d7d"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3658
Expires: Tue, 29 Nov 2022 09:12:32 GMT
Date: Tue, 29 Nov 2022 08:11:34 GMT
Connection: keep-alive
lightningstrike.global/wp-content/plugins/megamenu-pro/icons/genericons/genericons/genericons.css?ver=2.2
149.56.25.3200 OK 17 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/megamenu-pro/icons/genericons/genericons/genericons.css?ver=2.2
IP 149.56.25.3:0
File type ASCII text, with very long lines (19226)
Hash cdad58eed896e823fa802eb660e20741
f13fd9e4deb23ae29d48147a2af6740abe254116
59a761edc621290d8d245aa97d03bc64848b6198bfb79110350872a6257239c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/megamenu-pro/icons/genericons/genericons/genericons.css?ver=2.2 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Mon, 04 Jan 2021 19:43:30 GMT
etag: W/"5ff36fe2-6b84"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/et-cache/239/et-divi-dynamic-239.css?ver=1669223550
149.56.25.3200 OK 6.4 kB URL HTTP/2 lightningstrike.global/wp-content/et-cache/239/et-divi-dynamic-239.css?ver=1669223550
IP 149.56.25.3:0
File type ASCII text, with very long lines (14024)
Hash b7b62e27ecdd374dd7d4205cf3727f0a
8bb6ed0097602b4ff37e493221a24c23a6783c1d
15530e98fd437648964723daf8af749d680cda28fb6ca4fdb811f0a0957340f5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/et-cache/239/et-divi-dynamic-239.css?ver=1669223550 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Wed, 23 Nov 2022 17:12:30 GMT
etag: W/"637e547e-bd6d"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4
149.56.25.3200 OK 13 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4
IP 149.56.25.3:0
File type ASCII text, with very long lines (999), with no line terminators
Hash 5c0d790f40a2bb021645000687716f17
d8f995b663ad75bd76535db5b33a212c980d2448
b566a9af0a93fbe4894b5a66462fdb581d1aa218a265096b8662e57b51dedb2a
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:34 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Wed, 19 Oct 2022 16:24:41 GMT
etag: W/"3e7-5eb65a551eb5e"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3
149.56.25.3200 OK 5.2 kB URL HTTP/2 lightningstrike.global/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3
IP 149.56.25.3:0
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash 5f4d5bad70a26ecfe3e8a1b3970b94cf
9449c678c4493b77b6aab3db9e036ef7e12e4e05
c01e6432a31e327f54af4c54c4e7876d77b2076fbcd7728a953933aa23f5f060
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.3 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:34 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Thu, 04 Feb 2021 04:40:49 GMT
etag: W/"38a-5ba7b4ecad062"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPa7l.woff2
216.58.207.195200 OK 38 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPa7l.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 38432, version 1.0\012- data
Hash 5b13a4dce7c3d29ac233f25781c72578
1d1d68d34637e624f6e019bc2bb291d72d666750
7bb3a06ee5e4a590f6e6f95c6fa849e10917e7fab22e3fed8c9bbc8650928272
GET /s/sourcesanspro/v21/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPa7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 38432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:26:32 GMT
expires: Thu, 23 Nov 2023 19:26:32 GMT
cache-control: public, max-age=31536000
age: 477902
last-modified: Wed, 27 Apr 2022 16:19:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
149.56.25.3200 OK 31 kB URL HTTP/2 lightningstrike.global/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 149.56.25.3:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash 56a4d852e6941af58cc362bbe4a81658
3a1d1fc8454137dabcf34656f7e588cb5e0c128d
9743f894766aa72eaa54262210dc2b9efa30689c8f88684bcd06879b4080a01b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Mon, 04 Jan 2021 19:42:12 GMT
etag: W/"5ff36f94-2bf8"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxswXg.woff2
216.58.207.195200 OK 29 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxswXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 28736, version 1.0\012- data
Hash df69d9d7143676a77c4b24f0e265ddd9
4f12f19b29923f2db016720e58941b0f489711fa
556cf7988cef051028c2f3b5c025d2d29152c5e4b5181121c4f4b9b01a4f6746
GET /s/lato/v23/S6u8w4BMUTPHjxswXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 23:25:38 GMT
expires: Sun, 26 Nov 2023 23:25:38 GMT
cache-control: public, max-age=31536000
age: 204356
last-modified: Tue, 26 Apr 2022 15:50:26 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 823e92f62ff7b3c2093828817d7f2866
c501de9eaa581a10b0b5fce40b54bb10f57f7c29
7d89669e23682f167b2fe1eff9edc5939112ec66b6b4e6389ef8aec78ccbdfe5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8921
x-amzn-requestid: 98baf100-c007-4c44-89aa-b9cf55fa3f94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnwFYToAMFoWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852964-1227b5a9100c206e0c64f4b2;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ivu6pzZ6dbt3I4tuFMg4oHcuPVdyNS-F3k_lQdmKoXFkdCfSseAEwQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:55 GMT
age: 37479
etag: "c501de9eaa581a10b0b5fce40b54bb10f57f7c29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/megamenu-pro/icons/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
149.56.25.3206 Partial Content 12 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/megamenu-pro/icons/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 149.56.25.3:0
Hash 944278d864dd10ca4c07cce050f04014
a45af5841f1b5d527f4af265294a9c800cafeed7
6c351c8bd4066fbadb896be5e85ee3aada45ae893162edbf60a58f0b8eb47122
GET /wp-content/plugins/megamenu-pro/icons/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://lightningstrike.global/wp-content/plugins/megamenu-pro/icons/fontawesome/css/font-awesome.min.css?ver=2.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Range: bytes=65536-
If-Range: "5ff36fe2-12d68"
TE: trailers
HTTP/2 206 Partial Content
server: nginx
date: Tue, 29 Nov 2022 08:11:34 GMT
content-type: font/woff2
content-length: 11624
last-modified: Mon, 04 Jan 2021 19:43:30 GMT
etag: "5ff36fe2-12d68"
x-cache-status: MISS
x-powered-by: PleskLin
content-range: bytes 65536-77159/77160
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/maxmegamenu/style.css?ver=6be988
149.56.25.3200 OK 32 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/maxmegamenu/style.css?ver=6be988
IP 149.56.25.3:0
File type ASCII text, with very long lines (977)
Hash 2eee459036276417d084a6afee2637a1
d806bdce02ba28175c2fb8264e68298c159bec47
d56152ce4814880a349fa71fb8b8f9539b3a5ca9da67e454a7cf20fa5c4e14a2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/maxmegamenu/style.css?ver=6be988 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Fri, 25 Jan 2019 09:18:43 GMT
etag: W/"5c4ad473-13d86"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
149.56.25.3200 OK 40 kB URL HTTP/2 lightningstrike.global/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
IP 149.56.25.3:0
File type ASCII text, with very long lines (65266)
Hash 8551c148d4b37e7f41bc4043b49b4816
76cc722b847b3b78842e4b3d88e547abd69bc8fe
9f73451f92488e7bf2d14da8ef49613015c7425016683adeb37f90d17dac5592
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:34 GMT
content-type: application/javascript
last-modified: Mon, 04 Jan 2021 19:42:12 GMT
etag: W/"5ff36f94-267aa"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USewo.woff2
216.58.207.195200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USewo.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 27104, version 1.0\012- data
Hash 48020f9aedbe3a9f79f4f3a140d553e1
0df6e31cf579116eb92f63f269dc6788d8cfee85
2cf3f2c1b4c605ece4c58bf5846625036c3766d9073c80e67ace0d99b0242512
GET /s/lato/v23/S6u9w4BMUTPHh7USewo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27104
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 21:49:00 GMT
expires: Thu, 23 Nov 2023 21:49:00 GMT
cache-control: public, max-age=31536000
age: 469354
last-modified: Tue, 26 Apr 2022 16:52:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2018/05/new_Logo_blue.png
149.56.25.3200 OK 37 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2018/05/new_Logo_blue.png
IP 149.56.25.3:0
File type PNG image data, 502 x 484, 8-bit/color RGBA, non-interlaced\012- data
Hash 2bb715dc8121c0227cc5bc52873a4c5a
fb36ba9c74dcc0fd57f3c35d6c02ea82e7605535
73a699dff8c318b309ce1a9dd07eb5b0cb7aee4fea56d17e0d274ea9ee7456ae
GET /wp-content/uploads/2018/05/new_Logo_blue.png HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:34 GMT
content-type: image/png
content-length: 36600
last-modified: Tue, 29 May 2018 06:36:08 GMT
etag: "5b0cf4d8-8ef8"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/contact-form-7-style/css/frontend.css?ver=3.1.9
149.56.25.3200 OK 36 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/contact-form-7-style/css/frontend.css?ver=3.1.9
IP 149.56.25.3:0
File type ASCII text, with very long lines (40049), with no line terminators
Hash f4b59197b94d9e44bcd35c59f608fb5c
146a0acab30c825f2c253c96ab5b9360696c7095
4c5a2fb517dbc16ae16f73e914f7c12e0b288621e337ac48bd283a72b2434896
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7-style/css/frontend.css?ver=3.1.9 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Thu, 22 Oct 2020 07:21:51 GMT
etag: W/"5f91330f-9c71"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9cd333c474420e235831d96ed881167e
5008d7344dd85ae61a598c17e7baf427def3e25d
2178a96e120661e43d8e8ed0df1fcf500caf4c58db9e1bedaf0706af0a80b286
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3944
x-amzn-requestid: 8a6732c1-72da-4a73-ba51-8533c6a01a9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNmfFgeIAMFjLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6385295c-0c807d93277bfb7f6b13c2ee;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:20 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oW4xFfsPp-Jmf28Uc88iZ2jLgtMRjn2gW0orrJ4K201r6Y6OlHkacQ==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:51 GMT
age: 37483
etag: "5008d7344dd85ae61a598c17e7baf427def3e25d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHvxw.woff2
216.58.207.195200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHvxw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 27596, version 1.0\012- data
Hash f2708ff0a83e2c991def79d8f3e85df4
e879fc305a4a05b4ebc97703177d2c3a02d48ca1
70e6f1c8e6054d0772eb1be2e0765716e9ea71f018affe5f8a9f749447eb87d4
GET /s/lato/v23/S6uyw4BMUTPHvxw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27596
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 04:25:07 GMT
expires: Mon, 27 Nov 2023 04:25:07 GMT
cache-control: public, max-age=31536000
age: 186387
last-modified: Tue, 26 Apr 2022 15:50:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F306bb762-e2a8-4771-9a39-086c46f94b11.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F306bb762-e2a8-4771-9a39-086c46f94b11.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 415b1b1d5a29fc17b4114bb3df1d1c22
600859401c885cc2cdd1f199cccc198eb41d6a04
abfbf4ecf2423736a29686859f6a8f2b77204b48f3f60d208f6d491e80611e7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F306bb762-e2a8-4771-9a39-086c46f94b11.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7549
x-amzn-requestid: bb37235a-8c7d-47fe-abb6-6cc633560165
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP-7lHmsoAMF9lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638311e3-1f2a4abc40119f3e026dc393;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:29:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ds96jURZ0epaXMg2oTUETRQCpHwlVJrl5hTqvpUAWEGVa5rbDve1FA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:42 GMT
age: 37492
etag: "600859401c885cc2cdd1f199cccc198eb41d6a04"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u_w4BMUTPHjxsI9w2PGQ.woff2
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u_w4BMUTPHjxsI9w2PGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 20472, version 1.0\012- data
Hash eef143009314a101ce624352dcdbece9
bee1618e5ab9af0dbf7ef5341351368a4392786b
1f9a0e166f8f588633e791822f2779655295d4069b54d16bae8d19a7bbaca6bb
GET /s/lato/v23/S6u_w4BMUTPHjxsI9w2PGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20472
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 21:28:08 GMT
expires: Mon, 27 Nov 2023 21:28:08 GMT
cache-control: public, max-age=31536000
age: 125006
last-modified: Tue, 26 Apr 2022 16:10:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMo3oHpSoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uGocx-Lv8ieJVvICjnTGQZyzaQzjVdICX2RZaNyBTQvUKeIcNxaCJQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:49:50 GMT
age: 12104
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1669223483
149.56.25.3200 OK 128 kB URL HTTP/2 lightningstrike.global/wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1669223483
IP 149.56.25.3:0
File type ASCII text, with very long lines (10160), with no line terminators
Size 128 kB (127664 bytes)
Hash 887e427f951bfe6ac397e0fcfa4b49f5
8d2bccdc124c3e13e534947fa1c9b663382cf30f
540decdee86f6a591697f452e7fe16d51ed4e8c30b74d6d742b3a5708d3f89db
GET /wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1669223483 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Wed, 23 Nov 2022 17:11:23 GMT
etag: W/"637e543b-27b0"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oldstandardtt/v18/MwQrbh3o1vLImiwAVvYawgcf2eVWEX-dSQ.woff2
216.58.207.195200 OK 69 kB URL HTTP/2 fonts.gstatic.com/s/oldstandardtt/v18/MwQrbh3o1vLImiwAVvYawgcf2eVWEX-dSQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 68720, version 1.0\012- data
Hash baf15ae662149c00b3656232adb4481c
d447669eda9e7de71aae871b3c5b19e4d5838e61
c3b474ee484dd37bfb35500cbb2bd386daa6587c2d938434a4399e90c65a2623
GET /s/oldstandardtt/v18/MwQrbh3o1vLImiwAVvYawgcf2eVWEX-dSQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 68720
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:22:19 GMT
expires: Thu, 23 Nov 2023 18:22:19 GMT
cache-control: public, max-age=31536000
age: 481755
last-modified: Mon, 09 May 2022 19:21:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oldstandardtt/v18/MwQubh3o1vLImiwAVvYawgcf2eVuqA.woff2
216.58.207.195200 OK 68 kB URL HTTP/2 fonts.gstatic.com/s/oldstandardtt/v18/MwQubh3o1vLImiwAVvYawgcf2eVuqA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 67736, version 1.0\012- data
Hash 8d1794d9fccef2371739d339c8a0a3fb
a2d4207d2411594ddc284bf450ce3d208b536b25
d94004749b6f46fdcc0bd8cc7a1091fe67ff4bdd9b43bde5c755f442e4416bf7
GET /s/oldstandardtt/v18/MwQubh3o1vLImiwAVvYawgcf2eVuqA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 67736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 08:17:55 GMT
expires: Thu, 23 Nov 2023 08:17:55 GMT
cache-control: public, max-age=31536000
age: 518019
last-modified: Mon, 09 May 2022 19:31:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2018/10/textured-background-4.png
149.56.25.3200 OK 76 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2018/10/textured-background-4.png
IP 149.56.25.3:0
File type PNG image data, 1980 x 1000, 8-bit/color RGBA, non-interlaced\012- data
Hash 7257ae536aa09db4fd6ccddd22d05166
1fc63abc1ea2f215a5adea09b111eb01cd7211f1
b7121db3b486372a9da3236565b81e8189af0a6f917d2c678f6dbee7f5e4767c
GET /wp-content/uploads/2018/10/textured-background-4.png HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:34 GMT
content-type: image/png
content-length: 75512
last-modified: Wed, 03 Oct 2018 10:38:04 GMT
etag: "5bb49c0c-126f8"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/css/dashicons.min.css?ver=6.0.3
149.56.25.3200 OK 74 kB URL HTTP/2 lightningstrike.global/wp-includes/css/dashicons.min.css?ver=6.0.3
IP 149.56.25.3:0
File type ASCII text, with very long lines (58981)
Hash e44b78c692f914f00c1db821942ba8ef
5c3688bd759d411d3eb35d8f0022e5e696e6cda6
a0eb7388b25cdb85ea8811717f5a8b39724d6b8c40a4e9dafaf741f11b5b651a
GET /wp-includes/css/dashicons.min.css?ver=6.0.3 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Thu, 15 Apr 2021 04:51:04 GMT
etag: W/"6077c638-e688"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/10/black_bg.png
149.56.25.3200 OK 17 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/10/black_bg.png
IP 149.56.25.3:0
Hash 4bdd91f30bdb9557f400812527343ef3
a087f58d9fbadce444ffcb389a4defbaaad683a1
81edd8a135b6c6bb882e7f7ee69194ae3081f32d65325c9b71945259cd30a01f
GET /wp-content/uploads/2017/10/black_bg.png HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:34 GMT
content-type: image/png
content-length: 5631
last-modified: Wed, 07 Mar 2018 17:29:34 GMT
etag: "5aa0217e-15ff"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/06/AdobeStock_54287288.jpg
149.56.25.3200 OK 234 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/06/AdobeStock_54287288.jpg
IP 149.56.25.3:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=15, height=2696, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=4288], progressive, precision 8, 1920x800, components 3\012- data
Size 234 kB (233859 bytes)
Hash a9fce0650051934f9b30d4fac29b9c06
fa665faea1fc9dd25f3e57811181161c500157a9
4073940854eaf580485a8fcfcb85c56c91fd4355d470c53ed41e62c1d3c7714d
GET /wp-content/uploads/2017/06/AdobeStock_54287288.jpg HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:35 GMT
content-type: image/jpeg
content-length: 233859
last-modified: Wed, 07 Mar 2018 17:29:36 GMT
etag: "5aa02180-39183"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/06/AdobeStock_83394666-2.jpg
149.56.25.3200 OK 200 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/06/AdobeStock_83394666-2.jpg
IP 149.56.25.3:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=18, height=3744, bps=230, PhotometricIntepretation=RGB, description=Silhouette of man on top of mountain sunlight and white cloud. Conceptual scene., manufacturer=Canon, model=Canon EOS 5D Mark II, orientation=upper-left, width=5616], progressive, precision 8, 1920x1280, components 3\012- data
Size 200 kB (199664 bytes)
Hash d5ccbfb26141ad462ce607ed2d8a7748
20ad88a9523cb30946f165b74a89123d12d940ae
f91968da89a7c3a045812f361fef2db59723e7cec92ce4806f7e37d852d8dc60
GET /wp-content/uploads/2017/06/AdobeStock_83394666-2.jpg HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:35 GMT
content-type: image/jpeg
content-length: 199664
last-modified: Wed, 07 Mar 2018 17:29:36 GMT
etag: "5aa02180-30bf0"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:11:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lightningstrike.global/wp-content/plugins/monarch/css/style.css?ver=1.4.14
149.56.25.3200 OK 12 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/monarch/css/style.css?ver=1.4.14
IP 149.56.25.3:0
File type Unicode text, UTF-8 text, with very long lines (718)
Hash bb538a334f3c19a4b9e58f179a41f67c
defa76e089494e1266cc5b049060df3e1ab1feb5
0fc933b0207ec1da7b76ee58c6efd59fa1e1c18fce1b40dbcc85fc5e4053abe3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/monarch/css/style.css?ver=1.4.14 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Fri, 02 Apr 2021 07:19:33 GMT
etag: W/"6066c585-1c56d"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.239.36.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.36.178:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 29 Nov 2022 06:41:08 GMT
expires: Tue, 29 Nov 2022 08:41:08 GMT
cache-control: public, max-age=7200
age: 5427
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
142.250.74.163200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 21:26:04 GMT
expires: Sun, 26 Nov 2023 21:26:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 211531
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/megamenu-pro/icons/fontawesome/css/font-awesome.min.css?ver=2.2
149.56.25.3200 OK 27 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/megamenu-pro/icons/fontawesome/css/font-awesome.min.css?ver=2.2
IP 149.56.25.3:0
File type ASCII text, with very long lines (30837)
Hash 04228663a6cc2eb3563e02e31421d5c7
c9e6ffc35f8c897695ea9b65c31def1e81bd4de2
f302eaf5d685db4157c33e359e2e6e3f380bf122658f940e60115d066e05ef9a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/megamenu-pro/icons/fontawesome/css/font-awesome.min.css?ver=2.2 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Mon, 04 Jan 2021 19:43:30 GMT
etag: W/"5ff36fe2-7918"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Source+Sans+Pro%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&subset=latin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cgreek-ext%2Cgreek%2Cvietnamese&ver=6.0.3
142.250.74.10200 OK 829 B URL HTTP/2 fonts.googleapis.com/css?family=Source+Sans+Pro%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&subset=latin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cgreek-ext%2Cgreek%2Cvietnamese&ver=6.0.3
IP 142.250.74.10:0
Hash 1c4d512bb42e10c365ee1bd107ce0c80
384a485f196e86ca8749f762536b1f1a70536df0
a4e7529e4579ea6afb6116e9d6f53340d9b5bbc2501fb1525e918b8fe42ed8e1
GET /css?family=Source+Sans+Pro%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&subset=latin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cgreek-ext%2Cgreek%2Cvietnamese&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 08:11:33 GMT
date: Tue, 29 Nov 2022 08:11:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:11:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:11:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash d1bdc744ef4b94d7f7298793dacc31d8
e340942c8c919edb6cd5852a64c8380391fcb6a5
b35af38438572158866be21146c9571ac4be9b44cf1fc9f4af3c60cba5a87d7d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=127478
Date: Tue, 29 Nov 2022 08:11:35 GMT
Etag: "6384fa31-1d7"
Expires: Wed, 30 Nov 2022 19:36:13 GMT
Last-Modified: Mon, 28 Nov 2022 18:13:05 GMT
Server: ECS (nyb/1D31)
X-Cache: Miss from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6Uq6uLghaR_qbiYnlDIyxNw5PaKIIP3OMcP-YJg5sROleG1eZWCV_w==
Age: 4988
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash d1bdc744ef4b94d7f7298793dacc31d8
e340942c8c919edb6cd5852a64c8380391fcb6a5
b35af38438572158866be21146c9571ac4be9b44cf1fc9f4af3c60cba5a87d7d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128690
Date: Tue, 29 Nov 2022 08:11:35 GMT
Etag: "6384fa31-1d7"
Expires: Wed, 30 Nov 2022 19:56:25 GMT
Last-Modified: Mon, 28 Nov 2022 18:13:05 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ycuVgpXbyyYTQT-bz_zvV7fuuP3S90jt7hPUnkLXhCvGt5EutLgW2g==
Age: 6200
l.sharethis.com/log?event=ibl&title=&url=http%3A%2F%2Flightningstrike.ru%2F&fcmp=false&fcmpv2=false&has_segmentio=false&product=ga&publisher=59e5ae670b49600011e10f1b&refDomain=lightningstrike.ru&refQuery=&source=sharethis.js&ts=1669709493289&sop=true&cms=unknown&description=
35.157.109.18204 No Content 0 B URL HTTP/1.1 l.sharethis.com/log?event=ibl&title=&url=http%3A%2F%2Flightningstrike.ru%2F&fcmp=false&fcmpv2=false&has_segmentio=false&product=ga&publisher=59e5ae670b49600011e10f1b&refDomain=lightningstrike.ru&refQuery=&source=sharethis.js&ts=1669709493289&sop=true&cms=unknown&description=
IP 35.157.109.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /log?event=ibl&title=&url=http%3A%2F%2Flightningstrike.ru%2F&fcmp=false&fcmpv2=false&has_segmentio=false&product=ga&publisher=59e5ae670b49600011e10f1b&refDomain=lightningstrike.ru&refQuery=&source=sharethis.js&ts=1669709493289&sop=true&cms=unknown&description= HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 29 Nov 2022 08:11:35 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
l.sharethis.com/pview?event=pview&hostname=lightningstrike.global&location=%2F&product=ga&url=https%3A%2F%2Flightningstrike.global%2F&source=googleanalytics-wordpress&fcmp=false&fcmpv2=false&has_segmentio=false&title=Home%20%7C%20Lightning%20Strike%20Global&refDomain=lightningstrike.ru&cms=unknown&publisher=59e5ae670b49600011e10f1b&sop=true&version=st_sop.js&lang=en
35.157.109.18204 No Content 0 B URL HTTP/1.1 l.sharethis.com/pview?event=pview&hostname=lightningstrike.global&location=%2F&product=ga&url=https%3A%2F%2Flightningstrike.global%2F&source=googleanalytics-wordpress&fcmp=false&fcmpv2=false&has_segmentio=false&title=Home%20%7C%20Lightning%20Strike%20Global&refDomain=lightningstrike.ru&cms=unknown&publisher=59e5ae670b49600011e10f1b&sop=true&version=st_sop.js&lang=en
IP 35.157.109.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pview?event=pview&hostname=lightningstrike.global&location=%2F&product=ga&url=https%3A%2F%2Flightningstrike.global%2F&source=googleanalytics-wordpress&fcmp=false&fcmpv2=false&has_segmentio=false&title=Home%20%7C%20Lightning%20Strike%20Global&refDomain=lightningstrike.ru&cms=unknown&publisher=59e5ae670b49600011e10f1b&sop=true&version=st_sop.js&lang=en HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lightningstrike.global
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: https://lightningstrike.global
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 29 Nov 2022 08:11:35 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
buttons-config.sharethis.com/js/59e5ae670b49600011e10f1b.js
54.230.111.117200 OK 30 B URL HTTP/2 buttons-config.sharethis.com/js/59e5ae670b49600011e10f1b.js
IP 54.230.111.117:0
File type ASCII text, with no line terminators
Hash e6e1643313740711175f51662a65b42f
c3fc7a03fea3138a1497dab12d5b4e40fd4aeaef
2c29defe29114d0e8b948e78d50ebb281035df53a9167089deb1e77e801bbd2f
GET /js/59e5ae670b49600011e10f1b.js HTTP/1.1
Host: buttons-config.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 30
date: Tue, 29 Nov 2022 08:11:37 GMT
last-modified: Tue, 17 Oct 2017 07:16:56 GMT
etag: "e6e1643313740711175f51662a65b42f"
cache-control: max-age=60,public
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: m5volI2NZF92cNXc02SqgShbrxiY1vm4H-pJsQgc7SsLb-lsm2LVIw==
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/06/Logo_blue.png
149.56.25.3200 OK 49 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/06/Logo_blue.png
IP 149.56.25.3:0
File type PNG image data, 250 x 239, 8-bit/color RGBA, non-interlaced\012- data
Hash ca1478ea253701c56f4f099748475855
181298c4ebf220241e3a4cd262421b4dbfd0dd00
156601a89385435d70da2dedbcade3a49ebac2b61973b233f80bf133b865f41e
GET /wp-content/uploads/2017/06/Logo_blue.png HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:36 GMT
content-type: image/png
content-length: 49353
last-modified: Wed, 07 Mar 2018 17:29:35 GMT
etag: "5aa0217f-c0c9"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2018/10/3-1-1080x627.jpg
149.56.25.3200 OK 132 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2018/10/3-1-1080x627.jpg
IP 149.56.25.3:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1080x627, components 3\012- data
Size 132 kB (132358 bytes)
Hash b31fb87d69dabb720fba3206d7f7e45b
24679167bf07695f8896c4191cfbd5bcbda704c1
e43d9a3c3dd08bc06f76bac3f9d77f34c82ab94bfb922db2f2841fdab430ec7a
GET /wp-content/uploads/2018/10/3-1-1080x627.jpg HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:36 GMT
content-type: image/jpeg
content-length: 132358
last-modified: Thu, 28 Mar 2019 07:41:55 GMT
etag: "5c9c7ac3-20506"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2018/10/IMG_2470-1.jpg
149.56.25.3200 OK 85 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2018/10/IMG_2470-1.jpg
IP 149.56.25.3:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=13, height=1280, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=960], progressive, precision 8, 800x600, components 3\012- data
Hash 6df467a2c72ebf973e4dad4d54e918fd
252ccf6f535dfe3aaa7952188d98e3326bc86611
c6cb1217fecacf7b9e18e015f7e9414e2206ff09b2f10d65935b5034655e710c
GET /wp-content/uploads/2018/10/IMG_2470-1.jpg HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:36 GMT
content-type: image/jpeg
content-length: 84794
last-modified: Tue, 02 Oct 2018 12:09:31 GMT
etag: "5bb35ffb-14b3a"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/07/des.jpg
149.56.25.3200 OK 64 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/07/des.jpg
IP 149.56.25.3:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=17, height=3456, bps=218, PhotometricIntepretation=RGB, manufacturer=Canon, model=Canon EOS 60D, orientation=upper-left, width=5184], progressive, precision 8, 1920x600, components 3\012- data
Hash c01b2e3747637a0b9ddd6c003cbddd6a
72ffdd893260c67d4a1fbd3500ad235cac438e78
2f6ecceb851dc8f9d7072d1022673e920fafc52ee21d1516e519cb94eb35f0f3
GET /wp-content/uploads/2017/07/des.jpg HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:36 GMT
content-type: image/jpeg
content-length: 64532
last-modified: Wed, 07 Mar 2018 17:29:34 GMT
etag: "5aa0217e-fc14"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/07/Optim..jpg
149.56.25.3200 OK 264 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/07/Optim..jpg
IP 149.56.25.3:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=19, height=3222, bps=0, PhotometricIntepretation=RGB, description=Optimization on Pocket Watch Face with Close View of Watch Mechanism. Time Concept. Vintage Effect., orientation=upper-left, width=5733], progressive, precision 8, 1920x600, components 3\012- data
Size 264 kB (264394 bytes)
Hash b618a421fad80055bf1d0cc254b64f91
da2daf9a6547f195dddb9546f6b8ee1d119db9e5
0f8ac488cdd321251058c41ac2e7f8a19184b800670a192ecfc4b45894f8a8cf
GET /wp-content/uploads/2017/07/Optim..jpg HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:36 GMT
content-type: image/jpeg
content-length: 264394
last-modified: Wed, 07 Mar 2018 17:29:34 GMT
etag: "5aa0217e-408ca"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/themes/Divi/includes/builder/images/marker.png
149.56.25.3200 OK 1.9 kB URL HTTP/2 lightningstrike.global/wp-content/themes/Divi/includes/builder/images/marker.png
IP 149.56.25.3:0
File type PNG image data, 46 x 43, 8-bit/color RGBA, non-interlaced\012- data
Hash 68f127f04a872a0b03556c49bade901d
178a6a53ab8b9eec4795030179a5327dfe24ff6e
3a30593166f6143d8c589e8a4f9d14dc6caab7811703e97b36cb328c68abb0fc
GET /wp-content/themes/Divi/includes/builder/images/marker.png HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:36 GMT
content-type: image/png
content-length: 1940
last-modified: Fri, 16 Sep 2022 11:04:17 GMT
etag: "63245831-794"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
149.56.25.3200 OK 37 kB URL HTTP/2 lightningstrike.global/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 149.56.25.3:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 6898a9ce0243f97806483f82cabad1ac
4ce821821def50ca615851569e0eb237ceaae27a
5973f571bb65c5ef2c8f0bd22b45765e304f6dfd1eeeb415a4d95e0229f7a03b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:34 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 10:58:00 GMT
etag: W/"632456b8-194b"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/07/butterflyinhandongrass.jpg
149.56.25.3200 OK 129 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/07/butterflyinhandongrass.jpg
IP 149.56.25.3:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=17, height=4918, bps=218, PhotometricIntepretation=RGB, manufacturer=Canon, model=Canon EOS 5D Mark III, orientation=upper-left, width=5760], progressive, precision 8, 1920x600, components 3\012- data
Size 129 kB (129417 bytes)
Hash 51d46254e3ccd93591555b2db51d1bbd
5b2c7857920814bebd26d7526e4ac44a4800c1b9
0ee64b682ff006936cef194e6eecfadfe43ae44bf683fc6272d1fb9a277df3a9
GET /wp-content/uploads/2017/07/butterflyinhandongrass.jpg HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:37 GMT
content-type: image/jpeg
content-length: 129417
last-modified: Wed, 07 Mar 2018 17:29:34 GMT
etag: "5aa0217e-1f989"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/uploads/2017/12/IP_Logo_blue-150x150.png
149.56.25.3200 OK 13 kB URL HTTP/2 lightningstrike.global/wp-content/uploads/2017/12/IP_Logo_blue-150x150.png
IP 149.56.25.3:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 48dd8b5b3ba84ae980b4385713ae0e55
0993043c4abe02c7f35be1272bc198f905d18e31
77f778d547a89361497037a335134e5838c44fb6f091f5bca567bb55496a6339
GET /wp-content/uploads/2017/12/IP_Logo_blue-150x150.png HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:37 GMT
content-type: image/png
content-length: 12824
last-modified: Wed, 07 Mar 2018 17:29:30 GMT
etag: "5aa0217a-3218"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-700.woff2
149.56.25.3200 OK 19 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-700.woff2
IP 149.56.25.3:0
File type Web Open Font Format (Version 2), TrueType, length 18912, version 1.0\012- data
Hash f937643e9e2d39b98a3ae9ada057e740
fe2534a5e2bf00d090f50ba03a536a0e76e8e9a6
cdc28355b0b7217392395460dd7dfbc65a4cf0822c986a7533f4ca7434799e53
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-700.woff2 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main.css?ver=4.9.4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:37 GMT
content-type: font/woff2
content-length: 18912
last-modified: Fri, 11 Nov 2022 16:29:45 GMT
etag: "636e7879-49e0"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-regular.woff2
149.56.25.3200 OK 19 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-regular.woff2
IP 149.56.25.3:0
File type Web Open Font Format (Version 2), TrueType, length 18796, version 1.0\012- data
Hash e5ab24fb2b666576b0f199e25e1b5c09
cf8cfb1025573f69d37688b617931ff10da62fd8
623b62596e07df1fbf3a9fc0219c238e373bec6e55349826b0315b50ed2a7a7d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gdpr-cookie-compliance/dist/fonts/nunito-v8-latin-regular.woff2 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main.css?ver=4.9.4
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:37 GMT
content-type: font/woff2
content-length: 18796
last-modified: Fri, 11 Nov 2022 16:29:44 GMT
etag: "636e7878-496c"
x-cache-status: MISS
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400,500
142.250.74.10200 OK 11 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,500
IP 142.250.74.10:0
Hash 6904bc0c924fe7c941d6066c8818f78b
7676db1054b62da286509db93a82ffd1b6c8e733
b37b57a2595616cc6ec1e259395e98e4a07ea15dc765e50b6ea13c33268f4995
GET /css?family=Roboto:400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 08:11:33 GMT
date: Tue, 29 Nov 2022 08:11:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/material-design-for-contact-form-7/v1/assets/css/cf7-material-design.css?ver=2.0
149.56.25.3200 OK 249 kB URL HTTP/2 lightningstrike.global/wp-content/plugins/material-design-for-contact-form-7/v1/assets/css/cf7-material-design.css?ver=2.0
IP 149.56.25.3:0
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (490)
Size 249 kB (249041 bytes)
Hash 7b73c69f264eb66e75585291f388ebe8
91d3171435fbf5fb3573cfbeb37c3dfdf07c776c
4e0d5741e1571a22dd829bc3e344e0ac0f875f43312f776201a62767000bc29a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/material-design-for-contact-form-7/v1/assets/css/cf7-material-design.css?ver=2.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Mon, 18 Jan 2021 07:23:16 GMT
etag: W/"60053764-24b2a"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-json/contact-form-7/v1/contact-forms/1529/feedback/schema
149.56.25.3200 OK 3.1 kB URL HTTP/2 lightningstrike.global/wp-json/contact-form-7/v1/contact-forms/1529/feedback/schema
IP 149.56.25.3:0
File type JSON data\012- , ASCII text, with very long lines (812), with no line terminators
Hash 332fb1bb1a9a4c7ba1eb822cc070f13b
163db72cb7d47ac9d7e47c52b27a289a024d3905
2fec2d49c109c2bc9a557b64c5586944547cac06ee08255286abb3ebcdf0abeb
Analyzer Verdict Alert fortinet Phishing
GET /wp-json/contact-form-7/v1/contact-forms/1529/feedback/schema HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lightningstrike.global/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:38 GMT
content-type: application/json; charset=UTF-8
x-robots-tag: noindex
link: <https://lightningstrike.global/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
vary: Origin
x-cache-status: MISS
x-powered-by: PHP/8.0.25, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-json/contact-form-7/v1/contact-forms/2129/feedback/schema
149.56.25.3200 OK 2.5 kB URL HTTP/2 lightningstrike.global/wp-json/contact-form-7/v1/contact-forms/2129/feedback/schema
IP 149.56.25.3:0
File type JSON data\012- , ASCII text, with very long lines (384), with no line terminators
Hash e126b216ab43dda36cfa3e0f54df9ca6
890281bc79459a87616898bc37f7ca17d3de5892
e64840aa53ca87024c2ce03cea57b89925c931b1a6b930e4e145f2785a20ff9f
Analyzer Verdict Alert fortinet Phishing
GET /wp-json/contact-form-7/v1/contact-forms/2129/feedback/schema HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lightningstrike.global/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:38 GMT
content-type: application/json; charset=UTF-8
x-robots-tag: noindex
link: <https://lightningstrike.global/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
vary: Origin
x-cache-status: MISS
x-powered-by: PHP/8.0.25, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/scripts/main.js?ver=4.9.4
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/scripts/main.js?ver=4.9.4
IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gdpr-cookie-compliance/dist/scripts/main.js?ver=4.9.4 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:34 GMT
content-type: application/javascript
last-modified: Fri, 11 Nov 2022 16:29:45 GMT
etag: W/"636e7879-e692"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700
IP 142.250.74.10:0
GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 08:11:33 GMT
date: Tue, 29 Nov 2022 08:11:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=3.0
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=3.0
IP 149.56.25.3:0
GET /wp-content/plugins/megamenu/js/maxmegamenu.js?ver=3.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:34 GMT
content-type: application/javascript
last-modified: Mon, 17 Oct 2022 10:40:56 GMT
etag: W/"634d3138-7741"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3
IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.3 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:34 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 10:58:02 GMT
etag: W/"632456ba-4a7"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.18.0
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.18.0
IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.18.0 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 11:04:23 GMT
etag: W/"63245837-217e"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/js/hoverIntent.min.js?ver=1.10.2
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 149.56.25.3:0
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:34 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 10:58:01 GMT
etag: W/"632456b9-5db"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main.css?ver=4.9.4
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main.css?ver=4.9.4
IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gdpr-cookie-compliance/dist/styles/gdpr-main.css?ver=4.9.4 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Fri, 11 Nov 2022 16:29:44 GMT
etag: W/"636e7878-143d1"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/
149.56.25.3200 OK 0 B IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://lightningstrike.ru/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: frame
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: text/html; charset=UTF-8
link: <https://lightningstrike.global/wp-json/>; rel="https://api.w.org/", <https://lightningstrike.global/wp-json/wp/v2/pages/239>; rel="alternate"; type="application/json", <https://lightningstrike.global/>; rel=shortlink
x-cache-status: STALE
x-powered-by: PHP/8.0.25, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/contact-form-7-style/js/frontend-min.js?ver=3.1.9
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/plugins/contact-form-7-style/js/frontend-min.js?ver=3.1.9
IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7-style/js/frontend-min.js?ver=3.1.9 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Thu, 22 Oct 2020 07:21:51 GMT
etag: W/"5f91330f-660"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 16:24:41 GMT
etag: W/"635024c9-26d1"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/monarch/js/custom.js?ver=1.4.14
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/plugins/monarch/js/custom.js?ver=1.4.14
IP 149.56.25.3:0
GET /wp-content/plugins/monarch/js/custom.js?ver=1.4.14 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Fri, 02 Apr 2021 07:19:33 GMT
etag: W/"6066c585-6855"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 149.56.25.3:0
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 16:24:41 GMT
etag: W/"635024c9-aab"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-content/plugins/contact-form-7-style/css/responsive.css?ver=3.1.9
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-content/plugins/contact-form-7-style/css/responsive.css?ver=3.1.9
IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7-style/css/responsive.css?ver=3.1.9 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Thu, 22 Oct 2020 07:21:51 GMT
etag: W/"5f91330f-1fed"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3
IP 149.56.25.3:0
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.3 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: text/css
last-modified: Tue, 14 Jan 2020 07:14:45 GMT
etag: W/"5e1d6a65-105a"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
lightningstrike.global/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
149.56.25.3200 OK 0 B URL HTTP/2 lightningstrike.global/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 149.56.25.3:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: lightningstrike.global
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lightningstrike.global/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:11:33 GMT
content-type: application/javascript
last-modified: Mon, 04 Jan 2021 19:42:11 GMT
etag: W/"5ff36f93-2bd8"
x-cache-status: MISS
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2