cannabisgasshop.com/
45.148.121.166301 Moved Permanently 0 B IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
X-Powered-By: PHP/7.4.20
Content-Type: text/html; charset=UTF-8
X-Redirect-By: WordPress
Location: https://cannabisgasshop.com/
X-LiteSpeed-Cache: hit
Content-Length: 0
Date: Wed, 14 Dec 2022 04:31:04 GMT
Vary: User-Agent
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 358212db02ecc7c1fa088906bd2dba14
091a0688da9de609d97349215ba9e452dfc346a4
7486e512e4de8172ac07f07f47da3a96dd3ac7cb054b335f3e4929261440e672
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7486E512E4DE8172AC07F07F47DA3A96DD3AC7CB054B335F3E4929261440E672"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7843
Expires: Wed, 14 Dec 2022 06:41:47 GMT
Date: Wed, 14 Dec 2022 04:31:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 555d8608594803d49eeb9581c6b70702
d01e0201e0ba0cf751ef97226620338a853bc635
2885cdac311a30161a8ac9ef8e54c788afafd4f86ed197a651fc6d8bda077908
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2885CDAC311A30161A8AC9EF8E54C788AFAFD4F86ED197A651FC6D8BDA077908"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2463
Expires: Wed, 14 Dec 2022 05:12:07 GMT
Date: Wed, 14 Dec 2022 04:31:04 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 14 Dec 2022 03:33:48 GMT
content-type: application/json
age: 3436
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d29881eeb0456eff8cf415ad2ce64ba0
e3cfdd5f56ff88066257ec8f4726f53e3a733bd3
2cd90072f113163f976ddb8bc7017884efd3f764e7e8961b04e3ba5ec0a17d85
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CD90072F113163F976DDB8BC7017884EFD3F764E7E8961B04E3BA5EC0A17D85"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5856
Expires: Wed, 14 Dec 2022 06:08:40 GMT
Date: Wed, 14 Dec 2022 04:31:04 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /x5YHIK4cyh31bDTXrjwVBlnDgvkhbsdNK4FqrOaDDqWBLMonRZr/sU7kReUuGET1NkWAT+Dj9k=
x-amz-request-id: 0X97VECPHR65WXZM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 14 Dec 2022 03:52:11 GMT
age: 2333
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 14 Dec 2022 04:31:04 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/woocommerce-payments/vendor/woocommerce/subscriptions-core/build/index.css?ver=3.1.6
45.148.121.166200 OK 326 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/woocommerce-payments/vendor/woocommerce/subscriptions-core/build/index.css?ver=3.1.6
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (1411)
Hash e6024e94f2cdf7ff1da4c708978b252b
b394f60cab9b6c954550837e9c458444bb76ab21
bc6f40d1dc3dcb37a83cfae77f5612830ed9790683dc91f22d943d9180713d2e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce-payments/vendor/woocommerce/subscriptions-core/build/index.css?ver=3.1.6 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:39:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 326
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
45.148.121.166200 OK 12 kB URL HTTP/2 cannabisgasshop.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (47826)
Hash c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 18:28:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11616
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.5.1
45.148.121.166200 OK 1.8 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.5.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (10435), with no line terminators
Hash f7237084ac82ea6a4f5bf1448c3a2148
60457635a5e809ee1199c61090d8e33b91e8e1f2
18a1cb7f08c1ace52a79f46d73461ed03bf8cf5c9e8a3687eacc3e04f08e7a09
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.5.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:39:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1754
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.5.1
45.148.121.166200 OK 22 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.5.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 66c0d8e7043ce32a0a22feffb13557ff
5c31173df12f7ac740c078a1b56f8e64dbb789aa
44705113051545459aedc2d4463156019b3119ed6c278dc31d7d5f4a6a66d9cd
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.5.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:39:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 22437
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-includes/css/classic-themes.min.css?ver=1
45.148.121.166200 OK 144 B URL HTTP/2 cannabisgasshop.com/wp-includes/css/classic-themes.min.css?ver=1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Hash fcbd239f30d9a6dd1f3637f291143d37
2871bf7d98af3f43e42f7fa32808048e7134fabf
c2f98e9d71f782b7a3266cd337c61ae6c8dcbb7203669c07852aa2ab65ab6144
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 18:28:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 144
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
45.148.121.166200 OK 848 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 17:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 848
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/dispensary-age-verification/public/css/dispensary-age-verification-public.min.css?ver=2.9.0
45.148.121.166200 OK 653 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/dispensary-age-verification/public/css/dispensary-age-verification-public.min.css?ver=2.9.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (2200), with no line terminators
Hash b9c82e69767512cdf632714829856d3c
c2faad3cb8087b8f33467957d18b9d35a1e053f7
32215534474a3fbaadce3af5c689d351dedf42b626f0406a809ad034e48b072d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/dispensary-age-verification/public/css/dispensary-age-verification-public.min.css?ver=2.9.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:37:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 653
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/themes/ekko/core/assets/css/bootstrap.min.css?ver=1.7
45.148.121.166200 OK 17 kB URL HTTP/2 cannabisgasshop.com/wp-content/themes/ekko/core/assets/css/bootstrap.min.css?ver=1.7
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type assembler source, ASCII text, with very long lines (540)
Hash 41199831edd354348885339bbd704951
446d9bb8b79a71cf59f8595549960288516ea6fa
9c09060ebbc1dd5c3af772192d58f0652853e4da191ecb35eae03959db3c9fe2
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ekko/core/assets/css/bootstrap.min.css?ver=1.7 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 17131
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/themes/ekko/style.css?ver=1.7
45.148.121.166200 OK 37 kB URL HTTP/2 cannabisgasshop.com/wp-content/themes/ekko/style.css?ver=1.7
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Hash 99fb064a38be5b51b4df779aff20c5f9
2bf684930b3da035f8d3eb9cc4aa462175beb30a
cd3b9aede55fd3a1ad4bee897f6c4064ed64d7634215d2a3952850b437c967b6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ekko/style.css?ver=1.7 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 37332
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/css/photoswipe.css?ver=6.1.1
45.148.121.166200 OK 1.1 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/css/photoswipe.css?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Hash ec6c449e242b34180779e0aed6f658f8
0d55eb72f36bbd7ac01b30768635579d8b327f46
4979138a8dec03eb60d2c269930e01748a742df916ceff824708722d5b3a3528
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/keydesign-addon/assets/css/photoswipe.css?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 16:47:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1147
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/css/photoswipe-default-skin.css?ver=6.1.1
45.148.121.166200 OK 2.8 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/css/photoswipe-default-skin.css?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Hash 317ed8ff5df8a9295f39aefbc99103b9
a6ce3b27b82718261d0a8089667b6dd9f3843172
0b931e82f9bc646cb511e61ca785c1e05251a58c919b70724af7ce3e1ae1a746
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/keydesign-addon/assets/css/photoswipe-default-skin.css?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 16:47:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2771
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.10
45.148.121.166200 OK 12 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.10
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash f0c33ac0614f0f2d57467cb38e1350d0
63e3c35966b979d27b5a315deea913705e8e3a74
751e3d29d235a88018bfbbb281215df2032f9abaf5a9e4358e9e414f0da2e37c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.10 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 16:47:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 12067
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/
45.148.121.166200 OK 40 kB IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (21275)
Hash 86052c0fae9ec2e405bbe230e9773c26
a8af5f6e6b3fa2cbd09e48b4853708a34f76dafb
9f8257983858b8c5d01eaff3adf4da67024438d323e89f71ce0009de243bcf5d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.20
content-type: text/html; charset=UTF-8
link: <https://cannabisgasshop.com/wp-json/>; rel="https://api.w.org/", <https://cannabisgasshop.com/wp-json/wp/v2/pages/22>; rel="alternate"; type="application/json", <https://cannabisgasshop.com/>; rel=shortlink
etag: "898-1670442545;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Wed, 14 Dec 2022 04:31:04 GMT
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/redux-framework/redux-core/inc/extensions/social_profiles/social_profiles/css/field_social_profiles_frontend.css?ver=4.3.17
45.148.121.166200 OK 192 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/redux-framework/redux-core/inc/extensions/social_profiles/social_profiles/css/field_social_profiles_frontend.css?ver=4.3.17
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Hash e7cfbd2946b9c3ad6777b51dd51bc406
375ed526f8ca0bfb7918728fdd635a7130bd78c8
d5ecd1f39b078601a06dff9e9f62474551db346e6791f89e7ea4c4df32bf02d5
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/redux-framework/redux-core/inc/extensions/social_profiles/social_profiles/css/field_social_profiles_frontend.css?ver=4.3.17 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:33 GMT
accept-ranges: bytes
content-length: 192
date: Wed, 14 Dec 2022 04:31:04 GMT
vary: User-Agent
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/themes/ekko/core/assets/css/font-awesome.min.css?ver=1.7
45.148.121.166200 OK 12 kB URL HTTP/2 cannabisgasshop.com/wp-content/themes/ekko/core/assets/css/font-awesome.min.css?ver=1.7
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (57093)
Hash fe32baf0ba0be8b043c0320a97fc78d3
f827b94a7208e3235cb57152f0cfdcf9714de6d0
64c386e3aeac093f3f6feee437d0d8d674f7cd15446b4e7ad4d11ffb25da2438
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ekko/core/assets/css/font-awesome.min.css?ver=1.7 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11954
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/themes/ekko/core/assets/css/iconsmind.min.css?ver=1.7
45.148.121.166200 OK 14 kB URL HTTP/2 cannabisgasshop.com/wp-content/themes/ekko/core/assets/css/iconsmind.min.css?ver=1.7
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 679d0b4bbc82d5bba4824d6e91b76478
0421c9b5a73e08dcf0849ea7da7a74e4cb13f2a0
a4635ff54450e9c71858eca99a40d4e761b3e0b2f5849fd3a4d39f3301471364
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ekko/core/assets/css/iconsmind.min.css?ver=1.7 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 14270
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat-btn.min.css?ver=4.5.13
45.148.121.166200 OK 2.0 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat-btn.min.css?ver=4.5.13
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (6087), with no line terminators
Hash 8f015f8adc478eaf54a2ee7155e13344
489ffbd9673e547c1f8d00b9ffd171d086d1555c
8d765644f78bb6d98f3d004cdb7ca1eae2490209839f1abb01e1e7569b9ba922
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/creame-whatsapp-me/public/css/joinchat-btn.min.css?ver=4.5.13 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 17:12:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1965
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/css/kd_vc_front.css?ver=6.1.1
45.148.121.166200 OK 32 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/css/kd_vc_front.css?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (782)
Hash 0058d84d9dee06e967efc8926b556d60
32e9e34e5990ff0e4f1700f7063267bc3167f7bc
26023e11c1c4e48faa4cb6c84552f94a7f55184218f98faea35355d9be247861
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/keydesign-addon/assets/css/kd_vc_front.css?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 16:47:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 31525
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.2.0
45.148.121.166200 OK 42 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.2.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (65358)
Hash db1354790b328c764f0c530a8c17a965
28a1fab2c5824b7b379e3c4bfa48afc9cca73cd9
60cfeab11940700b50832d50ba20d367213a55c93bbce1db80ffc43f403675ea
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.2.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 16:47:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 42001
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/themes/ekko/core/assets/css/woocommerce.css
45.148.121.166200 OK 17 kB URL HTTP/2 cannabisgasshop.com/wp-content/themes/ekko/core/assets/css/woocommerce.css
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type Unicode text, UTF-8 text, with very long lines (1301)
Hash 96c590220609f44a42d590a262433af1
cd63bd132777efbe09d1861b62cfe30d99ba08a8
010d1a8971709cc264fd71d0626c6f09371f8932b63fbaa34df725cfb2db091c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ekko/core/assets/css/woocommerce.css HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 17146
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-fonticons-ii.css?ver=2.5.0
45.148.121.166200 OK 5.0 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-fonticons-ii.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with CRLF line terminators
Hash 090d56ca1e6016ae6aee2b71b0788bfd
c6d574b79fa48ce3430f17d62a125022919998da
7b763cb5cb16fd9d5f0b2dc2e9e4a7c1bd672a99207ceb4e57e9aeeeb937460b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/um-fonticons-ii.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5029
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-fonticons-fa.css?ver=2.5.0
45.148.121.166200 OK 4.4 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-fonticons-fa.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with CRLF line terminators
Hash 203c79ef105517f21436e6c5f7866081
d4a48b9fc97464db54948ad59466931ae2c9aaad
ba5355df2bab7fb5e09da06d449faff5e9badf0be16b1abf762cd28636087e4e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/um-fonticons-fa.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4419
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/select2/select2.min.css?ver=4.0.13
45.148.121.166200 OK 1.8 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/select2/select2.min.css?ver=4.0.13
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (14965), with CRLF line terminators
Hash c9da0e6818828d918ef7d42993ef6501
4ac08597900c753123fb1c1151778943e826cddf
c3afa49ca8da1537454dc998cdbe766922a6b593162631676fcb6196b8e1b717
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/select2/select2.min.css?ver=4.0.13 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1803
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-crop.css?ver=2.5.0
45.148.121.166200 OK 852 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-crop.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with CRLF line terminators
Hash 3aadde2f376f8fb74594a047c1a60b18
d5a2c55f28b82995bb21b77c6fa1f62683ae6e83
74af900a90d551b3f5224f2c12f339cc206dea551503cf9a465535d06de9dca3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/um-crop.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 852
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-modal.css?ver=2.5.0
45.148.121.166200 OK 830 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-modal.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with CRLF line terminators
Hash 517e9cc44d07574418a28e2dbcc473be
c510b5bd27e5a93ce59f882c23c0d980fe143a1a
ac46e08f17effd7f5a8c9733997bad1c4679ad7d162b1edcbfde80803552c18c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/um-modal.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 830
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-styles.css?ver=2.5.0
45.148.121.166200 OK 4.1 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-styles.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type troff or preprocessor input, ASCII text, with CRLF line terminators
Hash 861f41bc607eb64d1c29df9665e67485
4fc019fac2efe27b532c8b8e55e9f4bc6321dcf2
a88c73480edb4bfa02d63ecdedcc84053c6035bc8a31caa9eaa1f420f819e07b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/um-styles.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4141
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-profile.css?ver=2.5.0
45.148.121.166200 OK 2.1 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-profile.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash aad0409caf2c359db4fc1555fe59ff5a
a5efa4f11035b429b6eca51427bb131760693581
180c37b1cc4a56bc75a95a0b45c69ef519fa154c09a0e318ecc18c826131f4a0
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/um-profile.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2054
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-account.css?ver=2.5.0
45.148.121.166200 OK 1.0 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-account.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with CRLF line terminators
Hash 59170963d5c0fc2595c971d273cf559a
72e21d9638be0fd6f8fc283a6e6401053cf0a78e
0b3ec88062ab089f6e8762f99bd50a4cafc68f2eb6cb54d716cf5954ef6b2384
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/um-account.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1026
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-misc.css?ver=2.5.0
45.148.121.166200 OK 629 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-misc.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with CRLF line terminators
Hash 1e361523ad4b41d7e46f33ba1a9d9270
cea819034c7fac15c797679659caf43414dec15d
bad108f56182b00a25eccffe5eb7a8ee7d4e3ec87fe8b986d3e5f3ea84609722
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/um-misc.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 629
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-fileupload.css?ver=2.5.0
45.148.121.166200 OK 845 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-fileupload.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type troff or preprocessor input, ASCII text, with CRLF line terminators
Hash e6d3e381cb1cad09ca0d9991d7a4d9bc
4b66ac9eefff20b0140378a4d37b4d89a46967d4
71b8a9157a561f3d81480d82ae31abdffb9a69da97e647323b8463ba0208e128
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/um-fileupload.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 845
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/pickadate/default.css?ver=2.5.0
45.148.121.166200 OK 1.1 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/pickadate/default.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type troff or preprocessor input, Unicode text, UTF-8 text, with CRLF line terminators
Hash e309ba900abdea5b5fc45223470bd84c
4d38239f1f48f74a6e3ec72419d9664ceea2b0a5
d1e01da55942a1c4123cdf629ddf11486f95f6e4606af6d7b2b01a8c82612cbd
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/pickadate/default.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1076
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/pickadate/default.date.css?ver=2.5.0
45.148.121.166200 OK 1.1 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/pickadate/default.date.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type troff or preprocessor input, ASCII text, with CRLF line terminators
Hash 83f4496e7d110ac4e5466e5f99fce7b5
06b22a073da2fafbb762eeb178aff35c277cc9ec
a71d20a114f5ff570d20fbc240575ee63dd0a81827385eaa4c376119a93df415
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/pickadate/default.date.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1146
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/pickadate/default.time.css?ver=2.5.0
45.148.121.166200 OK 647 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/pickadate/default.time.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type troff or preprocessor input, ASCII text, with CRLF line terminators
Hash 48b46fc5a9e8c31f80f66bf87ce8ebc8
a392fc2c33390664e9c3dea2630073833f1c1b4c
02aff32edf425ffcfad74edf6a587c15405068914e7e51270da7c51deda5fa2d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/pickadate/default.time.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 647
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-raty.css?ver=2.5.0
45.148.121.166200 OK 392 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-raty.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with CRLF line terminators
Hash e1a97213e08ca891317558a436e1da5b
e5caa66afaa2b78243f61c31784e8b554b836784
4570184add307c3a72d939b5916141e7c61b4afbab09adde5f6568837c7557a9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/um-raty.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 392
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/simplebar.css?ver=2.5.0
45.148.121.166200 OK 890 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/simplebar.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with CRLF line terminators
Hash 8f0c68bda57a989276038a5deabaf8a2
82170e2d3eab88d61ab154f15921cb6bc94f1385
e468f2b5edfce1653504858f4b4310f29ec7dee8ea006cfac79f31cc9e72c65d
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/simplebar.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 890
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-tipsy.css?ver=2.5.0
45.148.121.166200 OK 441 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-tipsy.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with CRLF line terminators
Hash 791eca9a148a8f82e13800b1c02d52f4
16a8f131f5d1e440659147eb2c9893fe16180bb3
cf136ed55674379e0133bf59e3ec619d708c62885020a72f6c8e547d9f52b6a7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/um-tipsy.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 441
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-responsive.css?ver=2.5.0
45.148.121.166200 OK 1.7 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-responsive.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with CRLF line terminators
Hash 16a2dfd1e000e877e8391ba1d9356bdd
201759f2021b25758ec1af2f0749ecc27cdd6e26
b4a5fe9a1635a9b423bf14991bc76f2e260adc2512b9bfa61c6097c75c8e0672
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/um-responsive.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1708
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-old-default.css?ver=2.5.0
45.148.121.166200 OK 1.1 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/css/um-old-default.css?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type CSV text\012- troff or preprocessor input, ASCII text, with CRLF line terminators
Hash 5df94c75874c13cb4479b27130d9bf33
557c1319d7dc501d6faf2050092a371fd6087033
4b2a1611edc81173f5169b05e3da8737c722df2061dae1a393bd90ad639e37ef
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/css/um-old-default.css?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1089
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
45.148.121.166200 OK 30 kB URL HTTP/2 cannabisgasshop.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (65447)
Hash 3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 18:28:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 30324
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
45.148.121.166200 OK 4.0 kB URL HTTP/2 cannabisgasshop.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 13:36:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3995
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/dispensary-age-verification/public/js/js.cookie.js?ver=2.9.0
45.148.121.166200 OK 363 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/dispensary-age-verification/public/js/js.cookie.js?ver=2.9.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Hash 1a0e477c58c9194e3db9354760770717
70c7949e316e2cc75172158f95610f784921a5af
cf66dcc551887be12b8db72e0daf6ef67d6923095409dc82bb6fa0f7861191d4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/dispensary-age-verification/public/js/js.cookie.js?ver=2.9.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:37:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 363
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/dispensary-age-verification/public/js/dispensary-age-verification-public.js?ver=2.9.0
45.148.121.166200 OK 1.7 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/dispensary-age-verification/public/js/dispensary-age-verification-public.js?ver=2.9.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Hash ab95fe9460a644ec0541e3b492eb5495
15bb3523cb05c5dfeaa07daab46b8b1db29a0386
2ff574d5bffb16b9797fe1cc09d93bb3e7ab6d705a229062daf85cb46c3b22a9
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/dispensary-age-verification/public/js/dispensary-age-verification-public.js?ver=2.9.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:37:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1738
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/js/jquery.easing.min.js?ver=6.1.1
45.148.121.166200 OK 1.8 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/js/jquery.easing.min.js?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type Unicode text, UTF-8 text, with very long lines (3601), with CRLF line terminators
Hash 2dcdb050495e157ed6752774ec36f8e2
02634019c4d805b42617fd3403c4ceae56b05ae0
0d1509d3e182b2c28c6d0a9c648e1c05d52ca335ffdaac5507b5cba1e5411cfd
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/keydesign-addon/assets/js/jquery.easing.min.js?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1793
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/js/owl.carousel.min.js?ver=6.1.1
45.148.121.166200 OK 11 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/js/owl.carousel.min.js?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (32000)
Hash 1b649a193df8c648d381cdda8dd268b4
f01dcdb5e3ede69da1d3e8556dcd993f0105b61d
dd2f2af9b8d391f704ec91ab6ef3e32ff56afacc88ba92b8a8834ca562de8bcb
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/keydesign-addon/assets/js/owl.carousel.min.js?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 10649
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/js/jquery.appear.js?ver=6.1.1
45.148.121.166200 OK 1.1 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/js/jquery.appear.js?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Hash 7d91260ced40ae99dacc3f8c89bdc5bd
739f5b8423b52d1945988a8d18b40d144b5c16a9
a2b88d47978785fad0140d5d735ca24ddc8853a498f6a644dd989f07396a12b8
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/keydesign-addon/assets/js/jquery.appear.js?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1148
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/js/kd_addon_script.js?ver=6.1.1
45.148.121.166200 OK 2.6 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/js/kd_addon_script.js?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (531)
Hash e794c43956c5dbdf746f52e55cb63b47
e0299050a1ae14d4a87d4c57a7451d04d26f3983
6d9e8c52b8ded06b4ba0e1d4ad32eaee3f818650884979d4579028d6529ec575
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/keydesign-addon/assets/js/kd_addon_script.js?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2620
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash de5c18ec6c4354ce46bb771a8e38d72b
e4747f397d053844d273788fc450ef82545ac230
64de012dd0cbd696f7ed4ee5b1193fb7e4674a260ccd454e79bed396cc5b3ac4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2586
Cache-Control: max-age=116343
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 04:31:04 GMT
Etag: "63986ae5-1d7"
Expires: Thu, 15 Dec 2022 12:50:07 GMT
Last-Modified: Tue, 13 Dec 2022 12:07:01 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
cannabisgasshop.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.0.0
45.148.121.166200 OK 3.2 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.0.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (9115)
Hash 66c388e07cfb57895688b3347ab7290b
f23bd7a31995b3b19924575f2afa297a29257856
3971f3ab5179d1f4f91d2c102f27c2bf1dac2c04e2f62ff3eae3ebfa8c28494e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.0.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:39:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3245
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.0.0
45.148.121.166200 OK 974 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.0.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash fd8b126d3265cc6afc5b672273f78531
5058e579885cccf36c44bdeb5b7318bd75952af9
72da6709db061566cb5f67322f674a77f68acb69ac6181d37f9ca4a1bb7287b7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.0.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:39:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 974
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.2.0
45.148.121.166200 OK 321 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.2.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Hash 159e4731a0ffba6862ee2a1bbcc8a805
7fb2a5ca7a80d96187fda406d0a1b7db23867fa7
c6f102a76dc397d94cfbadcd292d64bb45acaa29b0391b41a9f1cc68c2274ae2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.2.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 321
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/js/jquery.easytabs.min.js?ver=6.1.1
45.148.121.166200 OK 3.2 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/js/jquery.easytabs.min.js?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with CRLF line terminators
Hash 88c1afe4558d315051cb047509b5a885
ffbae6a4b2a1ad16b266b2b56c91054fe4ffa9e2
be3d91720524db98f22527318008333441aee74a7e3098235ea986b95a386d56
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/keydesign-addon/assets/js/jquery.easytabs.min.js?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3229
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.0.6
45.148.121.166200 OK 44 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.0.6
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (41022), with CRLF line terminators
Hash 4fabca2522b46655d66e80a8e0f51b99
90deed5fcafb260dceec850841a335d883072967
1b8b3b55102a08e2bf87c5a743baf2a24da44ce11a2da488a8afaa1fdf77134c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.0.6 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 43687
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/themes/ekko/core/assets/js/woocommerce-keydesign.js
45.148.121.166200 OK 425 B URL HTTP/2 cannabisgasshop.com/wp-content/themes/ekko/core/assets/js/woocommerce-keydesign.js
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Hash e1fe6db21937457928663461eb7fbbba
7cf498fece072623792631ff414e5f634bb7bc29
e7e9458fa5b5454e9d33c86c234e52551daa8c215c291ab2e17ac2549edbab96
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ekko/core/assets/js/woocommerce-keydesign.js HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 425
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-gdpr.min.js?ver=2.5.0
45.148.121.166200 OK 215 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-gdpr.min.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (416), with no line terminators
Hash bbb9b4be30807537255354f94184bc12
2ba76090666187efa7fcb810052596b68dc80c37
d437288b21943587e23e9ae0404e4934e5a4473dc87594b0544f069f704bf555
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/um-gdpr.min.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 215
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/uploads/2021/11/logo.jpg
45.148.121.166200 OK 16 kB URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2021/11/logo.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left], baseline, precision 8, 269x92, components 3\012- data
Hash 98a8df860cd901a65de800111354a7f1
731c2573a4ec295fd33fd4175faa8730011f0e0f
1ce6dc4b593f55e136c7c4df0f0b12c6897f87c3f55cbb225103c2c5a94ca589
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/logo.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:34 GMT
accept-ranges: bytes
content-length: 15837
date: Wed, 14 Dec 2022 04:31:04 GMT
vary: User-Agent
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/uploads/2021/11/images-1-350x250.jpg
45.148.121.166200 OK 80 kB URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2021/11/images-1-350x250.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash 019955534f186e21250fdec8c9eca36f
bfff978a2efb679219bc3dc53519cc42198c3a50
b74bda3183e8e842a44910b2aca9fddb0b898e839769e07a9f4c4fca811107f0
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/images-1-350x250.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:34 GMT
accept-ranges: bytes
content-length: 79782
date: Wed, 14 Dec 2022 04:31:04 GMT
vary: User-Agent
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/uploads/2021/11/maxresdefault-350x250.jpg
45.148.121.166200 OK 79 kB URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2021/11/maxresdefault-350x250.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 350x250, components 3\012- data
Hash 8e0de7a5442f4ac0d6049592c06f2cae
bc5367f679e87554d4d637328bf1183e4a3eaa3d
83ae4a14d9081041ace196e364c5da3427a6cbe8907b249267e457e105114104
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/maxresdefault-350x250.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:34 GMT
accept-ranges: bytes
content-length: 79151
date: Wed, 14 Dec 2022 04:31:04 GMT
vary: User-Agent
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/css/style.css?ver=6.1.1
45.148.121.166200 OK 4.0 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/css/style.css?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with CRLF line terminators
Hash 1248f7eb6ebf34504bf6059991b39eca
b575e85a7d030c475c12c89f15ce89e504b7daa8
a902c80c9ed968e74c8665a9ad4dcd1cb2c327e737f2399f1e50b4407e6a8099
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/css/style.css?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3984
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/css/swiper-bundle.min.css?ver=6.1.1
45.148.121.166200 OK 3.9 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/css/swiper-bundle.min.css?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (13620), with CRLF line terminators
Hash 90b39cc432cf9253050441013c3c2bb1
4ee9e2735e46cda01217e6d2812dc9f9d378338a
eca5542a0287b6d923fa710441786c5f9f23c2bd8edafc9e095e7aafcadd3911
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/css/swiper-bundle.min.css?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3855
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/js/photoswipe.min.js?ver=6.1.1
45.148.121.166200 OK 12 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/js/photoswipe.min.js?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (31625)
Hash 08ec282183a56398e407069240ba31a1
65ab61c44e37fc987a9b366c41d7d8e01aba050c
c9235ec0690ddd87008bbe97a26b0a6b473320f3a0f5eb8caf47c6a39fa75a03
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/keydesign-addon/assets/js/photoswipe.min.js?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11820
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/js/photoswipe-ui-default.min.js?ver=6.1.1
45.148.121.166200 OK 3.6 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/keydesign-addon/assets/js/photoswipe-ui-default.min.js?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type HTML document, ASCII text, with very long lines (9765)
Hash 948a01dfe16cc03527595f277410b304
58bcaa9f31387acbcb77fbcdc2a97fa2e636e9df
75aebe4e25e15db726d8137d36727fc97840346550ebd4e77950105feaae5457
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/keydesign-addon/assets/js/photoswipe-ui-default.min.js?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3564
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.0.0
45.148.121.166200 OK 899 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.0.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (1668)
Hash 22d65ba38528349e705d912ce26bf8ac
c89ba006009043d93b88ff155b4fec8797330550
6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.0.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:39:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 899
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.0.0
45.148.121.166200 OK 677 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.0.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (2139), with no line terminators
Hash a43fc0dde8fdd69656ad0957e62849c7
4b07cf702ac8a770c8cbffc22b9a788b6e5389ba
1ce3d0493424870c81deec0ec41de0592d2af9f91cd8081cd40a1d7ea89b614f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.0.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:39:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 677
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.0.0
45.148.121.166200 OK 934 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.0.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (2938), with no line terminators
Hash cf25dd071a208312bdc07f34d2cee027
76119563119eaae392ecc8903c989d98d0b93002
8635ba2cad8f887e72779bd526f8738ff6343c74cba715caf2eddea383ba7ce6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.0.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:39:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 934
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/uploads/2021/11/Sour_Punch-350x250.jpg
45.148.121.166200 OK 97 kB URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2021/11/Sour_Punch-350x250.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash 6fbb1e3a5f1801afdcf17aeee6231157
5008cc3e72647a972c90c553f62af9db081270d8
a9ec829de1d44e3c55316f40d78e8044c5bbbf4c32bc645e947162694079929e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/Sour_Punch-350x250.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:34 GMT
accept-ranges: bytes
content-length: 96740
date: Wed, 14 Dec 2022 04:31:04 GMT
vary: User-Agent
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/uploads/2021/11/8191X5fqI1L._SL1080_-350x250.jpg
45.148.121.166200 OK 86 kB URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2021/11/8191X5fqI1L._SL1080_-350x250.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash b45f5d881a57cc7365aad36ae562faa1
42a78ad0518a07134e28b0588519ac9b64c8903b
a19478b900818ce7b788a736362fd153b8cecf9e698caa7f3bfccf2fe2048afa
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/8191X5fqI1L._SL1080_-350x250.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:34 GMT
accept-ranges: bytes
content-length: 85830
date: Wed, 14 Dec 2022 04:31:04 GMT
vary: User-Agent
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/uploads/2021/11/2020-newest-errlli-sour-terp-crawlers-bag-350x250.jpg
45.148.121.166200 OK 80 kB URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2021/11/2020-newest-errlli-sour-terp-crawlers-bag-350x250.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=14, height=3456, bps=0, manufacturer=HUAWEI, model=BKL-AL20, xresolution=204, yresolution=212, resolutionunit=2, software=www.meitu.com, datetime=2020:06:15 10:01:05, GPS-Data, width=3456], baseline, precision 8, 350x250, components 3\012- data
Hash c5df97e91f5059179ddb822b8e172fac
a80d454d0db6c8eb8c54b39b964dd5ff2eff987f
b26dc6834b1a50109b7f3b152687cba49f63aa8493cbe1fad77e10b07a0bc167
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/2020-newest-errlli-sour-terp-crawlers-bag-350x250.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:34 GMT
accept-ranges: bytes
content-length: 80441
date: Wed, 14 Dec 2022 04:31:04 GMT
vary: User-Agent
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash bfb5d3c071cebab21e6ab8647e84b6ba
ebc1553e88dbe512449a31b3cb4c10c659484d7d
cf794ab56bfa29d8e47637d68f5c82e4c60b855a8f6b772f344a72c712da3c4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 04:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash bfb5d3c071cebab21e6ab8647e84b6ba
ebc1553e88dbe512449a31b3cb4c10c659484d7d
cf794ab56bfa29d8e47637d68f5c82e4c60b855a8f6b772f344a72c712da3c4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 04:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash bfb5d3c071cebab21e6ab8647e84b6ba
ebc1553e88dbe512449a31b3cb4c10c659484d7d
cf794ab56bfa29d8e47637d68f5c82e4c60b855a8f6b772f344a72c712da3c4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 04:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cannabisgasshop.com/wp-content/uploads/2021/11/824148-01-350x250.jpg
45.148.121.166200 OK 84 kB URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2021/11/824148-01-350x250.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash 59e43112afbdfc2e205e055fef6dc67c
b34418c6acc4dafc7d6f18127d2a3958d4b53d48
750eb250578f3877d7163f014c9cf4f5643d998a6ed5c88899ce26e1c714fc9a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/824148-01-350x250.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:34 GMT
accept-ranges: bytes
content-length: 84521
date: Wed, 14 Dec 2022 04:31:04 GMT
vary: User-Agent
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.7.6.01
45.148.121.166200 OK 2.0 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.7.6.01
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (6854), with no line terminators
Hash 90cba761ebe0aee308305b55dfd0a935
0205ee799159fa0e1de1aaa5ff6488e4c93a9fe0
3bd360af819ab676a415d35c39637f1ce4f3445a920b83af1da9c40d743cc5ba
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/mailchimp-for-woocommerce/public/js/mailchimp-woocommerce-public.min.js?ver=2.7.6.01 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 17:12:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1999
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/themes/ekko/core/assets/js/bootstrap.min.js?ver=1.7
45.148.121.166200 OK 9.2 kB URL HTTP/2 cannabisgasshop.com/wp-content/themes/ekko/core/assets/js/bootstrap.min.js?ver=1.7
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (32025)
Hash b89ef3653f1092e2a07225275386a820
58d5f4d48bf8d4e9aa4826e00311222a72e0fe9b
bc19692431df909d3931ec36dfdf9d285d766ce403133038171c190c5f7fb0a9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ekko/core/assets/js/bootstrap.min.js?ver=1.7 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 9206
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/themes/ekko/core/assets/js/SmoothScroll.js?ver=1.7
45.148.121.166200 OK 6.6 kB URL HTTP/2 cannabisgasshop.com/wp-content/themes/ekko/core/assets/js/SmoothScroll.js?ver=1.7
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Hash 9944ad3d188a69f6278e15a3b02af21e
48ac393121023e53fefd424763ec2f2dfc100d1c
356c1f1daacf243b750f130c5b87d3a9b0408c1548024130f5822769496431b4
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ekko/core/assets/js/SmoothScroll.js?ver=1.7 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6636
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/themes/ekko/core/assets/js/scripts.js?ver=1.7
45.148.121.166200 OK 4.8 kB URL HTTP/2 cannabisgasshop.com/wp-content/themes/ekko/core/assets/js/scripts.js?ver=1.7
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type Unicode text, UTF-8 text, with very long lines (312)
Hash 74e277a09ac2b96b4e15a6f6f311b954
5afcf345207c6aa3a5bc1c1373ee26a6edd54a11
7c07de35191e2c84f00c3f1a9c87b8de3b217662fb932c842168a594a1cc28a4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ekko/core/assets/js/scripts.js?ver=1.7 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4802
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.13
45.148.121.166200 OK 2.5 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.13
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (8082), with no line terminators
Hash 130a237beca0d43b5e806afc8bb690fa
051b82c318203daf5008f87007c015971072b951
e9f5d85f28c930369e90bd08386ee17eee2b85a61a99211733b93aa26c96ec72
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.13 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 17:12:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2543
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/select2/select2.full.min.js?ver=4.0.13
45.148.121.166200 OK 20 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/select2/select2.full.min.js?ver=4.0.13
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type Unicode text, UTF-8 text, with very long lines (64130), with CRLF line terminators
Hash 4afff3a8c123c5e44088f1e0a4b37ee5
d1ab105e0ec36cc73da7afa3bff00b6e90458483
caa8a7f4e48551e5fdbc880ec701424ec549f69066a0d46119d3a2f4ad6d1cb2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/select2/select2.full.min.js?ver=4.0.13 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 20515
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-includes/js/underscore.min.js?ver=1.13.4
45.148.121.166200 OK 7.2 kB URL HTTP/2 cannabisgasshop.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (18798)
Hash f4bb18d2e152ba945cb63980362f40e9
925f93a6c4ee411e97d8dc3186f9d66c4b5169ab
16ab496a6c74f5f272f7a5c31e9cb69c753fea994396ef6deacf641180ad317b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 18:28:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7179
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-includes/js/wp-util.min.js?ver=6.1.1
45.148.121.166200 OK 690 B URL HTTP/2 cannabisgasshop.com/wp-includes/js/wp-util.min.js?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (1391)
Hash ebe552e54e3815c6867913d252ff2a79
4982bd9ba944833e821be18419ad8408290f5d75
8b0aedc73b1d41ab59c0ad42553259c90458cfb72b149946a3bae3298c012e40
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 18:28:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 690
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-crop.min.js?ver=2.5.0
45.148.121.166200 OK 5.4 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-crop.min.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (17031), with no line terminators
Hash 3573d5e188350070ffdedf47b30adad3
e73cf0089bb2ec8d75751d60076c784173cd8e32
27cb579517154292ce8f2676eea514fe7e3992983b3f7fadf7a3f83bdb6b20ce
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/um-crop.min.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5362
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-modal.min.js?ver=2.5.0
45.148.121.166200 OK 1.1 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-modal.min.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (5277), with no line terminators
Hash 8733f44f13ca6e5a20fb64cf92764f70
c2eb65ce8dbfbb6cdc999b303782fb72e5db5977
e57d5745b2752415144ef0302a3ade650d96dd4daec2cc45a8bc5cd87ad9b5a7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/um-modal.min.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1119
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-jquery-form.min.js?ver=2.5.0
45.148.121.166200 OK 5.2 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-jquery-form.min.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (14585), with no line terminators
Hash e986caf1ef8f28e538f02878aa135468
22198031deed9960099b7fb7a48abfd07b6b2929
02a6fbf44bbdaba3e552b376c1d66e93b71a2920838d9da05057d04134e02cf4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/um-jquery-form.min.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5225
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-fileupload.js?ver=2.5.0
45.148.121.166200 OK 3.2 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-fileupload.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (9639), with CRLF line terminators
Hash be6dcb4b7d9024b90c60ff0d1836438f
333692a73e194bbcae236c56fba3182535cb6544
6cbbb897237db42c35e1697956327323a0f6da78d2cd73a77615c33c1ad94ea9
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/um-fileupload.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3193
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.js?ver=2.5.0
45.148.121.166200 OK 9.0 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 01cfd04189430bb2a6adf3210c741af4
b0d2ab643701cae638adae4b5faf3e292e9d5916
75c2c3fb737fd5fd9a4ad2a8090bd7c6bb7883b87e1f06da6b225c93630a69b9
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/pickadate/picker.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 9035
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.date.js?ver=2.5.0
45.148.121.166200 OK 10 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.date.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 699f9bec1106213a5ff1b2ac114bebe7
55b10e578f2b71cc7858f2d6722f4198532602fb
8093b2d308053d2915d38df36142caee5e3e8d7c8fd4cb6334ae4c138ef92674
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/pickadate/picker.date.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 10328
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.time.js?ver=2.5.0
45.148.121.166200 OK 7.4 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/pickadate/picker.time.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 36447cec5c661b8dee76dab64a1e89a8
e9d6ce0eb511817814bec0f3a794266072ff5358
cfc9b6e0c26f2ae049125004f42d4906b491003dadad5feb0976143a1acc48ee
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/pickadate/picker.time.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7443
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
45.148.121.166200 OK 2.4 kB URL HTTP/2 cannabisgasshop.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (6475), with no line terminators
Hash 4e773d7cec56bacab6d2db420be6f262
c95573d884c1caec0ec9c6f3e2a8c0fbf28d939a
5c8839d0b02f21e8d83d856bbf85a6b87fbedf9ba0b70711b11a1c378d5443e7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Mon, 11 Apr 2022 15:34:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2354
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
45.148.121.166200 OK 6.3 kB URL HTTP/2 cannabisgasshop.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash fecbc00e8af71d8cfb678cd811c7cb2e
44e5dd77f62cb5c67271442b75cdff10d45f2f8d
d6f03fb4728d0c23251451df8d66b5107d3c87458dc624aacfbad437e99d01f1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 18:28:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6335
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
45.148.121.166200 OK 1.6 kB URL HTTP/2 cannabisgasshop.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (4875)
Hash 06a8ac0e71976bc143cfa7861a31169d
def6031fe13259bf17752661832d815e37068bf2
e6f42d97e7299522bbb002364128fdf72cd22263ca72c5edc41dcd8f4672cd33
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Mon, 11 Apr 2022 15:34:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1575
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
45.148.121.166200 OK 3.7 kB URL HTTP/2 cannabisgasshop.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Hash f7acc55c5b34188d3e66c5f2ecf3ba80
802270f7a221e406af63d622d364b119d912c15b
826c4e13764f5bf1bd0a17f2e693d943f8605df1024815f67f43694f4338b713
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 18:28:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3717
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-raty.min.js?ver=2.5.0
45.148.121.166200 OK 2.9 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-raty.min.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (9134), with no line terminators
Hash 70f8e322d914801e9d3d3c44e0902c53
c5377933a1d82c97179e7e97a30d53f6c37263a4
d22959813f6337be2bb85a44db24bff60ad13eff28cf29a4f1788e7ad5895b8c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/um-raty.min.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2921
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-tipsy.min.js?ver=2.5.0
45.148.121.166200 OK 1.4 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-tipsy.min.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (4366), with no line terminators
Hash 315bfb45a987de99fd3d8d644b8c0202
2957b267b12bc48575ee1cf45798fffaf3f1a0f1
e37eb8ed8bf895388d1eb135f9b058eb2e489d8fb8e2c43d3fdf0d2c4720cb8a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/um-tipsy.min.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1448
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
45.148.121.166200 OK 1.7 kB URL HTTP/2 cannabisgasshop.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (5477)
Hash fa921f07ecc438baf227765de450e215
1fdd49d8bb681cb118ea8d67d4fc61b0ad46cc95
b2cc68637048b04952a2f33163f64571145dbe0817a14c68fe6f1661bd81091f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 13 Jun 2020 22:23:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1733
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-includes/js/masonry.min.js?ver=4.2.2
45.148.121.166200 OK 7.1 kB URL HTTP/2 cannabisgasshop.com/wp-includes/js/masonry.min.js?ver=4.2.2
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (23966)
Hash acbcd70975a7cfaf92dc02b2ede1fd24
7a50461999972abb541d4baf1ccf23d8e435aad6
c1250ec4943afb181633078eb9d67c5944fc64b2bb219c98406c286e9449189e
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 13 Jun 2020 22:23:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7117
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
45.148.121.166200 OK 628 B URL HTTP/2 cannabisgasshop.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (1626)
Hash 67cf4663ab50b96f6cfbef1de915ac71
b019f521a2ec93c24ff288ca16b39263168d9e64
4f51279a3e89fb1e36130b8802a119ac113a50423fbfdc6d7ea7d18e8a892bf9
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Thu, 18 Aug 2016 22:25:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 628
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/simplebar.min.js?ver=2.5.0
45.148.121.166200 OK 13 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/simplebar.min.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type Unicode text, UTF-8 text, with very long lines (44327), with no line terminators
Hash 7c49c5710fd75092a8481d5a546fe176
83c8d150586e3d5b4a69013e73276e1522f988f3
a34a416f5d001c524fefa5a79c6880ee68f13cccb4bb5741cc81f9bd2fceefc2
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/simplebar.min.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 12945
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-functions.min.js?ver=2.5.0
45.148.121.166200 OK 3.4 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-functions.min.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (14600), with no line terminators
Hash 200695fc26091419815f1a1a4029842f
46e7a7058ecdf0edaeb4d08829afc35d03362318
c284d224ea6630af2f96ec14ce10f2be4e53132ecdaa4b2325671b04e8723052
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/um-functions.min.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3357
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-responsive.min.js?ver=2.5.0
45.148.121.166200 OK 109 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-responsive.min.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with no line terminators
Hash 8f0a79bf53b88c705edc04ccc05f5b72
47d317183fe4ede4a4d038965063d8d6044b0a84
e240f0572c9140380394b7745be3ea95f1f5af6782573e8b0b6213524a4f710c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/um-responsive.min.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 109
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-conditional.min.js?ver=2.5.0
45.148.121.166200 OK 2.2 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-conditional.min.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (9732), with no line terminators
Hash 2a32c1f250857b0316f7937948633f5c
94d699d27f16bfc7f0cf27600a067afc2a8efcc3
9ae7d253392f1df228ffd228b8e075be8f87ac607db0dfbe6746023c9744423f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/um-conditional.min.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:05 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2176
date: Wed, 14 Dec 2022 04:31:05 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-scripts.min.js?ver=2.5.0
45.148.121.166200 OK 3.0 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-scripts.min.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (12403), with no line terminators
Hash 84cc16be2a98e015ccabd137392a4408
2dffda0860c4fc54b86941406dce49cce37e1e3a
27b94b40b11893304a9e079e1f00d94c936c09404f481c20187da71bed8debf3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/um-scripts.min.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:05 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3030
date: Wed, 14 Dec 2022 04:31:05 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-profile.min.js?ver=2.5.0
45.148.121.166200 OK 841 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-profile.min.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type HTML document, ASCII text, with very long lines (2779), with no line terminators
Hash 00673136473c8fdec1317782761b7abc
382d1af603973cce4358b3107e303d35dab652ce
c22a82040d8201f37ed41b8747781833b40a442628e31c6d2893ee17de9c0067
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/um-profile.min.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:05 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 841
date: Wed, 14 Dec 2022 04:31:05 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-account.min.js?ver=2.5.0
45.148.121.166200 OK 653 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/ultimate-member/assets/js/um-account.min.js?ver=2.5.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (2812), with no line terminators
Hash 68951403f4b58e8d70e9e1066f57a58b
e5a6d12fe34ded315b519867c4e0a97b4936c79e
3572454182617e54c274b2c3f81d2ae59a38d42230142dae272ecfdca58fa032
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/ultimate-member/assets/js/um-account.min.js?ver=2.5.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:05 GMT
content-type: application/javascript
last-modified: Sat, 15 Oct 2022 17:38:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 653
date: Wed, 14 Dec 2022 04:31:05 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.2.0
45.148.121.166200 OK 5.5 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.2.0
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (20378)
Hash 7043ddf5055715bc5cb3ba049918d851
3a668bd75075a468380b9d5491aa8ef3c571d4d8
a4ff9f94e6b28177fe41752f091f55c361214c5d134c2e6bfe818121d25473c5
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.2.0 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:05 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5543
date: Wed, 14 Dec 2022 04:31:05 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/js/swmodal.js?ver=6.1.1
45.148.121.166200 OK 429 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/js/swmodal.js?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with CRLF line terminators
Hash 125cfa1d73fefb9da80a8843c1d4f5b8
5487ddd401b7e377094baec6b50202b9cd03a98d
49e8bff5818f797da30172af9715c56664f6ab9cc999e125040237bbea0f14c3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/js/swmodal.js?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:05 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 429
date: Wed, 14 Dec 2022 04:31:05 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/js/swiper-bundle.min.js?ver=6.1.1
45.148.121.166200 OK 37 kB URL HTTP/2 cannabisgasshop.com/wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/js/swiper-bundle.min.js?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (65272), with CRLF line terminators
Hash 3725d4ad5c854f545725286f88039793
abfc012f4e6376dba29e9361cd1ea8dfdb33bf00
66b1efa98a65ba3dc74a0f1d0247d56cec3189f4c22e212d759476b4dd21d4b6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/js/swiper-bundle.min.js?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:05 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 37084
date: Wed, 14 Dec 2022 04:31:05 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/js/main.js?ver=6.1.1
45.148.121.166200 OK 681 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/js/main.js?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with CRLF line terminators
Hash 1b62da78fe9c40f189e4a2726d826b75
e9a9a7fffa457225c47dd88158b96ff75c2eae28
87d67546c805b4ff84dd47070bab9346a0a9acb7a732b2fc7fd572324269c4e3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/js/main.js?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:05 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 681
date: Wed, 14 Dec 2022 04:31:05 GMT
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 14 Dec 2022 04:07:57 GMT
age: 1388
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
45.148.121.166200 OK 4.6 kB URL HTTP/2 cannabisgasshop.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type ASCII text, with very long lines (15660)
Hash 0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:05 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 09:26:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4619
date: Wed, 14 Dec 2022 04:31:05 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/themes/ekko/core/assets/fonts/fa-solid-900.woff2
45.148.121.166200 OK 76 kB URL HTTP/2 cannabisgasshop.com/wp-content/themes/ekko/core/assets/fonts/fa-solid-900.woff2
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type Web Open Font Format (Version 2), TrueType, length 76120, version 330.-16188\012- data
Hash 55eb2a60e8181f0e68b558c991973bf0
af776f52d579da211590e0691d554b88a69dfe61
2c3097237d60f42e800ebe4009c9af144bb19e5581e1c0501c7b259eee7e210c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ekko/core/assets/fonts/fa-solid-900.woff2 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cannabisgasshop.com/wp-content/themes/ekko/core/assets/css/font-awesome.min.css?ver=1.7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:05 GMT
content-type: font/woff2
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-length: 76120
date: Wed, 14 Dec 2022 04:31:05 GMT
vary: User-Agent
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash f3192786a2cefb7f86c9b714482ebb23
bd57ad6e5f90106df6178c9733e7d5c3cd88639f
97a19e291f387fe19baadba8ebe9d854340c5f571dc506caaf04ae36cb5f9e04
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6054
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 04:31:05 GMT
Last-Modified: Wed, 14 Dec 2022 02:50:11 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 280
kit.fontawesome.com/a29229187e.js?ver=1670442545
104.18.22.52200 OK 4.5 kB URL HTTP/2 kit.fontawesome.com/a29229187e.js?ver=1670442545
IP 104.18.22.52:0
Hash 0c286f59a67b20cd61d0830ffc76ad4b
9a647ec553e3cc15a20fff6274f335898d304c41
0226e6e6838840a22872697dfe2a6736e80aeb96f588332eaabaefa560351a85
GET /a29229187e.js?ver=1670442545 HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 04:31:05 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: FzB1ZgaeDNcrxMqpR-DB
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 77943538ff62b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash bfb5d3c071cebab21e6ab8647e84b6ba
ebc1553e88dbe512449a31b3cb4c10c659484d7d
cf794ab56bfa29d8e47637d68f5c82e4c60b855a8f6b772f344a72c712da3c4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 04:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cannabisgasshop.com/wp-content/uploads/2021/11/images-1.jpg
45.148.121.166200 OK 15 kB URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2021/11/images-1.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 259x194, components 3\012- data
Hash 87a426caacaf9a759b0cd8d648aeedb5
afc538393f8ddb5ebdbbacc5ea5f80a0ef074b78
273b556be194fc5c1ac04a326f259fdf2f29a77ebc0f39a53af5e4726c3f45c0
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/images-1.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:05 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:34 GMT
accept-ranges: bytes
content-length: 15070
date: Wed, 14 Dec 2022 04:31:05 GMT
vary: User-Agent
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/uploads/2021/11/maxresdefault-800x726.jpg
45.148.121.166200 OK 108 kB URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2021/11/maxresdefault-800x726.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 800x726, components 3\012- data
Size 108 kB (108067 bytes)
Hash eb6d20deade8f3a562efa4fa6018b452
8fcff3b5e7a5c57b69c147ffa5ddb8fce341f58d
4f51c4e4f31a616857152492fc71972ab0217b704d1c1c3ebbd43d21f76613e9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/maxresdefault-800x726.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:05 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:34 GMT
accept-ranges: bytes
content-length: 108067
date: Wed, 14 Dec 2022 04:31:05 GMT
vary: User-Agent
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/uploads/2020/10/slds.jpg
45.148.121.166200 OK 133 kB URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2020/10/slds.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size 133 kB (132779 bytes)
Hash b7c1d61b4670bb4e8c460c29be2e1853
a36a592df5090fed882fce4a70bb44e4cf67832f
7a99fc8f6b264cc8311aa7584a882ef3646eead1abfec339b37d471cadbf8a7d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2020/10/slds.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:05 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:33 GMT
accept-ranges: bytes
content-length: 132779
date: Wed, 14 Dec 2022 04:31:05 GMT
vary: User-Agent
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/uploads/2021/11/VapePen_FB.630479e3ea12bc618edb0f7dd1073c67.jpg
45.148.121.166200 OK 97 kB URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2021/11/VapePen_FB.630479e3ea12bc618edb0f7dd1073c67.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, progressive, precision 8, 1200x627, components 3\012- data
Hash d385f347210c44b596d2a5969056a40f
0f9fd859240425f56def9fc7f9f9cd1936b6dbee
8b311eded8c8f6d86f576e33b4f7d9634bc36a35384c84a40365e32d12b95c0f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/VapePen_FB.630479e3ea12bc618edb0f7dd1073c67.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:05 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:34 GMT
accept-ranges: bytes
content-length: 97086
date: Wed, 14 Dec 2022 04:31:05 GMT
vary: User-Agent
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:500,400,700%7CJosefin%20Sans:600&display=swap&ver=1664211116
142.250.74.106200 OK 115 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:500,400,700%7CJosefin%20Sans:600&display=swap&ver=1664211116
IP 142.250.74.106:0
Size 115 kB (114610 bytes)
Hash e3c8dde7aa501eb1d6ab57feca4d01c8
3e3cfe08747e7ca044b4967661ad73a06e79fb4f
aa3903d3f254a22df8beedb7d7b823fa98c76c06a12d2cb2f7e76f2d9a105525
GET /css?family=Roboto:500,400,700%7CJosefin%20Sans:600&display=swap&ver=1664211116 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Dec 2022 04:31:05 GMT
date: Wed, 14 Dec 2022 04:31:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.208.13.28101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.13.28:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: M5eLV5RIEHruupdj/MlvYQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Ldo2mMIAqhzeyLW9PU7HNcMrMAo=
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 4557f99d9d9535e0134db96dfe8063b2
c9b446d4f382a8ee3d73b1b2e77c96c3e4787059
74305a78c814edc962f442dbbc14023e0b96c5822d5aa9f4ef4c8e4bc791fc00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 04:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 4557f99d9d9535e0134db96dfe8063b2
c9b446d4f382a8ee3d73b1b2e77c96c3e4787059
74305a78c814edc962f442dbbc14023e0b96c5822d5aa9f4ef4c8e4bc791fc00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 04:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 4557f99d9d9535e0134db96dfe8063b2
c9b446d4f382a8ee3d73b1b2e77c96c3e4787059
74305a78c814edc962f442dbbc14023e0b96c5822d5aa9f4ef4c8e4bc791fc00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 04:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.smartsuppchat.com/loader.js
185.76.9.21200 OK 21 kB URL HTTP/2 www.smartsuppchat.com/loader.js
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash 1c83ff8f5fe0fc7204f5657f0aff9ee4
ab7c8f56d2e22b1b0e79ea52fff975702175666f
fb1e0da6733a347abca920a24c77fa0ca24a0a5527116ff9bf5b8eeef1fcbdde
GET /loader.js HTTP/1.1
Host: www.smartsuppchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 04:31:05 GMT
content-type: application/javascript
last-modified: Wed, 26 Oct 2022 10:30:42 GMT
etag: W/"63590c52-4ae1"
expires: Wed, 26 Oct 2022 10:36:31 GMT
cache-control: max-age=300, public, s-maxage=60
x-accel-expires: @1670992304
server: CDN77-Turbo
x-77-nzt: AblMCRRlTRf/FQAAAA
x-77-nzt-ray: af58563077c1663389519963a01f6323
x-cache: HIT
x-age: 21
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 4557f99d9d9535e0134db96dfe8063b2
c9b446d4f382a8ee3d73b1b2e77c96c3e4787059
74305a78c814edc962f442dbbc14023e0b96c5822d5aa9f4ef4c8e4bc791fc00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 04:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cannabisgasshop.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 13:33:13 GMT
expires: Sat, 09 Dec 2023 13:33:13 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 399472
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
142.250.74.35200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 34112, version 1.0\012- data
Hash c21e7acd53a6d80fa451f1af92d9a492
4096e12b96fa2549e4f169044a49b6ec60214008
6a0d96c353719068401ebbedf7f58e3be1232756327243922b6ab9690a3591bd
GET /s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cannabisgasshop.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:42:15 GMT
expires: Thu, 07 Dec 2023 19:42:15 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Dec 2022 18:11:50 GMT
content-type: font/woff2
age: 550130
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400%2C700%2C500%7CLato:400
142.250.74.106200 OK 25 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400%2C700%2C500%7CLato:400
IP 142.250.74.106:0
Hash 285fc0f5bb417c51a27262222fb4f176
f09061af5751c02de49e5b235d0a0ef2d12e928d
2fb8c6ddcd4c1f284a3024e6c59043e16283399b812688f8bf4ee240905f4170
GET /css?family=Roboto:400%2C700%2C500%7CLato:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Dec 2022 04:31:05 GMT
date: Wed, 14 Dec 2022 04:31:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-shims.min.css?token=a29229187e
172.64.168.22200 OK 20 kB URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-shims.min.css?token=a29229187e
IP 172.64.168.22:0
File type ASCII text, with very long lines (27377)
Hash f19fbaa0f79f030d60d6fc15aa695860
198549eaafcb6d8c07fe945e5aa9ff454ffa25ba
1b0a0c497d67a583c2c1195be32b048a66c17f0a0d82693d3c10e8e1870475f6
GET /releases/v6.2.1/css/free-v4-shims.min.css?token=a29229187e HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cannabisgasshop.com/
Origin: https://cannabisgasshop.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 04:31:05 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:08 GMT
etag: W/"0d00741459c51dd7330d97cd19326a7b"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3017587acd2a65d8bc5fcc9f562d64cc.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: YA9yXRSrP03nqmMzPl9YpuoV7OV9ce9b-Sr-yoX5ikqxFX0q2zAubA==
age: 65872
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B%2FfTrmv6p6M6kWO11sxTS8nDNU3CR9i%2B53nF3YHH0jbhu2E7VGWPQ1KQZsCunvrLb7sK%2FApjykui1j5aioCRwyaEipxbfWbzlqOYjBEGQTyNlHMmWAJrdGMZu9lYa3wwHHJbNNWxDA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7794353d49c088af-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/css/free-v5-font-face.min.css?token=a29229187e
172.64.168.22200 OK 11 kB URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/css/free-v5-font-face.min.css?token=a29229187e
IP 172.64.168.22:0
File type ASCII text, with very long lines (608)
Hash a1bf27f1d860793d28b437c4fab6460f
c62e499accd9313d12d8ea19beadfb6db8c01362
5acf7c39636f5de91772ead0aa1ce63beef068e4e9c77748ae79c05a292658e7
GET /releases/v6.2.1/css/free-v5-font-face.min.css?token=a29229187e HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cannabisgasshop.com/
Origin: https://cannabisgasshop.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 04:31:05 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:07 GMT
etag: W/"15e2713dff942747406520edde3fd0bf"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 af2e366d348958e3f4e4b852661686a4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: vPjdxQ5LfUCIpoLv6ObSJNZew3U4Pjv1xfA3utSo9wieKpOw4SCd7g==
age: 65872
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AkMj60AxRUFJQjVYiUrbkT0KCtArQZD3BPPCKEGGLHxHicq5IhxGoyJgvq4zuD39WuKIRIEKsDKjJ9h%2BULKbFoiJYevJ%2BWrSFY0Dr2OfDmuPUadVpxCoM%2FvfANHQ04P4ioeaO6kY0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7794353d49bc88af-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 4557f99d9d9535e0134db96dfe8063b2
c9b446d4f382a8ee3d73b1b2e77c96c3e4787059
74305a78c814edc962f442dbbc14023e0b96c5822d5aa9f4ef4c8e4bc791fc00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 04:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 4557f99d9d9535e0134db96dfe8063b2
c9b446d4f382a8ee3d73b1b2e77c96c3e4787059
74305a78c814edc962f442dbbc14023e0b96c5822d5aa9f4ef4c8e4bc791fc00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 04:31:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/acme/v21/RrQfboBx-C5_XxrBbg.woff2
142.250.74.35200 OK 8.2 kB URL HTTP/2 fonts.gstatic.com/s/acme/v21/RrQfboBx-C5_XxrBbg.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 8236, version 1.0\012- data
Hash 06efd00b7f74385c105f230dffa6cca0
1ddd4e5f12e2efb9dc91fd179c39809e1567ca9b
bb814ac86e7f409154ced702b9f3543761d09410e837ec728242e6b980a26aa0
GET /s/acme/v21/RrQfboBx-C5_XxrBbg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cannabisgasshop.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 00:54:36 GMT
expires: Fri, 08 Dec 2023 00:54:36 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Dec 2022 17:50:27 GMT
content-type: font/woff2
age: 531389
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash fd9aebd18801f9595e3be804299f621e
bf5eb57336b977bd7f1873561f556f0ea4abc24d
0a1e30f8109436b203ad0d39a97a8b46951634e78850d939e5231c0241764c5b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=135990
Date: Wed, 14 Dec 2022 04:31:06 GMT
Etag: "6398bb1e-1d7"
Expires: Thu, 15 Dec 2022 18:17:36 GMT
Last-Modified: Tue, 13 Dec 2022 17:49:18 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EDaSE4mIom-m9kS741DVpIcCWdTfMpLhnyWAx7PgXr24TA__1l-_Zg==
Age: 1698
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash f3192786a2cefb7f86c9b714482ebb23
bd57ad6e5f90106df6178c9733e7d5c3cd88639f
97a19e291f387fe19baadba8ebe9d854340c5f571dc506caaf04ae36cb5f9e04
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6055
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 04:31:06 GMT
Last-Modified: Wed, 14 Dec 2022 02:50:11 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 280
cannabisgasshop.com/wp-content/plugins/revslider/public/assets/css/openhand.cur
45.148.121.166200 OK 326 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/revslider/public/assets/css/openhand.cur
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @7x5\012- data
Hash b06c243f534d9c5461d16528156cd5a8
bb22807a7c23dae7d007673b407850438856bbfa
080627fa359156339e79f118fa66a6937f09ff679fe87e8afa473b95c8168d35
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/openhand.cur HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Mon, 26 Sep 2022 16:47:51 GMT
accept-ranges: bytes
content-length: 326
date: Wed, 14 Dec 2022 04:31:06 GMT
vary: User-Agent
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/uploads/2021/11/images-2.jpg
45.148.121.166200 OK 14 kB URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2021/11/images-2.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 307x164, components 3\012- data
Hash 03c795fee42b64af1eb5db3eb98386e2
600ee3ea81116ad11a90b0d052704894efafafb5
3fa4e9e622f9527dbb4a61ebb82ca2738e63ab9b8fae1dcaefe8c6d6050a2241
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/images-2.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:06 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:34 GMT
accept-ranges: bytes
content-length: 14410
date: Wed, 14 Dec 2022 04:31:06 GMT
vary: User-Agent
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/uploads/2021/11/slld.jpg
45.148.121.166200 OK 60 kB URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2021/11/slld.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 817x460, components 3\012- data
Hash dcb309e8cb2a4756205429c987bfe696
377039f285e0ae329f19c8642f2df7dc7fe67e23
7c3b446a20e314d69bcc86123c0d1fd458fdebbcd28d52d077b8b10e567d3401
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/slld.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:06 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:34 GMT
accept-ranges: bytes
content-length: 60066
date: Wed, 14 Dec 2022 04:31:06 GMT
vary: User-Agent
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/uploads/2021/11/cropped-logo-192x192.jpg
45.148.121.166200 OK 12 kB URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2021/11/cropped-logo-192x192.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left], baseline, precision 8, 192x192, components 3\012- data
Hash 5d89c3d4a6103b8c5ccbd5080be17c66
0666113c4408d7ee1f3dfd51662e98507b4b3865
baa438d3e4475c5b7049fbb3edf571348e7d566ceaa5240d0527eddee3c83edf
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/cropped-logo-192x192.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:06 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:34 GMT
accept-ranges: bytes
content-length: 12384
date: Wed, 14 Dec 2022 04:31:06 GMT
vary: User-Agent
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/uploads/2021/11/cropped-logo-32x32.jpg
45.148.121.166200 OK 7.9 kB URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2021/11/cropped-logo-32x32.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, orientation=upper-left], baseline, precision 8, 32x32, components 3\012- data
Hash 4e1a99e1a1878db2cc34f325882dde63
555e47023e15862cf0878c8b187006db04e78243
0f446a76a4fd6c0428446e144ff228153b388e26b41a86d23e6dbdeb75b75515
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/cropped-logo-32x32.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:07 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:34 GMT
accept-ranges: bytes
content-length: 7926
date: Wed, 14 Dec 2022 04:31:07 GMT
vary: User-Agent
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 26c6025b12d33a0674edeef8c1491ff6
084f3e27246d3f10c36f8251034a32f71e4905be
a3b48719537321a85667771544ce54728ebdb8d3145a8db154997b6376dba12f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3B48719537321A85667771544CE54728EBDB8D3145A8DB154997B6376DBA12F"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14342
Expires: Wed, 14 Dec 2022 08:30:09 GMT
Date: Wed, 14 Dec 2022 04:31:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 26c6025b12d33a0674edeef8c1491ff6
084f3e27246d3f10c36f8251034a32f71e4905be
a3b48719537321a85667771544ce54728ebdb8d3145a8db154997b6376dba12f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3B48719537321A85667771544CE54728EBDB8D3145A8DB154997B6376DBA12F"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14342
Expires: Wed, 14 Dec 2022 08:30:09 GMT
Date: Wed, 14 Dec 2022 04:31:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 26c6025b12d33a0674edeef8c1491ff6
084f3e27246d3f10c36f8251034a32f71e4905be
a3b48719537321a85667771544ce54728ebdb8d3145a8db154997b6376dba12f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3B48719537321A85667771544CE54728EBDB8D3145A8DB154997B6376DBA12F"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14342
Expires: Wed, 14 Dec 2022 08:30:09 GMT
Date: Wed, 14 Dec 2022 04:31:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 26c6025b12d33a0674edeef8c1491ff6
084f3e27246d3f10c36f8251034a32f71e4905be
a3b48719537321a85667771544ce54728ebdb8d3145a8db154997b6376dba12f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3B48719537321A85667771544CE54728EBDB8D3145A8DB154997B6376DBA12F"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14342
Expires: Wed, 14 Dec 2022 08:30:09 GMT
Date: Wed, 14 Dec 2022 04:31:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a9bf1ea-f91a-4c42-8c1c-c7175ed78729.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a9bf1ea-f91a-4c42-8c1c-c7175ed78729.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f9f2ee85d516d30f1b72e433a730708
cf4be3d89fc1aa654e05ea912b9d53da1fba432b
a896719abecf8c91f439d92617790a97b4f55c1ec7465b6d3ae1432fb1ff682b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a9bf1ea-f91a-4c42-8c1c-c7175ed78729.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8070
x-amzn-requestid: b37b2207-d8b6-4b9d-8e8f-238c32d28df8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGqNWEXZoAMF6dA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398f0bb-481700fb00ffeb3672941b20;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:38:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7DXKz2LBnEOCLSgSfVsSK9oMtWWciutrd8JcfBmrwl0AI8KAdbDoqA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 21:56:34 GMT
age: 23673
etag: "cf4be3d89fc1aa654e05ea912b9d53da1fba432b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5d9c5ff-aaa2-4c2a-ab2b-661f84126bf7.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5d9c5ff-aaa2-4c2a-ab2b-661f84126bf7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 86bce3d677c0dd541440ebf38920020d
f11e21b6ad97e07b1d7103ad40a2e158e06fda73
9e23bc16cd1402d9124ebb9e625a5580f677ca9e008d3e04dc95080072fd1df4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5d9c5ff-aaa2-4c2a-ab2b-661f84126bf7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7104
x-amzn-requestid: b1117224-be51-4e21-8b3b-01e5485f0af0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAD2yH4loAMFuWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964cf8-1382e1a6710239ec629eedb8;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:34:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Qd7ZLBasMl-7gVScLfJ4kxx2fbcyeL21COqu3913iENoLFvK8wkEvA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 22:16:33 GMT
age: 22474
etag: "f11e21b6ad97e07b1d7103ad40a2e158e06fda73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb91a48bd-4125-4a30-8a37-7ba4692b71f2.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb91a48bd-4125-4a30-8a37-7ba4692b71f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3acfbf939eab432007f8315f2376f563
e14ad15ba9151accd71ea1c4b312d3d5c0a7f62c
d02ae4fa55f6ba4b1ca2186eb31a40018eada1e1491efdc4a95ffba4c35afa07
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb91a48bd-4125-4a30-8a37-7ba4692b71f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5108
x-amzn-requestid: cba619a3-ef9a-420b-b280-2b53608aad53
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGpL0G93IAMF59Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398ef18-7cc4f81a16016a8d63156bff;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:31:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3JmSN0RECaKzxPmndCUHm_4YLojawf7kw8A43yj1h1IfuZQKsVl6eg==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 21:56:32 GMT
age: 23675
etag: "e14ad15ba9151accd71ea1c4b312d3d5c0a7f62c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88d6f0a9-7f6f-4650-8d61-2ed3133aaf86.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88d6f0a9-7f6f-4650-8d61-2ed3133aaf86.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ddda117cee658be4cfe3a5d04a88c46
a167e2211732837cf07b3b9a0b33610492ab8a47
bc5fae9d44914c804f82d1e0f90a01fe14d86063da59292bf78100f539b3f7a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88d6f0a9-7f6f-4650-8d61-2ed3133aaf86.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13205
x-amzn-requestid: 23929642-4b48-40f4-8847-854dfca772b8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGpKoH_4oAMF_8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398ef10-19ad3c327c190b9227d232a2;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:30:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Vx7sZ090BsrHPpf5WTWPKYaCNlYvuh5chiNxw2anH2Kd1WovN9Dc4w==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 21:49:29 GMT
age: 24098
etag: "a167e2211732837cf07b3b9a0b33610492ab8a47"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91bfedca-f74c-4bc0-9808-bfbd384a8508.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91bfedca-f74c-4bc0-9808-bfbd384a8508.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 52310941c29a5fa39c1f50ecad222db4
164f9c5dc80de2448be587cc9e0b6b2865be6c1c
abfaee5861e073a3448d4509137a8ae41c87810dbdc1a226870e4d67b9b372d4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91bfedca-f74c-4bc0-9808-bfbd384a8508.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7515
x-amzn-requestid: 22dd6bae-36a5-4ba0-b397-379b3d9bdc1b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGpL9EHSIAMF5gA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398ef19-362a6bc00c386225614a01f3;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:31:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: l3954iwz4TwRHMAh5kIDd9SaSiLmo65LhhJIDk4i9bfXn3k-xh34kg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 21:59:56 GMT
age: 23471
etag: "164f9c5dc80de2448be587cc9e0b6b2865be6c1c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75239c2b-388d-496a-beed-8bd1140a34de.webp
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75239c2b-388d-496a-beed-8bd1140a34de.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 577cee5a6996494cac7908537e16b192
c598173a2cf846c6cb572b19c754929230318cad
3d2cec49a818850f1a30e6087f8654dceea8b6f16221e2bb15fb9d7e90f6fe96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75239c2b-388d-496a-beed-8bd1140a34de.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5106
x-amzn-requestid: eb043760-3b4b-4b84-b2b0-f0fd98d3e47d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGpLoEP-oAMFddA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398ef17-4b7553a0354fc9a021f0fa50;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:31:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ma2_pbWp6bdRX_FjDKvUK4GI2MbnqHDVWnGUc4xZESPpZjBBH_tQJw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 21:51:15 GMT
age: 23992
etag: "c598173a2cf846c6cb572b19c754929230318cad"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/webfonts/free-fa-regular-400.woff2
172.64.168.22200 OK 25 kB URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/webfonts/free-fa-regular-400.woff2
IP 172.64.168.22:0
File type Web Open Font Format (Version 2), TrueType, length 25244, version 770.768\012- data
Hash b0b42dfe405f3f5dadcc952d941a6f1d
066cc6612349ef91ff48e37c4ceddd2a69f50672
5074bf724d70c107946d158f07964ac24bb3225029bacdf8ece02fb29df8a9f1
GET /releases/v6.2.1/webfonts/free-fa-regular-400.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cannabisgasshop.com
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 04:31:09 GMT
content-type: font/woff2
content-length: 25244
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:15:22 GMT
etag: "b0b42dfe405f3f5dadcc952d941a6f1d"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 c2195f43dfb390d43998c2e5488a25d2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 8Vyq82ZxWKNFHHyqG6aZIJirvV0GJdO50ENq1jpi7nMWIm-2TmTiKQ==
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yEIaLDG2AxOoSfyhwqhBKR304TUCqpe2%2B0g5EYQbOa7aEdCJr2lAUZaRSAoKsd%2F%2BTUdg7KjwaxChK8Xt2hHIaJvzKhhcWJirHSZ%2FtgRxfFyfvgHcuRNjzOggN5QXFPa9hkjK1XFOPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77943553bf2288af-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/webfonts/free-fa-solid-900.woff2
172.64.168.22200 OK 150 kB URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/webfonts/free-fa-solid-900.woff2
IP 172.64.168.22:0
File type Web Open Font Format (Version 2), TrueType, length 150500, version 770.768\012- data
Size 150 kB (150500 bytes)
Hash 69a76555beae5c43a59559396c1aeb54
7d2759002c67a66fc38a72dd0e395e2da3d41474
1494e2691e1c13a3f35cbc3e1b56c5187c10ffe220d1fdc58d99494a666244d4
GET /releases/v6.2.1/webfonts/free-fa-solid-900.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cannabisgasshop.com
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 04:31:09 GMT
content-type: font/woff2
content-length: 150500
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:15:23 GMT
etag: "69a76555beae5c43a59559396c1aeb54"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 d4ae29ce8264e419547c36ebbfbca8ea.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: KkxEPJDohBD_Vg5y6S7Z6C8o3Du3CrsayPBN-BHEKXDbCNO-ElfESA==
age: 65876
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yG%2BxKcRA46WXaQCzeZeynltXikYoF4H7OPsq3q8eqpToUzBWE2MqunFhZ0rH1h%2B1Tk9blE8LlGXlvs8lYI21GSy70sBzIeolUMwF7IDWkEAPmRSu8EX0uZ7D8fefk4UvTIUoBhf7ig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77943553bf1c88af-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/webfonts/free-fa-brands-400.woff2
172.64.168.22200 OK 108 kB URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/webfonts/free-fa-brands-400.woff2
IP 172.64.168.22:0
File type Web Open Font Format (Version 2), TrueType, length 107656, version 770.768\012- data
Size 108 kB (107656 bytes)
Hash d3c93d772e2ec6d8c7c7e726f92a7dbf
4bed608cc63253a50fe7e1abbb28396066902d0e
4f04c94b287d7dfdfad36e60915eefbef7127a073546e6c21512b5052c6ac48d
GET /releases/v6.2.1/webfonts/free-fa-brands-400.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cannabisgasshop.com
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 14 Dec 2022 04:31:09 GMT
content-type: font/woff2
content-length: 107656
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:15:23 GMT
etag: "d3c93d772e2ec6d8c7c7e726f92a7dbf"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 5bd7968904465df8c4b1f4631f2e6f04.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 2egP8IKKefCxRBCbJSW6EjXhKTwyRGoEl2x8M4GwJjjGL42aCzD_Fg==
age: 65876
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JPQjJ1jjLbopeTwEDi1UPUYVTVI2c2IdFyNmfvGpR7IBF2YPGXdIwleE07jUqp%2BQ98bp3cIPVVT3SLZEUKPegVILcMOnvDssiXmeJ9TqtmgmahIexeJ57MtfB77QOU%2FMU5Y5gr%2F%2FCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77943553cf2b88af-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 691c269359138a971b402a88aa5a1b9b
902e857170386e99d57f462bed4e793ffa33e38d
2ac1f3c74821672d91f295b46757ca6b459cacd63dbc62df0183ef93a140b2d0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=113937
Date: Wed, 14 Dec 2022 04:31:09 GMT
Etag: "6398669f-1d7"
Expires: Thu, 15 Dec 2022 12:10:06 GMT
Last-Modified: Tue, 13 Dec 2022 11:48:47 GMT
Server: ECS (dcb/7F38)
X-Cache: Miss from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _p1BubjtbXjn5jqPXhXOYRO1aqb54ZCWWZEzo1wmiHIPUjacDDtZSw==
Age: 1280
widget-v2.smartsuppcdn.com/static/js/6.d19cf3ac.chunk.js
185.76.9.17200 OK 162 kB URL HTTP/2 widget-v2.smartsuppcdn.com/static/js/6.d19cf3ac.chunk.js
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (65462)
Size 162 kB (162367 bytes)
Hash 11a7f283add82913d42fe3e2591077ee
1b4ccecfdc5ef6fb2fa4f887a55a01d13b18a082
78fd6c121b20fe19a8b9102fcca57b24802a10d5c894cc0fb5dcb1c849ef6e6a
GET /static/js/6.d19cf3ac.chunk.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 04:31:09 GMT
content-type: application/javascript
last-modified: Mon, 12 Dec 2022 08:56:14 GMT
etag: W/"6396ecae-8312d"
expires: Tue, 12 Dec 2023 09:08:08 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1702372088
server: CDN77-Turbo
x-77-nzt: AblMCQ3uaCn/FWICAA
x-77-nzt-ray: c0a4cc282ed604408d5199632cd9d51f
x-cache: HIT
x-age: 156181
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/themes/ekko/core/assets/fonts/iconsmind.woff
45.148.121.166200 OK 1.2 MB URL HTTP/2 cannabisgasshop.com/wp-content/themes/ekko/core/assets/fonts/iconsmind.woff
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
File type Web Open Font Format, TrueType, length 1177484, version 0.0\012- data
Size 1.2 MB (1177484 bytes)
Hash 2864469c0e8a84417f318ee2cac54b04
0d48469cec6b87fc8665f2dc05c53a7e7c5f3826
55167ff2dba40b2eb3734d4653b6a3b25a33094cfce64ffb09a23205f33777f7
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/ekko/core/assets/fonts/iconsmind.woff HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://cannabisgasshop.com/wp-content/themes/ekko/core/assets/css/iconsmind.min.css?ver=1.7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:10 GMT
content-type: font/woff
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-length: 1177484
date: Wed, 14 Dec 2022 04:31:10 GMT
vary: User-Agent
X-Firefox-Spdy: h2
embed.tawk.to/638252beb0d6371309d141d3/1giqh6hl1
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/638252beb0d6371309d141d3/1giqh6hl1
IP 104.22.24.131:0
GET /638252beb0d6371309d141d3/1giqh6hl1 HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cannabisgasshop.com
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 04:31:06 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-637ddf31c8f"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7794353beb390b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/css/swmodal.css?ver=6.1.1
45.148.121.166200 OK 0 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/css/swmodal.css?ver=6.1.1
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/woo-product-carousel-slider-and-grid-ultimate/assets/css/swmodal.css?ver=6.1.1 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 16:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 706
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Rubik:wght@400;500;600;700&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Rubik:wght@400;500;600;700&display=swap
IP 142.250.74.106:0
GET /css2?family=Rubik:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Dec 2022 04:31:05 GMT
date: Wed, 14 Dec 2022 04:31:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
widget-v2.smartsuppcdn.com/static/js/runtime-main.4cc00f7b.js
185.76.9.17200 OK 0 B URL HTTP/2 widget-v2.smartsuppcdn.com/static/js/runtime-main.4cc00f7b.js
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /static/js/runtime-main.4cc00f7b.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 04:31:09 GMT
content-type: application/javascript
last-modified: Mon, 12 Dec 2022 08:56:14 GMT
etag: W/"6396ecae-9bd"
expires: Tue, 12 Dec 2023 09:08:13 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1702372093
server: CDN77-Turbo
x-77-nzt: AblMCQ1iB57/EGICAA
x-77-nzt-ray: c0a4cc282ed604408d5199637e31491f
x-cache: HIT
x-age: 156176
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
widget-v2.smartsuppcdn.com/static/js/main.8c0ccce4.chunk.js
185.76.9.17200 OK 0 B URL HTTP/2 widget-v2.smartsuppcdn.com/static/js/main.8c0ccce4.chunk.js
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /static/js/main.8c0ccce4.chunk.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 04:31:09 GMT
content-type: application/javascript
last-modified: Mon, 12 Dec 2022 08:56:14 GMT
etag: W/"6396ecae-1c9be"
expires: Tue, 12 Dec 2023 09:08:08 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1702372088
server: CDN77-Turbo
x-77-nzt: AblMCQ0j2i3/FWICAA
x-77-nzt-ray: c0a4cc282ed604408d5199635d279d1f
x-cache: HIT
x-age: 156181
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/css/free.min.css?token=a29229187e
172.64.168.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/css/free.min.css?token=a29229187e
IP 172.64.168.22:0
GET /releases/v6.2.1/css/free.min.css?token=a29229187e HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cannabisgasshop.com/
Origin: https://cannabisgasshop.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 04:31:05 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:08 GMT
etag: W/"2dbe34367e935e2684b01124b0860d71"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2195f43dfb390d43998c2e5488a25d2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 29RVlD7AwHq9JT0WL5Oedvgp8cJyVBHO9qJh-uLAHPakIGx6atLLZA==
age: 65872
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xwwgKj5ivG5LdSVorHJyfVSiDt3t6SkmhX33IahouezF74yHRwTpml5hTF9j6x2dvDotoh1upNzkbw7kiLSEp2gWCwa%2BRCTHhtcWfy0cYrKbFzB1Ngj30harUCaVPIoyKuDdGSmh0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7794353d49ba88af-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Acme%3Aregular&ver=6.2.0
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Acme%3Aregular&ver=6.2.0
IP 142.250.74.106:0
GET /css?family=Acme%3Aregular&ver=6.2.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Dec 2022 04:31:05 GMT
date: Wed, 14 Dec 2022 04:31:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/uploads/2021/11/delta8gushers_1024x-350x250.jpg
45.148.121.166200 OK 0 B URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2021/11/delta8gushers_1024x-350x250.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/delta8gushers_1024x-350x250.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:34 GMT
accept-ranges: bytes
content-length: 75394
date: Wed, 14 Dec 2022 04:31:04 GMT
vary: User-Agent
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.10
45.148.121.166200 OK 0 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.10
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.10 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 16:47:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 78250
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/uploads/2021/11/2326260385-350x250.jpg
45.148.121.166200 OK 0 B URL HTTP/2 cannabisgasshop.com/wp-content/uploads/2021/11/2326260385-350x250.jpg
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/11/2326260385-350x250.jpg HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: image/jpeg
last-modified: Sat, 15 Oct 2022 17:31:34 GMT
accept-ranges: bytes
content-length: 135982
date: Wed, 14 Dec 2022 04:31:04 GMT
vary: User-Agent
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
45.148.121.166200 OK 0 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 17:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2817
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
cannabisgasshop.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
45.148.121.166200 OK 0 B URL HTTP/2 cannabisgasshop.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 45.148.121.166:0
ASN #64425 SKB Enterprise B.V.
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: cannabisgasshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Thu, 14 Dec 2023 10:31:04 GMT
content-type: application/javascript
last-modified: Sat, 26 Nov 2022 17:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3706
date: Wed, 14 Dec 2022 04:31:04 GMT
X-Firefox-Spdy: h2
bootstrap.smartsuppchat.com/widget/86e0bf3d139f4bab2e0847b635411eef9f3b2d05.json
3.123.248.97200 OK 0 B URL HTTP/2 bootstrap.smartsuppchat.com/widget/86e0bf3d139f4bab2e0847b635411eef9f3b2d05.json
IP 3.123.248.97:0
GET /widget/86e0bf3d139f4bab2e0847b635411eef9f3b2d05.json HTTP/1.1
Host: bootstrap.smartsuppchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://cannabisgasshop.com
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 04:31:06 GMT
content-type: application/json; charset=utf-8
x-version: 53ea911f61896be6992922257e82b4783f6cf210
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: private, max-age=0, must-revalidate
x-hit: redis
etag: "46d-JQdr0cQF4vDt1U9k+DFoX7QVDLk"
content-encoding: br
X-Firefox-Spdy: h2
widget-v2.smartsuppcdn.com/asset-manifest.json
185.76.9.17200 OK 0 B URL HTTP/2 widget-v2.smartsuppcdn.com/asset-manifest.json
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /asset-manifest.json HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://cannabisgasshop.com
Connection: keep-alive
Referer: https://cannabisgasshop.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 14 Dec 2022 04:31:09 GMT
content-type: application/json
last-modified: Mon, 12 Dec 2022 08:56:14 GMT
etag: W/"6396ecae-6ce"
expires: Mon, 12 Dec 2022 09:14:07 GMT
cache-control: max-age=300, public, s-maxage=60
access-control-allow-origin: *
x-accel-expires: @1670992271
server: CDN77-Turbo
x-77-nzt: AblMCQ2zgmL/OgAAAA
x-77-nzt-ray: c0a4cc28bcd9a03f8d5199635e1eef1c
x-cache: HIT
x-age: 58
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2