r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 517693963cc46e7a35a054296d0edfd5
11dfcd7e118e5f8d31e664e56ac29c57f973b8b3
ece269e8b9be8a5839d75c1343823d68b96930c593c2e3e8d522999176ee3149
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9229
Expires: Thu, 01 Sep 2022 16:59:21 GMT
Date: Thu, 01 Sep 2022 14:25:32 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 01 Sep 2022 13:41:16 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2NXU-CUiROan88S2Mrw74BzGz_pne76RgswrFDsvfzcwB6x2YGigIQ==
Age: 2656
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
date: Thu, 01 Sep 2022 01:15:17 GMT
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rS2jseXt8QWnyP4XxrvsKC0lSFbf3YgK3qvzwBU11rIIdIqiZuEUMg==
age: 47416
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Sep 2022 14:25:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 01 Sep 2022 13:57:05 GMT
Expires: Thu, 01 Sep 2022 13:57:40 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zd80gkFEzMVMly2U4FKnI-RVyviFwZ3OYHGtpAWlSH7C-7XHNaTZWg==
Age: 1708
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2eb022bbcb69557dc09477b624814e87
6030f2c630a01fbc027c887d31e696f84cc60c97
d7a508e276f0ca1b58b6af39720fb7ebb26fb38df50a159eb82d1d2542610b85
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3710
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 14:25:33 GMT
Last-Modified: Thu, 01 Sep 2022 13:23:43 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.40.161.235101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.40.161.235:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BZmcwE+oc2tGnk0/LdTPYQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ukSv9Bap9e6502+Xou8Jp4dQeDA=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14005
Expires: Thu, 01 Sep 2022 18:18:59 GMT
Date: Thu, 01 Sep 2022 14:25:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14005
Expires: Thu, 01 Sep 2022 18:18:59 GMT
Date: Thu, 01 Sep 2022 14:25:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14005
Expires: Thu, 01 Sep 2022 18:18:59 GMT
Date: Thu, 01 Sep 2022 14:25:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14005
Expires: Thu, 01 Sep 2022 18:18:59 GMT
Date: Thu, 01 Sep 2022 14:25:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6b2c036e67f8c39c136f6c69b0922eb1
98e27f0dafd7b1b49e159ee038b41a811096a2d0
9dc9e00e6f63a22dd85f54ba26326a9733f6c1d7a19c7b1636f14fca2722e6eb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8009
x-amzn-requestid: 6d716dae-efa3-449a-a505-fb5f3d99c2df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XsvlaFEaoAMFwDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e92ef-708228ce7e1fb3cb770cb490;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 22:45:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Gwk8Z-MzgO1APlMgvdN3-5KGdQ2K4I959yy-YdbVUD5AOZTQ0mjYhQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 00:00:46 GMT
age: 51888
etag: "98e27f0dafd7b1b49e159ee038b41a811096a2d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff48464b4-ee99-46c1-8a3e-aa01e1b670f8.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff48464b4-ee99-46c1-8a3e-aa01e1b670f8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 494ba0180ab4b2b80ca11aeb67ae69ab
2082e9f809e97bbcaf6ff11846398aca472f9f0f
c6a707e79315677912fa7cf6ab592abf4377aa76e51ae5149d4bae7e663d6801
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff48464b4-ee99-46c1-8a3e-aa01e1b670f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11031
x-amzn-requestid: bd49a4c9-205b-4553-90a3-308ebc6be818
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv4hOHzVoAMFl8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd46e-783de8c2461d7cb9167f734e;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fo9YF1JJrYUMp7y9uM7av78_409D9n4ZWSaeydPAH7HuQzd8vOPiRg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:36:46 GMT
age: 60528
etag: "2082e9f809e97bbcaf6ff11846398aca472f9f0f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg
34.120.237.76200 OK 17 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 12756903aaa74164feb5f8525398ca36
9fef9b071daea6793cbbdfe391254ac4326b1aa2
6d474a6d96aebfed43a4f6812f18a1be8d100c590f75eb0fbf4ec7277dd0c442
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16818
x-amzn-requestid: 6950a3c5-2cdc-4a21-854c-10d925e32ecd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XiYLvHRSIAMFotQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a6d7e-6e98b9a77e592bd01afb1d97;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 19:16:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3eBLhLH4APXLyj9kLHXNCFT9ccS_bnBp5INvMI93IFvOuBMERe_GgQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 13:35:58 GMT
age: 2976
etag: "9fef9b071daea6793cbbdfe391254ac4326b1aa2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16c55402-8dff-4d38-9bf3-5867acbc9770.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16c55402-8dff-4d38-9bf3-5867acbc9770.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 374a3607782ca6a016be0fbfa8d38f7d
823d7261c40f8c5bf65a7e59544da90d88546c1f
d9ab7b8bfe0389c5fda3ad06b5c913d470d89f5921fc950a8c7245d512dc1b02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16c55402-8dff-4d38-9bf3-5867acbc9770.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9593
x-amzn-requestid: 16a73c03-8888-44cb-a193-551632785ef3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xt1fGFXnoAMFWJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630f02c6-4d89d9310800fa0d726d7897;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 06:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rk5TPlJMuzx_RxyADDnAamrWWTB20LH0LvzIqLvLyBod2FzAenevGA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:11 GMT
age: 60503
etag: "823d7261c40f8c5bf65a7e59544da90d88546c1f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bffab86-e623-4ccd-9297-981c9dc6e4cd.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bffab86-e623-4ccd-9297-981c9dc6e4cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b0f6c541f6335bb709d2270147bd5aed
b691ef5e7a302e2678302818130a9637c3efbe3a
e63922331a4463519e6df77ae7a1ad3316a36e54dd03c00ff6b119ee3fa684c5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bffab86-e623-4ccd-9297-981c9dc6e4cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 79dc68ea-ea2e-4eab-bab9-1c89b0a955a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjMSvHJ-oAMF6Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630ac0de-2370cf5363d5f308121f0ca4;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 01:11:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1oGbbOSjJza6WWt0IDMqwsZkCk07uevGo0wML4y5LiexzhqlcHt3lA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 14:45:21 GMT
age: 85213
etag: "b691ef5e7a302e2678302818130a9637c3efbe3a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0198fd1f-b00c-442e-9184-8ce8ebf9593c.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0198fd1f-b00c-442e-9184-8ce8ebf9593c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba98f63d9bef7deebb9a8d1b3126d396
d97a8b0e4b4dbc60dfc9eb15ba28f68e8e3731ef
b8f6c1c6b34ec452a6aa3090c30ebf3a68cb3b4d45a7b134ed32e1959f4f0682
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0198fd1f-b00c-442e-9184-8ce8ebf9593c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10777
x-amzn-requestid: 2e9a081f-2ae4-49b9-b9d4-79cae2b7eae9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3kRFiJIAMFgNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2e7-2f9eec0b239ceb6d617431b6;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: w9ACDg_Mxbl2GSEDeDAqdMlKjkCiMyWExvCUa2jHquaQy6U-4EJtbQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:19 GMT
age: 60495
etag: "d97a8b0e4b4dbc60dfc9eb15ba28f68e8e3731ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.shahcatering.co.uk/
176.74.27.225200 OK 40 kB IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3884), with CRLF, LF line terminators
Hash 6fdef59064c1abb9b70d1609a340885a
37eb8ed1818735a13912031bae228f36ff8779be
08d359636d50202f2d930c3c0deaf0f7d4ae15ba3ed67d8998b028ba4179b22b
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
X-Powered-By: PHP/7.3.33
Link: <http://www.shahcatering.co.uk/wp-json/>; rel="https://api.w.org/", <http://www.shahcatering.co.uk/>; rel=shortlink
X-ET-API-VERSION: v1
X-ET-API-ROOT: http://www.shahcatering.co.uk/wp-json/tribe/tickets/v1/
X-ET-API-ORIGIN: http://www.shahcatering.co.uk
X-TEC-API-VERSION: v1
X-TEC-API-ROOT: http://www.shahcatering.co.uk/wp-json/tribe/events/v1/
X-TEC-API-ORIGIN: http://www.shahcatering.co.uk
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/event-tickets/common/src/resources/css/common-skeleton.min.css?ver=4.11.3
176.74.27.225200 OK 7.5 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/event-tickets/common/src/resources/css/common-skeleton.min.css?ver=4.11.3
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (26446), with no line terminators
Hash cf37628491ed64236fbe85e08d18ee9f
bff887fd74deee231b85a9e52f3e17d92b7f7495
1f9a853c21a4d3ed6a2484725970a5da722cc26bd727222120b6643e11af152a
GET /wp-content/plugins/event-tickets/common/src/resources/css/common-skeleton.min.css?ver=4.11.3 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 7522
Last-Modified: Wed, 04 Mar 2020 14:18:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6
176.74.27.225200 OK 659 B URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
Hash a27d0911286a5dfb3f0957ec631f7f57
ce33a98f24b1fbf04648f57b17a4ab1c630a98db
a92277f60406738c9a31154732252c9c74055bb4d0f01b6b58deb8d102314a4e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 659
Last-Modified: Wed, 04 Mar 2020 14:17:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-includes/css/dist/block-library/theme.min.css?ver=5.3.12
176.74.27.225200 OK 687 B URL HTTP/1.1 www.shahcatering.co.uk/wp-includes/css/dist/block-library/theme.min.css?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (1939), with no line terminators
Hash e11d2889a9580d6c9e8ca29f6ec91ff7
623270b08afc6870973b753cf39ecf50b9cb05a4
2dd642e0897e59f5966b0082913a8ee08e81922e3241f3557f82c2adfa04030c
GET /wp-includes/css/dist/block-library/theme.min.css?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 687
Last-Modified: Thu, 19 Sep 2019 15:19:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/pe-icon-7-stroke/css/pe-icon-7-stroke.css?ver=5.3.12
176.74.27.225200 OK 1.8 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/pe-icon-7-stroke/css/pe-icon-7-stroke.css?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
Hash d513383d5001c1352b8cc6b720fea3d1
4973334aa7978dfb14280b59094f1c508c687139
b1bac16d539b8bd62dad341f475f4ff05249c0854ac4d0c3cca8d2a749c8665d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/rica/assets/plugins/pe-icon-7-stroke/css/pe-icon-7-stroke.css?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 1768
Last-Modified: Wed, 04 Mar 2020 14:15:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/pe-icon-7-stroke/css/helper.css?ver=5.3.12
176.74.27.225200 OK 1.1 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/pe-icon-7-stroke/css/helper.css?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
Hash d4663b73decde313d1015fb8b5b3e7c2
8823db54088a9666d7470a55bc4e6370047440de
47fef351f2ca6f0cc121a8f7922870e0a69638a481a952024e19c01b50f44266
GET /wp-content/themes/rica/assets/plugins/pe-icon-7-stroke/css/helper.css?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 1083
Last-Modified: Wed, 04 Mar 2020 14:15:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/rica-framework/core/xmenu/assets/css/amination.css?ver=5.3.12
176.74.27.225200 OK 1.6 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/rica-framework/core/xmenu/assets/css/amination.css?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
Hash e1b310fddd30ace21410f5c3814b2d6c
de1bdd0bc34026a7497b93569479dd72f09fc199
2a50fbe1090a245b842312e9e8e313707f45a318c0bb6fee1c923d3da4a734b2
GET /wp-content/plugins/rica-framework/core/xmenu/assets/css/amination.css?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 1588
Last-Modified: Wed, 04 Mar 2020 14:19:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3
176.74.27.225200 OK 12 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Hash c220a68e588d62a720ffacfa52ad31d3
430b0eb0bdf72cebd13d43d18b8a276847b7a786
c12f9fb0d32fe152c3306f864f398f965b24ac6ffe01697b2b05fac214d2991a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 12242
Last-Modified: Wed, 04 Mar 2020 14:18:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/event-tickets/common/src/resources/css/tooltip.min.css?ver=4.11.3
176.74.27.225200 OK 615 B URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/event-tickets/common/src/resources/css/tooltip.min.css?ver=4.11.3
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (1634), with no line terminators
Hash cd9205a1d0c714830e5a8e0f43233b95
b69b1ae21fe664d808a67daf14bae037daa8e4c6
6b7166c9e1f4e126eaff73f1752f5e8168de52fd2429a52ecc293d4a0a942fee
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/event-tickets/common/src/resources/css/tooltip.min.css?ver=4.11.3 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 615
Last-Modified: Wed, 04 Mar 2020 14:18:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/fonts-awesome/css/font-awesome.min.css?ver=5.3.12
176.74.27.225200 OK 6.4 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/fonts-awesome/css/font-awesome.min.css?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type troff or preprocessor input, ASCII text, with very long lines (374)
Hash b5b90fb7924046aec1b7babf131af5af
bcbd90393bb0c170eb22449e9b9dd5d5593dc7a5
b61ba0257d903654d42c3719c89979cf7a3d441863a733c6739777a3e6a9aace
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/rica/assets/plugins/fonts-awesome/css/font-awesome.min.css?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 6442
Last-Modified: Wed, 04 Mar 2020 14:15:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
fonts.googleapis.com/css?family=Open+Sans:700%2C600%2C800%2C400%7CArtifika:400%7CRoboto:500%2C900
142.250.74.10200 OK 912 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:700%2C600%2C800%2C400%7CArtifika:400%7CRoboto:500%2C900
IP 142.250.74.10:0
Hash cb8036a249f3af493c05a49ac6d382f7
16b44c651afc036d88b17c5b0b5e42c0b79e2a6f
dad5a345a56e6bc5452960a9a16b357b3af9521c3f9d8f31d2d2210f08ff2ae2
GET /css?family=Open+Sans:700%2C600%2C800%2C400%7CArtifika:400%7CRoboto:500%2C900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 01 Sep 2022 14:25:35 GMT
Date: Thu, 01 Sep 2022 14:25:35 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/fonts-awesome/css/font-awesome-animation.min.css?ver=5.3.12
176.74.27.225200 OK 2.7 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/fonts-awesome/css/font-awesome-animation.min.css?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
Hash 36a134fc99986f365ab2653ce4827e92
2181f02133b38562940779225280289736fb0bbe
83055173c57ff2f4c375236b57b9d078e0ae91813ff604b2e525bb370cce9f89
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/rica/assets/plugins/fonts-awesome/css/font-awesome-animation.min.css?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 2739
Last-Modified: Wed, 04 Mar 2020 14:15:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-includes/css/dist/block-library/style.min.css?ver=5.3.12
176.74.27.225200 OK 7.9 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-includes/css/dist/block-library/style.min.css?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (41045), with no line terminators
Hash b69eb1952e05cf5afb5c386f73755ef8
095c002392362a8484a999b7b56793ee5d17cd78
7697187ff6744523ef9079ea748c88d7378a60b64994b216b959d048123afb3b
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 7869
Last-Modified: Wed, 10 Jun 2020 15:48:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/bootstrap/css/bootstrap.min.css?ver=5.3.12
176.74.27.225200 OK 20 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/bootstrap/css/bootstrap.min.css?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (64985)
Hash e01e30ef06ac57723e2cbf6f62ace198
c81fa86791c02c8f780d1954a6735c64743440d2
69564e244c8a0b3909bf9375d8817141466b5cbfc6218b0e0e4f1e40efeeef04
GET /wp-content/themes/rica/assets/plugins/bootstrap/css/bootstrap.min.css?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Last-Modified: Wed, 04 Mar 2020 14:15:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/owl-carousel/assets/owl.carousel.min.css?ver=5.3.12
176.74.27.225200 OK 937 B URL HTTP/1.1 www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/owl-carousel/assets/owl.carousel.min.css?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (3119), with no line terminators
Hash 2e81b1224c0e15dbebd0dc582d7a84a9
c9f1d7c30f4f13c1b529f9cd279a88d71efce702
1af1dd75f1d72f6e6085560706ad24abf150132639b255fceb1952252fee490f
GET /wp-content/themes/rica/assets/plugins/owl-carousel/assets/owl.carousel.min.css?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 937
Last-Modified: Wed, 04 Mar 2020 14:15:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/perfect-scrollbar/css/perfect-scrollbar.min.css?ver=5.3.12
176.74.27.225200 OK 600 B URL HTTP/1.1 www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/perfect-scrollbar/css/perfect-scrollbar.min.css?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (3247)
Hash 76d99b9507e760a1a314f10f7dc84be6
7a9a0468cd06e297db7b2613f4d0a12aa62c9862
16de147610bd0f234bb74686065c1f50f96b46301c3baba7878c85d37b31deb7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/rica/assets/plugins/perfect-scrollbar/css/perfect-scrollbar.min.css?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 600
Last-Modified: Wed, 04 Mar 2020 14:15:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/light-gallery/css/lightgallery.min.css?ver=5.3.12
176.74.27.225200 OK 4.6 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/light-gallery/css/lightgallery.min.css?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
Hash 5114aeb203b7afeacbaed43cb792a11a
f5b99943387b14148e2029714f654839f548467d
4d2e61f95e2d52284053608d4bf29a24d6c34677f93dbd866f2733a91f6742a6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/rica/assets/plugins/light-gallery/css/lightgallery.min.css?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 4561
Last-Modified: Wed, 04 Mar 2020 14:15:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/ladda/ladda.min.css?ver=5.3.12
176.74.27.225200 OK 1.2 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/ladda/ladda.min.css?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (7600)
Hash 16ac7fc01f708410f4545af004a61e35
e15ff7c0e338969917b1f7ad051bf87c1842e17e
63d2e4ca03852474bf96e76a1c62966557bb17e245788cef8b577ae7335bf7a1
GET /wp-content/themes/rica/assets/plugins/ladda/ladda.min.css?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 1184
Last-Modified: Wed, 04 Mar 2020 14:15:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/rica-framework/assets/css/frontend.css?ver=5.3.12
176.74.27.225200 OK 1.7 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/rica-framework/assets/css/frontend.css?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (683)
Hash 310d179d034c99452b9521859fbaa088
c5d4fbbe77918f0b9ce5b6db88b9745c0d52557d
b15f4ece5f1722840a47567a8d8cb480ee7abf7dbcb062f0dd51d18bc736f3c8
GET /wp-content/plugins/rica-framework/assets/css/frontend.css?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 1652
Last-Modified: Wed, 04 Mar 2020 14:19:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.3
176.74.27.225200 OK 62 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.3
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (65358)
Hash 38749cdfb581250dab1d7876ea2cd524
3201444f7f0ebb03de14678e5299f3790f1e535e
c26b5222095fa200d9bc5723cae5a776248c6559c76ee7040faaefbf8002c049
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.3 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Last-Modified: Wed, 04 Mar 2020 14:18:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-includes/js/underscore.min.js?ver=1.8.3
176.74.27.225200 OK 7.8 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-includes/js/underscore.min.js?ver=1.8.3
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (16032)
Hash 751a534a1d976d745b61b6009bd0d70f
9b73d67e8673c562e0e41dd74d9262c1df162157
0f6c5ddbfb81a03588a79401310f1a8ab6f25486f5e59a190ac13af46965d335
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 7762
Last-Modified: Fri, 26 Mar 2021 19:23:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
176.74.27.225200 OK 6.5 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (9981)
Hash 5e2c79841541d274fbff8bd2bff97024
834dba62fa56516ae1c1cf6f6c11c240a61ea259
9f85067f2706470c3ac6f29a73400d5544212b69b11923991c1304f5236d4769
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 6502
Last-Modified: Thu, 05 May 2022 16:12:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/themes/rica/assets/preset/5.style.min.css?ver=5.3.12
176.74.27.225200 OK 51 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/themes/rica/assets/preset/5.style.min.css?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (65536), with no line terminators
Hash c42284799cc4c19f2bc7f03421661506
f6841711874ec3238eb5344b771f2487d321b2c7
32d799a5bd5888b0ac60523081293f1a9c913dae9f4bb9f11e984df0025c83ad
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/rica/assets/preset/5.style.min.css?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Last-Modified: Fri, 06 Mar 2020 14:46:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/event-tickets/common/src/resources/js/underscore-before.js
176.74.27.225200 OK 2.0 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/event-tickets/common/src/resources/js/underscore-before.js
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
Hash e5c90cf5cd6a7f07b87329123c3459f4
a5bcaefadedf67fb573d3a392e9a9de267bc81b3
f8c29cbfd20f6ffc8de624b3701a0ed0fecd442adc0f3124acad61450732469a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/event-tickets/common/src/resources/js/underscore-before.js HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 1953
Last-Modified: Wed, 04 Mar 2020 14:18:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/event-tickets/common/src/resources/js/underscore-after.js
176.74.27.225200 OK 1.8 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/event-tickets/common/src/resources/js/underscore-after.js
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
Hash dc478c56a7ec7bef1d62a50897d18642
a4aace3254591c964d4c1be3635ab9f27ba9382c
dd70b6a280ab8abe8dc53ce9ae77b9e810c0c8a2ad4a6413d82e6c46a4bcfcd4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/event-tickets/common/src/resources/js/underscore-after.js HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 1804
Last-Modified: Wed, 04 Mar 2020 14:18:05 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
176.74.27.225200 OK 45 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (31932)
Hash ec4c089edc1523a794ead8393e7aba50
5c9bb73e103e043f67580c80167b8b00e0058bf0
f6d6ff188118d15fa8f360dd78294eeb599d1fb55dcfa5fc8402e3f263b54fb6
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Last-Modified: Thu, 05 May 2022 16:12:41 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-includes/js/wp-util.js?ver=5.3.12
176.74.27.225200 OK 2.9 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-includes/js/wp-util.js?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
Hash 9d3c917982850039e771aefc295fb01f
488ed632d783bb67a153d945bb7460d4bcf1ad61
7b4fb9e1fbfeb616dff5d2190a38d1ba5268fabda4b5660e7498beb2b8cc9ff5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-util.js?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 2940
Last-Modified: Thu, 28 Jun 2018 02:30:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3
176.74.27.225200 OK 26 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (64636), with CRLF, LF line terminators
Hash c202dcdf6573a05923ca56fb59a81823
539fb696a9ba8a7f02372cba15da91b6db9cbe0a
07c832e8cbae4bdb489d8b7e3094fdc90a63678935ad62c079138ec410c83d21
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Last-Modified: Wed, 04 Mar 2020 14:18:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.0.3
176.74.27.225200 OK 31 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.0.3
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (65358)
Hash 927a95ca12fdf73fa672a338113a8e28
2acc47f3a61b6d30b5208491e9d32f0927d0ca5c
e75c03aab0dbe84580875a3c59945b5d8e8ba4e51efe38053448d4221c153fde
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.0.3 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Last-Modified: Wed, 04 Mar 2020 14:18:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/rica-framework/shortcodes/gallery/assets/css/gallery.min.css?ver=5.3.12
176.74.27.225200 OK 839 B URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/rica-framework/shortcodes/gallery/assets/css/gallery.min.css?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (2760), with no line terminators
Hash f2164bd4e77b0693a845b0448639a8b6
e9dc4abad20c56e11cc0de8c0e8caeb2408a73e1
facae2abe68e49fb51a275126b2183baf13de8f80ab3928a6f3406c8d2dd1a04
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/rica-framework/shortcodes/gallery/assets/css/gallery.min.css?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 839
Last-Modified: Wed, 04 Mar 2020 14:19:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3
176.74.27.225200 OK 49 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (27287), with CRLF line terminators
Hash 1ae04173d2e170b3e50bb1bf1aeb9b42
63d708157fc5ad3e7938661b33f89497b6f49936
d5c37242e81ed555cffb74a5fbc4fa72b355828738dd0f218313a4d300eaa238
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Last-Modified: Wed, 04 Mar 2020 14:18:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6
176.74.27.225200 OK 6.3 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
Hash 4fd77640ad49fda118414e0bda2897a7
7f8c4b014daa300457cbb7c9539795a7661150b2
5814b60baa00d5d7e3effbb9b4152e3a82251dd38939ec674d2c904b17ae89e1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 6272
Last-Modified: Wed, 04 Mar 2020 14:17:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/rica-framework/shortcodes/menu-food/assets/css/menu-food.min.css?ver=5.3.12
176.74.27.225200 OK 1.6 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/rica-framework/shortcodes/menu-food/assets/css/menu-food.min.css?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (5556), with no line terminators
Hash d43d9ae2dc5b2ded0d783b92df4d1b76
b0e13e425e3b4065ce1542d225be08290a6e3fd7
d01c9fede9ac7fb4f8611325197039969ec62488301aa9c435a4617c469d0fd9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/rica-framework/shortcodes/menu-food/assets/css/menu-food.min.css?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 1635
Last-Modified: Wed, 04 Mar 2020 14:19:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-includes/js/comment-reply.min.js?ver=5.3.12
176.74.27.225200 OK 2.5 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-includes/js/comment-reply.min.js?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (2359)
Hash 20d4fb7436a400ee68b9c5edbce20316
2e48161a074338dc9e6ced776df8712d843fc549
8c714847d330e1b0a7cd0df121d0aa1c6020a134f8a8519c5eabc770d8fad16a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/comment-reply.min.js?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 2519
Last-Modified: Fri, 26 Mar 2021 19:23:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/bootstrap/js/bootstrap.min.js?ver=5.3.12
176.74.27.225200 OK 12 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/bootstrap/js/bootstrap.min.js?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (27891)
Hash 83a2e628f693604945f4897dd41ef5e2
520f901372d33ea5a43371c40fdf5c2bcec48b89
579438385bf51ef26157e2683e82fc10cde86edb90d8f860c8e1d1ced418a55d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/rica/assets/plugins/bootstrap/js/bootstrap.min.js?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 12416
Last-Modified: Wed, 04 Mar 2020 14:15:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-includes/js/wp-embed.min.js?ver=5.3.12
176.74.27.225200 OK 2.1 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-includes/js/wp-embed.min.js?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (1413)
Hash c136735658b098aa50d9d8b814a105a9
c1cd274a7ee473a33750e6e3a30e8f73972d1c96
0a85b325e178e1d6eca42888f65fb1825c683cf141314f9b1348035456c3d02c
GET /wp-includes/js/wp-embed.min.js?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 2117
Last-Modified: Fri, 05 Feb 2021 03:16:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/themes/rica/assets/js/main.js?ver=5.3.12
176.74.27.225200 OK 21 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/themes/rica/assets/js/main.js?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (476)
Hash ba8b0f31583f9dd85ca457989290f459
a53c1c71cc5797ef4e5b56ef8f17929a2fd8f2d8
6f065ff3af9803f9059e0bc5e87be32ac3d173fb345ce706cb20dc754ba7810c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/rica/assets/js/main.js?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Last-Modified: Wed, 04 Mar 2020 14:15:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/smoothscroll/SmoothScroll.js?ver=5.3.12
176.74.27.225200 OK 1.4 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/themes/rica/assets/plugins/smoothscroll/SmoothScroll.js?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
Hash 4be8963e8226dd158c59041c68850073
d484668f0e2dbaf42f5da123d12dba6153adb898
7df827da1ce0e32dee3d237b4e417a6be24039fdc9e95743a1332199dfafcf18
GET /wp-content/themes/rica/assets/plugins/smoothscroll/SmoothScroll.js?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 1406
Last-Modified: Wed, 04 Mar 2020 14:15:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.0.3
176.74.27.225200 OK 8.7 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.0.3
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (20404)
Hash 6c8aea20763ad28d8a9c1692bac9fbe0
c7dc3bb8c137beca64ecd88a837035be25972844
f1211ae64b3e2f37e0c94e75e2361a6b50341a1f33ebfcf408daf1f8c84f265d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.0.3 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 8680
Last-Modified: Wed, 04 Mar 2020 14:18:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/rica-framework/shortcodes/space/assets/js/space.js?ver=5.3.12
176.74.27.225200 OK 1.9 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/rica-framework/shortcodes/space/assets/js/space.js?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type HTML document, ASCII text
Hash 99d0b1467850e1d9123e8a138b3661f1
eca9567c59e873a080c283af0a0889b163fe5b45
848e9fbe3bccb2d36e0f4412ac34878065eaeead85e019a0f5e247fedb8b2e11
GET /wp-content/plugins/rica-framework/shortcodes/space/assets/js/space.js?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 1863
Last-Modified: Wed, 04 Mar 2020 14:19:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.0.3
176.74.27.225200 OK 4.7 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.0.3
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (11258)
Hash f8f5752e7cd9b88541df8b2bbff2579e
bcbddd9078a5aad27cb22ddff7c46eda12617269
95fca59a001d07056b25e41a6c6874aa0ff73f5cba416cb2783d1c2a75df43ad
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.0.3 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 4718
Last-Modified: Wed, 04 Mar 2020 14:18:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.0.3
176.74.27.225200 OK 2.8 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.0.3
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (4092)
Hash 36a83a2cdb4b45395ed8f773de2d644c
6176ec046edeeb00025bafc22b130dd7c0e8c78f
6a11da6acec1bd703c75b39b63ac469754fbc52fa07798ae560f6212d2482579
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.0.3 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 2810
Last-Modified: Wed, 04 Mar 2020 14:18:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/rica-framework/shortcodes/menu-food/assets/js/ladda/spin.min.js?ver=1
176.74.27.225200 OK 3.7 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/rica-framework/shortcodes/menu-food/assets/js/ladda/spin.min.js?ver=1
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (4382)
Hash 931f4993dafa5bc464afde9d62e269ce
36a8fa8cd04d7aeee0f41af44f01dbe39978ac71
66aae299914469ce6bd93f9b730ca0afc4910bcdf89b204cb38c490273141ada
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/rica-framework/shortcodes/menu-food/assets/js/ladda/spin.min.js?ver=1 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 3688
Last-Modified: Wed, 04 Mar 2020 14:19:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.0.3
176.74.27.225200 OK 2.3 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.0.3
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (2359)
Hash dbbfbe73eed002451b291d0561454afb
44e5f2b323ef8d07a84a63b994f909fcd3250971
7f883aeb7881b4bdc12305b0d3ec362641860d477f1c3e8cedee5ed484427255
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.0.3 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 2345
Last-Modified: Wed, 04 Mar 2020 14:18:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/rica-framework/shortcodes/menu-food/assets/js/ladda/ladda.min.js?ver=1
176.74.27.225200 OK 1.4 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/rica-framework/shortcodes/menu-food/assets/js/ladda/ladda.min.js?ver=1
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
Hash 4be8963e8226dd158c59041c68850073
d484668f0e2dbaf42f5da123d12dba6153adb898
7df827da1ce0e32dee3d237b4e417a6be24039fdc9e95743a1332199dfafcf18
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/rica-framework/shortcodes/menu-food/assets/js/ladda/ladda.min.js?ver=1 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 1406
Last-Modified: Wed, 04 Mar 2020 14:19:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/rica-framework/shortcodes/menu-food/assets/js/menu-food.js?ver=5.3.12
176.74.27.225200 OK 3.6 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/rica-framework/shortcodes/menu-food/assets/js/menu-food.js?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
Hash be1220081e73b372e1bf51bd1b7442cc
4e026a59aedc7ed2c1ef64a3baffb295fd668b72
1f0f813c816332fbb7bc1fb7865bbf0fe4e65ed704d6789be81e9dc830b09f12
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/rica-framework/shortcodes/menu-food/assets/js/menu-food.js?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 3557
Last-Modified: Wed, 04 Mar 2020 14:19:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/rica-framework/shortcodes/gallery/assets/js/gallery.js?ver=5.3.12
176.74.27.225200 OK 2.9 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/rica-framework/shortcodes/gallery/assets/js/gallery.js?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
Hash dc9bf8581ac077df9bc51cfa7d3b12f5
d44102d1771ed77a179eee1dd2ae773d06b40a27
c8549b8f0a39de1e02afb33932f94ebe86c82d8572e708c2ed162194ddd869e9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/rica-framework/shortcodes/gallery/assets/js/gallery.js?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 2908
Last-Modified: Wed, 04 Mar 2020 14:19:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/rica-framework/core/xmenu/assets/js/app.js?ver=1.0.0.0
176.74.27.225200 OK 5.0 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/rica-framework/core/xmenu/assets/js/app.js?ver=1.0.0.0
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
Hash 99da7e2b6d0e26a8325e0e3c3d87d3a0
14a10767aa253b2459c96ce4d45b03fa1e445d6a
424944dba454e71fd0fa8d4e6122a52943c3b8d70d477d0e97adb6c8397d181f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/rica-framework/core/xmenu/assets/js/app.js?ver=1.0.0.0 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 4950
Last-Modified: Wed, 04 Mar 2020 14:19:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/plugins/mailchimp-for-wp/assets/js/forms.min.js?ver=4.7.5
176.74.27.225200 OK 4.4 kB URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/mailchimp-for-wp/assets/js/forms.min.js?ver=4.7.5
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
File type ASCII text, with very long lines (6727)
Hash f244bca78e4292d46c6910ff309416a3
0004c55455e090b98556182e768e38c4eb853177
572b42148144502a5da7067a3135f456ea92a08e400a4c1596ce4fb8fbc2db26
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/mailchimp-for-wp/assets/js/forms.min.js?ver=4.7.5 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Content-Length: 4440
Last-Modified: Wed, 04 Mar 2020 14:18:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 1.3 kB IP 142.250.74.3:0
File type gzip compressed data, max compression\012- data
Hash a72aa9748f96b507b5527d31bbd62739
45a1d5e5df75e3fca33415ada69650c5a28e73a9
6001da8dd5acc0200f333dfafc8c1285d2b53905331b75a14dc226d4b72547b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 14:25:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4a31025-b077-4937-93a3-a0669697b0ee.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4a31025-b077-4937-93a3-a0669697b0ee.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 043263cdba253c3eb4bfa33c95e8ca21
6d814e56d87e2579e51139759fa7dfb8195a6529
9c7cf679c9a6a0d0a2c75a85b13d8407a5e0fe2448d73fced51b45a3e701e9c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4a31025-b077-4937-93a3-a0669697b0ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8044
x-amzn-requestid: 8ea16c8b-f0aa-4ce9-a99d-8e59c51ffb8d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3j7Ge9IAMFQBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2e5-6762d09b569221944f9b7870;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tZWKpWZnFUVhefoWK-AwAYKOsmAcMhTmPXEyWp0BJPKfhgooGpI6xQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:52:58 GMT
age: 59563
etag: "6d814e56d87e2579e51139759fa7dfb8195a6529"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.shahcatering.co.uk/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css
176.74.27.225200 OK 0 B URL HTTP/1.1 www.shahcatering.co.uk/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
GET /wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: text/css
Content-Length: 7687
Last-Modified: Wed, 04 Mar 2020 14:18:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
www.shahcatering.co.uk/wp-content/themes/rica/assets/js/plugin.js?ver=5.3.12
176.74.27.225200 OK 0 B URL HTTP/1.1 www.shahcatering.co.uk/wp-content/themes/rica/assets/js/plugin.js?ver=5.3.12
IP 176.74.27.225:0
ASN #38719 Dreamscape Networks Limited
GET /wp-content/themes/rica/assets/js/plugin.js?ver=5.3.12 HTTP/1.1
Host: www.shahcatering.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.shahcatering.co.uk/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Sep 2022 14:25:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Last-Modified: Wed, 04 Mar 2020 14:15:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip