r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1456357aecbd23f21ad98da57e0127eb
7074815b39fa8da9013883971d665e4c1b0797ea
f3eba265ee64870b2f822f1511b36c747d763c382557789cdad8be1d3b52d1f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10397
Expires: Wed, 23 Nov 2022 02:32:24 GMT
Date: Tue, 22 Nov 2022 23:39:07 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b59d95402dfb464c176610284ba13f65
1a6c62fb0d48654dd204b66161bb03fefe60f71a
40cfd59b890ec5a3570603d28d90bd7e5c506babd52c2ece93e09f1c7b2a6880
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6276
Cache-Control: max-age=131804
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 23:39:07 GMT
Etag: "637ca4f3-1d7"
Expires: Thu, 24 Nov 2022 12:15:51 GMT
Last-Modified: Tue, 22 Nov 2022 10:31:15 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13479
Expires: Wed, 23 Nov 2022 03:23:46 GMT
Date: Tue, 22 Nov 2022 23:39:07 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 22 Nov 2022 23:09:20 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1787
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 5XNIfkZOUK5Ynxtcp/fko/rkMkaM68ULcwrsvHyvhBEjWkzDmkyRWNSf66Kf3fyS+SjcBwc7olw=
x-amz-request-id: 9SV8BZKGRQYQBAKF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 22 Nov 2022 22:42:45 GMT
age: 3382
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 23:39:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
markjunior.org/
162.222.225.163200 OK 38 kB IP 162.222.225.163:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash c27c2f2122ca00a889d4d7b6d3444d42
a5963c021a914df5f899ef4ecd95449593c836f9
cfbdf781268146687b3fa65116f45ef3ca7c5089e6c5a31572001a1ace090017
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:06 GMT
Server: nginx/1.19.10
Content-Type: text/html; charset=UTF-8
Link: <http://markjunior.org/wp-json/>; rel="https://api.w.org/", <http://markjunior.org/wp-json/wp/v2/pages/201>; rel="alternate"; type="application/json", <http://markjunior.org/>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
X-Server-Cache: true
X-Proxy-Cache: HIT
Transfer-Encoding: chunked
fonts.googleapis.com/css?family=Rubik%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CAbril+Fatface%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CShadows+Into+Light%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900
142.250.74.10200 OK 759 B URL HTTP/1.1 fonts.googleapis.com/css?family=Rubik%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CAbril+Fatface%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CShadows+Into+Light%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900
IP 142.250.74.10:0
Hash 2954a313360f2bfcdd7762746dfee972
191610a23aad715afc15181896d7c74f4606acc9
ee866ea242cc1f0cc29ccda7c1c508fd72dedc63517ace01b026540e1de8d624
GET /css?family=Rubik%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CAbril+Fatface%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CShadows+Into+Light%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 22 Nov 2022 23:39:07 GMT
Date: Tue, 22 Nov 2022 23:39:07 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
markjunior.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3
162.222.225.163200 OK 3.0 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3
IP 162.222.225.163:0
File type ASCII text, with very long lines (10435), with no line terminators
Hash a6099ee677b6d930b6b878cf0cb08422
a2eb69454196d4250d624d25aaec587e97686642
755acd6dc98e63baff6d8b105b1bcaf63b79f935381fb3f32a79dace7faae0ac
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:07 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2985
Content-Type: text/css
markjunior.org/wp-content/plugins/give/assets/dist/css/give.css?ver=2.22.2
162.222.225.163200 OK 20 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/give/assets/dist/css/give.css?ver=2.22.2
IP 162.222.225.163:0
File type ASCII text, with very long lines (57886)
Hash 2375b32a2827e7ce215f6e36a6fa1d11
64152c43604ac240d11061f78092c6610056d6b1
066a1d13826cb4a473c58f4cf0b67b1c7f4797467bfb5b9fbd7790421a2cf67b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/give/assets/dist/css/give.css?ver=2.22.2 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:07 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css
markjunior.org/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
162.222.225.163200 OK 18 kB URL HTTP/1.1 markjunior.org/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 162.222.225.163:0
File type ASCII text, with very long lines (47826)
Hash 9415c9562591af7a582c29139621505f
0b12eecf36a48b871a3198550f4f65bb4a6d9b1b
06c70d3232c2ae3ed2aa259eb7a1beb329b654926813935fffa8902cd5ebaa4a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:07 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 15 Nov 2022 23:42:57 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css
markjunior.org/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.9.4
162.222.225.163200 OK 3.1 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.9.4
IP 162.222.225.163:0
File type ASCII text, with very long lines (17809), with no line terminators
Hash 97f3e7860b3e0d99f3c0327b0045363a
885af5049143e765b7fd0f3a0a860613b05d12d1
ff05d291dd422f8bee80e816eb1480c67fb3e0d6071bebd8f04c86de87a70080
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.9.4 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:07 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 10 Oct 2022 14:55:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3086
Content-Type: text/css
markjunior.org/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.9.4
162.222.225.163200 OK 13 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.9.4
IP 162.222.225.163:0
File type Unicode text, UTF-8 text, with very long lines (62753), with no line terminators
Hash ebad0134e03078f66fa63f2a89d17d81
bccc743a9a5d015e06c7f622b4687142b2cd2fe5
42e7dbb97a0b72fa2bc44035d713982a7ff653cb63c0a7ef09e1fd4fe69c4d14
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.9.4 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:07 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 10 Oct 2022 14:55:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13255
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 065495ec7a963a205abd9c8dbc75cb5d
ea416d0df4f6706150bda5da2077174f5cdd986b
1b2a2afee887651b23a849f14ace89b330329f6bf61c331545a3f6d12037aee5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 23:39:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
markjunior.org/wp-content/plugins/give/assets/dist/css/give-donation-summary.css?ver=2.22.2
162.222.225.163200 OK 590 B URL HTTP/1.1 markjunior.org/wp-content/plugins/give/assets/dist/css/give-donation-summary.css?ver=2.22.2
IP 162.222.225.163:0
File type ASCII text, with very long lines (2040), with no line terminators
Hash a9eb73cd6bbc77000f0fd30f47d40f04
1b6bb542fc617bbca1862c63bbacf2e9a5998a6b
bb83a3cbc9a6aaf6105f9d303227b3fc7327dd5db20f78cb0885d4aa481c29ba
GET /wp-content/plugins/give/assets/dist/css/give-donation-summary.css?ver=2.22.2 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:07 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 590
Content-Type: text/css
markjunior.org/wp-content/plugins/ova-events/assets/css/frontend/event.css
162.222.225.163200 OK 21 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/ova-events/assets/css/frontend/event.css
IP 162.222.225.163:0
Hash 2a2b2ba1f9db511e59f9b005fb4521ab
c2b4f65e22a9f05753bcea87879d161be9b6aecb
dc9f063468d9ace11947a0c489a96fd6acb7865aec798ac89353051012620891
GET /wp-content/plugins/ova-events/assets/css/frontend/event.css HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:07 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 10 Oct 2022 14:55:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css
markjunior.org/wp-content/plugins/woocommerce/assets/css/select2.css?ver=6.9.4
162.222.225.163200 OK 3.1 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/woocommerce/assets/css/select2.css?ver=6.9.4
IP 162.222.225.163:0
File type ASCII text, with very long lines (14615), with no line terminators
Hash c09a7712c98d2cf7b53ec5e1d0688e0f
57260870d8c2795a2ceb1301da25bad7f56a89af
aad7451b878f4bae595be29354e1fe5e68fdae0a5cbfdae98ad7dac19db4c4cf
GET /wp-content/plugins/woocommerce/assets/css/select2.css?ver=6.9.4 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:07 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3103
Content-Type: text/css
markjunior.org/wp-content/themes/asting/assets/libs/fontawesome/css/v4-shims.min.css
162.222.225.163200 OK 4.4 kB URL HTTP/1.1 markjunior.org/wp-content/themes/asting/assets/libs/fontawesome/css/v4-shims.min.css
IP 162.222.225.163:0
File type ASCII text, with very long lines (26508)
Hash eaf5af100a192a206eebbeff6e119d8e
8c06da83bab04deb2a8695de01daf005e57c833c
e3f4ad62f15a911ab416cbd9ef9d6bcc5e473b64bbfb37fc5c0e984d7c06779e
GET /wp-content/themes/asting/assets/libs/fontawesome/css/v4-shims.min.css HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:07 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4418
Content-Type: text/css
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 22 Nov 2022 23:08:53 GMT
cache-control: public,max-age=3600
age: 1815
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
markjunior.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3
162.222.225.163200 OK 43 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3
IP 162.222.225.163:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 1bf4b51878f2594bb4254a12ffd30657
9863031a9d6bf79b49a3924d3abb24e9a124f9c2
dbee39d42ed139b5f63ddcef1473eeffa7db52fba13a2f77f364dbb96f8c5e23
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:07 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 10 Oct 2022 14:55:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css
markjunior.org/wp-content/themes/asting/assets/libs/fontawesome/css/all.min.css
162.222.225.163200 OK 11 kB URL HTTP/1.1 markjunior.org/wp-content/themes/asting/assets/libs/fontawesome/css/all.min.css
IP 162.222.225.163:0
File type ASCII text, with very long lines (48464)
Hash d9df58d0b10ff6b7812022f14f4becf3
4dec67faa8b5972fe019122fb0442525fc491181
b9d40a86f6517aa91eda753b44e5f36eb9c296da2671cc536aef26e954fda127
GET /wp-content/themes/asting/assets/libs/fontawesome/css/all.min.css HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10615
Content-Type: text/css
markjunior.org/wp-content/themes/asting/assets/libs/elegant_font/ele_style.css
162.222.225.163200 OK 5.2 kB URL HTTP/1.1 markjunior.org/wp-content/themes/asting/assets/libs/elegant_font/ele_style.css
IP 162.222.225.163:0
File type ASCII text, with very long lines (6610)
Hash 77dce45a640b3773437f6c4d6bf26985
ec0bb77c9a280b94ee5a28f0e6efa1ee539ef8fe
cbd36daaf3809a9c0a87bf1c499c9112b59233b89461f84c4613db5ce93e59f1
GET /wp-content/themes/asting/assets/libs/elegant_font/ele_style.css HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5200
Content-Type: text/css
markjunior.org/wp-content/themes/asting/assets/libs/bootstrap/css/bootstrap.min.css
162.222.225.163200 OK 33 kB URL HTTP/1.1 markjunior.org/wp-content/themes/asting/assets/libs/bootstrap/css/bootstrap.min.css
IP 162.222.225.163:0
File type ASCII text, with very long lines (65324)
Hash db6ebb6c8dcbece6950880df650ab838
d75cda4271a3735556196e7cb073d8d0cda190e5
f2922acf996d4d4e03cd509729d9ba627e8eab2b8ccb4ecab8d91c89e7332037
GET /wp-content/themes/asting/assets/libs/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:07 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css
markjunior.org/wp-content/themes/asting/assets/libs/icomoon/style.css
162.222.225.163200 OK 611 B URL HTTP/1.1 markjunior.org/wp-content/themes/asting/assets/libs/icomoon/style.css
IP 162.222.225.163:0
Hash bcf3a89d8b0beb8eb5a2fd73d69312c5
9c52b476492163b63f6b58e21c0d773ec0bd4c46
5a3c4269eef4a8bf30c15cae890209ba37276028513563e6919031e4f8882c2b
GET /wp-content/themes/asting/assets/libs/icomoon/style.css HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 611
Content-Type: text/css
markjunior.org/wp-content/themes/asting/assets/libs/fancybox-master/dist/jquery.fancybox.min.css
162.222.225.163200 OK 4.1 kB URL HTTP/1.1 markjunior.org/wp-content/themes/asting/assets/libs/fancybox-master/dist/jquery.fancybox.min.css
IP 162.222.225.163:0
File type ASCII text, with very long lines (12795), with no line terminators
Hash cf0785cf0ed0e61ff719545fa3895446
41d23fc8b5755e0d9d72a174d0cfaf781df5f2b3
159db16a04f99391f3a89816a0b7955f3accf86fafb9c0c07dcdebe222a41c5a
GET /wp-content/themes/asting/assets/libs/fancybox-master/dist/jquery.fancybox.min.css HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4130
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb526d16fc4a304286cf261dc5d8abea
0aed946d28abc21cb11657e6f864b561a0c68fba
551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 23:39:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8a181d95550cfdf3b1fc4deb71631e40
37866f7293c41fbfb817e321754cae5c5bf59f93
6aa3d2763181cc48d2ad0ce7d227f3cb3324045c3f7858ccdbae675768dcec55
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6066
Cache-Control: max-age=126533
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 23:39:08 GMT
Etag: "637c912f-1d7"
Expires: Thu, 24 Nov 2022 10:48:01 GMT
Last-Modified: Tue, 22 Nov 2022 09:06:55 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb526d16fc4a304286cf261dc5d8abea
0aed946d28abc21cb11657e6f864b561a0c68fba
551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 23:39:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
markjunior.org/wp-content/themes/asting/assets/css/theme.css
162.222.225.163200 OK 43 kB URL HTTP/1.1 markjunior.org/wp-content/themes/asting/assets/css/theme.css
IP 162.222.225.163:0
File type ASCII text, with very long lines (398)
Hash 99a1d722b2abd1ace30084e19bd23fc2
b314d366c54fc57b25e17c6b27e17e45f3b9e378
eaef1a2ae5ba154b50db6a53508ad3879a2e718c4fa2d9307400cae7f16a09e0
GET /wp-content/themes/asting/assets/css/theme.css HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css
markjunior.org/wp-content/themes/asting/style.css
162.222.225.163200 OK 503 B URL HTTP/1.1 markjunior.org/wp-content/themes/asting/style.css
IP 162.222.225.163:0
File type HTML document, ASCII text, with very long lines (361)
Hash 876dcbfacdd2c65459af5e369ddec32c
fe2e87fd561ddaa018101439f918a41eea7ba6fc
1fc364f9e24b7d207407340f443a045b0de5aa9c208bffbf730bc87a03bf190c
GET /wp-content/themes/asting/style.css HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 503
Content-Type: text/css
markjunior.org/wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1
162.222.225.163200 OK 512 B URL HTTP/1.1 markjunior.org/wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1
IP 162.222.225.163:0
File type ASCII text, with very long lines (404)
Hash 2f4e4edd17b327020f528335f64f179a
cfeca449fe87ea8eee93a2c8a2e690a6d9f221c5
be90f06ac784027f0306045f8b27722c3957d894548d3cc907d2b3aeede6e620
GET /wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:58:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 512
Content-Type: text/css
markjunior.org/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
162.222.225.163200 OK 4.0 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 162.222.225.163:0
File type ASCII text, with very long lines (19233)
Hash 2701214b028ad24fa347df8335b36d12
156bc8a7ad2657f00881890637f07c6052636499
9a6e62615ceeec7a9763e4f9614e4715d04fd87873b23db2b3ead06c996cad27
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4008
Content-Type: text/css
markjunior.org/wp-content/uploads/elementor/css/post-8.css?ver=1665413896
162.222.225.163200 OK 356 B URL HTTP/1.1 markjunior.org/wp-content/uploads/elementor/css/post-8.css?ver=1665413896
IP 162.222.225.163:0
File type ASCII text, with very long lines (1117), with no line terminators
Hash e5bce329ddba4e743c2ca39d08ee0f8e
520d5f710b0db5b57b59c685a293590545cd45ce
813c9a8edd9d62134f6bc9e43d51329df921c750df14f078d4b692fc1e540623
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-8.css?ver=1665413896 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:58:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 356
Content-Type: text/css
markjunior.org/wp-content/uploads/elementor/css/global.css?ver=1665413897
162.222.225.163200 OK 2.1 kB URL HTTP/1.1 markjunior.org/wp-content/uploads/elementor/css/global.css?ver=1665413897
IP 162.222.225.163:0
File type ASCII text, with very long lines (20565)
Hash 745edb992f066a30fa389cd643c82862
d7b02fdd20433fe54162e88bf28a14d2808746f5
dbb60a11392b5c7d19f0ea820461702d68c4a92e7aa4a877b63771b6d2193568
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/global.css?ver=1665413897 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:58:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2064
Content-Type: text/css
markjunior.org/wp-content/uploads/elementor/css/post-201.css?ver=1665413897
162.222.225.163200 OK 5.7 kB URL HTTP/1.1 markjunior.org/wp-content/uploads/elementor/css/post-201.css?ver=1665413897
IP 162.222.225.163:0
File type ASCII text, with very long lines (31993), with no line terminators
Hash 90596fe460fd1be95a9a7e720683a26d
806b575e6803f5486c75cabd5a6ab1729cbeac91
c29b017a28d4dd44da34dfb5323e3de046bc81c3fa4b652a9768e26c39925c00
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-201.css?ver=1665413897 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:58:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5729
Content-Type: text/css
markjunior.org/wp-content/plugins/ova-framework/assets/libs/prettyphoto/css/prettyPhoto.css
162.222.225.163200 OK 3.9 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/ova-framework/assets/libs/prettyphoto/css/prettyPhoto.css
IP 162.222.225.163:0
File type ASCII text, with very long lines (402)
Hash b9d9c1a1ba53f3987b0074a21c5e8c50
0de9fe5cad5a4d55285f1bb6c733c6995b514aad
364a2f2f697d7c232f3405aa124886dec0ead94a84848991285a84cccd47a626
GET /wp-content/plugins/ova-framework/assets/libs/prettyphoto/css/prettyPhoto.css HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3901
Content-Type: text/css
markjunior.org/wp-content/plugins/ova-framework/assets/libs/owl-carousel/assets/owl.carousel.min.css
162.222.225.163200 OK 1.1 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/ova-framework/assets/libs/owl-carousel/assets/owl.carousel.min.css
IP 162.222.225.163:0
File type ASCII text, with very long lines (3184)
Hash 8110dac83703c6f3bdab05005b338dae
2d7fa29ab9e77366216866a3c399cff917625015
8b88b876325a3b5deaea39fc31f97d9ea452bf5f5a27a4eb0d0cdc5be386fb92
GET /wp-content/plugins/ova-framework/assets/libs/owl-carousel/assets/owl.carousel.min.css HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1142
Content-Type: text/css
markjunior.org/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8
162.222.225.163200 OK 22 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8
IP 162.222.225.163:0
File type ASCII text, with very long lines (65497)
Hash 642dc3226e126a7e4d0f5bc69bded269
7223e14589b58f6c0128cf87df9d4c9433ba9b7f
c6edac26672e1cf794085d0cb1630ce969c70653617adc9638188532df28ee4a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css
markjunior.org/wp-content/plugins/ova-framework/assets/css/style-elementor.css
162.222.225.163200 OK 27 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/ova-framework/assets/css/style-elementor.css
IP 162.222.225.163:0
File type ASCII text, with very long lines (430)
Hash 6f2a6d7c324ef9fd2abea20a38d6094c
c9f708e66635c9f504f661c17f45a7f10b24cdd8
a4f6777a8a583892a1a50aca9c52754e78770e1a8cd4ae39a200c82a055e1bfc
GET /wp-content/plugins/ova-framework/assets/css/style-elementor.css HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css
push.services.mozilla.com/
35.162.125.72101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.125.72:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PzCEHjhDPE2aktmXreCbVA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: S1V5R0WCm4nXayLXXcRsRESZDks=
markjunior.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
162.222.225.163200 OK 4.6 kB URL HTTP/1.1 markjunior.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 162.222.225.163:0
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:42:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4618
Content-Type: application/javascript
markjunior.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
162.222.225.163200 OK 39 kB URL HTTP/1.1 markjunior.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 162.222.225.163:0
File type ASCII text, with very long lines (65447)
Hash 32f58a61f7c5a7e10f8b2dcf8e9a8e34
865c25589283ab1debd45bdfa6c4d8c6ecf15ad3
481cb2216fbdb0797af8c61b69c0bda2c10d025f7b11f2cdfac382d35dc45d63
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:51:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript
markjunior.org/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
162.222.225.163200 OK 2.7 kB URL HTTP/1.1 markjunior.org/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 162.222.225.163:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 45bd1d6f7fc3a4069fc6fd400b90c961
903c7e28c7141e9fc1bdb4dfc62d043a97a01e2d
c638a0057b4be0a61cfb65b1860a855a327397e9871f5dde28fa2f138fb394dc
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 23:42:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2675
Content-Type: application/javascript
markjunior.org/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
162.222.225.163200 OK 1.7 kB URL HTTP/1.1 markjunior.org/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP 162.222.225.163:0
File type ASCII text, with very long lines (4875)
Hash 6a452794a68bc140a53b30519b94edf6
68046f5611ba3cf5da1c46087609aff18f59fdc1
259990a9e6191a72a51ac9d038d0c52bb56d880a2b0d460b1fca3f3fee7961ed
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 23:42:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1712
Content-Type: application/javascript
markjunior.org/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
162.222.225.163200 OK 7.6 kB URL HTTP/1.1 markjunior.org/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 162.222.225.163:0
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 66c68f2158dcf7d97a02f3719a17aab0
fdb04fb4c632b9fb4275006a4e402cd0d4fa393a
e4b360f0e6ae1afc06f05f958e8696e5ae45257912bc2ab0b9334bd1382a51aa
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:42:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7621
Content-Type: application/javascript
markjunior.org/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
162.222.225.163200 OK 4.2 kB URL HTTP/1.1 markjunior.org/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP 162.222.225.163:0
Hash 3b62593186f7f91a9470ab6968ec5feb
bd7728c79c04f4f2f7a787097b0868e06ceba5ad
2a9920dc63cbd8228103c7d6bf2a044f06963041253c385c3cebb147297aa782
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:42:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4233
Content-Type: application/javascript
markjunior.org/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
162.222.225.163200 OK 5.3 kB URL HTTP/1.1 markjunior.org/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 162.222.225.163:0
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 23:42:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5321
Content-Type: application/javascript
markjunior.org/wp-content/uploads/elementor/css/post-2756.css?ver=1665413897
162.222.225.163200 OK 1.7 kB URL HTTP/1.1 markjunior.org/wp-content/uploads/elementor/css/post-2756.css?ver=1665413897
IP 162.222.225.163:0
File type ASCII text, with very long lines (9556), with no line terminators
Hash 3adef18ac14d5f6765970d850ac5e875
f9c97c650ac615576a7c035ee0f53563d9759911
43a9b87a89555987c0ebc1760a951eae3834f8c351dc17a1d969ec87f6c2d8ac
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-2756.css?ver=1665413897 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:58:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1685
Content-Type: text/css
markjunior.org/wp-content/uploads/elementor/css/post-2805.css?ver=1665413897
162.222.225.163200 OK 3.1 kB URL HTTP/1.1 markjunior.org/wp-content/uploads/elementor/css/post-2805.css?ver=1665413897
IP 162.222.225.163:0
File type ASCII text, with very long lines (17412), with no line terminators
Hash 99bab264ce2ee3288ad0957c9bd314a2
e535e825bd8ee0f6f1e58da8f3463ec2d41cc3d7
b6ca70f28e030a9bc1359a58447ac0f0b9492efb918ee3265d73eccc37ade584
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-2805.css?ver=1665413897 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:58:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3053
Content-Type: text/css
markjunior.org/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.8
162.222.225.163200 OK 3.0 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.8
IP 162.222.225.163:0
File type ASCII text, with very long lines (10019)
Hash c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.8 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2997
Content-Type: text/css
markjunior.org/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.19
162.222.225.163200 OK 17 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.19
IP 162.222.225.163:0
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 8932929e25613eee984245b7717b9fda
6b2b3c7ef05c0506396b32cadd3e498af5261664
a783bcd1a4e9f8b9e4513b85d26a7854654edaf2032d6f1225b5e7c6628eec12
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.19 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16676
Content-Type: text/css
markjunior.org/wp-content/plugins/give/assets/dist/js/give.js?ver=ed08df03f0900ead
162.222.225.163200 OK 66 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/give/assets/dist/js/give.js?ver=ed08df03f0900ead
IP 162.222.225.163:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e5a74b5f591c3092d1d4cb6cac2e10ef
e85219df7dcab3bc62d737f5bce6f1f0e4423d29
9fdf1e637ba969dee6160b2d2150e081b28f20c1f0f14bb3db7f772d41480f52
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/give/assets/dist/js/give.js?ver=ed08df03f0900ead HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript
markjunior.org/wp-content/plugins/ova-events/assets/libs/calendar/underscore-min.js?ver=6.1.1
162.222.225.163200 OK 6.6 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/ova-events/assets/libs/calendar/underscore-min.js?ver=6.1.1
IP 162.222.225.163:0
File type ASCII text, with very long lines (16194)
Hash ae77a4f4683d772ac90cc73e360d90c9
bd0670ba2e328027fa13c91eb64c39ecf2c663f3
09ce7b7c8aa467381fb6069ebfdb7afd95d2e35be51b9c46d61b228fc9536d3a
GET /wp-content/plugins/ova-events/assets/libs/calendar/underscore-min.js?ver=6.1.1 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:08 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6560
Content-Type: application/javascript
markjunior.org/wp-content/plugins/ova-events/assets/js/script-elementor.js?ver=6.1.1
162.222.225.163200 OK 2.2 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/ova-events/assets/js/script-elementor.js?ver=6.1.1
IP 162.222.225.163:0
Hash 5082c65a7e3884139bc1f97d7da6f1b5
8e35c0add9fdcf680e5ff0cb35f98b3f4737cb65
216202c12003e2f575a8159d23d69122cc367fd9c8fb5285362ce5ae73ad4e91
GET /wp-content/plugins/ova-events/assets/js/script-elementor.js?ver=6.1.1 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2198
Content-Type: application/javascript
markjunior.org/wp-content/plugins/ova-events/assets/js/frontend/event.js?ver=6.1.1
162.222.225.163200 OK 1.1 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/ova-events/assets/js/frontend/event.js?ver=6.1.1
IP 162.222.225.163:0
Hash 14709a2e99f7d51a7f77d65ad40bf8d2
3eeb53a73906c3729cf7ced06ac314f129bc931f
50de9562bfcb38970bdda1d71a29c1899942a0035c8fc0edfc777ef6a6a02c3c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ova-events/assets/js/frontend/event.js?ver=6.1.1 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1110
Content-Type: application/javascript
markjunior.org/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
162.222.225.163200 OK 59 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
IP 162.222.225.163:0
File type ASCII text, with very long lines (45108), with CRLF line terminators
Hash 5c8112c0b0130496408ac61508bd01cb
527a198d04aeceee01ec61a5da77e66311365064
91ce95b33915e8817eb7df0b6f69c32e699577e3a9447e6f60f027c36c620720
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript
markjunior.org/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4
162.222.225.163200 OK 4.0 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4
IP 162.222.225.163:0
File type ASCII text, with very long lines (9115)
Hash 30e4855ccd2fde73cd01838d073b8d4b
aa39e03ffb6e39bf82b6a04d72e3f7cf7509f778
cbcfd79d48b4735b59e17b77cb3930f8a51fcdcb3d4675718a45af6077469636
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3955
Content-Type: application/javascript
markjunior.org/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
162.222.225.163409 Conflict 83 B URL HTTP/1.1 markjunior.org/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 162.222.225.163:0
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 409 Conflict
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
markjunior.org/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.4
162.222.225.163200 OK 1.3 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.4
IP 162.222.225.163:0
File type HTML document, ASCII text, with very long lines (3103), with CRLF line terminators
Hash ca9b26706043c9ca1bff99da42922843
3d96a3fd34115e45cf515f18ca7afbc143101bef
2b90020e39f5edd4bdadb7ab6823792cba8033ae822fc8bd5396c86a22797c72
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.4 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 15:00:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1308
Content-Type: application/javascript
markjunior.org/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
162.222.225.163409 Conflict 83 B URL HTTP/1.1 markjunior.org/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 162.222.225.163:0
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 409 Conflict
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
markjunior.org/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4
162.222.225.163200 OK 1.0 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4
IP 162.222.225.163:0
File type ASCII text, with very long lines (1668)
Hash 0bebfb5722cbc8ac04e62aa40698be49
3bc5e4f29cb19a2d80d46dee242dabf7e42c0fd3
70d02eabbadbe176455a2bb53d8d567feca69847c067a5274987a8bdc65e3c05
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1000
Content-Type: application/javascript
markjunior.org/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4
162.222.225.163200 OK 792 B URL HTTP/1.1 markjunior.org/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4
IP 162.222.225.163:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash 1ca3f41c13e0027acc45f0601f8b640f
cced34af0c6a59e9cee4229faa66ab39c7031506
d3bc5eaf4c6be9473dbba690825cce9a1a6f4accb6721dae7875efef54942f41
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 792
Content-Type: application/javascript
markjunior.org/wp-content/plugins/give/assets/dist/js/give-donation-summary.js?ver=2.22.2
162.222.225.163200 OK 3.2 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/give/assets/dist/js/give-donation-summary.js?ver=2.22.2
IP 162.222.225.163:0
File type ASCII text, with very long lines (8455), with no line terminators
Hash 1ac2fa4dd001208337f668ffe9a46167
ba58783384165143110f61e4348f57e300e98fb9
1837d236ee6c50d62d34b132bc9d0738d2cadc57170a1aa0fc1d4dc07b9c11f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/give/assets/dist/js/give-donation-summary.js?ver=2.22.2 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3227
Content-Type: application/javascript
markjunior.org/wp-content/plugins/woocommerce/assets/js/select2/select2.full.min.js?ver=4.0.3-wc.6.9.4
162.222.225.163200 OK 27 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/woocommerce/assets/js/select2/select2.full.min.js?ver=4.0.3-wc.6.9.4
IP 162.222.225.163:0
File type Unicode text, UTF-8 text, with very long lines (64065)
Hash f47f5a74bd04604ebbe0c58a21de93a7
9079868b3012b0789c563d3c9b70822353cfe10d
b6528aeb2fa690351852ec794021c7bc1d079a19607affa95a4fe286b40b0eb3
GET /wp-content/plugins/woocommerce/assets/js/select2/select2.full.min.js?ver=4.0.3-wc.6.9.4 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript
markjunior.org/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.19
162.222.225.163200 OK 134 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.19
IP 162.222.225.163:0
File type ASCII text, with very long lines (64288)
Size 134 kB (133559 bytes)
Hash 337efd729c24224c498b2419b5723239
d4edd731d4d97e51e06b0cb2cbab8106cd4e9ac2
b295e59e5b86b12a24916299b03d09475227e8283043b41898e63e0bf24ebb00
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.19 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript
markjunior.org/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.4
162.222.225.163200 OK 1.1 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.4
IP 162.222.225.163:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 769e9d3f7fc383ec1a02024e39730474
4f5a5edf28ed19b48c5e40747ec6896f0df8f09e
4636689d57889e984a7a1a1c6e2516b7a2d951407ca826aaf505c50002e2b486
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.4 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 10 Oct 2022 14:55:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1093
Content-Type: application/javascript
markjunior.org/wp-content/themes/asting/assets/libs/appear/appear.js
162.222.225.163200 OK 1.4 kB URL HTTP/1.1 markjunior.org/wp-content/themes/asting/assets/libs/appear/appear.js
IP 162.222.225.163:0
Hash e19489f06289aea063110828d1daa149
51db3b5ba1df1cc857f8681fc0d72d82b96aef5c
bff0eb5249799fc39a828d97ee193fb7d80cb8c3d4fd7eb3ebaa21157bbffe47
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/asting/assets/libs/appear/appear.js HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1444
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 804755c7e438531c9ba2e781947e1640
7a93c31638ee89a561bac2174482a5d12aa62d63
aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8460
Expires: Wed, 23 Nov 2022 02:00:09 GMT
Date: Tue, 22 Nov 2022 23:39:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 804755c7e438531c9ba2e781947e1640
7a93c31638ee89a561bac2174482a5d12aa62d63
aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8460
Expires: Wed, 23 Nov 2022 02:00:09 GMT
Date: Tue, 22 Nov 2022 23:39:09 GMT
Connection: keep-alive
markjunior.org/wp-content/themes/asting/assets/js/script.js
162.222.225.163200 OK 2.2 kB URL HTTP/1.1 markjunior.org/wp-content/themes/asting/assets/js/script.js
IP 162.222.225.163:0
Hash 9c69f67a5807aa5716b6ac3ab6963847
11451fa6b58efed6c8f46991e6b869ca6b1fa60d
4c9d27a48de53b94e29b0973da03a5fe41ac161a6055c03d196ef991913d002b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/asting/assets/js/script.js HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2174
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 804755c7e438531c9ba2e781947e1640
7a93c31638ee89a561bac2174482a5d12aa62d63
aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8460
Expires: Wed, 23 Nov 2022 02:00:09 GMT
Date: Tue, 22 Nov 2022 23:39:09 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0ea68cc-d723-41ae-8bc2-16e2e422e2aa.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0ea68cc-d723-41ae-8bc2-16e2e422e2aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c6380f73d47906bd63b9c48137e4df61
94e053461d2db89e9d08321f26a2555ebcd7e0b9
84144e3c3e7acc7339fd1da9b373f18582734b6f4d235b2aef8c90616ed1c8a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0ea68cc-d723-41ae-8bc2-16e2e422e2aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5914
x-amzn-requestid: 175363fa-bb7a-4c95-8aa4-ebb3f16f3745
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1lI3HaqIAMFmTA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63788238-1bb736b52bbae37c5e19486f;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 07:14:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 39Lmple6qq9vrKeKJ4lcditVdK5XfRFtv3Cs0_R8B7pVDYPiRAGFtg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 22:13:08 GMT
age: 5161
etag: "94e053461d2db89e9d08321f26a2555ebcd7e0b9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6378ed5-9377-4686-98bd-f799fa2d276b.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6378ed5-9377-4686-98bd-f799fa2d276b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 73d326a472c49597186498283399b596
5f61c5e418f95e10e5b1260aac63a226dc26ab0b
143bef27d23a287bfa99421c33f28a4c8d37ad50d6b75d93ce4a3a167b9b5401
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6378ed5-9377-4686-98bd-f799fa2d276b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7627
x-amzn-requestid: 14fa1fb6-1af2-485d-ae6e-3c05baaf6944
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1eJnHTXoAMFryQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6378770a-738012af5c6313191ca29f38;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 06:26:18 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: Lj2WKFWupspDwkhlsfhyvf3p2tabXaZNMQGnxQ4qLq5VU1JT1DSi0w==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 d15b6a95f7c8298444f59a99d8027cec.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 21:54:17 GMT
age: 6292
etag: "5f61c5e418f95e10e5b1260aac63a226dc26ab0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 481c033b9ffd030ff0de6e35cf788b47
85d3baad9217af2b5d75c019d2ef95dbb919a788
02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 65a3db77-b2e6-40b9-a776-021c2e9b56d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bubSsHbZoAMFZNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375a5aa-1286b97968cc2e4c7fe8ab29;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iGM_HV13dzz5eOswbOJfjj14jlFW4jy2YsW7eJumS_TM5TxxG8VMwQ==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 03:49:11 GMT
age: 71398
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45ca81c5-d11a-4d86-a922-dbdce0f6b46c.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45ca81c5-d11a-4d86-a922-dbdce0f6b46c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0cc111ba6ae699fca7fbff3490640960
18084197b48ea3b4a143636250396e8791d0285f
34fbba92e665ad371ea2bd1a871251cf0c5b7832d6f4661b21b2cfbd7f786923
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45ca81c5-d11a-4d86-a922-dbdce0f6b46c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4977
x-amzn-requestid: 3e56de91-7ed1-4b1e-b230-5f19b2cc6601
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bxQKBHzdIAMFpUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376c70c-41c572d27999534d3c198372;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 23:43:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Or1B6k7o4cYqVXfndjJsKLOV-aYKX8bfHCQIUqNzvofjQSnIf8f04A==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 21:52:42 GMT
age: 6387
etag: "18084197b48ea3b4a143636250396e8791d0285f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19d78a60-e0f0-4143-8860-934548b7f5d4.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19d78a60-e0f0-4143-8860-934548b7f5d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5fe889ae2db174ec39ba42339b1cc1f8
f420e43f4350d7f1469ae35537bdd3cc747152b0
cab9aff75d385706be812e6cd1998d3db1ba99e44f9cde432acd50dcb1b90df7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19d78a60-e0f0-4143-8860-934548b7f5d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5913
x-amzn-requestid: ad2f2886-9624-4616-b1a6-7a21d4f00b71
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBcR_FGbIAMFQQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d40d9-7a36067b0567b3a43cfe6312;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 21:36:25 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ltx0v2BDLutKfMy_vg1DSN87k8YT0EJiRMO4rI_q5oCJVCegpjiVlw==
via: 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 21:45:19 GMT
age: 6830
etag: "f420e43f4350d7f1469ae35537bdd3cc747152b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c463ad-46db-4c1c-a9ef-76d12a5dbcd7.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c463ad-46db-4c1c-a9ef-76d12a5dbcd7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 31e6c88ba7f6e2f34a3f8c0986a5d358
ee9fe28661702bb56a5eae71ab66dda08c87cf50
9fa1bbbe3c52215f34509683ae2c1992f2319e2eef36e93dc1e6a29fe17df39b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c463ad-46db-4c1c-a9ef-76d12a5dbcd7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9422
x-amzn-requestid: 61475bac-5ed8-4661-b9a4-055578afe9d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brr5AHZ8oAMFfAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63748d06-7e69e5cd1afef9ee089f9d75;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 07:11:02 GMT
x-amz-cf-pop: SFO5-C3, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sMYTVN-IORXjnkopVsJADA2eo6hd_RytfhrADXP2gvWl2YhDSpZOrA==
via: 1.1 86eb67c9cdffbb1cad0c7a18a9b0f5a4.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 21:56:38 GMT
age: 6151
etag: "ee9fe28661702bb56a5eae71ab66dda08c87cf50"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
markjunior.org/wp-content/plugins/ova-framework/assets/js/script-elementor.js?ver=6.1.1
162.222.225.163200 OK 7.0 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/ova-framework/assets/js/script-elementor.js?ver=6.1.1
IP 162.222.225.163:0
Hash 46c7140c6ae620f1f74093aebf61219d
8ffb6da38ea3a32486df75a980047cf3ecf41598
988eeaf14ddd386dbf8a41422cdb71f9e1ebaa76265fff2d0aa8d275fe3444da
GET /wp-content/plugins/ova-framework/assets/js/script-elementor.js?ver=6.1.1 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7007
Content-Type: application/javascript
markjunior.org/wp-content/themes/asting/assets/libs/fancybox-master/dist/jquery.fancybox.min.js
162.222.225.163200 OK 29 kB URL HTTP/1.1 markjunior.org/wp-content/themes/asting/assets/libs/fancybox-master/dist/jquery.fancybox.min.js
IP 162.222.225.163:0
File type HTML document, ASCII text, with very long lines (31972)
Hash 4141ab06cc6106d8a20936e21b7d8130
f054c97becd70ab2349d4acfd7ec35e7343f793e
84ec66615a2ad08b427ed71268cddcc773a44512de603408e7768a5d550c4776
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/asting/assets/libs/fancybox-master/dist/jquery.fancybox.min.js HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript
markjunior.org/wp-content/plugins/ova-framework/assets/libs/waypoints/jquery.waypoints.min.js?ver=6.1.1
162.222.225.163200 OK 3.1 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/ova-framework/assets/libs/waypoints/jquery.waypoints.min.js?ver=6.1.1
IP 162.222.225.163:0
File type Unicode text, UTF-8 text, with very long lines (8668)
Hash 6af0fc8c93adb21b5808da3d7f6596c8
8772d0ea0269e6a2eeaaaeae9b93bc98c81987cb
048dde5ff73ad44ccfbc491f50a7ddeff31db6d43bf0401d6b17a9145dd6c4a5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ova-framework/assets/libs/waypoints/jquery.waypoints.min.js?ver=6.1.1 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3146
Content-Type: application/javascript
markjunior.org/wp-content/themes/asting/assets/libs/bootstrap/js/bootstrap.bundle.min.js
162.222.225.163200 OK 29 kB URL HTTP/1.1 markjunior.org/wp-content/themes/asting/assets/libs/bootstrap/js/bootstrap.bundle.min.js
IP 162.222.225.163:0
File type ASCII text, with very long lines (65297)
Hash 91d82f2c62f0e320df816b38ed9eea69
06c6f47b28631b63b30722c9b0d358eaeac333e8
898936c9e779cfe1450418d82bcd0cad71a7b0f2d9e06f439ee27864ce01f688
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/asting/assets/libs/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript
markjunior.org/wp-content/plugins/ova-framework/assets/libs/counter-up/jquery.counterup.js?ver=6.1.1
162.222.225.163200 OK 1.4 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/ova-framework/assets/libs/counter-up/jquery.counterup.js?ver=6.1.1
IP 162.222.225.163:0
Hash 08d3ae6c1313a708505cd461d06007f1
12627f169f0588c1cac161de117e6e0b3997d99f
21efd2eba1c677fddcccf8276a66dca4e51dc9e5fadc66ac8ce31445d3f7753f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ova-framework/assets/libs/counter-up/jquery.counterup.js?ver=6.1.1 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1359
Content-Type: application/javascript
markjunior.org/wp-content/plugins/ova-framework/assets/libs/owl-carousel/owl.carousel.min.js?ver=6.1.1
162.222.225.163200 OK 16 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/ova-framework/assets/libs/owl-carousel/owl.carousel.min.js?ver=6.1.1
IP 162.222.225.163:0
File type ASCII text, with very long lines (31997)
Hash 8a2ba9702fb3cca3c84924959fff383d
ec7e32b952d84e211870dd0e9f1520582e3b4270
ebcdf76e9e513c320785d95cbfa122a4aaa6143fc8ea69a2ea0dedf0277828b8
GET /wp-content/plugins/ova-framework/assets/libs/owl-carousel/owl.carousel.min.js?ver=6.1.1 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15883
Content-Type: application/javascript
markjunior.org/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.10
162.222.225.163200 OK 2.8 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.10
IP 162.222.225.163:0
File type ASCII text, with very long lines (6210), with no line terminators
Hash c74a284893e700efac7feda7f8ca29d9
e5f08422e3a5b9ed64676469e2d73ed9600ab3ee
01fb2bcfb32c7eabebccf5d1196cae451bae4f8ab247010f3cd6d86ef8521345
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/mailchimp-for-wp/assets/js/forms.js?ver=4.8.10 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2759
Content-Type: application/javascript
markjunior.org/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8
162.222.225.163200 OK 2.3 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8
IP 162.222.225.163:0
File type ASCII text, with very long lines (4918)
Hash a8a064f7e05640436a939b0839c64a66
e9bbdd085a3038acd63d108accba8dfb5499f4c0
2173daddf76795f8194c34463bfc5c9be793aecc545b4672ed5a6f9afcb473c3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2313
Content-Type: application/javascript
markjunior.org/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8
162.222.225.163200 OK 13 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8
IP 162.222.225.163:0
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash a3a9966edbcf4ff24cbce6355e84c975
4c31a0c1e12987b364c178689b8283d09e4f8a63
d50d738abb2b285ac79c3552d286706f3a99e60add08edad08f20b2d4adbdb8d
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13281
Content-Type: application/javascript
markjunior.org/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
162.222.225.163200 OK 3.7 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 162.222.225.163:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3747
Content-Type: application/javascript
markjunior.org/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
162.222.225.163200 OK 8.3 kB URL HTTP/1.1 markjunior.org/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 162.222.225.163:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 838560e989767f2ef5951b9eeee20352
6bf8419cb4d68d9beced9e4b79b22b347ae16a46
72e6d275c5229613a59aef94523fc6a96330553976aee003d8544d5806fa0c3d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:09 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:42:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8344
Content-Type: application/javascript
markjunior.org/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8
162.222.225.163200 OK 16 kB URL HTTP/1.1 markjunior.org/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8
IP 162.222.225.163:0
File type ASCII text, with very long lines (40474)
Hash eb7e2c1cbf83cab4aa6a7fef0dd47eb2
774647abb91ffaee699a8047c9d2fd8a65daff35
bdb3c3194100984be02d52864d7ade76025aa5c3028133d27d947ffb2a75b1e7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:10 GMT
Server: Apache
Last-Modified: Mon, 10 Oct 2022 14:55:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16151
Content-Type: application/javascript
markjunior.org/wp-includes/css/classic-themes.min.css?ver=1
162.222.225.163200 OK 189 B URL HTTP/1.1 markjunior.org/wp-includes/css/classic-themes.min.css?ver=1
IP 162.222.225.163:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:10 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:42:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 189
Content-Type: text/css
markjunior.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
162.222.225.163409 Conflict 83 B URL HTTP/1.1 markjunior.org/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 162.222.225.163:0
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 409 Conflict
Date: Tue, 22 Nov 2022 23:39:10 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
demo.ovathemes.com/asting/wp-content/uploads/2021/01/arrows.png
172.67.212.101200 OK 5.2 kB URL HTTP/1.1 demo.ovathemes.com/asting/wp-content/uploads/2021/01/arrows.png
IP 172.67.212.101:0
File type PNG image data, 79 x 121, 8-bit/color RGBA, interlaced\012- data
Hash cdf1e14e5ad81ddffb6546fedb27949f
17a7109d3889a7e0b21e6922b9a4dd7c7d856334
2e3319e6b891e3a5b212d926fd19f0b41860a052337a4f140523fc7679a6066c
GET /asting/wp-content/uploads/2021/01/arrows.png HTTP/1.1
Host: demo.ovathemes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:10 GMT
Content-Type: image/png
Content-Length: 5207
Connection: keep-alive
Last-Modified: Tue, 02 Mar 2021 08:24:43 GMT
ETag: "603df64b-1457"
Expires: Mon, 11 Sep 2023 05:15:23 GMT
Cache-Control: max-age=31536000
CF-Cache-Status: HIT
Age: 13181
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mBkHvd6wt62r%2BuzB32StiOsx5lgGLtHUGYw%2BZTKjcgykNAdvw3r8piDSCSf%2BgUPUAzPuu81uF7aH8iwLdsrLUwZZLSjOemwVekc5%2FKugFy5WtKy1o6qdZg%2BVTA3mR4kh7kS9vYA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76e580bc8f270b55-OSL
alt-svc: h2=":443"; ma=60
demo.ovathemes.com/asting/wp-content/uploads/2021/01/brand_1_img_3.png
172.67.212.101200 OK 1.2 kB URL HTTP/1.1 demo.ovathemes.com/asting/wp-content/uploads/2021/01/brand_1_img_3.png
IP 172.67.212.101:0
File type PNG image data, 123 x 24, 8-bit colormap, non-interlaced\012- data
Hash 6e7eec2682712e3f0ea23e343536da5b
81d2b921f3f3d8054e2946231228b8ec954ea4eb
39ce07057eaa7dc31ba522faab46930c6df820e4022218ee152bb3172713e260
GET /asting/wp-content/uploads/2021/01/brand_1_img_3.png HTTP/1.1
Host: demo.ovathemes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:10 GMT
Content-Type: image/png
Content-Length: 1192
Connection: keep-alive
Last-Modified: Tue, 02 Mar 2021 08:24:30 GMT
ETag: "603df63e-4a8"
Expires: Mon, 29 May 2023 08:13:27 GMT
Cache-Control: max-age=31536000
CF-Cache-Status: HIT
Age: 13181
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5YD01Md6t1rDFvjydSHwDcFFMShdzs2vLv%2BuQ0v005It04iP9CiNTKpC0RyHBEo%2BiD529ipHmnVV2Fv5aLK4toCRNDe0KlUmUs6ZLPL8as29ST2KdN8oFyhyznoeAwxieEbtSTM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76e580bc8e61b523-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ed3ae8e878b9c8c9c5fc3ab22d8547d6
e4d08dc74fa84a3bcc9d442e225e8f7a6c124822
e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 23:39:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ed3ae8e878b9c8c9c5fc3ab22d8547d6
e4d08dc74fa84a3bcc9d442e225e8f7a6c124822
e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 23:39:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ed3ae8e878b9c8c9c5fc3ab22d8547d6
e4d08dc74fa84a3bcc9d442e225e8f7a6c124822
e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 23:39:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 23:39:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
216.58.207.195200 OK 34 kB URL HTTP/1.1 fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Hash 848cd2ecd011428969dc6b90431bc482
6b1a7b562a56bd54510e0f6f95e26babca331a1b
981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://markjunior.org
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 33580
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 18 Nov 2022 23:34:51 GMT
Expires: Sat, 18 Nov 2023 23:34:51 GMT
Cache-Control: public, max-age=31536000
Age: 345859
Last-Modified: Mon, 18 Jul 2022 19:32:55 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/shadowsintolight/v15/UqyNK9UOIntux_czAvDQx_ZcHqZXBNQzdcD5.woff2
216.58.207.195200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/shadowsintolight/v15/UqyNK9UOIntux_czAvDQx_ZcHqZXBNQzdcD5.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16296, version 1.0\012- data
Hash ab4a2c11e0a08a8b4fa7846c2adcc173
86304ab63791be3a22e5eb673245bca6351774a2
2498c027559c4ae9a920e18e30031193148983e7ea195416d62c5d0ea2eaa3ac
GET /s/shadowsintolight/v15/UqyNK9UOIntux_czAvDQx_ZcHqZXBNQzdcD5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://markjunior.org
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 16296
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 17 Nov 2022 13:53:41 GMT
Expires: Fri, 17 Nov 2023 13:53:41 GMT
Cache-Control: public, max-age=31536000
Age: 467129
Last-Modified: Wed, 27 Apr 2022 15:55:58 GMT
Content-Type: font/woff2
markjunior.org/wp-content/themes/asting/assets/libs/icomoon/fonts/icomoon.woff?lxezgz
162.222.225.163200 OK 18 kB URL HTTP/1.1 markjunior.org/wp-content/themes/asting/assets/libs/icomoon/fonts/icomoon.woff?lxezgz
IP 162.222.225.163:0
File type Web Open Font Format, TrueType, length 18052, version 1.0\012- data
Hash 3acb0a523f7b432f398dad1ae0ac071d
4cd22b284ac273c097dc50a8b6c99c92ff04d58d
e881a3be1812a0129c9b5887b0ad66fb49b60e6c82f14f3d36d73e8d759905b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/asting/assets/libs/icomoon/fonts/icomoon.woff?lxezgz HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://markjunior.org/wp-content/themes/asting/assets/libs/icomoon/style.css
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:10 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
Content-Length: 18052
Content-Type: font/woff
markjunior.org/wp-content/themes/asting/assets/libs/fontawesome/webfonts/fa-solid-900.woff
162.222.225.163200 OK 87 kB URL HTTP/1.1 markjunior.org/wp-content/themes/asting/assets/libs/fontawesome/webfonts/fa-solid-900.woff
IP 162.222.225.163:0
File type Web Open Font Format, TrueType, length 86876, version 1.0\012- data
Hash 815694de1120d6c1e9d1f0895ee81056
6d320e1a3820a7998051c4feec4dad22760e485e
a188f8b84731c59143770ef391c9ad0fa2534d316862d5cb384623285c95c2e0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/asting/assets/libs/fontawesome/webfonts/fa-solid-900.woff HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://markjunior.org/wp-content/themes/asting/assets/libs/fontawesome/css/all.min.css
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:10 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
Content-Length: 86876
Content-Type: font/woff
away.cdnbestplatform.com/go.php?id=3245467-34-56736-11
91.211.91.104200 OK 409 B URL HTTP/2 away.cdnbestplatform.com/go.php?id=3245467-34-56736-11
IP 91.211.91.104:0
ASN #206638 PE Brezhnev Daniil
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 7e1bfbcd82af887ad22f2df06f75f1c9
fa5d953856e0c0b5df1ffdcf0bb6fb2e0fa47c7a
942cad9169b27a742b80b08f91a72e4ed9ef4461b849cd9ef06c2c3ece633174
Analyzer Verdict Alert fortinet Malware
GET /go.php?id=3245467-34-56736-11 HTTP/1.1
Host: away.cdnbestplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://markjunior.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 23:39:11 GMT
content-type: text/html; charset=UTF-8
content-length: 409
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=15768000;
X-Firefox-Spdy: h2
markjunior.org/wp-content/themes/asting/assets/libs/elegant_font/fonts/ElegantIcons.ttf
162.222.225.163200 OK 59 kB URL HTTP/1.1 markjunior.org/wp-content/themes/asting/assets/libs/elegant_font/fonts/ElegantIcons.ttf
IP 162.222.225.163:0
File type TrueType Font data, 13 tables, 1st "FFTM", 12 names, Macintosh, type 1 string\012- data
Hash f9d179f59b0878ffcd32a5b3c8ae9c62
eb8769a9501019da4bbf042a765ad417783b4922
7be552fcc35865c045cfafde15e7939c557cb88801a1abf461a4febc6d55fea0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/asting/assets/libs/elegant_font/fonts/ElegantIcons.ttf HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/wp-content/themes/asting/assets/libs/elegant_font/ele_style.css
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:10 GMT
Server: nginx/1.19.10
Content-Type: font/ttf
Content-Length: 59388
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
X-Server-Cache: true
X-Proxy-Cache: MISS
markjunior.org/wp-content/themes/asting/assets/libs/fontawesome/webfonts/fa-brands-400.woff
162.222.225.163200 OK 76 kB URL HTTP/1.1 markjunior.org/wp-content/themes/asting/assets/libs/fontawesome/webfonts/fa-brands-400.woff
IP 162.222.225.163:0
File type Web Open Font Format, TrueType, length 76344, version 1.0\012- data
Hash 7b464e274bc331f9a765d765359635a5
6df3f0063d291a192baf09c1965182d463f815e2
e1e30bb6e54ee8694d77ce63ff9b71e1174c2ade3791f094c6b9bb3ba292fda6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/asting/assets/libs/fontawesome/webfonts/fa-brands-400.woff HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://markjunior.org/wp-content/themes/asting/assets/libs/fontawesome/css/all.min.css
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:10 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
Content-Length: 76344
Content-Type: font/woff
markjunior.org/wp-content/themes/asting/assets/libs/fontawesome/webfonts/fa-brands-400.ttf
162.222.225.163200 OK 118 kB URL HTTP/1.1 markjunior.org/wp-content/themes/asting/assets/libs/fontawesome/webfonts/fa-brands-400.ttf
IP 162.222.225.163:0
File type TrueType Font data, 11 tables, 1st "GSUB", 18 names, Macintosh, Font AwesomeFont Awesome 5 BrandsRegularFont Awesome 5 Brands RegularFont Awesome 5 Brands Regul\012- data
Size 118 kB (118324 bytes)
Hash 947b9537bc0fecc8130d48eb753495a1
82b9ffe0bdbc49585e083b073564b35e50fa09d7
5660ca37cb851e9114f88800050a4d6b5bf871d48bfe7e6d6ba4332d8220255f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/asting/assets/libs/fontawesome/webfonts/fa-brands-400.ttf HTTP/1.1
Host: markjunior.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://markjunior.org/wp-content/themes/asting/assets/libs/fontawesome/css/all.min.css
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 23:39:10 GMT
Server: nginx/1.19.10
Content-Type: font/ttf
Content-Length: 118324
Last-Modified: Mon, 10 Oct 2022 14:53:58 GMT
Accept-Ranges: bytes
X-Server-Cache: true
X-Proxy-Cache: MISS
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1986d82edf7cca16361d8fba89e4a06a
b8a216c157b8620f06a6b4d4462be1d11da8141c
2e50de7df73696bfe8f364c40196aee91a65bac49ee3f5ca5cf6f604279ddfad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2E50DE7DF73696BFE8F364C40196AEE91A65BAC49EE3F5CA5CF6F604279DDFAD"
Last-Modified: Mon, 21 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7136
Expires: Wed, 23 Nov 2022 01:38:07 GMT
Date: Tue, 22 Nov 2022 23:39:11 GMT
Connection: keep-alive
greenskymotions.net/b91698fd2.js
185.177.94.152200 OK 56 B URL HTTP/2 greenskymotions.net/b91698fd2.js
IP 185.177.94.152:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 01fedb484c76c86eb5bafcc15b97bddc
aa3d7fba2de0e16f69798d6dc6e77d2765a90455
93f23f64c6e14a7778241254ad90d49a38dfe406afdd5e0e223064613572d40f
Analyzer Verdict Alert fortinet Phishing
GET /b91698fd2.js HTTP/1.1
Host: greenskymotions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: uuid=75b61610-82db-4e04-82d6-948db4f78d8f
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 23:39:11 GMT
content-type: application/javascript; charset=utf-8
content-length: 56
last-modified: Thu, 13 Oct 2022 01:01:02 GMT
etag: "6347634e-38"
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
greenskymotions.net/go/mu4genjugq5dcmjrhe3a?sub2=dfastspeed16
185.177.94.152200 OK 18 kB URL HTTP/2 greenskymotions.net/go/mu4genjugq5dcmjrhe3a?sub2=dfastspeed16
IP 185.177.94.152:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7734)
Hash 3e397ee683a9724ccb98fc8880196cab
ebd80721e548b6a428d4e4de76c581ffbc6d1f4e
1a9fa5bbcb756be56abd57f1a58d637787ea3c26187c2f3416a60db0e96572ef
Analyzer Verdict Alert fortinet Phishing
GET /go/mu4genjugq5dcmjrhe3a?sub2=dfastspeed16 HTTP/1.1
Host: greenskymotions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://away.cdnbestplatform.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 23:39:11 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
set-cookie: uuid=75b61610-82db-4e04-82d6-948db4f78d8f; expires=Thu, 22-Dec-2022 23:39:11 GMT; Max-Age=2592000; path=/; domain=greenskymotions.net
strict-transport-security: max-age=31536000
content-security-policy: img-src https: data:; upgrade-insecure-requests
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a0fd435bb2983756ad48ddeebf173770
285144f29c2e450e729f643367b23ef6cb15eac4
b2dfadba89a62da5b133ce4bf6c5ca596bc1aa5526395c63911afda37f89c98e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B2DFADBA89A62DA5B133CE4BF6C5CA596BC1AA5526395C63911AFDA37F89C98E"
Last-Modified: Mon, 21 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14507
Expires: Wed, 23 Nov 2022 03:40:58 GMT
Date: Tue, 22 Nov 2022 23:39:11 GMT
Connection: keep-alive
0.greenskymotions.net/b91698fd2.js
185.177.94.152200 OK 56 B URL HTTP/2 0.greenskymotions.net/b91698fd2.js
IP 185.177.94.152:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 01fedb484c76c86eb5bafcc15b97bddc
aa3d7fba2de0e16f69798d6dc6e77d2765a90455
93f23f64c6e14a7778241254ad90d49a38dfe406afdd5e0e223064613572d40f
Analyzer Verdict Alert fortinet Phishing
GET /b91698fd2.js HTTP/1.1
Host: 0.greenskymotions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: uuid=75b61610-82db-4e04-82d6-948db4f78d8f; uuid=75b61610-82db-4e04-82d6-948db4f78d8f
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 23:39:12 GMT
content-type: application/javascript; charset=utf-8
content-length: 56
last-modified: Thu, 13 Oct 2022 01:01:02 GMT
etag: "6347634e-38"
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
0.greenskymotions.net/favicon.ico
185.177.94.152204 No Content 0 B URL HTTP/2 0.greenskymotions.net/favicon.ico
IP 185.177.94.152:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: 0.greenskymotions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0.greenskymotions.net/index.php?p=mu4genjugq5dcmjrhe3a&sub2=dfastspeed16
Cookie: uuid=75b61610-82db-4e04-82d6-948db4f78d8f; uuid=75b61610-82db-4e04-82d6-948db4f78d8f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 22 Nov 2022 23:39:12 GMT
strict-transport-security: max-age=31536000
content-security-policy: img-src https: data:; upgrade-insecure-requests
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9d2a9b56d95a0549401fb44bcc5ab28e
6840446c1e61b32bf1510a1dce959bbb8f4ced79
86868d7d4fe2207fb3c1459a0f6cc1d938f1b161bc11a92bfa98b6c3c428dd09
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "86868D7D4FE2207FB3C1459A0F6CC1D938F1B161BC11A92BFA98B6C3C428DD09"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9427
Expires: Wed, 23 Nov 2022 02:16:19 GMT
Date: Tue, 22 Nov 2022 23:39:12 GMT
Connection: keep-alive
di4.biz/favicon.ico
185.177.92.179204 No Content 0 B IP 185.177.92.179:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: di4.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://di4.biz/?auf=gvqwgmleme5dcnrqgixtcmjrhe3c6mrqf5tdkmtfmrrdinjpgezc6mjwgy4tcnrqgm2te&p=b&sub1=&sub2=dfastspeed16&sub3=&sub4=&cpc=0&cpm=0
Cookie: uuid=b8708cd5-37cf-4a4c-863b-6ec5863d77f2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 22 Nov 2022 23:39:12 GMT
strict-transport-security: max-age=31536000
content-security-policy: img-src https: data:; upgrade-insecure-requests
X-Firefox-Spdy: h2
broworker4s.com/sw/bro.js
212.129.18.219200 OK 0 B URL HTTP/2 broworker4s.com/sw/bro.js
IP 212.129.18.219:0
GET /sw/bro.js HTTP/1.1
Host: broworker4s.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0.greenskymotions.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 23:39:12 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
expires: Wed, 22 Nov 2023 23:39:12 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
content-security-policy: img-src https: data:; upgrade-insecure-requests
X-Firefox-Spdy: h2
di4.biz/?auf=gvqwgmleme5dcnrqgixtcmjrhe3c6mrqf5tdkmtfmrrdinjpgezc6mjwgy4tcnrqgm2te&p=b&sub1=&sub2=dfastspeed16&sub3=&sub4=&cpc=0&cpm=0
185.177.92.179200 OK 0 B URL HTTP/2 di4.biz/?auf=gvqwgmleme5dcnrqgixtcmjrhe3c6mrqf5tdkmtfmrrdinjpgezc6mjwgy4tcnrqgm2te&p=b&sub1=&sub2=dfastspeed16&sub3=&sub4=&cpc=0&cpm=0
IP 185.177.92.179:0
ASN #39572 DataWeb Global Group B.V.
Analyzer Verdict Alert quad9 Sinkholed
GET /?auf=gvqwgmleme5dcnrqgixtcmjrhe3c6mrqf5tdkmtfmrrdinjpgezc6mjwgy4tcnrqgm2te&p=b&sub1=&sub2=dfastspeed16&sub3=&sub4=&cpc=0&cpm=0 HTTP/1.1
Host: di4.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0.greenskymotions.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 23:39:12 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
set-cookie: uuid=b8708cd5-37cf-4a4c-863b-6ec5863d77f2; expires=Thu, 22-Dec-2022 23:39:12 GMT; Max-Age=2592000; path=/
strict-transport-security: max-age=31536000
content-security-policy: img-src https: data:; upgrade-insecure-requests
X-Firefox-Spdy: h2
new.weatherplllatform.com/pick.js?v=11.87.33
91.211.91.114200 OK 0 B URL HTTP/2 new.weatherplllatform.com/pick.js?v=11.87.33
IP 91.211.91.114:0
ASN #206638 PE Brezhnev Daniil
Analyzer Verdict Alert fortinet Malware
GET /pick.js?v=11.87.33 HTTP/1.1
Host: new.weatherplllatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://markjunior.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 23:39:08 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 27 Oct 2022 17:28:29 GMT
vary: Accept-Encoding
etag: W/"635abfbd-921"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Abril+Fatface%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Abril+Fatface%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.10:0
GET /css?family=Abril+Fatface%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://markjunior.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 22 Nov 2022 23:39:08 GMT
date: Tue, 22 Nov 2022 23:39:08 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CShadows+Into+Light%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CShadows+Into+Light%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.10:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CShadows+Into+Light%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://markjunior.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 22 Nov 2022 23:39:07 GMT
date: Tue, 22 Nov 2022 23:39:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
broworker4s.com/sw/bro.js
212.129.18.219200 OK 0 B URL HTTP/2 broworker4s.com/sw/bro.js
IP 212.129.18.219:0
GET /sw/bro.js HTTP/1.1
Host: broworker4s.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greenskymotions.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 23:39:11 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
expires: Wed, 22 Nov 2023 23:39:11 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
content-security-policy: img-src https: data:; upgrade-insecure-requests
X-Firefox-Spdy: h2
0.greenskymotions.net/index.php?p=mu4genjugq5dcmjrhe3a&sub2=dfastspeed16
185.177.94.152200 OK 0 B URL HTTP/2 0.greenskymotions.net/index.php?p=mu4genjugq5dcmjrhe3a&sub2=dfastspeed16
IP 185.177.94.152:0
ASN #39572 DataWeb Global Group B.V.
GET /index.php?p=mu4genjugq5dcmjrhe3a&sub2=dfastspeed16 HTTP/1.1
Host: 0.greenskymotions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greenskymotions.net/
Cookie: uuid=75b61610-82db-4e04-82d6-948db4f78d8f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 23:39:12 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
set-cookie: uuid=75b61610-82db-4e04-82d6-948db4f78d8f; expires=Thu, 22-Dec-2022 23:39:12 GMT; Max-Age=2592000; path=/; domain=0.greenskymotions.net
strict-transport-security: max-age=31536000
content-security-policy: img-src https: data:; upgrade-insecure-requests
X-Firefox-Spdy: h2