Report - gorilladefence.com/

Report Overview

Submitted URL
gorilladefence.com/
IP
217.79.245.244
ASN
#29802 HVC-AS
Submitted
2022-09-20 13:55:36
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
138

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.49
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	736 B	93.184.220.29
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	993 B	2.1 kB	142.250.74.3
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.6 kB	142.250.74.10
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	468 B	34 kB	142.250.74.163
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	6.2 kB	23.36.76.226
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.161.231.36
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.3 kB	86 kB	34.120.237.76
gorilladefence.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	47 kB	2.9 MB	217.79.245.244

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-20	medium	gorilladefence.com/	Malware
2022-09-20	medium	gorilladefence.com/wp-includes/css/dist/block-library/style.min.css?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.4.5	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/elegant-icons/style.css?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/securicon/style.css?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/kaswara/assets/font-icon/icons.css?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/kaswara/front/assets/css/style.css?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/fancybox/fancybox.css?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/bxslider/bxslider.css?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/flexslider.min.css?ver=6.0.5	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/slabText/css/slabtext.css?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/og-grid/og-grid.css?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/animsition/animsition.css?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/easydropdown/css/easydropdown.metro.css?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/header/yamm.css?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.8.2	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.0.5	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/animsition/animsition.js?ver=1.0	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/waypoints/waypoints.js?ver=1.0	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/easypiechart/easypiechart.js?ver=1.0	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/cd-pricing/cd-pricing.js?ver=1.0	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/wow/wow.js?ver=1.0	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/sticky-kit/sticky-kit.js?ver=1.0	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/og-grid/og-grid.js?ver=1.0	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/header/slidebar.js?ver=1.0	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.0.5	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.8.2	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.8.2	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/js/jquery.enllax.js	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/js/scripts.js	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/slabText/js/jquery.slabtext.js?ver=1.0	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/header/header.js?ver=1.0	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/header/slidebars.js?ver=1.0	Malware
2022-09-20	medium	gorilladefence.com/wp-includes/js/wp-embed.min.js?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.0.5	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.0.5	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.0.5	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/woocommerce/css/woocommerce.css?ver=3.8.2	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/bootstrap/js/bootstrap.js?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/modernizr/modernizr.js?ver=1.0	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/owl/owl.js?ver=1.0	Malware
2022-09-20	medium	gorilladefence.com/wp-includes/js/wp-emoji-release.min.js?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.0.5	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.0.5	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=6.0.5	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/js/theme.js?ver=1.1	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/assets/bootstrap/css/bootstrap.css?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/	Malware
2022-09-20	medium	gorilladefence.com/wp-content/themes/safeguard/css/global.css?ver=5.3.13	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.3	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/img/whatsapp-icon-square.svg	Malware
2022-09-20	medium	gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-19-at-2.00.05-AM-650x490.jpeg	Malware
2022-09-20	medium	gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-1.06.52-PM-450x600.jpeg	Malware
2022-09-20	medium	gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-12.40.20-PM-650x490.jpeg	Malware
2022-09-20	medium	gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-1.11.29-PM-650x490.jpeg	Malware
2022-09-20	medium	gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-15-at-12.49.15-PM-650x490.jpeg	Malware
2022-09-20	medium	gorilladefence.com/wp-content/uploads/2021/08/lc300.jpeg	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.8.2	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/securicon/fonts/securicon.ttf?2nb83j	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/elegant-icons/fonts/elegant-icons.ttf?unc6iq	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888	Malware
2022-09-20	medium	gorilladefence.com/?wc-ajax=get_refreshed_fragments	Malware
2022-09-20	medium	gorilladefence.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0	Malware
2022-09-20	medium	gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-19-at-1.52.05-AM-650x490.jpeg	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (62)

	URL	Size	First Seen	Last Seen
	gorilladefence.com/wp-content/themes/safeguard/assets/header/slidebar.js?ver=1.0	11 kB	2023-03-07	2024-02-05
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/header/slidebar.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:59 Last Seen2024-02-05 05:18:32 Times Seen43 Hash f73fdb1017aefc1228e52509afe50fb2 848747741fdf0f3611a5f2ffc30b203e1cfe5bce d97a36bcb7ef7cce712dcd063c218e86609954f8b2a646fbb90a663775ac1d30 Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/sticky-kit/sticky-kit.js?ver=1.0	2.8 kB	2023-03-07	2023-11-22
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/sticky-kit/sticky-kit.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-11-22 22:08:35 Times Seen22 Hash a9360fa0ab5f425ba051d80b583cb96b 0facf34b570dc919063fd30d01e3c92c0f44e34d fa1121a39433b1d83722b444bd62bae6694506d249d2bb0d2ec8a039543fd232 Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/scrollie/scrollie.js?ver=1.0	2.2 kB	2023-03-07	2023-11-22
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/scrollie/scrollie.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:14 Last Seen2023-11-22 22:08:35 Times Seen21 Hash f5e383eddc6ac81b750fa5e361605900 b88b3426215fadde18b9ee89348484b9fb86cf53 880d88f3bac09ca6859d858086750d2513584b1e60bf63b0cbb2b289ff53c379 Loading...

	gorilladefence.com/	3.9 kB	2023-03-07	2023-03-07
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-03-07 21:45:20 Times Seen1 Hash 9a2633e750e71085b87415f18b8ad839 a273da44c221eaa11a65f3cc5e22604eab4444f7 aa5b8dd9c786f558a02fe4cdbd509570d27cca6196af7567188f68042b89b0fe Loading...

	gorilladefence.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70	9.6 kB	2023-03-07	2024-04-16
Pretty URL gorilladefence.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2024-04-16 13:45:31 Times Seen4965 Hash 81b2be18696c4dfe620f7b6d0d75a566 0c3cd7bdf58a65b07e17be39cfe4e386571bb4bd 120aaf6681ca6d34a40c559779f0a0038582a79fce1b868ff901c94d27c89c72 Loading...

	gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.0.5	36 kB	2023-03-07	2024-04-08
Pretty URL gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.0.5 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:37 Last Seen2024-04-08 17:30:57 Times Seen981 Hash 38fc018b2a3e21b4fc9d85c31055fbe1 9080223675416c00aa51161dddc90ccc27e2905f 808975b6cf4ae51c0555c592409a545a54a842eacde7c5408f6d77fcc754cc61 Loading...

	gorilladefence.com/	124 B	2023-03-07	2024-04-16
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:23 Last Seen2024-04-16 13:45:30 Times Seen1856 Hash bac1516825f021e09b3030700974ae69 56554bb8f07d7105342b215b5e74c581fca4755f 0e93aa5f748928796ac89a237d4cb79f42ba9305d54f695c947daf58b0576b07 Loading...

	gorilladefence.com/	217 B	2023-03-07	2023-03-07
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-03-07 21:45:20 Times Seen1 Hash 66f1d79a21543a51f3704e7531f14284 26508c6b6d0f98b3c2aceddaacde058b91cfddd8 104a8a9e3ea644a065b077d331160e5daeb2188070b38d64b4fd4df6a81ec5d7 Loading...

	gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.0.5	9.2 kB	2023-03-07	2024-04-18
Pretty URL gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.0.5 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:50 Last Seen2024-04-18 13:59:25 Times Seen3152 Hash 5ff487a413612cbbf6bc391c10ff7bac acbbd8a96ecad33158f29e45afcd41e4b2dd6579 357ad057de8ffc0fc9df301dd1873c3d482e926791195ee262da3886269f84d8 Loading...

	gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.8.2	2.8 kB	2023-03-07	2024-04-16
Pretty URL gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.8.2 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-04-16 13:45:31 Times Seen935 Hash 51826bf206887d13ab2e82a8a7245c64 72f4d6b6c3f88daa45c9ce042d9cb7e5166e9165 7b082daadd28b14604f37e9476dab0a901dbc19f82808056e27be8ca2af1fd98 Loading...

	gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.0.5	2.6 kB	2023-03-07	2024-01-28
Pretty URL gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.0.5 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:33:45 Last Seen2024-01-28 17:41:16 Times Seen94 Hash 831861fe0ede650da122feb8bb062aaa 77209bc8f4c5303e5e3c9dadddd02b926403e60b 32769ace21de9f1cb3f6ebde68f8afa5aaeb394df29934b43a9193da0247be6a Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/header/header.js?ver=1.0	14 kB	2023-03-07	2023-03-07
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/header/header.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-03-07 21:45:20 Times Seen1 Hash c2243d716d7017a6a30433e1ca0c152e 99e6d5de8ce77fceac697e418a25ab40beed4dfe b135653f7bb69d28a6a4aaea145971d01a945623c2c016cb14376ff75ae669e8 Loading...

	gorilladefence.com/	253 B	2023-03-07	2023-03-07
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-03-07 21:45:20 Times Seen1 Hash bff9122d26f926277af341ee79aeccbb 884adf8d597ba9ab25cd66476f695745ace675fd fe90f863b1f047ad2a91108cc797c1ce081045fdfe976a2c6428d9ccfa369b59 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 16:40:25 Times Seen36963199 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	gorilladefence.com/	1.3 kB	2023-03-07	2023-03-07
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-03-07 21:45:20 Times Seen1 Hash 0db4525b60ac97bb18765e2275a30482 a443312797c77dfc5345e699dd350e8b111177f0 1769b95dc420d2df9af8db05fe9f0545512dbec253a9bfbee867013bd155b7b7 Loading...

	gorilladefence.com/	170 B	2023-03-07	2023-03-07
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-03-07 21:45:20 Times Seen1 Hash f17a54acaa072400c27fdbcc4d0e7913 7c8ce59196edb7edd9d83e1085e192e2809e9686 166e00da0d188675570fffd07cb7b4c30da1b9b6e264eb092e9f0ac187468e92 Loading...

	gorilladefence.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	10 kB	2023-03-07	2024-04-19
Pretty URL gorilladefence.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-19 11:30:37 Times Seen37091 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/wow/wow.js?ver=1.0	8.4 kB	2023-03-07	2023-11-22
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/wow/wow.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:14 Last Seen2023-11-22 22:08:35 Times Seen16 Hash 2a9f736ae60f00c3b78a4d438e9e4216 eed4a0be0b1f19d1f6ec5cfdbd0b9c9cd77b295d 008a55706224974f875c1fb2a5ef2b26b6ed727462e73b7a321ec1318c8b16e6 Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/modernizr/modernizr.js?ver=1.0	15 kB	2023-03-07	2023-11-22
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/modernizr/modernizr.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:14 Last Seen2023-11-22 22:08:36 Times Seen18 Hash 3c71780e2de41704bccec4160afe73dd 4099d967e6e4b3263898ccbdc65c16e0ed877ea4 94042a3416ef46ebb2cdc28ff163e6343de8db6c616993593c0ac4ccecb51bbb Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/bxslider/bxslider.js?ver=1.0	19 kB	2023-03-07	2023-11-22
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/bxslider/bxslider.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:14 Last Seen2023-11-22 22:08:36 Times Seen13 Hash f7fdc89d0eba1f7dbfa4ff2142011b02 0dfda87d3a89baf3cba2e6e9bbbad5c091317b9f 1b1158533e07b41cb59d20128f3bf9a923990834c68a2d9eaf416a89e3330027 Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/easypiechart/easypiechart.js?ver=1.0	3.9 kB	2023-03-07	2023-11-22
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/easypiechart/easypiechart.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:14 Last Seen2023-11-22 22:08:35 Times Seen16 Hash 90ccc7a1bb40d5363963bea50877a01a 4282079111700fe36fd8b149c96d71ff49f8e8fa c02da7cbfebe224fbc97c01dec7f114bc1fbfae034bcfa397993033ae6227b00 Loading...

	gorilladefence.com/	4.5 kB	2023-03-07	2023-10-23
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-10-23 23:29:10 Times Seen2 Hash 7d75bebfe13055a3fbab2fe680ce1328 2e1a8e7c0c012bdf68aed5a5adeae0bbc5cd6384 d65a076134009d78ebdde12c34097c94248fa79654a849dec5dc005fc6deeb25 Loading...

	gorilladefence.com/	294 B	2023-03-07	2023-03-07
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-03-07 21:45:20 Times Seen1 Hash ef737cf18396e4f0e6b3248169f6119b 49cfd024103233442d151261e06108a97134a734 7ae067d384c352f3ccaff07ea3a2d3eb382a4f3abf4275cfec52dd9591fa6931 Loading...

	gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/js/scripts.js	382 B	2023-03-07	2023-11-22
Pretty URL gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/js/scripts.js IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-11-22 22:08:35 Times Seen6 Hash 3e0e5e23b6721cb1bb8782fbb6124977 11dc1f5bed3e15857c4f7f06cbdba45371356ca2 309d4a786fe9a4da25157a6dbb0ee29b2ee418af5e524519dd339643afcf7711 Loading...

	gorilladefence.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6	14 kB	2023-03-07	2024-04-18
Pretty URL gorilladefence.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-18 05:49:36 Times Seen6653 Hash 1534f06aa2b1b721a45372f8238e2461 86f7e7b926e1a88209d171b56dadbccc2c96f578 b7e17926b30342edecee8b3a93029ac51462e2b479277d8e077ba57173eb1900 Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/bootstrap/js/bootstrap.js?ver=5.3.13	69 kB	2023-03-07	2024-04-01
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/bootstrap/js/bootstrap.js?ver=5.3.13 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:24 Last Seen2024-04-01 18:14:56 Times Seen409 Hash ed69cf59ee487638489ff8742a469e43 8cf4186ce86777b4b408ce308ca9f66dd421f509 defc39740ac1859d8e2785ed473208409627e87addd5f78f2deaacb93a12d51d Loading...

	gorilladefence.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.0.5	21 kB	2023-03-07	2024-04-11
Pretty URL gorilladefence.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.0.5 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-11 16:14:22 Times Seen2010 Hash 5a627237805ba8fde358e571c3333197 b7365a7674259f505dc10e24e1b06c7e64555ed1 43cdf46f331fec5ba92e402e3d5cad473099892cbdafca02e607cd03705104bf Loading...

	gorilladefence.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.0.5	992 B	2023-03-07	2024-04-18
Pretty URL gorilladefence.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.0.5 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-04-18 21:17:08 Times Seen6792 Hash 787fe4f547a6cb7f4ce4934641085910 c2dee88d5bdfef214ce9c56f71a1df51cda0f328 654aaebdea944313257827be97eb196a8218a2cdfc9ba399db23e2cd4c02bd79 Loading...

	gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.8.2	1.5 kB	2023-03-07	2024-04-17
Pretty URL gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.8.2 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:40 Last Seen2024-04-17 05:53:59 Times Seen1007 Hash 62d74cdae2313ee0313fb5d5db43929a 78e62b7a1a67ac500401de0e89476236d0922415 2d8747d26eba68a46f768d99eebf4b4624a37b2a3bd83d4a6934939e62846972 Loading...

	gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.0.5	12 kB	2023-03-07	2024-01-28
Pretty URL gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.0.5 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:33:45 Last Seen2024-01-28 17:41:16 Times Seen105 Hash 6dcb6dc330fcc584b31ff3cf8d29600c b629986c76fd10216764a670e526606874aea263 340fb1e3976fcbc104d83209164e791e58840d0727e6ff655ff87714913e9ce5 Loading...

	gorilladefence.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0	151 kB	2023-03-07	2024-04-15
Pretty URL gorilladefence.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:48 Last Seen2024-04-15 02:37:41 Times Seen923 Hash c15dcd71fd8c45d9e9b4d6ddb498ac14 1c8553e2770a6708586d6f3da58cf3416d4b3beb 0a79ae4b9e359eb359db5e9c4ee6abd91a0cd514eabdeac0c44b2f1c2bac1c40 Loading...

	gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=6.0.5	22 kB	2023-03-07	2024-03-01
Pretty URL gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=6.0.5 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:37 Last Seen2024-03-01 07:48:30 Times Seen281 Hash 866fe370b8ff31e6547f5e0ce74f1def 60db8ac751e83482d64996e9b5333a6a23b3d403 ccfb7762be932f26ce547d4bb7477b61cb54b3addd78b1c721738de5d2fdb4ec Loading...

	gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/js/jquery.enllax.js	4.4 kB	2023-03-07	2023-12-04
Pretty URL gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/js/jquery.enllax.js IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-12-04 11:11:16 Times Seen10 Hash c8da3b95a42f3c349608a46ba7330487 5669e566a88941a19973c45e81e5d35f1f560c05 e47730a71e61cd1eafe5dc8ded887b4252ddee8983afb1054594e47e665205f0 Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/animsition/animsition.js?ver=1.0	12 kB	2023-03-07	2023-03-07
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/animsition/animsition.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-03-07 21:45:20 Times Seen1 Hash 5e3c9ff7280823e0d939511326c28ed8 2482ca9366d8bbf113d19cf636cb2103469b24c7 378c244d8d8be9dcf58b7233d632b3bf41477ff5e5d95d456c0e6462822871e9 Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/jarallax/jarallax.js?ver=1.0	9.7 kB	2023-03-07	2023-11-22
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/jarallax/jarallax.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:14 Last Seen2023-11-22 22:08:35 Times Seen16 Hash 0cfde3a9648c33912ed481644759e7d6 ba8bc7baff891275bf11e6fc304f04d06e947ab7 e94fa946ec7e1336ec763b106486a7efa3bc19357a9d878fd785da986989370e Loading...

	gorilladefence.com/	420 B	2023-03-07	2024-04-09
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:56 Last Seen2024-04-09 22:45:08 Times Seen220 Hash 2811bbf0dd3ea366908b32e20689df18 b0c2f70015b5b238fbb6eaee262395a0a5442011 47858b93a63d43eea3932e994407e1e92ae786d3b4e9e759161b715d10eff8f0 Loading...

	gorilladefence.com/	4.5 kB	2023-03-07	2023-03-07
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-03-07 21:45:20 Times Seen1 Hash d0ebb51a5d58179a3d74351e9276e822 3d0d486ed2b162850eeb174671e8c04293a3fb78 0f4e2c5229223d2a0769df891e347611c03d2fdf6d1ca475f82f802722edf944 Loading...

	gorilladefence.com/wp-includes/js/wp-embed.min.js?ver=5.3.13	1.4 kB	2023-03-07	2024-04-17
Pretty URL gorilladefence.com/wp-includes/js/wp-embed.min.js?ver=5.3.13 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-17 18:30:12 Times Seen2983 Hash 570ae0f3c201604926ea599d3d1f6c04 2c29243a73660964d4712b969d2a15e27777bc14 5138d39633dc69fcd0ed7f33a5e38dc339123f682fa7f5242066879c2bbc8c9b Loading...

	gorilladefence.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0	8.1 kB	2023-03-07	2024-04-18
Pretty URL gorilladefence.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:58 Last Seen2024-04-18 13:51:05 Times Seen1104 Hash 7e97ab52c3df75e9053002bb59f2cdd5 502edaa98677c743246149deb3a76f5ff65272dd 11e15f1d64a63cb498d0d42720a688ed15bf78393d8c460d695a110244c066e3 Loading...

	gorilladefence.com/	827 B	2023-03-07	2023-12-12
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-12-12 04:28:31 Times Seen3 Hash 07f41168600dd25b8660fa1e31e806c6 7e02326881f42d6840d5a3209d3894f020402202 6bb7147594544b94eee2a71dbc6456733b15a750657bb85c4437d0405be3b2ec Loading...

	gorilladefence.com/wp-includes/js/wp-emoji-release.min.js?ver=5.3.13	14 kB	2023-03-07	2024-04-16
Pretty URL gorilladefence.com/wp-includes/js/wp-emoji-release.min.js?ver=5.3.13 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:20 Last Seen2024-04-16 23:57:42 Times Seen2294 Hash d6aeffd9e0126160ff89d369c05a5fbe 8480b15ad38e8e1d67960e72b513fa4f463e2cc1 95309410230b1d3148e52211dcee018bfa011a2d69e9d7d6f81164035e8518a0 Loading...

	gorilladefence.com/	158 B	2023-03-07	2023-03-07
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-03-07 21:45:20 Times Seen1 Hash 7f227344e26524ad018920c457f90d9e 3fb7cba19af1b3a846f9b549f3e10b40b4c426c6 d8085b81f5583aff911ff8d1eefe3beb29de4264e182be22675f0d6b2a28ad8c Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/waypoints/waypoints.js?ver=1.0	8.0 kB	2023-03-07	2023-11-22
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/waypoints/waypoints.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:14 Last Seen2023-11-22 22:08:36 Times Seen12 Hash e96fd98e02627ccc0db9d1ab2cfe45bb 36a2481e53b4313bce85beacc7b61f4730c24cbc 90330c4079adf5a3fc14ec2e8f81d379214a8432f8112dc0aee2c360f0b4faaf Loading...

	gorilladefence.com/wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/js/app.js?ver=1.7.4	3.0 kB	2023-03-07	2023-12-13
Pretty URL gorilladefence.com/wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/js/app.js?ver=1.7.4 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:18:22 Last Seen2023-12-13 23:48:50 Times Seen15 Hash 64ec20f56edf9a1103ba1af90aaa0561 889ec7005e6628da62980fe28f0fe0b339248961 56d15d81a6c226086c62f73192c074293594818496cf638fa5397ba1040d523e Loading...

	gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.0.5	4.3 kB	2023-03-07	2024-01-28
Pretty URL gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.0.5 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:33:45 Last Seen2024-01-28 17:41:16 Times Seen50 Hash a47b26ae5766f15483ccbf5a1e802ba4 939fe6f685727894d507c99cd7e5ee31c179ecc1 c8af16e0395842cf488236bf304aca7d6e669b4f20280a86ad3cb78f37a88015 Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/og-grid/og-grid.js?ver=1.0	9.7 kB	2023-03-07	2023-11-22
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/og-grid/og-grid.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-11-22 22:08:35 Times Seen13 Hash 537843ca2f8352371a43648a8fd48e23 95b50bed86591b662462f9113cc528ae5c26023f ae5e283c49b2b6f9b69133945586c5cdfde44ee50b8b92efe0af34dadc67ec90 Loading...

	gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.8.2	2.9 kB	2023-03-07	2024-04-17
Pretty URL gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.8.2 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:23 Last Seen2024-04-17 05:53:57 Times Seen1995 Hash 3518c9cf4786d55c48e6b318cdf3c8de ee13e5307a87355b9c35aa2e2907f642839a80cf bed0bd033705c33f1742d8fab2bfed8e945567319fd00e529838392eca49eac0 Loading...

	gorilladefence.com/wp-content/themes/safeguard/js/theme.js?ver=1.1	32 kB	2023-03-07	2023-03-07
Pretty URL gorilladefence.com/wp-content/themes/safeguard/js/theme.js?ver=1.1 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-03-07 21:45:20 Times Seen1 Hash 831a6c99b046fac7af2ab6047b2320c6 54af9e494214d2cd9260ab8800cc1e1ca6eed341 20317a8021d921e18c89225c967d15e775caf3b11eb38595f00424364822c236 Loading...

	gorilladefence.com/	1.3 kB	2023-03-07	2023-03-07
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-03-07 21:45:20 Times Seen1 Hash 546d10ee44ff0d352249a088078675b8 04fe978c0e6f563f1365b3b91d1fa8f54740d0ec 3d5a82a324d6627d1e411dc7fa378e8e2dbbd83c1a5589f3f52cea702d8b398e Loading...

	gorilladefence.com/	732 B	2023-03-07	2024-03-14
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:55:03 Last Seen2024-03-14 21:25:48 Times Seen80 Hash c5fcbc16c13e52d6f6c276940ad785fb c19c75de4d7cb89cb0813b319631ac5f392682b4 424e52d4189faf8b697d7663084ca637e9830a44c34cb48c4e8696fb705b79db Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/header/slidebars.js?ver=1.0	3.3 kB	2023-03-07	2023-11-22
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/header/slidebars.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:14 Last Seen2023-11-22 22:08:35 Times Seen20 Hash 19d8f2c5580a1c498a31b1879cedefbe 0b0edc58f5222cb07bc0285072eec45b12c1586d 96fb4ed538dbe5e643a339fc2e1270635a60fcd544fb2403eea9a019e81e4b22 Loading...

	gorilladefence.com/	2.2 kB	2023-03-07	2023-03-07
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-03-07 21:45:20 Times Seen1 Hash 808f80fb6780d82d81def0268cb37e4b 7669898378d2a7197243004534b531238b1c5c88 4283bdd034990b473c206d04174a67c12206ac4cde9253a0071c6aece6f9432b Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/owl/owl.js?ver=1.0	43 kB	2023-03-07	2023-11-22
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/owl/owl.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:14 Last Seen2023-11-22 22:08:36 Times Seen17 Hash 9e61da8092bf2cf06e5cbbc800e07fda 43e2753d66dba34b20e267caf3300402f5ea9b42 c62e631be862f52ce070166c2d2d4cc342a819892a4ec16118c863bd062cd309 Loading...

	gorilladefence.com/	1.5 kB	2023-03-07	2024-04-15
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-04-15 02:37:40 Times Seen690 Hash 0f34278c49ba25db1ef359dd2641dc9a 916c0b1bc083867813188c84bb055cfce331c44c 44134cbf94a69a4a21b2805d17b869ad1d5ce8ad563f96b6cd218e71fab9d07e Loading...

	gorilladefence.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4	1.8 kB	2023-03-07	2024-04-17
Pretty URL gorilladefence.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2024-04-17 05:53:58 Times Seen4745 Hash 943f6eb962c25bd965e0f0e5a284fcd0 b050a98ebaef01d7597bf8c1acb995c0ef3bcbd9 50de09b0bb8d0ac656aa9b3a1e4ef58a3f2d1abd734cad68b0e12191e9d215ea Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/cssua/cssua.js?ver=1.0	3.3 kB	2023-03-07	2023-11-22
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/cssua/cssua.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:14 Last Seen2023-11-22 22:08:35 Times Seen17 Hash 2f5f23da3c571265802f4c528704d520 aed8087a5891b120cfa112d6512f382fa3d585e0 75bf7b0b5867965bead04b8130971d1b46b151294c1df329b6bb6c7ee50c096a Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/cd-pricing/cd-pricing.js?ver=1.0	1.4 kB	2023-03-07	2023-11-22
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/cd-pricing/cd-pricing.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:14 Last Seen2023-11-22 22:08:35 Times Seen16 Hash ffc2f6940530078a1b6a0dc9927827be 573740f3cdddf0a07dd67824e852899a4a76721c da66e6ebdd946905adf6873dac7c7289f60ec9439a0f518e4ecb0b286ec7ae09 Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/fancybox/fancybox.js?ver=1.0	23 kB	2023-03-07	2023-11-22
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/fancybox/fancybox.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:14 Last Seen2023-11-22 22:08:36 Times Seen13 Hash 0cfb1061add8dc99c286c6f7c79ed989 692173d60772a211adbbde9dd0d53933e354e591 a49b0ba94b97e471260f167f5c3d0f0179a98ad30d0dbf0efd27d04ff182871c Loading...

	gorilladefence.com/	255 B	2023-03-07	2023-03-07
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-03-07 21:45:20 Times Seen1 Hash 4956e7fde57aac869b8560cea9a4b643 975ec493a21a83870a9ce3334e117c0ec72572e4 4b579c081c28dfd749b37118c1e059956d16635649762426617d2ada1a44996a Loading...

	gorilladefence.com/	135 B	2023-03-07	2024-04-19
Pretty URL gorilladefence.com/ IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:50 Last Seen2024-04-19 12:13:32 Times Seen26555 Hash 3f82b089cf163a5417b3edb4687151f7 28436f92ab540ff08b12fdefddc7da67ba0f04f7 5ba9af6f12e99663f8f04285ef3d4ffd4cdbca820bccbc2dda9c40f805b5a850 Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/easydropdown/js/jquery.easydropdown.js?ver=1.0	7.7 kB	2023-03-07	2024-02-05
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/easydropdown/js/jquery.easydropdown.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:14 Last Seen2024-02-05 05:18:32 Times Seen36 Hash f4669d59d633329bd7c503e834089959 0867d26f3cb43f335323dcbeee858416fb0fd535 4e3df93e3bc5e420fd878294334c945c1f11a3b93cc48f6b32b751ad942c6999 Loading...

	gorilladefence.com/wp-content/themes/safeguard/assets/slabText/js/jquery.slabtext.js?ver=1.0	12 kB	2023-03-07	2023-11-22
Pretty URL gorilladefence.com/wp-content/themes/safeguard/assets/slabText/js/jquery.slabtext.js?ver=1.0 IP 217.79.245.244 ASN #29802 HVC-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:45:20 Last Seen2023-11-22 22:08:35 Times Seen12 Hash 5f97d61bd2256e531ab6077bb79be3a9 6de6a12d925dc2b05d46d804e696f734ef5c16a5 9e811d6350d8255456c9e3ef7f45b045d2fd827dc473fb3a57ffa2f34af6690d Loading...

HTTP Transactions (132)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3192
Expires: Tue, 20 Sep 2022 14:48:36 GMT
Date: Tue, 20 Sep 2022 13:55:24 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 20 Sep 2022 13:13:08 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6s_-a5aD_D3zGgs_OofCUlJMttpj6KLJ-YOPMSIyZO49MUexSUPA8w==
Age: 2536

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9ikqZyDnvH5zlbRHXqAQq24ZDdD86pRQKMExjq_8o_BI6fHKGz3MRw==
age: 33611
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 13:55:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 20 Sep 2022 13:03:22 GMT
Expires: Tue, 20 Sep 2022 13:06:41 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uMWUZGnbmJETzmAfdxEHFj-VUX46NKeBIpXcDKYqrbUIFc1THesI7g==
Age: 3123

gorilladefence.com/

217.79.245.244

301 Moved Permanently

0 B

URL HTTP/1.1
gorilladefence.com/
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
X-Redirect-By: WordPress
Location: https://gorilladefence.com/
Content-Length: 0
Date: Tue, 20 Sep 2022 13:55:25 GMT

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
edf07cd621f733b0eb50c632387ebf4f
61a082d26501c2c8d481b1676d0de2e585269613
e5c4324e4c55824b86f48bf0b9a1d317a82e7d3c19bdea7a91d78ce98d68a980

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 908
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 13:55:25 GMT
Last-Modified: Tue, 20 Sep 2022 13:40:17 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
07d08ddb2dc88db1fd7d6ab2d9ae3bb0
81b8d7737fa07e52fe22474414580de944ff5496
38879c4ea9f5ba44ec95fa455c45128af623ebea9278c99fe59817336c51447c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "38879C4EA9F5BA44EC95FA455C45128AF623EBEA9278C99FE59817336C51447C"
Last-Modified: Tue, 20 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21505
Expires: Tue, 20 Sep 2022 19:53:50 GMT
Date: Tue, 20 Sep 2022 13:55:25 GMT
Connection: keep-alive

push.services.mozilla.com/

35.161.231.36

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.231.36:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IwIiyb8zqxSST3SUFomkUA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lfc6+6FR2T04FNIDE8PLXSFGUdI=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8139
Expires: Tue, 20 Sep 2022 16:11:05 GMT
Date: Tue, 20 Sep 2022 13:55:26 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8139
Expires: Tue, 20 Sep 2022 16:11:05 GMT
Date: Tue, 20 Sep 2022 13:55:26 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8139
Expires: Tue, 20 Sep 2022 16:11:05 GMT
Date: Tue, 20 Sep 2022 13:55:26 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8139
Expires: Tue, 20 Sep 2022 16:11:05 GMT
Date: Tue, 20 Sep 2022 13:55:26 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8139
Expires: Tue, 20 Sep 2022 16:11:05 GMT
Date: Tue, 20 Sep 2022 13:55:26 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10894 bytes)
Hash
d3e70b2859ca89b353682d03f6b46b93
ebd83f29edd95217dfa4f4c7a94eddf34dd58b14
43ad8f8b0a664bbec39e0410c1201498a2d2e36e5bd7d5ece8d65b15230ec50b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10894
x-amzn-requestid: f7aad96e-af80-4db7-8bc1-d1e09a9b37e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeJQGHhOIAMFYuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322559a-538534e91448af217c59ab3d;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:28:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P7aZQzmAvqn2rcHJUQjHo0Dcg8dsrqseey5mNOabfq1b857M4SUMDQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 10:06:02 GMT
age: 13764
etag: "ebd83f29edd95217dfa4f4c7a94eddf34dd58b14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11145 bytes)
Hash
c283017ec789693602177a2785177e21
ff8286c4d2cf87a1865d56d082bc5235dba60ad7
520db2567ad5529d35d2ac63b94d4186848382e9c86d0c4355ab979b34f0e0ab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11145
x-amzn-requestid: dcb726a6-2f43-4170-a53c-4f0d2883309e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yuh7yHfHIAMFu4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e37e-11bf06e96123e01c11854cbb;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:47:42 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oJyChyEdTbGx6oQCRy6IVMS8qU22LupFYn6FOii3p4BUVFyKnssQ7Q==
via: 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:05:54 GMT
age: 56972
etag: "ff8286c4d2cf87a1865d56d082bc5235dba60ad7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9873 bytes)
Hash
7ca0c1a7f205ad07f1cce80b26448873
0e14f5062e40ce94346494ff947bfcf74b5e88c1
ebc960279032671136749823c126ec807334d9eaf2b019abcc63b41bcdbf4a7f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9873
x-amzn-requestid: 7171299f-e6e3-40ef-a292-33779346e1ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI-FDIIAMF-xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-31f9413434a6b00e77e7709b;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: evL3aL1ULo6B2a8Rp6iILKCX7F14O9HMSbEqkEY3XHFhmMptE8FaVw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:44 GMT
age: 56742
etag: "0e14f5062e40ce94346494ff947bfcf74b5e88c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11832 bytes)
Hash
2ed7323b395e757f7766ea0045efdaca
8b91bc3069a3217bc719c27959d578b353b5d9dc
8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
content-type: image/jpeg
age: 56743
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9865 bytes)
Hash
1a7d863845e96c5927e812f325c08c16
b8484fb5443344b03e52dd56b1d6c5682eb6221a
fcb382029332a44deaf212298b618074a752d674d0c735a1b8b861ab4bb6ff0f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9865
x-amzn-requestid: 7eeeff5b-cb13-4060-96a6-bf5a4be57331
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugokGQVoAMFXmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e169-4211dbbe1a22d0255a45aff0;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:38:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2kU9PLuzusMR04mNUdwbU6-120ESVhYJtNaIixERO68Vo9jEfP3JWg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:04:47 GMT
age: 57039
etag: "b8484fb5443344b03e52dd56b1d6c5682eb6221a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9543 bytes)
Hash
30fbdfee7ec4513a5ff3dfcb7282f816
a852edb64a7220532aa619ab2a440c3a7e11b97a
4adee59f97bea412c6a0a786d0a27e431a497198b9047a75841b0a530803bdfe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9543
x-amzn-requestid: 17be04c9-54f0-4988-82dd-f13911a2a629
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugINHN1IAMF8iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09a-35496b4c21c23dec75257964;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -VBFetQNkmIiWeJtW5IOheaPLdDHM9iKhiGPzVcA3_KQk7Qha5VrXg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:14:25 GMT
age: 56461
etag: "a852edb64a7220532aa619ab2a440c3a7e11b97a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e34f594c2e3b9b6a81e4ae9fef80f363
b7f65f5fb0df328d3c863af6c9351923205645f2
bcedda132b602d90a62a5fbe07e7c37f69cce319fb4b84e1bed40b1200e9898b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 13:55:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

gorilladefence.com/wp-includes/css/dist/block-library/style.min.css?ver=5.3.13

217.79.245.244

200 OK

5.7 kB

URL HTTP/2
gorilladefence.com/wp-includes/css/dist/block-library/style.min.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (41045), with no line terminators
Size
5.7 kB (5725 bytes)
Hash
5ea88d0fe7c942cae60483d0b4b5e944
1e5322b5ac81e14d7322a3def744f4b0ad783dbc
86feebc56d2aae8f6a2c32b1d4aa3c789094fbe927e8fa6082312f92b994d706

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 11 Jun 2020 01:05:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5725
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.4.5

217.79.245.244

200 OK

3.9 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.4.5
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (6383)
Size
3.9 kB (3932 bytes)
Hash
95e63fe7d2e7826b2a68aee35cfed046
828dc08518b70645591bfb0ec91dfb87a5066581
93fe673f2ad83e77984aac9e6a6e94fcf941c77dfa2d8acb4774f370332f0a89

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.4.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 15 Jul 2021 01:50:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3932
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/css/mainstyles.css?ver=1.7.4

217.79.245.244

200 OK

1.2 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/css/mainstyles.css?ver=1.7.4
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
1.2 kB (1212 bytes)
Hash
af9557bfc976cea742b518cabf694587
8d904dc330286f122dbec28fab1c3cbb64027d18
83443b348a39236f850fd13fe214b7e59a3927cb0973bbd2e2b1f11f351ffa72

HTTP Headers

GET /wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/css/mainstyles.css?ver=1.7.4 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Fri, 10 Jan 2020 10:17:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1212
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6

217.79.245.244

200 OK

559 B

URL HTTP/2
gorilladefence.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
559 B (559 bytes)
Hash
5d06058ba2673856ad5f584ee3d591de
5d4927e0b7868171f89488e527837199b7f9a3b1
af6f2608a9097d4c4a8c90504fbdf376435afe4cf4c789d9177a89ca609b201d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Wed, 11 Dec 2019 20:36:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 559
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/elegant-icons/style.css?ver=5.3.13

217.79.245.244

200 OK

2.4 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/elegant-icons/style.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
2.4 kB (2379 bytes)
Hash
b47c71f22483333c6166a145ca0c7c0c
70dbc4e790ed527b50d329e01c4995f3a42ae51f
1759c9fdad90ec20377dc48b9256c251fa2103eba4b29342b689cba8f8ba73da

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/font-icons-loader/fonts/elegant-icons/style.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:46:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2379
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/securicon/style.css?ver=5.3.13

217.79.245.244

200 OK

1.3 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/securicon/style.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
1.3 kB (1265 bytes)
Hash
20dca8626c292a377b20c3fefffa5b47
f6ba92dd2bbd8d34a19a1deb44a853fbfe55938e
0f7250ac302d7aef0900f9e8eaa36473420c932367801725ca079661294f91c3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/font-icons-loader/fonts/securicon/style.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:46:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1265
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/theme-fonts/style.css?ver=5.3.13

217.79.245.244

200 OK

3.9 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/theme-fonts/style.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
3.9 kB (3876 bytes)
Hash
30c966546dd522a4868249a53fbc8376
7f544440768c06f46fd06ca80f495c7966d8e6c8
8e836a882dfb6c701cecb5d7d4d601ec3de65d81ea8462182bf9f84d69d413a1

HTTP Headers

GET /wp-content/plugins/font-icons-loader/fonts/theme-fonts/style.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:46:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3876
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Rubik:700%2C300%2C500%7CRoboto:400

142.250.74.10

200 OK

1.2 kB

URL HTTP/2
fonts.googleapis.com/css?family=Rubik:700%2C300%2C500%7CRoboto:400
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
1.2 kB (1151 bytes)
Hash
8f2e0764e2f9c5988ee986dff745282b
e1d6dddaf5464bef24ed323925936ce68b6229d4
09a6277d712f44a721e06c8594651528dff7dc852102df7303e9f4ae8bc083e6

HTTP Headers

GET /css?family=Rubik:700%2C300%2C500%7CRoboto:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 20 Sep 2022 13:55:26 GMT
date: Tue, 20 Sep 2022 13:55:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/kaswara/assets/font-icon/icons.css?ver=5.3.13

217.79.245.244

200 OK

22 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/kaswara/assets/font-icon/icons.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (65536), with no line terminators
Size
22 kB (22204 bytes)
Hash
7a7af51c4fc29444e2ce5efc18cf22c1
4c66ee97d0c18bd994cc67495c58678c8293cdba
db8c786d676aabc2bb6304a21abd11d889cefb958ace4a25ac555f59304c6a18

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/kaswara/assets/font-icon/icons.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 22204
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/kaswara/front/assets/css/style.css?ver=5.3.13

217.79.245.244

200 OK

40 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/kaswara/front/assets/css/style.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (61627)
Size
40 kB (39454 bytes)
Hash
f3f37edbf8a312fa3fae3b26dc3f513c
2ff9894898e47910f96a64289f881b348a3ef702
8264869e320f9a0d8dbbbcb2e6769fc4e3e219a5a825bbeee97e871f9e38c960

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/kaswara/front/assets/css/style.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 39454
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3

217.79.245.244

200 OK

12 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Size
12 kB (11522 bytes)
Hash
89c01460d72cb1ceb3a46b26a5ca1f76
ac2c983903467ac06692603836da52c269d34745
88fe06f32160927f89011be425a89c7bd71b305cbbb14145f9829509f2805897

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:35 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11522
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.8.2

217.79.245.244

200 OK

2.0 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.8.2
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (16542), with no line terminators
Size
2.0 kB (1988 bytes)
Hash
f4cf53922d20aed873a555c609dcdc38
1b093d2e7d36a3ee67c160ad07d41de26ef4c52f
778cb503cfc869b86925519a38337e326d8c8a392b55bd3ea0e12e43d341c204

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.8.2 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 15 Jul 2021 01:50:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1988
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/css/style.css

217.79.245.244

200 OK

466 B

URL HTTP/2
gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/css/style.css
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
466 B (466 bytes)
Hash
77c6d3178250a81e66b551f1395f7e31
9aa637a12f10aff44a3c5083ca456b6a79c5dcb7
fdb142f750aee1958009834a900d88134c6ca7f9fe810d1fc71c0c620f747d44

HTTP Headers

GET /wp-content/plugins/wpa-vc-parallax-addons/css/style.css HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:46:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 466
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/css/animate.css

217.79.245.244

200 OK

2.8 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/css/animate.css
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
2.8 kB (2770 bytes)
Hash
35ef401c9d0a057606ab12eb99f088be
0d4b182157ef52cf592d42a8e7cc52718046c9aa
fb555e6ccd2f1794be65c33b4c6bd8d7ccd3301951dc58f792818d582dd6b440

HTTP Headers

GET /wp-content/plugins/wpa-vc-parallax-addons/css/animate.css HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:46:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2770
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/fancybox/fancybox.css?ver=5.3.13

217.79.245.244

200 OK

1.0 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/fancybox/fancybox.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (3778)
Size
1.0 kB (1031 bytes)
Hash
ba53759050737a0e1ff70dddad739fa8
413b12c95250b4e9fe00a127bd76e4a2d8c5188b
fca1170c205fecc97045525e849286a1a89664d290c1dc115f9aed45f15900d1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/fancybox/fancybox.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1031
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/owl/owl.css?ver=5.3.13

217.79.245.244

200 OK

799 B

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/owl/owl.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (2860)
Size
799 B (799 bytes)
Hash
780a941d33df20e4350c8a8e8c26bbf4
2626b4953e1ba4e11a3ce9ae949268b8bec2b726
0a9ec68107f9d83351d4ab3932f7b1a3e0d77a4be20f060081ccc5566d95924b

HTTP Headers

GET /wp-content/themes/safeguard/assets/owl/owl.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 799
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/bxslider/bxslider.css?ver=5.3.13

217.79.245.244

200 OK

815 B

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/bxslider/bxslider.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (2695)
Size
815 B (815 bytes)
Hash
0c8835db4957c65d2dc3be98672d2335
f035e1da295d9e987e60c7dcbba86b3ea1fc1545
ead60af73417492997d587bb2a4ec0b80bc5d93413664fc814ae22b17a1042ca

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/bxslider/bxslider.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 815
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/flexslider.min.css?ver=6.0.5

217.79.245.244

200 OK

967 B

URL HTTP/2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/flexslider.min.css?ver=6.0.5
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (3577), with no line terminators
Size
967 B (967 bytes)
Hash
b6dd0910188a38a3f59fceaabee8ac83
d397194d7c75852f8c4584183fe19db31e2ad335
7b7ace9556ea5a740fe45680ac41d8a6ecc091521e0aa406a3b668c4685b438f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/bower/flexslider/flexslider.min.css?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 967
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/slabText/css/slabtext.css?ver=5.3.13

217.79.245.244

200 OK

143 B

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/slabText/css/slabtext.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (343)
Size
143 B (143 bytes)
Hash
a43a7f46630e8578ecac638170bd7462
c7a29caf1fc52188d546a78a218ab721b16c8b08
b330fb83feee4e4c632bdf6f2da32e984ce885187be34496512a614cc4dec31d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/slabText/css/slabtext.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 143
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/og-grid/og-grid.css?ver=5.3.13

217.79.245.244

200 OK

1.6 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/og-grid/og-grid.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
troff or preprocessor input, ASCII text
Size
1.6 kB (1624 bytes)
Hash
2846071e39a82a5a0fc8e2f0d6196e52
b7bf730c7d2ae07dc90300bc16a2af0ce657316b
a67d0e588512aba6c6fbdd7d7f9065b38e0dc5bc029a52297d2738b18bbc82e0

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/og-grid/og-grid.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1624
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/animsition/animsition.css?ver=5.3.13

217.79.245.244

200 OK

2.1 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/animsition/animsition.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
2.1 kB (2134 bytes)
Hash
3aa5bc7f45a4d0678f539404e196b9ff
ab6b3b31f5de18d20d61c28e8e57b59dfcca1d07
51b0627cd6d9ab06f317b0da462d48f984c833da7c4a3de4196a9b925355602e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/animsition/animsition.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2134
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/easydropdown/css/easydropdown.metro.css?ver=5.3.13

217.79.245.244

200 OK

1.1 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/easydropdown/css/easydropdown.metro.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
1.1 kB (1079 bytes)
Hash
a50f836b20830edcffb3b39a9ddd108c
926767ed47893295dc596e3d5313b74c7b92eeee
932f79b83d77eec8ff546f5bf6356c1da3b2e08264c3558eb093c8ad475afb6a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/easydropdown/css/easydropdown.metro.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:53:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1079
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/header/yamm.css?ver=5.3.13

217.79.245.244

200 OK

764 B

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/header/yamm.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
764 B (764 bytes)
Hash
305eacb85314eb3acc0c8d56cbd23fa4
c1de85e2a5131d332754ad93462fb28b2917c6b8
f86811165585f861feb7ec782ef570e4cf544e07ca3cf9df3b8b3be970a9e199

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/header/yamm.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:53:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 764
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

217.79.245.244

200 OK

3.8 kB

URL HTTP/2
gorilladefence.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (9959)
Size
3.8 kB (3823 bytes)
Hash
7c4522c04f6ad8cc5ba9d83d27a652c9
9b3058c58d6f0f3bcf204d57d5e38fc3ef507b8f
186df88869ab6951e2647db3b07fc025857cdab144cd7367513944d1d2f0f26c

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Fri, 20 May 2016 15:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3823
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70

217.79.245.244

200 OK

3.3 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (9172)
Size
3.3 kB (3280 bytes)
Hash
9c7ae47bcf0dc0d73dc2efa79ad93080
d6666e4f67d9ce2a031613735c462e8c509e7203
326fc19eb1b917c2bd26de1196715e9ad6736988d89823e7418cab6f28eb2126

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Jul 2021 01:50:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3280
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.8.2

217.79.245.244

200 OK

906 B

URL HTTP/2
gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.8.2
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
HTML document, ASCII text, with very long lines (2750), with no line terminators
Size
906 B (906 bytes)
Hash
fb5d90435c05795ee5c15a70f1d4c34a
d0f332bcc5d92d0bc9a6597d760281dfb7641725
b4b18dc266b786b67e456d9c0e1d1b5192c600bdf09db6ff6f5763da8d7573b7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.8.2 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Jul 2021 01:50:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 906
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.0.5

217.79.245.244

200 OK

321 B

URL HTTP/2
gorilladefence.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.0.5
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
321 B (321 bytes)
Hash
159e4731a0ffba6862ee2a1bbcc8a805
7fb2a5ca7a80d96187fda406d0a1b7db23867fa7
c6f102a76dc397d94cfbadcd292d64bb45acaa29b0391b41a9f1cc68c2274ae2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 321
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/animsition/animsition.js?ver=1.0

217.79.245.244

200 OK

2.8 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/animsition/animsition.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (626)
Size
2.8 kB (2774 bytes)
Hash
af1726f258cc12c9d106fd58f43af6d5
bbb9be9c36ddd9a9f7610e50955605b6d608ac82
f3531e4948f122a7ee311d7c9dce58961375815b3b3a43b4a48a52cac899a001

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/animsition/animsition.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2774
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/cssua/cssua.js?ver=1.0

217.79.245.244

200 OK

1.4 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/cssua/cssua.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (576)
Size
1.4 kB (1417 bytes)
Hash
d3b2a687952a2b0b31809d18fadb0728
923aff526a322c5ec735ca0e86e5722abce73f3e
f2f65fd0b067bfea5d925422ec58fec2b17ed4de46cf58db22b3d84b1a9e87c5

HTTP Headers

GET /wp-content/themes/safeguard/assets/cssua/cssua.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1417
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/waypoints/waypoints.js?ver=1.0

217.79.245.244

200 OK

2.5 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/waypoints/waypoints.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (7808)
Size
2.5 kB (2463 bytes)
Hash
0b8bebb023f82c47921cf1ca4147df35
9848308b4c0c810ba07de05d984ce12e97bef476
6b6da9ed448db27f341e48e5b519eca3dce47210b34b0cccdd4cf521a5dfe2d3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/waypoints/waypoints.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2463
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/easypiechart/easypiechart.js?ver=1.0

217.79.245.244

200 OK

1.6 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/easypiechart/easypiechart.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (3695)
Size
1.6 kB (1560 bytes)
Hash
50c89bc268f1098bb664a21a579b1f14
e53bc75b39fab6b8ad3c5c60e5d7a3af5c608ff9
a1a46a51ce90e81f1e912700850f2cb9a44bcefac7299699f47294272928c135

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/easypiechart/easypiechart.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1560
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/jarallax/jarallax.js?ver=1.0

217.79.245.244

200 OK

3.4 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/jarallax/jarallax.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (9547)
Size
3.4 kB (3379 bytes)
Hash
b91802dc606a5b856c9587ef8f108212
0b7445b4a41b6d003ad117db4ceda2380d704cc7
99da977f85cf31f77a7290241497fdc73c57d6d7922fa56058019563cfc0ccf4

HTTP Headers

GET /wp-content/themes/safeguard/assets/jarallax/jarallax.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:35 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3379
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/cd-pricing/cd-pricing.js?ver=1.0

217.79.245.244

200 OK

528 B

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/cd-pricing/cd-pricing.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (1358)
Size
528 B (528 bytes)
Hash
7048a3b2b9207f81cf5441755b0d0a10
3bee3a6092caf5e3629165a1218b9b61a8a0f315
5ada56f0a402d47741addc6717c93e42405ef99287921073dc68757c67189333

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/cd-pricing/cd-pricing.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 528
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/wow/wow.js?ver=1.0

217.79.245.244

200 OK

2.6 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/wow/wow.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (8385)
Size
2.6 kB (2576 bytes)
Hash
20b7d9c76a9f19f662846dc610732f5a
381d56af4a5ec62b91fb87fef2899036f01ec14e
1b553fa3f989630f885241a9a61967fabda134c863bfde2980b706ed74caa5d3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/wow/wow.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2576
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/sticky-kit/sticky-kit.js?ver=1.0

217.79.245.244

200 OK

1.2 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/sticky-kit/sticky-kit.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (2706)
Size
1.2 kB (1159 bytes)
Hash
5229a7deeede808183f3975a464ebc92
d4f125bd5e3aed2904410fd1aaff4f470702513c
d43181b3657a49920c7d32d64332033a5bbf7e10ea9527df015440388cd709c4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/sticky-kit/sticky-kit.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1159
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/scrollie/scrollie.js?ver=1.0

217.79.245.244

200 OK

745 B

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/scrollie/scrollie.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (2013)
Size
745 B (745 bytes)
Hash
570cb8449f82d91535242aa559a64990
2ca8dfbf9faea8eb640a25281919c2ac262a58b0
1e1009258b8b1c1ed6c9751ef92897942bfd9c94c1a8320e1a0de9424e802045

HTTP Headers

GET /wp-content/themes/safeguard/assets/scrollie/scrollie.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 745
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/easydropdown/js/jquery.easydropdown.js?ver=1.0

217.79.245.244

200 OK

2.6 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/easydropdown/js/jquery.easydropdown.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (560)
Size
2.6 kB (2564 bytes)
Hash
fb7338973e3b0e0922a35d6505207d25
c96fe249abb2932f4990080be758e489f8724508
9759696d50821008a41907d76f9407fe788f4eb04d0113198eef06f70fb7bee9

HTTP Headers

GET /wp-content/themes/safeguard/assets/easydropdown/js/jquery.easydropdown.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2564
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/og-grid/og-grid.js?ver=1.0

217.79.245.244

200 OK

2.8 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/og-grid/og-grid.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (878)
Size
2.8 kB (2802 bytes)
Hash
c502f6b0256f8a1a6ccadad24fee000c
636219c20ec0d89eeed76709638752320adcb106
b4b7c8b3417d4214c744dfb555b0d5fd5e3e5f7f74e647c44136995851553a0c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/og-grid/og-grid.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2802
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/header/slidebar.js?ver=1.0

217.79.245.244

200 OK

2.1 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/header/slidebar.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
2.1 kB (2081 bytes)
Hash
bf16760dea5e4d0c6d1eb36846972951
075bb429d87ff78e6c99862a29eb8cf036f12d5f
85b80ac3415c02063ffb4c4b3b774aaf93d01fdc6f77a7bc4ced309200f3cb51

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/header/slidebar.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2081
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.0.5

217.79.245.244

200 OK

3.5 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.0.5
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (53826)
Size
3.5 kB (3538 bytes)
Hash
c1ca806d17daf61b69ee1f215ea58b69
e38636307d700ae00aae6cb83de05567fe364faa
3e1a7523151be0a4d2db5de7ee819ca4d0d6fd2248573e7bbfa1e094bb4dd135

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3538
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/js/app.js?ver=1.7.4

217.79.245.244

200 OK

841 B

URL HTTP/2
gorilladefence.com/wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/js/app.js?ver=1.7.4
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
841 B (841 bytes)
Hash
38d47ac0f63c25e58c46b3ebd9f37fd7
a10834580d0ba32561e28c34cabdeba22f8c9983
c64e4d7db4fa1f5a98f8b9b2eb56790f3a509c2ebab16432b9a36a1cfeb8d993

HTTP Headers

GET /wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/js/app.js?ver=1.7.4 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Fri, 10 Jan 2020 10:17:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 841
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6

217.79.245.244

200 OK

3.8 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
3.8 kB (3752 bytes)
Hash
f644bc34a89d97aedb4b3b90263e069d
fc4569b75426c65dd5bda5929cc3c72d7bb4c055
298de39bc7e3ea98932954fca45be9f89af97eca4d0ddcb6a0a355bddbc6fac1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Wed, 11 Dec 2019 20:36:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3752
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4

217.79.245.244

200 OK

894 B

URL HTTP/2
gorilladefence.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (1680)
Size
894 B (894 bytes)
Hash
dfcc770336a2eead262dd6f877e80755
c201c1011320e8bf6b428fc4ada657b17b5b9650
044ac2994997d874b7b9a5d02fb4e9d911529c4bfa4f62554f1b1b71a48b2943

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Jul 2021 01:50:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 894
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.8.2

217.79.245.244

200 OK

522 B

URL HTTP/2
gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.8.2
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (1472), with no line terminators
Size
522 B (522 bytes)
Hash
de0dfbfd394b7cf3c48335170b79c7a8
46ad79dccbfc8b49cd158dad9486c5cf285f3390
6984ec8c5069bcfbe493c22ab70d63a79e98b0e8fa992ffa74c1ed02f8e92356

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.8.2 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Jul 2021 01:50:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 522
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.8.2

217.79.245.244

200 OK

938 B

URL HTTP/2
gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.8.2
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (2940), with no line terminators
Size
938 B (938 bytes)
Hash
b0b78a02b18f4e4585d69d009ede4df4
c03f17d58f54b62f770bee9c75246d8960919a5a
88594d81dad7ba341a2fedec5edb45e51028353314ae7a5aea9527e93a76c1a4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.8.2 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Jul 2021 01:50:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 938
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/js/jquery.enllax.js

217.79.245.244

200 OK

788 B

URL HTTP/2
gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/js/jquery.enllax.js
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
788 B (788 bytes)
Hash
16249a2aa5de6af258f5d6a1689c6f5a
553ef7d79a31b1031e163d3930aa5b73880b6e5e
8f7d5c8ffb9490f7dc90bd1450fdf19b80bf4764f97673b20b3280e601dd1100

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/wpa-vc-parallax-addons/js/jquery.enllax.js HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:46:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 788
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/js/scripts.js

217.79.245.244

200 OK

193 B

URL HTTP/2
gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/js/scripts.js
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with CRLF line terminators
Size
193 B (193 bytes)
Hash
18ae21cc4045a393599c7a8c79c8dd5a
f820002ca9343ac4c1d98063ecd32e3e626240d3
1008373d0f98f11300572e2fbe77bd3275247db1a344b68339841a9edb7e14da

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/wpa-vc-parallax-addons/js/scripts.js HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:46:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 193
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/slabText/js/jquery.slabtext.js?ver=1.0

217.79.245.244

200 OK

3.2 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/slabText/js/jquery.slabtext.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
Unicode text, UTF-8 text
Size
3.2 kB (3168 bytes)
Hash
900daed2791d753a7206cff0b89d58ae
6776c034fa9b0434b72dc79390cf36f425f837da
127381d676f38f3df1dee7037c98bde82b988b8c9e9ccd452b2dd57332a5d4bf

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/slabText/js/jquery.slabtext.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3168
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0

217.79.245.244

200 OK

2.4 kB

URL HTTP/2
gorilladefence.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (7996)
Size
2.4 kB (2422 bytes)
Hash
148ebbd92f6e22800361a511841a04b3
45716b7da4e07f9d8c8465d1eefcded7ac7f4438
afbbe93586e74d2f03d930bed6bee7c82382c82d960863ad19dc9aa4110e4568

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Wed, 23 May 2018 19:35:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2422
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/header/header.js?ver=1.0

217.79.245.244

200 OK

3.4 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/header/header.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
HTML document, ASCII text, with very long lines (495)
Size
3.4 kB (3356 bytes)
Hash
5b2c7bf770d61e8134282cf903865338
377901433d9f117b341a9b7764b35b0752b8ab88
53aa7dd9a438063f48754e5d84bdbae85789f35137bc9e97e6cc572a6260926a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/header/header.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3356
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/header/slidebars.js?ver=1.0

217.79.245.244

200 OK

496 B

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/header/slidebars.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (3335), with no line terminators
Size
496 B (496 bytes)
Hash
5d4e15b8311aafe1db328e2bff4dba95
3b3797a1caa8779a599cf8337df1a022e8108fa1
1bb22f7b3d983da4b4067676ef78862eef2e601e6d3e9aa1acde58b62d2c0266

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/header/slidebars.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 496
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-includes/js/wp-embed.min.js?ver=5.3.13

217.79.245.244

200 OK

638 B

URL HTTP/2
gorilladefence.com/wp-includes/js/wp-embed.min.js?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (1391), with no line terminators
Size
638 B (638 bytes)
Hash
85b7e05edbd8b6b11ea6d1d9b4962e6d
8980e1bfc98fa9a331aa662c835284c5c75cc316
1fe5c1fb9e8dc26c7385dc661fcded4c033b190cb506349fcdbaefa5672c1449

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 12:44:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 638
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.0.5

217.79.245.244

200 OK

2.7 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.0.5
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
Unicode text, UTF-8 text, with very long lines (8853)
Size
2.7 kB (2675 bytes)
Hash
ca6d5264457e1e96e200324f3b5123f3
f13f44fbcd775c220b74dfd13f5ca7820d2502af
37c587c8b55480de62ddfdbf5cb45b1c66659cc6e66798490c87781526a90da5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2675
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.0.5

217.79.245.244

200 OK

2.6 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.0.5
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (11236)
Size
2.6 kB (2571 bytes)
Hash
9581dbc0e19d1f5d9cead07ee733eb43
45a36b62f7cbe4d37ff0d47291442487b9e415df
3c06a5625ec997eee5d583a55394bede3910eb6b7a0d122f8a676a4edcee524e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2571
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.0.5

217.79.245.244

200 OK

870 B

URL HTTP/2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.0.5
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (2337)
Size
870 B (870 bytes)
Hash
ac426b762b815264a7fcf24d82cf3eb1
d47ef180f7644dc24f9034fada1528e86831d686
bd55f7c2420f51f971ab3bfa947a7eea66df8445be7806f17504cea5a0ac0b6a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 870
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.0.5

217.79.245.244

200 OK

1.2 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.0.5
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (4070)
Size
1.2 kB (1227 bytes)
Hash
b84e12b1b7673414fc7c59f1f79003c5
0e902c5dcdc0134fc857a2fcb3bf81261d7fa45f
eadf640ba48ebf1167840f0f927a73d35649e3c4d583533e646674b6afba227a

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1227
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/woocommerce/css/woocommerce.css?ver=3.8.2

217.79.245.244

200 OK

10 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/woocommerce/css/woocommerce.css?ver=3.8.2
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
10 kB (10152 bytes)
Hash
03f1501d847fb263fb4cad9590eee62e
c33623e55b16c8c06e65ff5fda440f05d47c66c7
d28f38325172804653a1388195efea90a680df420476030c69e22f4091aeafe1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/woocommerce/css/woocommerce.css?ver=3.8.2 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10152
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/css/responsive.css?ver=5.3.13

217.79.245.244

200 OK

7.0 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/css/responsive.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
7.0 kB (7007 bytes)
Hash
ea303c6639f9a0f6b99457fbf9d2ba30
804d9bd42adb679e6f5701e82a65138a4fdb0f34
6abf864b695b998d742ad61ed921374a1f95073caf526493075dfe234b519bac

HTTP Headers

GET /wp-content/themes/safeguard/css/responsive.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7007
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=6.0.5

217.79.245.244

200 OK

6.6 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=6.0.5
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (30449)
Size
6.6 kB (6584 bytes)
Hash
fa6937023888411664ad6501fcce0b10
3245416fbf393d3b163546f3730da7bb5c1a6d4f
f2ecf4cd1d79eda4fc991d4d7448f295457db297f238a1258b10feb23e96144c

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6584
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/header/header.css?ver=5.3.13

217.79.245.244

200 OK

14 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/header/header.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
14 kB (14064 bytes)
Hash
e74bbef15dc535f20ec611eb3d716d46
87fc7442ff00eedb9979e28570a7d0d9345c6999
751f63f2ae55b1253602c4270927991ec562789ec18c2df7e815244c844fb6a0

HTTP Headers

GET /wp-content/themes/safeguard/assets/header/header.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:53:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14064
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/bootstrap/js/bootstrap.js?ver=5.3.13

217.79.245.244

200 OK

14 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/bootstrap/js/bootstrap.js?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
14 kB (13545 bytes)
Hash
f39d95978d978a96ab099adcfed2a35e
db0de618fe46d5c1aa056354b4faec4a8dbceb65
eec73efbd8dc57477eb4599835202c8def8f2b808feee74b05ef956dbba513de

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/bootstrap/js/bootstrap.js?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13545
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/modernizr/modernizr.js?ver=1.0

217.79.245.244

200 OK

5.9 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/modernizr/modernizr.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
HTML document, ASCII text, with very long lines (14596)
Size
5.9 kB (5910 bytes)
Hash
ff97f3a1eb81db7174dd3e9d596b0412
47bcb044a7838825ab7127f10a71c9aa04697cd5
df73bcf0c7e1a56ad042d2c307c0bacbc442e4593636eab8e935d06d144501d2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/modernizr/modernizr.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5910
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/owl/owl.js?ver=1.0

217.79.245.244

200 OK

11 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/owl/owl.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (32000)
Size
11 kB (10652 bytes)
Hash
ef6cae6fa3016580c4de9fa619d12365
9d74703a12109fce8bf0a2eb76db65b3c662cc40
7618848a6536e8d61e7b4c2e3b5e8ad4c055ea032a21c0567a38c41bb97185fc

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/owl/owl.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10652
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/fancybox/fancybox.js?ver=1.0

217.79.245.244

200 OK

8.3 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/fancybox/fancybox.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (22962)
Size
8.3 kB (8252 bytes)
Hash
0d0b222c4ba84dd0fd54659c63e68e4c
683f79222297e133e5320df6324a488fdff7edd3
c779f2a96c103f147779b108fa1ecba45f22b103c952d9bb1ff7ecab1d41d62c

HTTP Headers

GET /wp-content/themes/safeguard/assets/fancybox/fancybox.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8252
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/bxslider/bxslider.js?ver=1.0

217.79.245.244

200 OK

4.9 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/bxslider/bxslider.js?ver=1.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (19040)
Size
4.9 kB (4929 bytes)
Hash
773f37ad95319f715bfb4dc479efa39e
06def376a8a5ebe20a4c96e1023810c38a4400ef
4e5ccd6bb754dd041f616d38b5b6da688e020be2e2e6b61b5d3988569fc4c9a1

HTTP Headers

GET /wp-content/themes/safeguard/assets/bxslider/bxslider.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4929
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-includes/js/wp-emoji-release.min.js?ver=5.3.13

217.79.245.244

200 OK

4.2 kB

URL HTTP/2
gorilladefence.com/wp-includes/js/wp-emoji-release.min.js?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (10927)
Size
4.2 kB (4248 bytes)
Hash
1108311a10e7a1f95711ab2c4e7464c7
6c2d154cfa23d06cc28edb94b6435299d1f2ed95
1f3e1dc9c0f338f7e2b94017f5f8aa2015d6c36ca3462c57b1a63f9394490b44

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 12:44:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4248
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css

217.79.245.244

200 OK

6.8 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (372)
Size
6.8 kB (6816 bytes)
Hash
2803f76b8ccd61576331b7c84962ed1a
9daefa3e38428a67de88745bed8ca4239271efda
7cc61dc1ff9381b832cae1f2786bc004718fcc128ce676fd4a790b2af0e6d7c3

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:35 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6816
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.0.5

217.79.245.244

200 OK

15 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.0.5
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (65358)
Size
15 kB (15200 bytes)
Hash
51481512b355a5eac2cc21c6235f32a2
2cfc421e0b79697fe47418a2ab7dbd875e0741f0
343beac3244ef8295637cbd3ec5303902fdc2da9b8a6897fd67c2c2519c82cf9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15200
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.0.5

217.79.245.244

200 OK

9.7 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.0.5
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (32004)
Size
9.7 kB (9727 bytes)
Hash
eb40ceea0a451d7366dc5168989ea08a
4d532dcc6de33bd621808a7bb17d099f3a2624e5
9a463639ae186a6b13e8e0263bb8008c01b601be65cca21979afb6e39946dbac

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9727
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=6.0.5

217.79.245.244

200 OK

6.2 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=6.0.5
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (21539)
Size
6.2 kB (6169 bytes)
Hash
4b36a52bf5fb22e0b67392a815cba771
90c1af6aa05ce40e63a84593da457cdd1f15bb99
8e862d8b11921ad70b19091cd687103e37b749f77ee0fa841f74a84c25ff1f9f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6169
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/js/theme.js?ver=1.1

217.79.245.244

200 OK

6.4 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/js/theme.js?ver=1.1
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
6.4 kB (6354 bytes)
Hash
47df6863ed42705c4d7726d459a8ccc5
80c0736385398ebe25359a670fa5e46708c66da8
2d79ae1d625d134ba01da38f9dba84e5f8a368afea669ef74e7d39a964727a7e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/js/theme.js?ver=1.1 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6354
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.0.5

217.79.245.244

200 OK

5.5 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.0.5
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (20382)
Size
5.5 kB (5548 bytes)
Hash
1cc3bfea5fa80bf9f2a441e1295f9ec1
de1999503eb5fc6d064550306343487b76e0a3c8
4cdba162e790be8c9b7d86d25ef8e71958ca26d34b5850a50ae155520b41620b

HTTP Headers

GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5548
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/assets/bootstrap/css/bootstrap.css?ver=5.3.13

217.79.245.244

200 OK

21 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/assets/bootstrap/css/bootstrap.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (377)
Size
21 kB (20616 bytes)
Hash
a7d2b947d9539e7e0567ec594791aabd
c0819004b26f23bd15e4014ea326d2ef863052f3
950d55cadbe80ba0244975f36d1bbe90e9061b2cf9a1340481362b9bcb24e3d3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/assets/bootstrap/css/bootstrap.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:53:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20616
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.5

217.79.245.244

200 OK

42 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.5
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (65358)
Size
42 kB (41954 bytes)
Hash
20075f07f46db048312caa6cb2503105
70643151fab045ef063454e3b4d11f8c8a7aaaf4
42a0a96fb5a0ee4a67cbf8d1e9ed136cae1cd8a5577f3210ecd3ad289fafbcba

HTTP Headers

GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 41954
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/

217.79.245.244

200 OK

55 kB

URL HTTP/2
gorilladefence.com/
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4075), with CRLF, LF line terminators
Size
55 kB (54759 bytes)
Hash
80a323cedc7d137f4310cca256274b6b
477bc26f34a94e9a78858c3b60a4d135f9272f42
78ba514936a84b029b99ab5af2b0744b47de13b275cc1ec636fe5d6858265849

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://gorilladefence.com/wp-json/>; rel="https://api.w.org/", <https://gorilladefence.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Tue, 20 Sep 2022 13:55:26 GMT
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/style.css?ver=5.3.13

217.79.245.244

200 OK

34 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/style.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
assembler source, ASCII text
Size
34 kB (34361 bytes)
Hash
9d30b1131a9169d294f61bf6f6d29507
7bc2e7e7b70d769142ee1d318b0267c40ebecdfb
404f2143ffac4be2a8d7dcc02c4f4f7e6da83f5d6b0831950d2861ace5fd2873

HTTP Headers

GET /wp-content/themes/safeguard/style.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:51:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34361
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/themes/safeguard/css/global.css?ver=5.3.13

217.79.245.244

200 OK

33 kB

URL HTTP/2
gorilladefence.com/wp-content/themes/safeguard/css/global.css?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text
Size
33 kB (33058 bytes)
Hash
dd126b84da56a7a3ff723ec4c7f9bb30
9a2b9f07b3d91fe8a7324698c38e7f49f71dc4ee
222e0d16a2b68e35e235af2706f62c9d5c750234999282aa4076ab41e095ccf9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/safeguard/css/global.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 33058
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/kaswara/front/assets/js/script.js?ver=5.3.13

217.79.245.244

200 OK

64 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/kaswara/front/assets/js/script.js?ver=5.3.13
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (782)
Size
64 kB (64173 bytes)
Hash
c072b3bae8ef8777df00f5f58e00788c
a14e1c4e61307d69219dec788a18e95265b06aa1
da8a50a905ba102693ee7b5d40b6d394f21e337dc43208d7e562d83dd80024ce

HTTP Headers

GET /wp-content/plugins/kaswara/front/assets/js/script.js?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 64173
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.3

217.79.245.244

200 OK

67 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.3
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (64288)
Size
67 kB (66776 bytes)
Hash
aa9372a85693a6493774f10b65bad30c
cc3c53e0aed0450cafaec2579de0049ffad0387b
ece029d1221e027b0ca02e11c47f9838dd69f226a8283b4ef7dd7d684fef1c5a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.3 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 66776
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/img/whatsapp-icon-square.svg

217.79.245.244

200 OK

1.5 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/img/whatsapp-icon-square.svg
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3220), with no line terminators
Size
1.5 kB (1504 bytes)
Hash
d4b91f9748d7af553f5afe09b9178b33
ed8c5a239ee1542160383714d12980a578b47b25
c4563584ed0028414d7bfe188c204ae925ceefb56e0b839c77f4a5feb24c49f2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/img/whatsapp-icon-square.svg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:27 GMT
content-type: image/svg+xml
last-modified: Fri, 10 Jan 2020 10:17:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1504
date: Tue, 20 Sep 2022 13:55:27 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-19-at-2.00.05-AM-650x490.jpeg

217.79.245.244

200 OK

45 kB

URL HTTP/2
gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-19-at-2.00.05-AM-650x490.jpeg
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 650x490, components 3\012- data
Size
45 kB (44982 bytes)
Hash
e9d65eefdd7c1c59348ab63a37b70c92
c535b873b0354c160110dcf13be971f32f40a772
1a5ba67f3e9b19cdd53bab3a734a5c6029fbb71f8a4ea0fcdfae747953699bce

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2019/11/WhatsApp-Image-2019-11-19-at-2.00.05-AM-650x490.jpeg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/jpeg
last-modified: Tue, 19 Nov 2019 19:21:30 GMT
accept-ranges: bytes
content-length: 44982
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-1.06.52-PM-450x600.jpeg

217.79.245.244

200 OK

63 kB

URL HTTP/2
gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-1.06.52-PM-450x600.jpeg
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 450x600, components 3\012- data
Size
63 kB (63138 bytes)
Hash
9fa4f4f34880e91825e6f61594368051
64f77d438b4b111951c70bf0320f5fdc95516ccd
04783b712b4720b0a6531da0665bda88a95a2f80ba6d5feafd686d3fd48f33e9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-1.06.52-PM-450x600.jpeg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/jpeg
last-modified: Tue, 19 Nov 2019 19:13:16 GMT
accept-ranges: bytes
content-length: 63138
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/uploads/2019/11/IMG-20190821-WA0014-650x490.jpg

217.79.245.244

200 OK

56 kB

URL HTTP/2
gorilladefence.com/wp-content/uploads/2019/11/IMG-20190821-WA0014-650x490.jpg
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 650x490, components 3\012- data
Size
56 kB (56393 bytes)
Hash
75267e4ca05e71a7c057756d7f7c6f70
4c7f0cf5e9a6f654c67d29d3c404bfa118313779
07ae4547d7bbf535b9a9cf346d89a7ad96ee31d1509fa6eb5e64bbd38b184e33

HTTP Headers

GET /wp-content/uploads/2019/11/IMG-20190821-WA0014-650x490.jpg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/jpeg
last-modified: Mon, 18 Nov 2019 12:04:04 GMT
accept-ranges: bytes
content-length: 56393
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-12.40.20-PM-650x490.jpeg

217.79.245.244

200 OK

60 kB

URL HTTP/2
gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-12.40.20-PM-650x490.jpeg
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 650x490, components 3\012- data
Size
60 kB (59840 bytes)
Hash
8dad5ed053cea308a1e06fea665013e2
435f69f74840dc14a4be7ea2093dc104a9e5d9fe
e10707aa839a6d5d5723a8b59483ad2a2b0a6cd8f213a91f21fe3b7f7d6e9d70

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-12.40.20-PM-650x490.jpeg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/jpeg
last-modified: Tue, 19 Nov 2019 19:17:15 GMT
accept-ranges: bytes
content-length: 59840
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-1.11.29-PM-650x490.jpeg

217.79.245.244

200 OK

56 kB

URL HTTP/2
gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-1.11.29-PM-650x490.jpeg
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 650x490, components 3\012- data
Size
56 kB (56408 bytes)
Hash
c32b940b662614fdc58d033e2677098e
b37138adbd69905ffc7eaa1cc644106f3659632a
e5f714d5f25fe8815c6a9618dc5813509ab81b88f8bc29ebe0f3cbf26f887d55

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-1.11.29-PM-650x490.jpeg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:27 GMT
content-type: image/jpeg
last-modified: Mon, 18 Nov 2019 12:05:50 GMT
accept-ranges: bytes
content-length: 56408
date: Tue, 20 Sep 2022 13:55:27 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/uploads/2019/11/logo-trans.png

217.79.245.244

200 OK

98 kB

URL HTTP/2
gorilladefence.com/wp-content/uploads/2019/11/logo-trans.png
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
PNG image data, 1755 x 443, 8-bit/color RGBA, non-interlaced\012- data
Size
98 kB (97775 bytes)
Hash
e907c11af4b7099d017e534d8351af43
81053fc5d75666a57f5cfcc0f3754a127bdbd013
c60de085d202ceede66ec35d1948f893633f66425310a57b3db60bd812a2df56

HTTP Headers

GET /wp-content/uploads/2019/11/logo-trans.png HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/png
last-modified: Thu, 07 Nov 2019 17:53:17 GMT
accept-ranges: bytes
content-length: 97775
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-15-at-12.49.15-PM-650x490.jpeg

217.79.245.244

200 OK

79 kB

URL HTTP/2
gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-15-at-12.49.15-PM-650x490.jpeg
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 650x490, components 3\012- data
Size
79 kB (79025 bytes)
Hash
130b14597d56ed03848165424c115d0d
3526d150dc7b7342541190318afb72a185a900ed
d146a143a28150aa72c39f230d9aca62f291853a3eadd7aaa94624d0bc65e5f2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2019/11/WhatsApp-Image-2019-11-15-at-12.49.15-PM-650x490.jpeg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/jpeg
last-modified: Tue, 19 Nov 2019 18:43:18 GMT
accept-ranges: bytes
content-length: 79025
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/uploads/2019/11/security01.jpg

217.79.245.244

200 OK

88 kB

URL HTTP/2
gorilladefence.com/wp-content/uploads/2019/11/security01.jpg
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=200, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=360], baseline, precision 8, 450x350, components 3\012- data
Size
88 kB (88245 bytes)
Hash
9950f52e4f609b39b0444b1418e2fa51
0e6a765802cc2e92a079543a44130894cc357a20
ab662e957854b5213b8d3818306fc9f13e043d5cfc4c229cf767b24696615f84

HTTP Headers

GET /wp-content/uploads/2019/11/security01.jpg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:27 GMT
content-type: image/jpeg
last-modified: Wed, 20 Nov 2019 07:10:49 GMT
accept-ranges: bytes
content-length: 88245
date: Tue, 20 Sep 2022 13:55:27 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/uploads/2019/11/03.jpg

217.79.245.244

200 OK

122 kB

URL HTTP/2
gorilladefence.com/wp-content/uploads/2019/11/03.jpg
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=200, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=360], baseline, precision 8, 450x350, components 3\012- data
Size
122 kB (121458 bytes)
Hash
f7fe39cc10f7a81b6df687a8d620261d
e8161abda05fdc31abd5313cf818fb3c0ce7cedc
dae50713b7097a6f8f9be49dcac4026667a89d54e42c1f23ed4a3411fed84f08

HTTP Headers

GET /wp-content/uploads/2019/11/03.jpg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:27 GMT
content-type: image/jpeg
last-modified: Wed, 20 Nov 2019 07:12:12 GMT
accept-ranges: bytes
content-length: 121458
date: Tue, 20 Sep 2022 13:55:27 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/uploads/2021/08/lc300.jpeg

217.79.245.244

200 OK

290 kB

URL HTTP/2
gorilladefence.com/wp-content/uploads/2021/08/lc300.jpeg
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x884, components 3\012- data
Size
290 kB (290084 bytes)
Hash
3081e64beb033fe1fbc0598c9af6ad60
7807b733ac52b3754e7469f3db0e59f9c79823ae
3a1ad7f8ee433fd6ffe5dee36f9d795fb4ede55aea13bac2551395662d59882f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2021/08/lc300.jpeg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/jpeg
last-modified: Fri, 27 Aug 2021 11:19:14 GMT
accept-ranges: bytes
content-length: 290084
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/uploads/2019/11/cris-ovalle-gOm-Ho8GKYo-unsplash.jpg

217.79.245.244

200 OK

1.0 MB

URL HTTP/2
gorilladefence.com/wp-content/uploads/2019/11/cris-ovalle-gOm-Ho8GKYo-unsplash.jpg
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 5383x3298, components 3\012- data
Size
1.0 MB (1019467 bytes)
Hash
c7fb187ddd9e744cc0e1e22e6c93e2c1
51aa20033b39a5ac068a95d0a4208fe74a7909c4
4202e7e7081eeef0a1807d52470afcbd435cc2a05ef54343b85a6138101ba867

HTTP Headers

GET /wp-content/uploads/2019/11/cris-ovalle-gOm-Ho8GKYo-unsplash.jpg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/jpeg
last-modified: Fri, 08 Nov 2019 17:04:41 GMT
accept-ranges: bytes
content-length: 1019467
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.8.2

217.79.245.244

200 OK

944 B

URL HTTP/2
gorilladefence.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.8.2
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
ASCII text, with very long lines (6758), with no line terminators
Size
944 B (944 bytes)
Hash
0a28db2029034c85fb7443a4c0a72eff
f57daabd412e81693f3fc8af28b9947d6db9a655
bfc5d397b04ea4885ce26c8933a0b1fdd98892ab9f2141f7b3f3b65bef865222

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.8.2 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:27 GMT
content-type: text/css
last-modified: Thu, 15 Jul 2021 01:50:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 944
date: Tue, 20 Sep 2022 13:55:27 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 13:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2

142.250.74.163

200 OK

34 kB

URL HTTP/2
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Size
34 kB (33580 bytes)
Hash
848cd2ecd011428969dc6b90431bc482
6b1a7b562a56bd54510e0f6f95e26babca331a1b
981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9

HTTP Headers

GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gorilladefence.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: font/woff2
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
date: Tue, 20 Sep 2022 13:55:27 GMT
expires: Wed, 20 Sep 2023 13:55:27 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 13:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/securicon/fonts/securicon.ttf?2nb83j

217.79.245.244

200 OK

49 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/securicon/fonts/securicon.ttf?2nb83j
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, securicon \012- data
Size
49 kB (48662 bytes)
Hash
f0ae5f8b2f61556dd74b805e1eec025d
a2bef1b68b97a1144e2f6cc3f01a1cc13e060880
ca1b7a5efb1972dff9aaf9c97b3b191d0c9123a93b561814c438677cc79f2c3a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/font-icons-loader/fonts/securicon/fonts/securicon.ttf?2nb83j HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/securicon/style.css?ver=5.3.13
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:28 GMT
content-type: font/ttf
last-modified: Thu, 07 Nov 2019 12:46:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 48662
date: Tue, 20 Sep 2022 13:55:28 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/theme-fonts/fonts/theme-fonts.ttf?x8z40e

217.79.245.244

200 OK

53 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/theme-fonts/fonts/theme-fonts.ttf?x8z40e
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, theme-fonts\012- data
Size
53 kB (52740 bytes)
Hash
6c6cd8b017c69b2afd2638ed6925b325
8eee6f504e0d6e338f0e7becd5960e0a08ac8a8e
135557d8dd7e553e4e690e222f6424de7dc5f29107a0c98c866f7ebe3795dab2

HTTP Headers

GET /wp-content/plugins/font-icons-loader/fonts/theme-fonts/fonts/theme-fonts.ttf?x8z40e HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/theme-fonts/style.css?ver=5.3.13
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:28 GMT
content-type: font/ttf
last-modified: Thu, 07 Nov 2019 12:46:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 52740
date: Tue, 20 Sep 2022 13:55:28 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/elegant-icons/fonts/elegant-icons.ttf?unc6iq

217.79.245.244

200 OK

33 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/elegant-icons/fonts/elegant-icons.ttf?unc6iq
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, elegant-icons\012- data
Size
33 kB (32709 bytes)
Hash
82a4151bf17c83f4e8cd8f7243c546f4
840a0dd9111e11e6654d387daeda8d881fe00a6d
07728860fd8b02aa73b9aa4d7ca26c3ead0407374cb927ee7bffc1a290fc0ea9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/font-icons-loader/fonts/elegant-icons/fonts/elegant-icons.ttf?unc6iq HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/elegant-icons/style.css?ver=5.3.13
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:28 GMT
content-type: font/ttf
last-modified: Thu, 07 Nov 2019 12:46:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32709
date: Tue, 20 Sep 2022 13:55:28 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/uploads/2017/12/cropped-logo-secutrity.png

217.79.245.244

200 OK

5.7 kB

URL HTTP/2
gorilladefence.com/wp-content/uploads/2017/12/cropped-logo-secutrity.png
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Size
5.7 kB (5716 bytes)
Hash
2cd84207129e5c02c2f3c43de3189b60
7d3dcc3ad527794ec6e8c167a9b180f82fcfaf52
cdcc8914984ace559dc5c442dd84e98c13e33547e32927291f36235b87ef873a

HTTP Headers

GET /wp-content/uploads/2017/12/cropped-logo-secutrity.png HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:28 GMT
content-type: image/png
last-modified: Thu, 07 Nov 2019 12:52:18 GMT
accept-ranges: bytes
content-length: 5716
date: Tue, 20 Sep 2022 13:55:28 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/uploads/2019/11/loader.gif

217.79.245.244

200 OK

31 kB

URL HTTP/2
gorilladefence.com/wp-content/uploads/2019/11/loader.gif
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
GIF image data, version 89a, 80 x 80\012- data
Size
31 kB (30668 bytes)
Hash
cb78d919f2ce5a3b15cea57babdf805e
dea360b2817c332f48c54a7e8805e3d3ae273aba
6319e8b829d0625eb192a0411f8d05d1e8b0db4293f94c52b38b4dc5e4455ca9

HTTP Headers

GET /wp-content/uploads/2019/11/loader.gif HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:28 GMT
content-type: image/gif
last-modified: Wed, 20 Nov 2019 13:15:02 GMT
accept-ranges: bytes
content-length: 30668
date: Tue, 20 Sep 2022 13:55:28 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0

217.79.245.244

200 OK

77 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://gorilladefence.com/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:28 GMT
content-type: font/woff2
last-modified: Thu, 07 Nov 2019 12:47:35 GMT
accept-ranges: bytes
content-length: 77160
date: Tue, 20 Sep 2022 13:55:28 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/revslider/public/assets/assets/loader.gif

217.79.245.244

200 OK

2.5 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
GIF image data, version 89a, 24 x 24\012- data
Size
2.5 kB (2545 bytes)
Hash
4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:28 GMT
content-type: image/gif
last-modified: Thu, 07 Nov 2019 12:47:35 GMT
accept-ranges: bytes
content-length: 2545
date: Tue, 20 Sep 2022 13:55:28 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888

217.79.245.244

200 OK

7.5 kB

URL HTTP/2
gorilladefence.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Size
7.5 kB (7536 bytes)
Hash
04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://gorilladefence.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:28 GMT
content-type: font/woff
last-modified: Thu, 07 Nov 2019 12:47:37 GMT
accept-ranges: bytes
content-length: 7536
date: Tue, 20 Sep 2022 13:55:28 GMT
X-Firefox-Spdy: h2

gorilladefence.com/?wc-ajax=get_refreshed_fragments

217.79.245.244

200 OK

127 B

URL HTTP/2
gorilladefence.com/?wc-ajax=get_refreshed_fragments
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
JSON data\012- , ASCII text, with no line terminators
Size
127 B (127 bytes)
Hash
3e1be79960e33ae3e761be4a7aac27c9
eb7a80e3af19ede6da87b7999f8b0ea5bc7ded2e
46db0d0bc3b8c0f7ef30c1b6847a8d4228ff97caf2e22b55e9dc9aae3c918fa9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://gorilladefence.com
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://gorilladefence.com
access-control-allow-credentials: true
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-transform, no-cache, no-store, must-revalidate
x-robots-tag: noindex
content-type: application/json; charset=UTF-8
content-length: 127
content-encoding: br
vary: Accept-Encoding
date: Tue, 20 Sep 2022 13:55:29 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/uploads/2019/11/cris-ovalle-gOm-Ho8GKYo-unsplash-100x50.jpg

217.79.245.244

200 OK

2.1 kB

URL HTTP/2
gorilladefence.com/wp-content/uploads/2019/11/cris-ovalle-gOm-Ho8GKYo-unsplash-100x50.jpg
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x50, components 3\012- data
Size
2.1 kB (2093 bytes)
Hash
ba7639408395dec3e7172bde650bf37c
15fae963034f5f9199683c175ef9a9c8036f3a04
489debf55fdf53a790a3157e7679978f2969bc15ca8af26898589882503eb337

HTTP Headers

GET /wp-content/uploads/2019/11/cris-ovalle-gOm-Ho8GKYo-unsplash-100x50.jpg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:29 GMT
content-type: image/jpeg
last-modified: Fri, 08 Nov 2019 17:27:23 GMT
accept-ranges: bytes
content-length: 2093
date: Tue, 20 Sep 2022 13:55:29 GMT
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F799803b1-7e6e-42da-84f6-3e45140e6ae6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7358 bytes)
Hash
49ffb7cd4c40b37f5b61c1fd86ee36ec
4188174bf6e595335f784d2bf9c90db57294b2fc
5af29dbb676f5a38288e73e9ca4feada901ccfb06385110ca0a46a4970532d32

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F799803b1-7e6e-42da-84f6-3e45140e6ae6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7358
x-amzn-requestid: 88cc5413-2f66-4dc6-b20d-57dd16e77e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugqUHZIoAMFd3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e175-7357c2251f4434bc4686f9ed;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qL0OjiglHkC5171Q2CTvjoOnpkRsGs9I949IDf-PEYOg5S_hiPUpyA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "4188174bf6e595335f784d2bf9c90db57294b2fc"
content-type: image/jpeg
age: 56749
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a6c4141-897e-4893-81f2-a7382686ab37.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (6961 bytes)
Hash
4653898fc83ae1b62d9b975658cc7fe9
adc6def18885ff49efd6b61c47d4b36eaca057b4
642a2e27f6635db0f9670cce2cba91f24f881db8f19d3f9b00e439f746fbc225

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a6c4141-897e-4893-81f2-a7382686ab37.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 6961
x-amzn-requestid: 3177a5d3-6be5-426f-84ff-c044443c8627
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugHuHGZoAMFuwg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e097-00d08a4e1c0ebd3f62716843;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:19 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _dXQRIghNGF2FVKY8rbWdykpQd225TT_e645hfVwkq8SMhT5O16lFg==
via: 1.1 2a44ef7b9d28e74c78ffadeedcbb887c.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 21:53:49 GMT
age: 57704
etag: "adc6def18885ff49efd6b61c47d4b36eaca057b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/uploads/2019/11/02.jpg

217.79.245.244

200 OK

0 B

URL HTTP/2
gorilladefence.com/wp-content/uploads/2019/11/02.jpg
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2019/11/02.jpg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:27 GMT
content-type: image/jpeg
last-modified: Wed, 20 Nov 2019 07:11:05 GMT
accept-ranges: bytes
content-length: 108167
date: Tue, 20 Sep 2022 13:55:27 GMT
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0

217.79.245.244

200 OK

0 B

URL HTTP/2
gorilladefence.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 50040
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Source+Sans+Pro%3A300%2C400%2C500%2C600%2C700%7CRubik%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%7CRubik%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CRubik%3A300%2C400%2C500%2C700%2C900&subset=latin%2Clatin-ext

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Source+Sans+Pro%3A300%2C400%2C500%2C600%2C700%7CRubik%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%7CRubik%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CRubik%3A300%2C400%2C500%2C700%2C900&subset=latin%2Clatin-ext
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Source+Sans+Pro%3A300%2C400%2C500%2C600%2C700%7CRubik%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%7CRubik%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CRubik%3A300%2C400%2C500%2C700%2C900&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 20 Sep 2022 13:55:26 GMT
date: Tue, 20 Sep 2022 13:55:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-19-at-1.52.05-AM-650x490.jpeg

217.79.245.244

200 OK

0 B

URL HTTP/2
gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-19-at-1.52.05-AM-650x490.jpeg
IP
217.79.245.244:0
ASN
#29802 HVC-AS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2019/11/WhatsApp-Image-2019-11-19-at-1.52.05-AM-650x490.jpeg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/jpeg
last-modified: Tue, 19 Nov 2019 19:21:30 GMT
accept-ranges: bytes
content-length: 47913
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (62)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations