r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3192
Expires: Tue, 20 Sep 2022 14:48:36 GMT
Date: Tue, 20 Sep 2022 13:55:24 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 20 Sep 2022 13:13:08 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6s_-a5aD_D3zGgs_OofCUlJMttpj6KLJ-YOPMSIyZO49MUexSUPA8w==
Age: 2536
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9ikqZyDnvH5zlbRHXqAQq24ZDdD86pRQKMExjq_8o_BI6fHKGz3MRw==
age: 33611
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 13:55:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 20 Sep 2022 13:03:22 GMT
Expires: Tue, 20 Sep 2022 13:06:41 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uMWUZGnbmJETzmAfdxEHFj-VUX46NKeBIpXcDKYqrbUIFc1THesI7g==
Age: 3123
gorilladefence.com/
217.79.245.244301 Moved Permanently 0 B IP 217.79.245.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
X-Redirect-By: WordPress
Location: https://gorilladefence.com/
Content-Length: 0
Date: Tue, 20 Sep 2022 13:55:25 GMT
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash edf07cd621f733b0eb50c632387ebf4f
61a082d26501c2c8d481b1676d0de2e585269613
e5c4324e4c55824b86f48bf0b9a1d317a82e7d3c19bdea7a91d78ce98d68a980
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 908
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 13:55:25 GMT
Last-Modified: Tue, 20 Sep 2022 13:40:17 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 07d08ddb2dc88db1fd7d6ab2d9ae3bb0
81b8d7737fa07e52fe22474414580de944ff5496
38879c4ea9f5ba44ec95fa455c45128af623ebea9278c99fe59817336c51447c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "38879C4EA9F5BA44EC95FA455C45128AF623EBEA9278C99FE59817336C51447C"
Last-Modified: Tue, 20 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21505
Expires: Tue, 20 Sep 2022 19:53:50 GMT
Date: Tue, 20 Sep 2022 13:55:25 GMT
Connection: keep-alive
push.services.mozilla.com/
35.161.231.36101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.231.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IwIiyb8zqxSST3SUFomkUA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lfc6+6FR2T04FNIDE8PLXSFGUdI=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8139
Expires: Tue, 20 Sep 2022 16:11:05 GMT
Date: Tue, 20 Sep 2022 13:55:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8139
Expires: Tue, 20 Sep 2022 16:11:05 GMT
Date: Tue, 20 Sep 2022 13:55:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8139
Expires: Tue, 20 Sep 2022 16:11:05 GMT
Date: Tue, 20 Sep 2022 13:55:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8139
Expires: Tue, 20 Sep 2022 16:11:05 GMT
Date: Tue, 20 Sep 2022 13:55:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8139
Expires: Tue, 20 Sep 2022 16:11:05 GMT
Date: Tue, 20 Sep 2022 13:55:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d3e70b2859ca89b353682d03f6b46b93
ebd83f29edd95217dfa4f4c7a94eddf34dd58b14
43ad8f8b0a664bbec39e0410c1201498a2d2e36e5bd7d5ece8d65b15230ec50b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10894
x-amzn-requestid: f7aad96e-af80-4db7-8bc1-d1e09a9b37e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeJQGHhOIAMFYuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322559a-538534e91448af217c59ab3d;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:28:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P7aZQzmAvqn2rcHJUQjHo0Dcg8dsrqseey5mNOabfq1b857M4SUMDQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 10:06:02 GMT
age: 13764
etag: "ebd83f29edd95217dfa4f4c7a94eddf34dd58b14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c283017ec789693602177a2785177e21
ff8286c4d2cf87a1865d56d082bc5235dba60ad7
520db2567ad5529d35d2ac63b94d4186848382e9c86d0c4355ab979b34f0e0ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11145
x-amzn-requestid: dcb726a6-2f43-4170-a53c-4f0d2883309e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yuh7yHfHIAMFu4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e37e-11bf06e96123e01c11854cbb;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:47:42 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oJyChyEdTbGx6oQCRy6IVMS8qU22LupFYn6FOii3p4BUVFyKnssQ7Q==
via: 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:05:54 GMT
age: 56972
etag: "ff8286c4d2cf87a1865d56d082bc5235dba60ad7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ca0c1a7f205ad07f1cce80b26448873
0e14f5062e40ce94346494ff947bfcf74b5e88c1
ebc960279032671136749823c126ec807334d9eaf2b019abcc63b41bcdbf4a7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9873
x-amzn-requestid: 7171299f-e6e3-40ef-a292-33779346e1ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI-FDIIAMF-xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-31f9413434a6b00e77e7709b;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: evL3aL1ULo6B2a8Rp6iILKCX7F14O9HMSbEqkEY3XHFhmMptE8FaVw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:44 GMT
age: 56742
etag: "0e14f5062e40ce94346494ff947bfcf74b5e88c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ed7323b395e757f7766ea0045efdaca
8b91bc3069a3217bc719c27959d578b353b5d9dc
8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
content-type: image/jpeg
age: 56743
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a7d863845e96c5927e812f325c08c16
b8484fb5443344b03e52dd56b1d6c5682eb6221a
fcb382029332a44deaf212298b618074a752d674d0c735a1b8b861ab4bb6ff0f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9865
x-amzn-requestid: 7eeeff5b-cb13-4060-96a6-bf5a4be57331
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugokGQVoAMFXmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e169-4211dbbe1a22d0255a45aff0;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:38:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2kU9PLuzusMR04mNUdwbU6-120ESVhYJtNaIixERO68Vo9jEfP3JWg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:04:47 GMT
age: 57039
etag: "b8484fb5443344b03e52dd56b1d6c5682eb6221a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30fbdfee7ec4513a5ff3dfcb7282f816
a852edb64a7220532aa619ab2a440c3a7e11b97a
4adee59f97bea412c6a0a786d0a27e431a497198b9047a75841b0a530803bdfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9543
x-amzn-requestid: 17be04c9-54f0-4988-82dd-f13911a2a629
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugINHN1IAMF8iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09a-35496b4c21c23dec75257964;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -VBFetQNkmIiWeJtW5IOheaPLdDHM9iKhiGPzVcA3_KQk7Qha5VrXg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:14:25 GMT
age: 56461
etag: "a852edb64a7220532aa619ab2a440c3a7e11b97a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e34f594c2e3b9b6a81e4ae9fef80f363
b7f65f5fb0df328d3c863af6c9351923205645f2
bcedda132b602d90a62a5fbe07e7c37f69cce319fb4b84e1bed40b1200e9898b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 13:55:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gorilladefence.com/wp-includes/css/dist/block-library/style.min.css?ver=5.3.13
217.79.245.244200 OK 5.7 kB URL HTTP/2 gorilladefence.com/wp-includes/css/dist/block-library/style.min.css?ver=5.3.13
IP 217.79.245.244:0
File type ASCII text, with very long lines (41045), with no line terminators
Hash 5ea88d0fe7c942cae60483d0b4b5e944
1e5322b5ac81e14d7322a3def744f4b0ad783dbc
86feebc56d2aae8f6a2c32b1d4aa3c789094fbe927e8fa6082312f92b994d706
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 11 Jun 2020 01:05:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5725
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.4.5
217.79.245.244200 OK 3.9 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.4.5
IP 217.79.245.244:0
File type ASCII text, with very long lines (6383)
Hash 95e63fe7d2e7826b2a68aee35cfed046
828dc08518b70645591bfb0ec91dfb87a5066581
93fe673f2ad83e77984aac9e6a6e94fcf941c77dfa2d8acb4774f370332f0a89
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.4.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 15 Jul 2021 01:50:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3932
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/css/mainstyles.css?ver=1.7.4
217.79.245.244200 OK 1.2 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/css/mainstyles.css?ver=1.7.4
IP 217.79.245.244:0
Hash af9557bfc976cea742b518cabf694587
8d904dc330286f122dbec28fab1c3cbb64027d18
83443b348a39236f850fd13fe214b7e59a3927cb0973bbd2e2b1f11f351ffa72
GET /wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/css/mainstyles.css?ver=1.7.4 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Fri, 10 Jan 2020 10:17:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1212
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6
217.79.245.244200 OK 559 B URL HTTP/2 gorilladefence.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6
IP 217.79.245.244:0
Hash 5d06058ba2673856ad5f584ee3d591de
5d4927e0b7868171f89488e527837199b7f9a3b1
af6f2608a9097d4c4a8c90504fbdf376435afe4cf4c789d9177a89ca609b201d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Wed, 11 Dec 2019 20:36:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 559
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/elegant-icons/style.css?ver=5.3.13
217.79.245.244200 OK 2.4 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/elegant-icons/style.css?ver=5.3.13
IP 217.79.245.244:0
Hash b47c71f22483333c6166a145ca0c7c0c
70dbc4e790ed527b50d329e01c4995f3a42ae51f
1759c9fdad90ec20377dc48b9256c251fa2103eba4b29342b689cba8f8ba73da
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/font-icons-loader/fonts/elegant-icons/style.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:46:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2379
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/securicon/style.css?ver=5.3.13
217.79.245.244200 OK 1.3 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/securicon/style.css?ver=5.3.13
IP 217.79.245.244:0
Hash 20dca8626c292a377b20c3fefffa5b47
f6ba92dd2bbd8d34a19a1deb44a853fbfe55938e
0f7250ac302d7aef0900f9e8eaa36473420c932367801725ca079661294f91c3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/font-icons-loader/fonts/securicon/style.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:46:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1265
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/theme-fonts/style.css?ver=5.3.13
217.79.245.244200 OK 3.9 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/theme-fonts/style.css?ver=5.3.13
IP 217.79.245.244:0
Hash 30c966546dd522a4868249a53fbc8376
7f544440768c06f46fd06ca80f495c7966d8e6c8
8e836a882dfb6c701cecb5d7d4d601ec3de65d81ea8462182bf9f84d69d413a1
GET /wp-content/plugins/font-icons-loader/fonts/theme-fonts/style.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:46:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3876
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik:700%2C300%2C500%7CRoboto:400
142.250.74.10200 OK 1.2 kB URL HTTP/2 fonts.googleapis.com/css?family=Rubik:700%2C300%2C500%7CRoboto:400
IP 142.250.74.10:0
Hash 8f2e0764e2f9c5988ee986dff745282b
e1d6dddaf5464bef24ed323925936ce68b6229d4
09a6277d712f44a721e06c8594651528dff7dc852102df7303e9f4ae8bc083e6
GET /css?family=Rubik:700%2C300%2C500%7CRoboto:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 20 Sep 2022 13:55:26 GMT
date: Tue, 20 Sep 2022 13:55:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/kaswara/assets/font-icon/icons.css?ver=5.3.13
217.79.245.244200 OK 22 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/kaswara/assets/font-icon/icons.css?ver=5.3.13
IP 217.79.245.244:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7a7af51c4fc29444e2ce5efc18cf22c1
4c66ee97d0c18bd994cc67495c58678c8293cdba
db8c786d676aabc2bb6304a21abd11d889cefb958ace4a25ac555f59304c6a18
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/kaswara/assets/font-icon/icons.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 22204
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/kaswara/front/assets/css/style.css?ver=5.3.13
217.79.245.244200 OK 40 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/kaswara/front/assets/css/style.css?ver=5.3.13
IP 217.79.245.244:0
File type ASCII text, with very long lines (61627)
Hash f3f37edbf8a312fa3fae3b26dc3f513c
2ff9894898e47910f96a64289f881b348a3ef702
8264869e320f9a0d8dbbbcb2e6769fc4e3e219a5a825bbeee97e871f9e38c960
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/kaswara/front/assets/css/style.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 39454
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3
217.79.245.244200 OK 12 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3
IP 217.79.245.244:0
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 89c01460d72cb1ceb3a46b26a5ca1f76
ac2c983903467ac06692603836da52c269d34745
88fe06f32160927f89011be425a89c7bd71b305cbbb14145f9829509f2805897
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:35 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11522
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.8.2
217.79.245.244200 OK 2.0 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.8.2
IP 217.79.245.244:0
File type ASCII text, with very long lines (16542), with no line terminators
Hash f4cf53922d20aed873a555c609dcdc38
1b093d2e7d36a3ee67c160ad07d41de26ef4c52f
778cb503cfc869b86925519a38337e326d8c8a392b55bd3ea0e12e43d341c204
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.8.2 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 15 Jul 2021 01:50:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1988
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/css/style.css
217.79.245.244200 OK 466 B URL HTTP/2 gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/css/style.css
IP 217.79.245.244:0
Hash 77c6d3178250a81e66b551f1395f7e31
9aa637a12f10aff44a3c5083ca456b6a79c5dcb7
fdb142f750aee1958009834a900d88134c6ca7f9fe810d1fc71c0c620f747d44
GET /wp-content/plugins/wpa-vc-parallax-addons/css/style.css HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:46:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 466
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/css/animate.css
217.79.245.244200 OK 2.8 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/css/animate.css
IP 217.79.245.244:0
Hash 35ef401c9d0a057606ab12eb99f088be
0d4b182157ef52cf592d42a8e7cc52718046c9aa
fb555e6ccd2f1794be65c33b4c6bd8d7ccd3301951dc58f792818d582dd6b440
GET /wp-content/plugins/wpa-vc-parallax-addons/css/animate.css HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:46:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2770
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/fancybox/fancybox.css?ver=5.3.13
217.79.245.244200 OK 1.0 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/fancybox/fancybox.css?ver=5.3.13
IP 217.79.245.244:0
File type ASCII text, with very long lines (3778)
Hash ba53759050737a0e1ff70dddad739fa8
413b12c95250b4e9fe00a127bd76e4a2d8c5188b
fca1170c205fecc97045525e849286a1a89664d290c1dc115f9aed45f15900d1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/fancybox/fancybox.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1031
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/owl/owl.css?ver=5.3.13
217.79.245.244200 OK 799 B URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/owl/owl.css?ver=5.3.13
IP 217.79.245.244:0
File type ASCII text, with very long lines (2860)
Hash 780a941d33df20e4350c8a8e8c26bbf4
2626b4953e1ba4e11a3ce9ae949268b8bec2b726
0a9ec68107f9d83351d4ab3932f7b1a3e0d77a4be20f060081ccc5566d95924b
GET /wp-content/themes/safeguard/assets/owl/owl.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 799
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/bxslider/bxslider.css?ver=5.3.13
217.79.245.244200 OK 815 B URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/bxslider/bxslider.css?ver=5.3.13
IP 217.79.245.244:0
File type ASCII text, with very long lines (2695)
Hash 0c8835db4957c65d2dc3be98672d2335
f035e1da295d9e987e60c7dcbba86b3ea1fc1545
ead60af73417492997d587bb2a4ec0b80bc5d93413664fc814ae22b17a1042ca
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/bxslider/bxslider.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 815
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/flexslider.min.css?ver=6.0.5
217.79.245.244200 OK 967 B URL HTTP/2 gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/flexslider.min.css?ver=6.0.5
IP 217.79.245.244:0
File type ASCII text, with very long lines (3577), with no line terminators
Hash b6dd0910188a38a3f59fceaabee8ac83
d397194d7c75852f8c4584183fe19db31e2ad335
7b7ace9556ea5a740fe45680ac41d8a6ecc091521e0aa406a3b668c4685b438f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/flexslider/flexslider.min.css?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 967
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/slabText/css/slabtext.css?ver=5.3.13
217.79.245.244200 OK 143 B URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/slabText/css/slabtext.css?ver=5.3.13
IP 217.79.245.244:0
File type ASCII text, with very long lines (343)
Hash a43a7f46630e8578ecac638170bd7462
c7a29caf1fc52188d546a78a218ab721b16c8b08
b330fb83feee4e4c632bdf6f2da32e984ce885187be34496512a614cc4dec31d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/slabText/css/slabtext.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 143
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/og-grid/og-grid.css?ver=5.3.13
217.79.245.244200 OK 1.6 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/og-grid/og-grid.css?ver=5.3.13
IP 217.79.245.244:0
File type troff or preprocessor input, ASCII text
Hash 2846071e39a82a5a0fc8e2f0d6196e52
b7bf730c7d2ae07dc90300bc16a2af0ce657316b
a67d0e588512aba6c6fbdd7d7f9065b38e0dc5bc029a52297d2738b18bbc82e0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/og-grid/og-grid.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1624
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/animsition/animsition.css?ver=5.3.13
217.79.245.244200 OK 2.1 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/animsition/animsition.css?ver=5.3.13
IP 217.79.245.244:0
Hash 3aa5bc7f45a4d0678f539404e196b9ff
ab6b3b31f5de18d20d61c28e8e57b59dfcca1d07
51b0627cd6d9ab06f317b0da462d48f984c833da7c4a3de4196a9b925355602e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/animsition/animsition.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2134
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/easydropdown/css/easydropdown.metro.css?ver=5.3.13
217.79.245.244200 OK 1.1 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/easydropdown/css/easydropdown.metro.css?ver=5.3.13
IP 217.79.245.244:0
Hash a50f836b20830edcffb3b39a9ddd108c
926767ed47893295dc596e3d5313b74c7b92eeee
932f79b83d77eec8ff546f5bf6356c1da3b2e08264c3558eb093c8ad475afb6a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/easydropdown/css/easydropdown.metro.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:53:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1079
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/header/yamm.css?ver=5.3.13
217.79.245.244200 OK 764 B URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/header/yamm.css?ver=5.3.13
IP 217.79.245.244:0
Hash 305eacb85314eb3acc0c8d56cbd23fa4
c1de85e2a5131d332754ad93462fb28b2917c6b8
f86811165585f861feb7ec782ef570e4cf544e07ca3cf9df3b8b3be970a9e199
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/header/yamm.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:53:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 764
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
217.79.245.244200 OK 3.8 kB URL HTTP/2 gorilladefence.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 217.79.245.244:0
File type ASCII text, with very long lines (9959)
Hash 7c4522c04f6ad8cc5ba9d83d27a652c9
9b3058c58d6f0f3bcf204d57d5e38fc3ef507b8f
186df88869ab6951e2647db3b07fc025857cdab144cd7367513944d1d2f0f26c
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Fri, 20 May 2016 15:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3823
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
217.79.245.244200 OK 3.3 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP 217.79.245.244:0
File type ASCII text, with very long lines (9172)
Hash 9c7ae47bcf0dc0d73dc2efa79ad93080
d6666e4f67d9ce2a031613735c462e8c509e7203
326fc19eb1b917c2bd26de1196715e9ad6736988d89823e7418cab6f28eb2126
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Jul 2021 01:50:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3280
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.8.2
217.79.245.244200 OK 906 B URL HTTP/2 gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.8.2
IP 217.79.245.244:0
File type HTML document, ASCII text, with very long lines (2750), with no line terminators
Hash fb5d90435c05795ee5c15a70f1d4c34a
d0f332bcc5d92d0bc9a6597d760281dfb7641725
b4b18dc266b786b67e456d9c0e1d1b5192c600bdf09db6ff6f5763da8d7573b7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.8.2 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Jul 2021 01:50:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 906
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.0.5
217.79.245.244200 OK 321 B URL HTTP/2 gorilladefence.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.0.5
IP 217.79.245.244:0
Hash 159e4731a0ffba6862ee2a1bbcc8a805
7fb2a5ca7a80d96187fda406d0a1b7db23867fa7
c6f102a76dc397d94cfbadcd292d64bb45acaa29b0391b41a9f1cc68c2274ae2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 321
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/animsition/animsition.js?ver=1.0
217.79.245.244200 OK 2.8 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/animsition/animsition.js?ver=1.0
IP 217.79.245.244:0
File type ASCII text, with very long lines (626)
Hash af1726f258cc12c9d106fd58f43af6d5
bbb9be9c36ddd9a9f7610e50955605b6d608ac82
f3531e4948f122a7ee311d7c9dce58961375815b3b3a43b4a48a52cac899a001
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/animsition/animsition.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2774
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/cssua/cssua.js?ver=1.0
217.79.245.244200 OK 1.4 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/cssua/cssua.js?ver=1.0
IP 217.79.245.244:0
File type ASCII text, with very long lines (576)
Hash d3b2a687952a2b0b31809d18fadb0728
923aff526a322c5ec735ca0e86e5722abce73f3e
f2f65fd0b067bfea5d925422ec58fec2b17ed4de46cf58db22b3d84b1a9e87c5
GET /wp-content/themes/safeguard/assets/cssua/cssua.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1417
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/waypoints/waypoints.js?ver=1.0
217.79.245.244200 OK 2.5 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/waypoints/waypoints.js?ver=1.0
IP 217.79.245.244:0
File type ASCII text, with very long lines (7808)
Hash 0b8bebb023f82c47921cf1ca4147df35
9848308b4c0c810ba07de05d984ce12e97bef476
6b6da9ed448db27f341e48e5b519eca3dce47210b34b0cccdd4cf521a5dfe2d3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/waypoints/waypoints.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2463
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/easypiechart/easypiechart.js?ver=1.0
217.79.245.244200 OK 1.6 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/easypiechart/easypiechart.js?ver=1.0
IP 217.79.245.244:0
File type ASCII text, with very long lines (3695)
Hash 50c89bc268f1098bb664a21a579b1f14
e53bc75b39fab6b8ad3c5c60e5d7a3af5c608ff9
a1a46a51ce90e81f1e912700850f2cb9a44bcefac7299699f47294272928c135
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/easypiechart/easypiechart.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1560
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/jarallax/jarallax.js?ver=1.0
217.79.245.244200 OK 3.4 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/jarallax/jarallax.js?ver=1.0
IP 217.79.245.244:0
File type ASCII text, with very long lines (9547)
Hash b91802dc606a5b856c9587ef8f108212
0b7445b4a41b6d003ad117db4ceda2380d704cc7
99da977f85cf31f77a7290241497fdc73c57d6d7922fa56058019563cfc0ccf4
GET /wp-content/themes/safeguard/assets/jarallax/jarallax.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:35 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3379
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/cd-pricing/cd-pricing.js?ver=1.0
217.79.245.244200 OK 528 B URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/cd-pricing/cd-pricing.js?ver=1.0
IP 217.79.245.244:0
File type ASCII text, with very long lines (1358)
Hash 7048a3b2b9207f81cf5441755b0d0a10
3bee3a6092caf5e3629165a1218b9b61a8a0f315
5ada56f0a402d47741addc6717c93e42405ef99287921073dc68757c67189333
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/cd-pricing/cd-pricing.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 528
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/wow/wow.js?ver=1.0
217.79.245.244200 OK 2.6 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/wow/wow.js?ver=1.0
IP 217.79.245.244:0
File type ASCII text, with very long lines (8385)
Hash 20b7d9c76a9f19f662846dc610732f5a
381d56af4a5ec62b91fb87fef2899036f01ec14e
1b553fa3f989630f885241a9a61967fabda134c863bfde2980b706ed74caa5d3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/wow/wow.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2576
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/sticky-kit/sticky-kit.js?ver=1.0
217.79.245.244200 OK 1.2 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/sticky-kit/sticky-kit.js?ver=1.0
IP 217.79.245.244:0
File type ASCII text, with very long lines (2706)
Hash 5229a7deeede808183f3975a464ebc92
d4f125bd5e3aed2904410fd1aaff4f470702513c
d43181b3657a49920c7d32d64332033a5bbf7e10ea9527df015440388cd709c4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/sticky-kit/sticky-kit.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1159
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/scrollie/scrollie.js?ver=1.0
217.79.245.244200 OK 745 B URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/scrollie/scrollie.js?ver=1.0
IP 217.79.245.244:0
File type ASCII text, with very long lines (2013)
Hash 570cb8449f82d91535242aa559a64990
2ca8dfbf9faea8eb640a25281919c2ac262a58b0
1e1009258b8b1c1ed6c9751ef92897942bfd9c94c1a8320e1a0de9424e802045
GET /wp-content/themes/safeguard/assets/scrollie/scrollie.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 745
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/easydropdown/js/jquery.easydropdown.js?ver=1.0
217.79.245.244200 OK 2.6 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/easydropdown/js/jquery.easydropdown.js?ver=1.0
IP 217.79.245.244:0
File type ASCII text, with very long lines (560)
Hash fb7338973e3b0e0922a35d6505207d25
c96fe249abb2932f4990080be758e489f8724508
9759696d50821008a41907d76f9407fe788f4eb04d0113198eef06f70fb7bee9
GET /wp-content/themes/safeguard/assets/easydropdown/js/jquery.easydropdown.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2564
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/og-grid/og-grid.js?ver=1.0
217.79.245.244200 OK 2.8 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/og-grid/og-grid.js?ver=1.0
IP 217.79.245.244:0
File type ASCII text, with very long lines (878)
Hash c502f6b0256f8a1a6ccadad24fee000c
636219c20ec0d89eeed76709638752320adcb106
b4b7c8b3417d4214c744dfb555b0d5fd5e3e5f7f74e647c44136995851553a0c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/og-grid/og-grid.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2802
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/header/slidebar.js?ver=1.0
217.79.245.244200 OK 2.1 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/header/slidebar.js?ver=1.0
IP 217.79.245.244:0
Hash bf16760dea5e4d0c6d1eb36846972951
075bb429d87ff78e6c99862a29eb8cf036f12d5f
85b80ac3415c02063ffb4c4b3b774aaf93d01fdc6f77a7bc4ced309200f3cb51
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/header/slidebar.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2081
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.0.5
217.79.245.244200 OK 3.5 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.0.5
IP 217.79.245.244:0
File type ASCII text, with very long lines (53826)
Hash c1ca806d17daf61b69ee1f215ea58b69
e38636307d700ae00aae6cb83de05567fe364faa
3e1a7523151be0a4d2db5de7ee819ca4d0d6fd2248573e7bbfa1e094bb4dd135
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3538
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/js/app.js?ver=1.7.4
217.79.245.244200 OK 841 B URL HTTP/2 gorilladefence.com/wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/js/app.js?ver=1.7.4
IP 217.79.245.244:0
Hash 38d47ac0f63c25e58c46b3ebd9f37fd7
a10834580d0ba32561e28c34cabdeba22f8c9983
c64e4d7db4fa1f5a98f8b9b2eb56790f3a509c2ebab16432b9a36a1cfeb8d993
GET /wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/js/app.js?ver=1.7.4 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Fri, 10 Jan 2020 10:17:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 841
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6
217.79.245.244200 OK 3.8 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6
IP 217.79.245.244:0
Hash f644bc34a89d97aedb4b3b90263e069d
fc4569b75426c65dd5bda5929cc3c72d7bb4c055
298de39bc7e3ea98932954fca45be9f89af97eca4d0ddcb6a0a355bddbc6fac1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Wed, 11 Dec 2019 20:36:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3752
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
217.79.245.244200 OK 894 B URL HTTP/2 gorilladefence.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP 217.79.245.244:0
File type ASCII text, with very long lines (1680)
Hash dfcc770336a2eead262dd6f877e80755
c201c1011320e8bf6b428fc4ada657b17b5b9650
044ac2994997d874b7b9a5d02fb4e9d911529c4bfa4f62554f1b1b71a48b2943
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Jul 2021 01:50:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 894
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.8.2
217.79.245.244200 OK 522 B URL HTTP/2 gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.8.2
IP 217.79.245.244:0
File type ASCII text, with very long lines (1472), with no line terminators
Hash de0dfbfd394b7cf3c48335170b79c7a8
46ad79dccbfc8b49cd158dad9486c5cf285f3390
6984ec8c5069bcfbe493c22ab70d63a79e98b0e8fa992ffa74c1ed02f8e92356
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.8.2 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Jul 2021 01:50:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 522
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.8.2
217.79.245.244200 OK 938 B URL HTTP/2 gorilladefence.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.8.2
IP 217.79.245.244:0
File type ASCII text, with very long lines (2940), with no line terminators
Hash b0b78a02b18f4e4585d69d009ede4df4
c03f17d58f54b62f770bee9c75246d8960919a5a
88594d81dad7ba341a2fedec5edb45e51028353314ae7a5aea9527e93a76c1a4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.8.2 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Jul 2021 01:50:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 938
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/js/jquery.enllax.js
217.79.245.244200 OK 788 B URL HTTP/2 gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/js/jquery.enllax.js
IP 217.79.245.244:0
Hash 16249a2aa5de6af258f5d6a1689c6f5a
553ef7d79a31b1031e163d3930aa5b73880b6e5e
8f7d5c8ffb9490f7dc90bd1450fdf19b80bf4764f97673b20b3280e601dd1100
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpa-vc-parallax-addons/js/jquery.enllax.js HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:46:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 788
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/js/scripts.js
217.79.245.244200 OK 193 B URL HTTP/2 gorilladefence.com/wp-content/plugins/wpa-vc-parallax-addons/js/scripts.js
IP 217.79.245.244:0
File type ASCII text, with CRLF line terminators
Hash 18ae21cc4045a393599c7a8c79c8dd5a
f820002ca9343ac4c1d98063ecd32e3e626240d3
1008373d0f98f11300572e2fbe77bd3275247db1a344b68339841a9edb7e14da
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpa-vc-parallax-addons/js/scripts.js HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:46:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 193
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/slabText/js/jquery.slabtext.js?ver=1.0
217.79.245.244200 OK 3.2 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/slabText/js/jquery.slabtext.js?ver=1.0
IP 217.79.245.244:0
Hash 900daed2791d753a7206cff0b89d58ae
6776c034fa9b0434b72dc79390cf36f425f837da
127381d676f38f3df1dee7037c98bde82b988b8c9e9ccd452b2dd57332a5d4bf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/slabText/js/jquery.slabtext.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3168
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0
217.79.245.244200 OK 2.4 kB URL HTTP/2 gorilladefence.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP 217.79.245.244:0
File type ASCII text, with very long lines (7996)
Hash 148ebbd92f6e22800361a511841a04b3
45716b7da4e07f9d8c8465d1eefcded7ac7f4438
afbbe93586e74d2f03d930bed6bee7c82382c82d960863ad19dc9aa4110e4568
GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Wed, 23 May 2018 19:35:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2422
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/header/header.js?ver=1.0
217.79.245.244200 OK 3.4 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/header/header.js?ver=1.0
IP 217.79.245.244:0
File type HTML document, ASCII text, with very long lines (495)
Hash 5b2c7bf770d61e8134282cf903865338
377901433d9f117b341a9b7764b35b0752b8ab88
53aa7dd9a438063f48754e5d84bdbae85789f35137bc9e97e6cc572a6260926a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/header/header.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3356
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/header/slidebars.js?ver=1.0
217.79.245.244200 OK 496 B URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/header/slidebars.js?ver=1.0
IP 217.79.245.244:0
File type ASCII text, with very long lines (3335), with no line terminators
Hash 5d4e15b8311aafe1db328e2bff4dba95
3b3797a1caa8779a599cf8337df1a022e8108fa1
1bb22f7b3d983da4b4067676ef78862eef2e601e6d3e9aa1acde58b62d2c0266
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/header/slidebars.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 496
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-includes/js/wp-embed.min.js?ver=5.3.13
217.79.245.244200 OK 638 B URL HTTP/2 gorilladefence.com/wp-includes/js/wp-embed.min.js?ver=5.3.13
IP 217.79.245.244:0
File type ASCII text, with very long lines (1391), with no line terminators
Hash 85b7e05edbd8b6b11ea6d1d9b4962e6d
8980e1bfc98fa9a331aa662c835284c5c75cc316
1fe5c1fb9e8dc26c7385dc661fcded4c033b190cb506349fcdbaefa5672c1449
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 12:44:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 638
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.0.5
217.79.245.244200 OK 2.7 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.0.5
IP 217.79.245.244:0
File type Unicode text, UTF-8 text, with very long lines (8853)
Hash ca6d5264457e1e96e200324f3b5123f3
f13f44fbcd775c220b74dfd13f5ca7820d2502af
37c587c8b55480de62ddfdbf5cb45b1c66659cc6e66798490c87781526a90da5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2675
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.0.5
217.79.245.244200 OK 2.6 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.0.5
IP 217.79.245.244:0
File type ASCII text, with very long lines (11236)
Hash 9581dbc0e19d1f5d9cead07ee733eb43
45a36b62f7cbe4d37ff0d47291442487b9e415df
3c06a5625ec997eee5d583a55394bede3910eb6b7a0d122f8a676a4edcee524e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2571
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.0.5
217.79.245.244200 OK 870 B URL HTTP/2 gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.0.5
IP 217.79.245.244:0
File type ASCII text, with very long lines (2337)
Hash ac426b762b815264a7fcf24d82cf3eb1
d47ef180f7644dc24f9034fada1528e86831d686
bd55f7c2420f51f971ab3bfa947a7eea66df8445be7806f17504cea5a0ac0b6a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 870
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.0.5
217.79.245.244200 OK 1.2 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.0.5
IP 217.79.245.244:0
File type ASCII text, with very long lines (4070)
Hash b84e12b1b7673414fc7c59f1f79003c5
0e902c5dcdc0134fc857a2fcb3bf81261d7fa45f
eadf640ba48ebf1167840f0f927a73d35649e3c4d583533e646674b6afba227a
GET /wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1227
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/woocommerce/css/woocommerce.css?ver=3.8.2
217.79.245.244200 OK 10 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/woocommerce/css/woocommerce.css?ver=3.8.2
IP 217.79.245.244:0
Hash 03f1501d847fb263fb4cad9590eee62e
c33623e55b16c8c06e65ff5fda440f05d47c66c7
d28f38325172804653a1388195efea90a680df420476030c69e22f4091aeafe1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/woocommerce/css/woocommerce.css?ver=3.8.2 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10152
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/css/responsive.css?ver=5.3.13
217.79.245.244200 OK 7.0 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/css/responsive.css?ver=5.3.13
IP 217.79.245.244:0
Hash ea303c6639f9a0f6b99457fbf9d2ba30
804d9bd42adb679e6f5701e82a65138a4fdb0f34
6abf864b695b998d742ad61ed921374a1f95073caf526493075dfe234b519bac
GET /wp-content/themes/safeguard/css/responsive.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7007
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=6.0.5
217.79.245.244200 OK 6.6 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=6.0.5
IP 217.79.245.244:0
File type ASCII text, with very long lines (30449)
Hash fa6937023888411664ad6501fcce0b10
3245416fbf393d3b163546f3730da7bb5c1a6d4f
f2ecf4cd1d79eda4fc991d4d7448f295457db297f238a1258b10feb23e96144c
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6584
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/header/header.css?ver=5.3.13
217.79.245.244200 OK 14 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/header/header.css?ver=5.3.13
IP 217.79.245.244:0
Hash e74bbef15dc535f20ec611eb3d716d46
87fc7442ff00eedb9979e28570a7d0d9345c6999
751f63f2ae55b1253602c4270927991ec562789ec18c2df7e815244c844fb6a0
GET /wp-content/themes/safeguard/assets/header/header.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:53:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14064
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/bootstrap/js/bootstrap.js?ver=5.3.13
217.79.245.244200 OK 14 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/bootstrap/js/bootstrap.js?ver=5.3.13
IP 217.79.245.244:0
Hash f39d95978d978a96ab099adcfed2a35e
db0de618fe46d5c1aa056354b4faec4a8dbceb65
eec73efbd8dc57477eb4599835202c8def8f2b808feee74b05ef956dbba513de
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/bootstrap/js/bootstrap.js?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:53:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13545
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/modernizr/modernizr.js?ver=1.0
217.79.245.244200 OK 5.9 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/modernizr/modernizr.js?ver=1.0
IP 217.79.245.244:0
File type HTML document, ASCII text, with very long lines (14596)
Hash ff97f3a1eb81db7174dd3e9d596b0412
47bcb044a7838825ab7127f10a71c9aa04697cd5
df73bcf0c7e1a56ad042d2c307c0bacbc442e4593636eab8e935d06d144501d2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/modernizr/modernizr.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5910
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/owl/owl.js?ver=1.0
217.79.245.244200 OK 11 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/owl/owl.js?ver=1.0
IP 217.79.245.244:0
File type ASCII text, with very long lines (32000)
Hash ef6cae6fa3016580c4de9fa619d12365
9d74703a12109fce8bf0a2eb76db65b3c662cc40
7618848a6536e8d61e7b4c2e3b5e8ad4c055ea032a21c0567a38c41bb97185fc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/owl/owl.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10652
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/fancybox/fancybox.js?ver=1.0
217.79.245.244200 OK 8.3 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/fancybox/fancybox.js?ver=1.0
IP 217.79.245.244:0
File type ASCII text, with very long lines (22962)
Hash 0d0b222c4ba84dd0fd54659c63e68e4c
683f79222297e133e5320df6324a488fdff7edd3
c779f2a96c103f147779b108fa1ecba45f22b103c952d9bb1ff7ecab1d41d62c
GET /wp-content/themes/safeguard/assets/fancybox/fancybox.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8252
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/bxslider/bxslider.js?ver=1.0
217.79.245.244200 OK 4.9 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/bxslider/bxslider.js?ver=1.0
IP 217.79.245.244:0
File type ASCII text, with very long lines (19040)
Hash 773f37ad95319f715bfb4dc479efa39e
06def376a8a5ebe20a4c96e1023810c38a4400ef
4e5ccd6bb754dd041f616d38b5b6da688e020be2e2e6b61b5d3988569fc4c9a1
GET /wp-content/themes/safeguard/assets/bxslider/bxslider.js?ver=1.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4929
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-includes/js/wp-emoji-release.min.js?ver=5.3.13
217.79.245.244200 OK 4.2 kB URL HTTP/2 gorilladefence.com/wp-includes/js/wp-emoji-release.min.js?ver=5.3.13
IP 217.79.245.244:0
File type ASCII text, with very long lines (10927)
Hash 1108311a10e7a1f95711ab2c4e7464c7
6c2d154cfa23d06cc28edb94b6435299d1f2ed95
1f3e1dc9c0f338f7e2b94017f5f8aa2015d6c36ca3462c57b1a63f9394490b44
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 12:44:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4248
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css
217.79.245.244200 OK 6.8 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css
IP 217.79.245.244:0
File type ASCII text, with very long lines (372)
Hash 2803f76b8ccd61576331b7c84962ed1a
9daefa3e38428a67de88745bed8ca4239271efda
7cc61dc1ff9381b832cae1f2786bc004718fcc128ce676fd4a790b2af0e6d7c3
GET /wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:35 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6816
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.0.5
217.79.245.244200 OK 15 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.0.5
IP 217.79.245.244:0
File type ASCII text, with very long lines (65358)
Hash 51481512b355a5eac2cc21c6235f32a2
2cfc421e0b79697fe47418a2ab7dbd875e0741f0
343beac3244ef8295637cbd3ec5303902fdc2da9b8a6897fd67c2c2519c82cf9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15200
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.0.5
217.79.245.244200 OK 9.7 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.0.5
IP 217.79.245.244:0
File type ASCII text, with very long lines (32004)
Hash eb40ceea0a451d7366dc5168989ea08a
4d532dcc6de33bd621808a7bb17d099f3a2624e5
9a463639ae186a6b13e8e0263bb8008c01b601be65cca21979afb6e39946dbac
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9727
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=6.0.5
217.79.245.244200 OK 6.2 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=6.0.5
IP 217.79.245.244:0
File type ASCII text, with very long lines (21539)
Hash 4b36a52bf5fb22e0b67392a815cba771
90c1af6aa05ce40e63a84593da457cdd1f15bb99
8e862d8b11921ad70b19091cd687103e37b749f77ee0fa841f74a84c25ff1f9f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6169
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/js/theme.js?ver=1.1
217.79.245.244200 OK 6.4 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/js/theme.js?ver=1.1
IP 217.79.245.244:0
Hash 47df6863ed42705c4d7726d459a8ccc5
80c0736385398ebe25359a670fa5e46708c66da8
2d79ae1d625d134ba01da38f9dba84e5f8a368afea669ef74e7d39a964727a7e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/js/theme.js?ver=1.1 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2019 13:52:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6354
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.0.5
217.79.245.244200 OK 5.5 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.0.5
IP 217.79.245.244:0
File type ASCII text, with very long lines (20382)
Hash 1cc3bfea5fa80bf9f2a441e1295f9ec1
de1999503eb5fc6d064550306343487b76e0a3c8
4cdba162e790be8c9b7d86d25ef8e71958ca26d34b5850a50ae155520b41620b
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5548
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/assets/bootstrap/css/bootstrap.css?ver=5.3.13
217.79.245.244200 OK 21 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/assets/bootstrap/css/bootstrap.css?ver=5.3.13
IP 217.79.245.244:0
File type ASCII text, with very long lines (377)
Hash a7d2b947d9539e7e0567ec594791aabd
c0819004b26f23bd15e4014ea326d2ef863052f3
950d55cadbe80ba0244975f36d1bbe90e9061b2cf9a1340481362b9bcb24e3d3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/assets/bootstrap/css/bootstrap.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:53:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20616
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.5
217.79.245.244200 OK 42 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.5
IP 217.79.245.244:0
File type ASCII text, with very long lines (65358)
Hash 20075f07f46db048312caa6cb2503105
70643151fab045ef063454e3b4d11f8c8a7aaaf4
42a0a96fb5a0ee4a67cbf8d1e9ed136cae1cd8a5577f3210ecd3ad289fafbcba
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.0.5 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Thu, 07 Nov 2019 12:47:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 41954
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/
217.79.245.244200 OK 55 kB IP 217.79.245.244:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4075), with CRLF, LF line terminators
Hash 80a323cedc7d137f4310cca256274b6b
477bc26f34a94e9a78858c3b60a4d135f9272f42
78ba514936a84b029b99ab5af2b0744b47de13b275cc1ec636fe5d6858265849
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://gorilladefence.com/wp-json/>; rel="https://api.w.org/", <https://gorilladefence.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Tue, 20 Sep 2022 13:55:26 GMT
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/style.css?ver=5.3.13
217.79.245.244200 OK 34 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/style.css?ver=5.3.13
IP 217.79.245.244:0
File type assembler source, ASCII text
Hash 9d30b1131a9169d294f61bf6f6d29507
7bc2e7e7b70d769142ee1d318b0267c40ebecdfb
404f2143ffac4be2a8d7dcc02c4f4f7e6da83f5d6b0831950d2861ace5fd2873
GET /wp-content/themes/safeguard/style.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:51:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34361
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/themes/safeguard/css/global.css?ver=5.3.13
217.79.245.244200 OK 33 kB URL HTTP/2 gorilladefence.com/wp-content/themes/safeguard/css/global.css?ver=5.3.13
IP 217.79.245.244:0
Hash dd126b84da56a7a3ff723ec4c7f9bb30
9a2b9f07b3d91fe8a7324698c38e7f49f71dc4ee
222e0d16a2b68e35e235af2706f62c9d5c750234999282aa4076ab41e095ccf9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/safeguard/css/global.css?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: text/css
last-modified: Tue, 13 Aug 2019 13:52:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 33058
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/kaswara/front/assets/js/script.js?ver=5.3.13
217.79.245.244200 OK 64 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/kaswara/front/assets/js/script.js?ver=5.3.13
IP 217.79.245.244:0
File type ASCII text, with very long lines (782)
Hash c072b3bae8ef8777df00f5f58e00788c
a14e1c4e61307d69219dec788a18e95265b06aa1
da8a50a905ba102693ee7b5d40b6d394f21e337dc43208d7e562d83dd80024ce
GET /wp-content/plugins/kaswara/front/assets/js/script.js?ver=5.3.13 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 64173
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.3
217.79.245.244200 OK 67 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.3
IP 217.79.245.244:0
File type ASCII text, with very long lines (64288)
Hash aa9372a85693a6493774f10b65bad30c
cc3c53e0aed0450cafaec2579de0049ffad0387b
ece029d1221e027b0ca02e11c47f9838dd69f226a8283b4ef7dd7d684fef1c5a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.3 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 66776
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/img/whatsapp-icon-square.svg
217.79.245.244200 OK 1.5 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/img/whatsapp-icon-square.svg
IP 217.79.245.244:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3220), with no line terminators
Hash d4b91f9748d7af553f5afe09b9178b33
ed8c5a239ee1542160383714d12980a578b47b25
c4563584ed0028414d7bfe188c204ae925ceefb56e0b839c77f4a5feb24c49f2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/click-to-chat-for-whatsapp/prev/assets/img/whatsapp-icon-square.svg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:27 GMT
content-type: image/svg+xml
last-modified: Fri, 10 Jan 2020 10:17:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1504
date: Tue, 20 Sep 2022 13:55:27 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-19-at-2.00.05-AM-650x490.jpeg
217.79.245.244200 OK 45 kB URL HTTP/2 gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-19-at-2.00.05-AM-650x490.jpeg
IP 217.79.245.244:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 650x490, components 3\012- data
Hash e9d65eefdd7c1c59348ab63a37b70c92
c535b873b0354c160110dcf13be971f32f40a772
1a5ba67f3e9b19cdd53bab3a734a5c6029fbb71f8a4ea0fcdfae747953699bce
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/11/WhatsApp-Image-2019-11-19-at-2.00.05-AM-650x490.jpeg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/jpeg
last-modified: Tue, 19 Nov 2019 19:21:30 GMT
accept-ranges: bytes
content-length: 44982
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-1.06.52-PM-450x600.jpeg
217.79.245.244200 OK 63 kB URL HTTP/2 gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-1.06.52-PM-450x600.jpeg
IP 217.79.245.244:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 450x600, components 3\012- data
Hash 9fa4f4f34880e91825e6f61594368051
64f77d438b4b111951c70bf0320f5fdc95516ccd
04783b712b4720b0a6531da0665bda88a95a2f80ba6d5feafd686d3fd48f33e9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-1.06.52-PM-450x600.jpeg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/jpeg
last-modified: Tue, 19 Nov 2019 19:13:16 GMT
accept-ranges: bytes
content-length: 63138
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/uploads/2019/11/IMG-20190821-WA0014-650x490.jpg
217.79.245.244200 OK 56 kB URL HTTP/2 gorilladefence.com/wp-content/uploads/2019/11/IMG-20190821-WA0014-650x490.jpg
IP 217.79.245.244:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 650x490, components 3\012- data
Hash 75267e4ca05e71a7c057756d7f7c6f70
4c7f0cf5e9a6f654c67d29d3c404bfa118313779
07ae4547d7bbf535b9a9cf346d89a7ad96ee31d1509fa6eb5e64bbd38b184e33
GET /wp-content/uploads/2019/11/IMG-20190821-WA0014-650x490.jpg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/jpeg
last-modified: Mon, 18 Nov 2019 12:04:04 GMT
accept-ranges: bytes
content-length: 56393
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-12.40.20-PM-650x490.jpeg
217.79.245.244200 OK 60 kB URL HTTP/2 gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-12.40.20-PM-650x490.jpeg
IP 217.79.245.244:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 650x490, components 3\012- data
Hash 8dad5ed053cea308a1e06fea665013e2
435f69f74840dc14a4be7ea2093dc104a9e5d9fe
e10707aa839a6d5d5723a8b59483ad2a2b0a6cd8f213a91f21fe3b7f7d6e9d70
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-12.40.20-PM-650x490.jpeg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/jpeg
last-modified: Tue, 19 Nov 2019 19:17:15 GMT
accept-ranges: bytes
content-length: 59840
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-1.11.29-PM-650x490.jpeg
217.79.245.244200 OK 56 kB URL HTTP/2 gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-1.11.29-PM-650x490.jpeg
IP 217.79.245.244:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 650x490, components 3\012- data
Hash c32b940b662614fdc58d033e2677098e
b37138adbd69905ffc7eaa1cc644106f3659632a
e5f714d5f25fe8815c6a9618dc5813509ab81b88f8bc29ebe0f3cbf26f887d55
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/11/WhatsApp-Image-2019-11-17-at-1.11.29-PM-650x490.jpeg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:27 GMT
content-type: image/jpeg
last-modified: Mon, 18 Nov 2019 12:05:50 GMT
accept-ranges: bytes
content-length: 56408
date: Tue, 20 Sep 2022 13:55:27 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/uploads/2019/11/logo-trans.png
217.79.245.244200 OK 98 kB URL HTTP/2 gorilladefence.com/wp-content/uploads/2019/11/logo-trans.png
IP 217.79.245.244:0
File type PNG image data, 1755 x 443, 8-bit/color RGBA, non-interlaced\012- data
Hash e907c11af4b7099d017e534d8351af43
81053fc5d75666a57f5cfcc0f3754a127bdbd013
c60de085d202ceede66ec35d1948f893633f66425310a57b3db60bd812a2df56
GET /wp-content/uploads/2019/11/logo-trans.png HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/png
last-modified: Thu, 07 Nov 2019 17:53:17 GMT
accept-ranges: bytes
content-length: 97775
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-15-at-12.49.15-PM-650x490.jpeg
217.79.245.244200 OK 79 kB URL HTTP/2 gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-15-at-12.49.15-PM-650x490.jpeg
IP 217.79.245.244:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 650x490, components 3\012- data
Hash 130b14597d56ed03848165424c115d0d
3526d150dc7b7342541190318afb72a185a900ed
d146a143a28150aa72c39f230d9aca62f291853a3eadd7aaa94624d0bc65e5f2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/11/WhatsApp-Image-2019-11-15-at-12.49.15-PM-650x490.jpeg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/jpeg
last-modified: Tue, 19 Nov 2019 18:43:18 GMT
accept-ranges: bytes
content-length: 79025
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/uploads/2019/11/security01.jpg
217.79.245.244200 OK 88 kB URL HTTP/2 gorilladefence.com/wp-content/uploads/2019/11/security01.jpg
IP 217.79.245.244:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=200, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=360], baseline, precision 8, 450x350, components 3\012- data
Hash 9950f52e4f609b39b0444b1418e2fa51
0e6a765802cc2e92a079543a44130894cc357a20
ab662e957854b5213b8d3818306fc9f13e043d5cfc4c229cf767b24696615f84
GET /wp-content/uploads/2019/11/security01.jpg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:27 GMT
content-type: image/jpeg
last-modified: Wed, 20 Nov 2019 07:10:49 GMT
accept-ranges: bytes
content-length: 88245
date: Tue, 20 Sep 2022 13:55:27 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/uploads/2019/11/03.jpg
217.79.245.244200 OK 122 kB URL HTTP/2 gorilladefence.com/wp-content/uploads/2019/11/03.jpg
IP 217.79.245.244:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=200, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=360], baseline, precision 8, 450x350, components 3\012- data
Size 122 kB (121458 bytes)
Hash f7fe39cc10f7a81b6df687a8d620261d
e8161abda05fdc31abd5313cf818fb3c0ce7cedc
dae50713b7097a6f8f9be49dcac4026667a89d54e42c1f23ed4a3411fed84f08
GET /wp-content/uploads/2019/11/03.jpg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:27 GMT
content-type: image/jpeg
last-modified: Wed, 20 Nov 2019 07:12:12 GMT
accept-ranges: bytes
content-length: 121458
date: Tue, 20 Sep 2022 13:55:27 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/uploads/2021/08/lc300.jpeg
217.79.245.244200 OK 290 kB URL HTTP/2 gorilladefence.com/wp-content/uploads/2021/08/lc300.jpeg
IP 217.79.245.244:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x884, components 3\012- data
Size 290 kB (290084 bytes)
Hash 3081e64beb033fe1fbc0598c9af6ad60
7807b733ac52b3754e7469f3db0e59f9c79823ae
3a1ad7f8ee433fd6ffe5dee36f9d795fb4ede55aea13bac2551395662d59882f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2021/08/lc300.jpeg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/jpeg
last-modified: Fri, 27 Aug 2021 11:19:14 GMT
accept-ranges: bytes
content-length: 290084
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/uploads/2019/11/cris-ovalle-gOm-Ho8GKYo-unsplash.jpg
217.79.245.244200 OK 1.0 MB URL HTTP/2 gorilladefence.com/wp-content/uploads/2019/11/cris-ovalle-gOm-Ho8GKYo-unsplash.jpg
IP 217.79.245.244:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 5383x3298, components 3\012- data
Size 1.0 MB (1019467 bytes)
Hash c7fb187ddd9e744cc0e1e22e6c93e2c1
51aa20033b39a5ac068a95d0a4208fe74a7909c4
4202e7e7081eeef0a1807d52470afcbd435cc2a05ef54343b85a6138101ba867
GET /wp-content/uploads/2019/11/cris-ovalle-gOm-Ho8GKYo-unsplash.jpg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/jpeg
last-modified: Fri, 08 Nov 2019 17:04:41 GMT
accept-ranges: bytes
content-length: 1019467
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.8.2
217.79.245.244200 OK 944 B URL HTTP/2 gorilladefence.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.8.2
IP 217.79.245.244:0
File type ASCII text, with very long lines (6758), with no line terminators
Hash 0a28db2029034c85fb7443a4c0a72eff
f57daabd412e81693f3fc8af28b9947d6db9a655
bfc5d397b04ea4885ce26c8933a0b1fdd98892ab9f2141f7b3f3b65bef865222
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.8.2 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:27 GMT
content-type: text/css
last-modified: Thu, 15 Jul 2021 01:50:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 944
date: Tue, 20 Sep 2022 13:55:27 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 13:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
142.250.74.163200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Hash 848cd2ecd011428969dc6b90431bc482
6b1a7b562a56bd54510e0f6f95e26babca331a1b
981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gorilladefence.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: font/woff2
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
date: Tue, 20 Sep 2022 13:55:27 GMT
expires: Wed, 20 Sep 2023 13:55:27 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 13:55:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/securicon/fonts/securicon.ttf?2nb83j
217.79.245.244200 OK 49 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/securicon/fonts/securicon.ttf?2nb83j
IP 217.79.245.244:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, securicon \012- data
Hash f0ae5f8b2f61556dd74b805e1eec025d
a2bef1b68b97a1144e2f6cc3f01a1cc13e060880
ca1b7a5efb1972dff9aaf9c97b3b191d0c9123a93b561814c438677cc79f2c3a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/font-icons-loader/fonts/securicon/fonts/securicon.ttf?2nb83j HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/securicon/style.css?ver=5.3.13
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:28 GMT
content-type: font/ttf
last-modified: Thu, 07 Nov 2019 12:46:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 48662
date: Tue, 20 Sep 2022 13:55:28 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/theme-fonts/fonts/theme-fonts.ttf?x8z40e
217.79.245.244200 OK 53 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/theme-fonts/fonts/theme-fonts.ttf?x8z40e
IP 217.79.245.244:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, theme-fonts\012- data
Hash 6c6cd8b017c69b2afd2638ed6925b325
8eee6f504e0d6e338f0e7becd5960e0a08ac8a8e
135557d8dd7e553e4e690e222f6424de7dc5f29107a0c98c866f7ebe3795dab2
GET /wp-content/plugins/font-icons-loader/fonts/theme-fonts/fonts/theme-fonts.ttf?x8z40e HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/theme-fonts/style.css?ver=5.3.13
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:28 GMT
content-type: font/ttf
last-modified: Thu, 07 Nov 2019 12:46:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 52740
date: Tue, 20 Sep 2022 13:55:28 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/elegant-icons/fonts/elegant-icons.ttf?unc6iq
217.79.245.244200 OK 33 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/elegant-icons/fonts/elegant-icons.ttf?unc6iq
IP 217.79.245.244:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, elegant-icons\012- data
Hash 82a4151bf17c83f4e8cd8f7243c546f4
840a0dd9111e11e6654d387daeda8d881fe00a6d
07728860fd8b02aa73b9aa4d7ca26c3ead0407374cb927ee7bffc1a290fc0ea9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/font-icons-loader/fonts/elegant-icons/fonts/elegant-icons.ttf?unc6iq HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/wp-content/plugins/font-icons-loader/fonts/elegant-icons/style.css?ver=5.3.13
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:28 GMT
content-type: font/ttf
last-modified: Thu, 07 Nov 2019 12:46:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32709
date: Tue, 20 Sep 2022 13:55:28 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/uploads/2017/12/cropped-logo-secutrity.png
217.79.245.244200 OK 5.7 kB URL HTTP/2 gorilladefence.com/wp-content/uploads/2017/12/cropped-logo-secutrity.png
IP 217.79.245.244:0
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Hash 2cd84207129e5c02c2f3c43de3189b60
7d3dcc3ad527794ec6e8c167a9b180f82fcfaf52
cdcc8914984ace559dc5c442dd84e98c13e33547e32927291f36235b87ef873a
GET /wp-content/uploads/2017/12/cropped-logo-secutrity.png HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:28 GMT
content-type: image/png
last-modified: Thu, 07 Nov 2019 12:52:18 GMT
accept-ranges: bytes
content-length: 5716
date: Tue, 20 Sep 2022 13:55:28 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/uploads/2019/11/loader.gif
217.79.245.244200 OK 31 kB URL HTTP/2 gorilladefence.com/wp-content/uploads/2019/11/loader.gif
IP 217.79.245.244:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash cb78d919f2ce5a3b15cea57babdf805e
dea360b2817c332f48c54a7e8805e3d3ae273aba
6319e8b829d0625eb192a0411f8d05d1e8b0db4293f94c52b38b4dc5e4455ca9
GET /wp-content/uploads/2019/11/loader.gif HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:28 GMT
content-type: image/gif
last-modified: Wed, 20 Nov 2019 13:15:02 GMT
accept-ranges: bytes
content-length: 30668
date: Tue, 20 Sep 2022 13:55:28 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
217.79.245.244200 OK 77 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 217.79.245.244:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/fonts/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://gorilladefence.com/wp-content/plugins/revslider/public/assets/fonts/font-awesome/css/font-awesome.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:28 GMT
content-type: font/woff2
last-modified: Thu, 07 Nov 2019 12:47:35 GMT
accept-ranges: bytes
content-length: 77160
date: Tue, 20 Sep 2022 13:55:28 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
217.79.245.244200 OK 2.5 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 217.79.245.244:0
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:28 GMT
content-type: image/gif
last-modified: Thu, 07 Nov 2019 12:47:35 GMT
accept-ranges: bytes
content-length: 2545
date: Tue, 20 Sep 2022 13:55:28 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
217.79.245.244200 OK 7.5 kB URL HTTP/2 gorilladefence.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP 217.79.245.244:0
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://gorilladefence.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:28 GMT
content-type: font/woff
last-modified: Thu, 07 Nov 2019 12:47:37 GMT
accept-ranges: bytes
content-length: 7536
date: Tue, 20 Sep 2022 13:55:28 GMT
X-Firefox-Spdy: h2
gorilladefence.com/?wc-ajax=get_refreshed_fragments
217.79.245.244200 OK 127 B URL HTTP/2 gorilladefence.com/?wc-ajax=get_refreshed_fragments
IP 217.79.245.244:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3e1be79960e33ae3e761be4a7aac27c9
eb7a80e3af19ede6da87b7999f8b0ea5bc7ded2e
46db0d0bc3b8c0f7ef30c1b6847a8d4228ff97caf2e22b55e9dc9aae3c918fa9
Analyzer Verdict Alert fortinet Malware
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://gorilladefence.com
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://gorilladefence.com
access-control-allow-credentials: true
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-transform, no-cache, no-store, must-revalidate
x-robots-tag: noindex
content-type: application/json; charset=UTF-8
content-length: 127
content-encoding: br
vary: Accept-Encoding
date: Tue, 20 Sep 2022 13:55:29 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/uploads/2019/11/cris-ovalle-gOm-Ho8GKYo-unsplash-100x50.jpg
217.79.245.244200 OK 2.1 kB URL HTTP/2 gorilladefence.com/wp-content/uploads/2019/11/cris-ovalle-gOm-Ho8GKYo-unsplash-100x50.jpg
IP 217.79.245.244:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 100x50, components 3\012- data
Hash ba7639408395dec3e7172bde650bf37c
15fae963034f5f9199683c175ef9a9c8036f3a04
489debf55fdf53a790a3157e7679978f2969bc15ca8af26898589882503eb337
GET /wp-content/uploads/2019/11/cris-ovalle-gOm-Ho8GKYo-unsplash-100x50.jpg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:29 GMT
content-type: image/jpeg
last-modified: Fri, 08 Nov 2019 17:27:23 GMT
accept-ranges: bytes
content-length: 2093
date: Tue, 20 Sep 2022 13:55:29 GMT
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F799803b1-7e6e-42da-84f6-3e45140e6ae6.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F799803b1-7e6e-42da-84f6-3e45140e6ae6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49ffb7cd4c40b37f5b61c1fd86ee36ec
4188174bf6e595335f784d2bf9c90db57294b2fc
5af29dbb676f5a38288e73e9ca4feada901ccfb06385110ca0a46a4970532d32
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F799803b1-7e6e-42da-84f6-3e45140e6ae6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7358
x-amzn-requestid: 88cc5413-2f66-4dc6-b20d-57dd16e77e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugqUHZIoAMFd3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e175-7357c2251f4434bc4686f9ed;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qL0OjiglHkC5171Q2CTvjoOnpkRsGs9I949IDf-PEYOg5S_hiPUpyA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "4188174bf6e595335f784d2bf9c90db57294b2fc"
content-type: image/jpeg
age: 56749
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a6c4141-897e-4893-81f2-a7382686ab37.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a6c4141-897e-4893-81f2-a7382686ab37.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4653898fc83ae1b62d9b975658cc7fe9
adc6def18885ff49efd6b61c47d4b36eaca057b4
642a2e27f6635db0f9670cce2cba91f24f881db8f19d3f9b00e439f746fbc225
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a6c4141-897e-4893-81f2-a7382686ab37.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6961
x-amzn-requestid: 3177a5d3-6be5-426f-84ff-c044443c8627
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugHuHGZoAMFuwg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e097-00d08a4e1c0ebd3f62716843;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:19 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _dXQRIghNGF2FVKY8rbWdykpQd225TT_e645hfVwkq8SMhT5O16lFg==
via: 1.1 2a44ef7b9d28e74c78ffadeedcbb887c.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 21:53:49 GMT
age: 57704
etag: "adc6def18885ff49efd6b61c47d4b36eaca057b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/uploads/2019/11/02.jpg
217.79.245.244200 OK 0 B URL HTTP/2 gorilladefence.com/wp-content/uploads/2019/11/02.jpg
IP 217.79.245.244:0
GET /wp-content/uploads/2019/11/02.jpg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:27 GMT
content-type: image/jpeg
last-modified: Wed, 20 Nov 2019 07:11:05 GMT
accept-ranges: bytes
content-length: 108167
date: Tue, 20 Sep 2022 13:55:27 GMT
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0
217.79.245.244200 OK 0 B URL HTTP/2 gorilladefence.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0
IP 217.79.245.244:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Nov 2019 12:47:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 50040
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Source+Sans+Pro%3A300%2C400%2C500%2C600%2C700%7CRubik%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%7CRubik%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CRubik%3A300%2C400%2C500%2C700%2C900&subset=latin%2Clatin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Source+Sans+Pro%3A300%2C400%2C500%2C600%2C700%7CRubik%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%7CRubik%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CRubik%3A300%2C400%2C500%2C700%2C900&subset=latin%2Clatin-ext
IP 142.250.74.10:0
GET /css?family=Source+Sans+Pro%3A300%2C400%2C500%2C600%2C700%7CRubik%3A300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%7CRubik%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CRubik%3A300%2C400%2C500%2C700%2C900&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 20 Sep 2022 13:55:26 GMT
date: Tue, 20 Sep 2022 13:55:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-19-at-1.52.05-AM-650x490.jpeg
217.79.245.244200 OK 0 B URL HTTP/2 gorilladefence.com/wp-content/uploads/2019/11/WhatsApp-Image-2019-11-19-at-1.52.05-AM-650x490.jpeg
IP 217.79.245.244:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2019/11/WhatsApp-Image-2019-11-19-at-1.52.05-AM-650x490.jpeg HTTP/1.1
Host: gorilladefence.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gorilladefence.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 27 Sep 2022 13:55:26 GMT
content-type: image/jpeg
last-modified: Tue, 19 Nov 2019 19:21:30 GMT
accept-ranges: bytes
content-length: 47913
date: Tue, 20 Sep 2022 13:55:26 GMT
X-Firefox-Spdy: h2