r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b720c31d9c036cd2ef10e35fa29f5345
ac625d2e69284e5080bede4b37c31af62c26338b
323b76eceb5d3ad339a1c55bfa7eea4e39741258e08d5005b691f712a9e9c81c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "323B76ECEB5D3AD339A1C55BFA7EEA4E39741258E08D5005B691F712A9E9C81C"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8245
Expires: Sat, 05 Nov 2022 16:01:27 GMT
Date: Sat, 05 Nov 2022 13:44:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9f3527f898221f8ba6b5015f6decc100
ead93baa0e9d3a6297be3377dc3a624e5a3f509a
73a068f907cc50dd60af18d545b4264dd44bc4b9f40bf9adfceea157fdc33099
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "73A068F907CC50DD60AF18D545B4264DD44BC4B9F40BF9ADFCEEA157FDC33099"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6737
Expires: Sat, 05 Nov 2022 15:36:19 GMT
Date: Sat, 05 Nov 2022 13:44:02 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 72c64df35304c35cd95e4ed6e101e795
a39287987854d644a8da295da536fb31de8b44c1
a9bf0da57e0f108b376781ede4b9762ae1b0d088910d26fb7be98c2d03e69092
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5721
Cache-Control: max-age=163343
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 13:44:02 GMT
Etag: "63662d58-1d7"
Expires: Mon, 07 Nov 2022 11:06:25 GMT
Last-Modified: Sat, 05 Nov 2022 09:31:04 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: I3Qv3eR2FCoNH2WBB6kyByX7LqazkJ1Kr4x1OEFdEcEQEIfusnzbfeLrl3FrhUlfnOQkrn8ZhLg=
x-amz-request-id: G3XSZ5DWBXYZ3GB4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 05 Nov 2022 12:47:12 GMT
age: 3410
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 13:44:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash db63d54b77502dd6c7bdc792d4fd093e
026ad8186833988279468829c004c6e2a2f2626f
eff89ef67baa622e8a196ffcadc44d29aafff009bb531da3e979a1f47c3b1c36
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3976
Cache-Control: max-age=156540
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 13:44:03 GMT
Etag: "63661997-1d7"
Expires: Mon, 07 Nov 2022 09:13:03 GMT
Last-Modified: Sat, 05 Nov 2022 08:06:47 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.149.219.22101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.219.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FYqDxDZUiYnD3dZ5szRoyQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FO8ZbDNb20dudSDH6oUQGSGJOk4=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6004
Expires: Sat, 05 Nov 2022 15:24:08 GMT
Date: Sat, 05 Nov 2022 13:44:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6004
Expires: Sat, 05 Nov 2022 15:24:08 GMT
Date: Sat, 05 Nov 2022 13:44:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6004
Expires: Sat, 05 Nov 2022 15:24:08 GMT
Date: Sat, 05 Nov 2022 13:44:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ca6c7517d7015fbc35fa290c1c2d6afd
594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c
a746b36be50209915a0e5657abd219aab382eee4b7556142aa1316daf3a9f5a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: f2e39db1-fb8a-4a9b-8a1d-ee08000ddeb6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC1VyFHuIAMF5Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636435be-7a03ef677f8dbd680f72de90;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:42:22 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: SjV-J5oBG_0qHy-SE7_K9kj_MMjAee4JZva3thJf8On3ejAA1n1tfg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 21:53:04 GMT
age: 57060
etag: "594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255683f8-a0b6-411a-a41e-4d042746780e.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255683f8-a0b6-411a-a41e-4d042746780e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7c9c908e891e7277f21a914fea9aa25
596c3c084ae3d850a5dc28e549b4e22f2b8cc71f
709c217b3ac09712d2af4366316c8977b1a4e2a73f887b3e30f10df1ed50bacd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255683f8-a0b6-411a-a41e-4d042746780e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9150
x-amzn-requestid: 7c179507-20a7-4fa3-993b-f79b3e7949ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apwiGHD_IAMFQZw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635a2e0d-337623ce79dc53c864632c72;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 07:06:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OM3hc6Jfl5pDWPikIlcQOexIScQavqJh9h-N-EvIGNpicWJwHMPKIA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 19:29:40 GMT
age: 65664
etag: "596c3c084ae3d850a5dc28e549b4e22f2b8cc71f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: z6Lnru_eeTvRGdsz-q37-HGFgFfIT6fLSFcJBvT3oPjAPilszTWkDw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 20:21:33 GMT
age: 62551
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb94b0737-3952-4bbe-b940-e1f79fb95cbe.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb94b0737-3952-4bbe-b940-e1f79fb95cbe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eaf06d0fb99703abfd57b962eb21ce96
ce73b0ad22139bec863ed990e3d3af4bdc3df288
a226250245611193be882c92f2d9920cb6ceeb12823b48c0b9c8fa2aba1c8c0d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb94b0737-3952-4bbe-b940-e1f79fb95cbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6909
x-amzn-requestid: 7c500c29-f514-491c-b2fe-a732a546925f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: awWpEEYHoAMFWdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635cd16d-6d9c4c5c41f4fcd16cabda59;Sampled=0
x-amzn-remapped-date: Sat, 29 Oct 2022 07:08:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wf0k3Di2KCCXHIo68FTdztfEbq_A8t7xCE608dP64CVIdFxSEHTijw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 22:20:50 GMT
age: 55394
etag: "ce73b0ad22139bec863ed990e3d3af4bdc3df288"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28a5f5ce-bd81-4e56-bd1b-460e13379581.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28a5f5ce-bd81-4e56-bd1b-460e13379581.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a3b1551512640bb8f5e7deb80c32272
75805b9f03aef14cfad025259936ae5f217d25ca
5baa90853202e78cf9b59e9ab597e16ccfbf143d7e124583e64dc1ad1ee2c2df
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28a5f5ce-bd81-4e56-bd1b-460e13379581.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7783
x-amzn-requestid: c8f73eac-612d-48e3-a655-41525e97331c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apxM8H7aoAMFT3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635a2f1f-5470c77a30a11b9423f56837;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 07:11:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FLFsF-1gAeN0HiZnS03oNMNajnwk12P-5Aro-QOcQNFtkjknh9g5FA==
via: 1.1 0c04e836dfe22246a870a0f54a2d4746.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 19:19:17 GMT
age: 66287
etag: "75805b9f03aef14cfad025259936ae5f217d25ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F005dcb42-4824-4232-94cb-b73713f73375.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F005dcb42-4824-4232-94cb-b73713f73375.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c1182def5cf59cf834fc33853c55d15
15ac708f7d9fdf2136c980afcd844e8fff6fb7aa
2e0b597618655aa5649787b034e18e8d7a47e03404233a516a68ee6e98a8ad43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F005dcb42-4824-4232-94cb-b73713f73375.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3921
x-amzn-requestid: 7b68d999-a1c6-4889-bf79-e1f0abfc1d1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apTueHLRoAMFjyw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359fff6-679b214454c013587af76689;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 03:50:14 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lEDQvyTIRNKTT7J-oz-Rb2PcayFmw0ybRFFrvjMKXJYLwy45Oaun_g==
via: 1.1 c07670802688417c8b871124c547eb0a.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 14:39:29 GMT
age: 83075
etag: "15ac708f7d9fdf2136c980afcd844e8fff6fb7aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
minahventures.com/
192.185.91.15200 OK 18 kB IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 7b044752cb013a8612477816f912457f
192f57252d7b34fa1b105c83e9d1f6655ced90e8
6c42dde35e0d44525bc10f90847539e3ac9a33c676411b14fae1c129919daa50
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:02 GMT
Server: Apache
Link: <http://minahventures.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Accept-Ranges: none
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
fonts.googleapis.com/css?family=Playfair+Display%3A100%2C200%2C400%2C700&v1%27&ver=6.0.3
142.250.74.10200 OK 481 B URL HTTP/1.1 fonts.googleapis.com/css?family=Playfair+Display%3A100%2C200%2C400%2C700&v1%27&ver=6.0.3
IP 142.250.74.10:0
Hash 6e16bd6b4feabbe7c23fcfb62e1b6a99
5bdebbaef7114f06802e4f71d80bf0feced3a73f
ba17705de161a8f9baad24c76fb1d1e9b41a73b675f1ee9ba636dcaab09edab5
GET /css?family=Playfair+Display%3A100%2C200%2C400%2C700&v1%27&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 05 Nov 2022 13:44:11 GMT
Date: Sat, 05 Nov 2022 13:44:11 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Montserrat%3A100%2C200%2C400%2C700&v1%27&ver=6.0.3
142.250.74.10200 OK 575 B URL HTTP/1.1 fonts.googleapis.com/css?family=Montserrat%3A100%2C200%2C400%2C700&v1%27&ver=6.0.3
IP 142.250.74.10:0
Hash 099c22ec34e10d34e89a3c5fc76b7827
49c5a88122d5813503171db3b76c0d8cca6082a3
b2ced110fac5f527b6a21c92bd8b24df3314b4229b36d8857fadfd00f2353afb
GET /css?family=Montserrat%3A100%2C200%2C400%2C700&v1%27&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 05 Nov 2022 13:44:11 GMT
Date: Sat, 05 Nov 2022 13:44:11 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Merriweather%3A100%2C200%2C400%2C700&v1%27&ver=6.0.3
142.250.74.10200 OK 557 B URL HTTP/1.1 fonts.googleapis.com/css?family=Merriweather%3A100%2C200%2C400%2C700&v1%27&ver=6.0.3
IP 142.250.74.10:0
Hash ea494ff3143e55e92249d9f9fa2f965e
a2115dbc89b37d58956be3619b04df58ebaa7926
9e830132004a981f65d5144f72bdb9476a949ea065f879d4c406b20502b5dc57
GET /css?family=Merriweather%3A100%2C200%2C400%2C700&v1%27&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 05 Nov 2022 13:44:11 GMT
Date: Sat, 05 Nov 2022 13:44:11 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Raleway%3A100%2C200%2C400%2C700&v1%27&ver=6.0.3
142.250.74.10200 OK 572 B URL HTTP/1.1 fonts.googleapis.com/css?family=Raleway%3A100%2C200%2C400%2C700&v1%27&ver=6.0.3
IP 142.250.74.10:0
Hash 4b4d155f5285ae6edde9c587be0b61c7
f20a7458429fcb728b2cf00bbfcd9b0f66780f20
df62ee1e9baf6ea7e663a1515a76545a6974dbf9198bc557b43c5bbc4b32ad82
GET /css?family=Raleway%3A100%2C200%2C400%2C700&v1%27&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 05 Nov 2022 13:44:11 GMT
Date: Sat, 05 Nov 2022 13:44:11 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Playfair+Display%27+rel%3D%27stylesheet%27+type%3D%27text%2Fcss&ver=6.0.3
142.250.74.10400 Bad Request 799 B URL HTTP/1.1 fonts.googleapis.com/css?family=Playfair+Display%27+rel%3D%27stylesheet%27+type%3D%27text%2Fcss&ver=6.0.3
IP 142.250.74.10:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (546)
Hash b4835ad31a1682728cf9dcfef19c12d1
fb1bd730135d2b812ee53fb08e1d90164e99aea3
f6912e2a338bfda67acb7bf1de16d550ece357929a87d4a301f9a4c342de704f
GET /css?family=Playfair+Display%27+rel%3D%27stylesheet%27+type%3D%27text%2Fcss&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sat, 05 Nov 2022 13:44:11 GMT
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
connect.facebook.net/en_US/all.js
157.240.240.1200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP 157.240.240.1:0
File type ASCII text, with very long lines (1961)
Hash fa6066527e985f4001e0f03e1ea5c0be
310a194f6830041b984110f1e1efd4a2fc0a7aed
160493483c1f8996351a91a9b6d15136d0bff4ede2a1291ddaaadb5a21b9abec
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 2143fd9b15696266956496c3f086aa0e
ETag: "e76db7c9afe1faee3b752d5c87940cd9"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Sat, 05 Nov 2022 13:49:31 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: +mBmUn6YX0AB4PA+HqXAvg==
X-FB-Debug: cxFlv6v9ZJAepXRVi5q+SE8zZe+UsN0t2L1vP1STd5gw4vpbglHkz3oBhYNi2FnAK9//DREK7R70RdRX0GCXkg==
X-FB-TRIP-ID: 1679558926
Date: Sat, 05 Nov 2022 13:44:11 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1687
minahventures.com/wp-content/themes/tempest/css/autoinclude/fontello.css?ver=6.0.3
192.185.91.15200 OK 1.6 kB URL HTTP/1.1 minahventures.com/wp-content/themes/tempest/css/autoinclude/fontello.css?ver=6.0.3
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 992ac4c588e247e0106a408dce6d07fc
d080512b0b0b2aaf0970eb2d4f8a43dcea9a78d9
94707b58e9297a02f881c08f0d0445112e621dbb6da4304292d146e05ede7f08
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/tempest/css/autoinclude/fontello.css?ver=6.0.3 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Last-Modified: Wed, 02 Apr 2014 06:21:01 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1616
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
minahventures.com/wp-content/themes/tempest/css/autoinclude/galleria.folio.css?ver=6.0.3
192.185.91.15200 OK 1.2 kB URL HTTP/1.1 minahventures.com/wp-content/themes/tempest/css/autoinclude/galleria.folio.css?ver=6.0.3
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 8292659dacffdd694c35635e6e6b9a75
db7af1f710025d9daff54312d54b6a03055375ab
5b268f780a5c6037b95432bcdfbde940c37b92497e8761eae2e089a796755a40
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/tempest/css/autoinclude/galleria.folio.css?ver=6.0.3 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 02 Apr 2014 06:21:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1151
Keep-Alive: timeout=5, max=75
Content-Type: text/css
minahventures.com/wp-content/themes/tempest/css/autoinclude/ie.css?ver=6.0.3
192.185.91.15200 OK 355 B URL HTTP/1.1 minahventures.com/wp-content/themes/tempest/css/autoinclude/ie.css?ver=6.0.3
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash ba6bd29789888e5ba36db942137d8bc9
c621df7ac3db4901c069994069c21e6936970b54
93acba19331c13d470fa2a423fb8fd207fdf09742c8d5bfa0b9a12c3dc33e33a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/tempest/css/autoinclude/ie.css?ver=6.0.3 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 02 Apr 2014 06:21:01 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 355
Keep-Alive: timeout=5, max=75
Content-Type: text/css
minahventures.com/wp-content/themes/tempest/css/autoinclude/jquery.jscrollpane.css?ver=6.0.3
192.185.91.15200 OK 581 B URL HTTP/1.1 minahventures.com/wp-content/themes/tempest/css/autoinclude/jquery.jscrollpane.css?ver=6.0.3
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash f90f9582a72735ae2866c48943e548ae
7251575f8d4a301c36725d725a0a1918dc2824bc
c9eb66ac8bfdfce31ecfa88b5f7b09937999831dc10558badf91f6a6362fc9b1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/tempest/css/autoinclude/jquery.jscrollpane.css?ver=6.0.3 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 02 Apr 2014 06:21:01 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 581
Keep-Alive: timeout=5, max=75
Content-Type: text/css
minahventures.com/wp-content/themes/tempest/css/autoinclude/red-widgets.css?ver=6.0.3
192.185.91.15200 OK 2.9 kB URL HTTP/1.1 minahventures.com/wp-content/themes/tempest/css/autoinclude/red-widgets.css?ver=6.0.3
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (319)
Hash 286c2e91e59f36a073595f60c662dd0e
8dc2cc2f10ecbafb5bf7eed3fb5dc1bfe737313a
75fc57bf873c46ee749ce3640802070c7a9a4d5401e60977beae150cb8e5671e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/tempest/css/autoinclude/red-widgets.css?ver=6.0.3 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 02 Apr 2014 06:21:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2936
Keep-Alive: timeout=5, max=75
Content-Type: text/css
minahventures.com/wp-content/themes/tempest/css/autoinclude/foundation.min.css?ver=6.0.3
192.185.91.15200 OK 19 kB URL HTTP/1.1 minahventures.com/wp-content/themes/tempest/css/autoinclude/foundation.min.css?ver=6.0.3
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash fc2a57de90c4b0aa9ee99bc863600793
af8bbee10612371d868de01d60df3e15b09f44db
3d533c349a555706b1e3605e15c8a87994a2043dc27dde8ba65e3afaa30dbd9a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/tempest/css/autoinclude/foundation.min.css?ver=6.0.3 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 02 Apr 2014 06:21:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css
minahventures.com/wp-content/themes/tempest/woocommerce/woocommerce.css?ver=6.0.3
192.185.91.15200 OK 4.1 kB URL HTTP/1.1 minahventures.com/wp-content/themes/tempest/woocommerce/woocommerce.css?ver=6.0.3
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (823), with CRLF line terminators
Hash c16a4831f0d91338ae322316d20a478d
b50ef28912bb057a24037521ea7eb25357422097
fac11b2ffaffd0a006034afd3c85afd95882fc3fbb9c8ea1ef2aa3fb5dc622cd
GET /wp-content/themes/tempest/woocommerce/woocommerce.css?ver=6.0.3 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Last-Modified: Wed, 02 Apr 2014 06:21:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4076
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
minahventures.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
192.185.91.15200 OK 4.6 kB URL HTTP/1.1 minahventures.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Last-Modified: Mon, 04 Apr 2022 12:07:08 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4618
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
minahventures.com/wp-content/themes/tempest/style.css
192.185.91.15200 OK 685 B URL HTTP/1.1 minahventures.com/wp-content/themes/tempest/style.css
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (760), with CRLF line terminators
Hash 09cc652471a0ec1a8c56e02497ccad65
ea0db32b277eceb2360eba88283d8b81a9522351
a6f53f7f76858fbc7d94cf12f9da18dde71225fa22db854ee3bd406013141125
GET /wp-content/themes/tempest/style.css HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Last-Modified: Wed, 02 Apr 2014 06:21:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 685
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
minahventures.com/wp-content/themes/tempest/css/autoinclude/style.css?ver=6.0.3
192.185.91.15200 OK 32 kB URL HTTP/1.1 minahventures.com/wp-content/themes/tempest/css/autoinclude/style.css?ver=6.0.3
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (481), with CRLF line terminators
Hash 856ac6d46e2e6d8e44d75ade2ecf333e
c828218387a65544a740e4bee5f868a1a51202fd
bcb38cb1e1afd7b71101f2d26347d1a62b869a6a1f874475494fb38c2146ac8a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/tempest/css/autoinclude/style.css?ver=6.0.3 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Last-Modified: Mon, 28 Apr 2014 05:23:35 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
fonts.googleapis.com/css?family=Playfair+Display%27+rel%3D%27stylesheet%27+type%3D%27text%2Fcss&ver=6.0.3
142.250.74.10400 Bad Request 799 B URL HTTP/1.1 fonts.googleapis.com/css?family=Playfair+Display%27+rel%3D%27stylesheet%27+type%3D%27text%2Fcss&ver=6.0.3
IP 142.250.74.10:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (546)
Hash b4835ad31a1682728cf9dcfef19c12d1
fb1bd730135d2b812ee53fb08e1d90164e99aea3
f6912e2a338bfda67acb7bf1de16d550ece357929a87d4a301f9a4c342de704f
GET /css?family=Playfair+Display%27+rel%3D%27stylesheet%27+type%3D%27text%2Fcss&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sat, 05 Nov 2022 13:44:11 GMT
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
minahventures.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
192.185.91.15200 OK 39 kB URL HTTP/1.1 minahventures.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash feb933ceca72e1d76b471ed9db278b0d
6179e8f9c9876a6c4df5e3138e9f8ee2ac25bcd1
9a525fa92f98fd5ac754d60ea6f3676bcaa3870dd9bf057c8c668399922c9bd0
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Last-Modified: Mon, 04 Apr 2022 12:07:08 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
minahventures.com/wp-content/plugins/red-shortcodes/css/shortcodes.css?ver=6.0.3
192.185.91.15200 OK 3.5 kB URL HTTP/1.1 minahventures.com/wp-content/plugins/red-shortcodes/css/shortcodes.css?ver=6.0.3
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d78918b2b097a7f2a122448df205586f
4760230a8d9a9e3e177e105e19f036745e8f24cc
3ede40adbb50dff7558f8fc6b86eea941560058c8bce9f69c802fe17c3492174
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/red-shortcodes/css/shortcodes.css?ver=6.0.3 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Last-Modified: Wed, 02 Apr 2014 06:21:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3470
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
minahventures.com/wp-content/themes/tempest/style.css?ver=6.0.3
192.185.91.15200 OK 685 B URL HTTP/1.1 minahventures.com/wp-content/themes/tempest/style.css?ver=6.0.3
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (760), with CRLF line terminators
Hash 09cc652471a0ec1a8c56e02497ccad65
ea0db32b277eceb2360eba88283d8b81a9522351
a6f53f7f76858fbc7d94cf12f9da18dde71225fa22db854ee3bd406013141125
GET /wp-content/themes/tempest/style.css?ver=6.0.3 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Last-Modified: Wed, 02 Apr 2014 06:21:01 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 685
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
minahventures.com/wp-content/themes/tempest/css/autoinclude/camera.css?ver=6.0.3
192.185.91.15200 OK 3.7 kB URL HTTP/1.1 minahventures.com/wp-content/themes/tempest/css/autoinclude/camera.css?ver=6.0.3
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 855aec6786ed8a37bdfe5658b82b833c
4801cb931fcc423fe3b4a659c9e9e69b305ded4c
56458c634f187227ed0854437788b0becb9846e4a798b25b31871f185df5d2dd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/tempest/css/autoinclude/camera.css?ver=6.0.3 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Last-Modified: Wed, 02 Apr 2014 06:21:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3690
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
minahventures.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
192.185.91.15200 OK 8.2 kB URL HTTP/1.1 minahventures.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash a0a1c8194f131320e1798f90a7b1262a
3346d35be1f2e4886f19e7fcc0cc96ee4753d9ed
7f618ab13cec0933ec2c61fa2b580ad77ca41522028649677494219fa9ce56db
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Last-Modified: Thu, 04 Aug 2022 05:27:46 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8169
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
minahventures.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1
192.185.91.15200 OK 3.3 kB URL HTTP/1.1 minahventures.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8632)
Hash 0854bc2e341421e5257c78ad60231a92
fc947dd5273cb9755f7e8a4617d49f3ba8af972c
756d9691bb6f38e4706fc3d894c86be4947b818e54f5f84c4b9ce4831681ce16
GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Last-Modified: Thu, 04 Aug 2022 05:27:46 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3296
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
minahventures.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1
192.185.91.15200 OK 4.8 kB URL HTTP/1.1 minahventures.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11760)
Hash 4af14b203f9813b040aea697cea02b02
681533e342bf32a0da3331c5806bb58dff5cdcf4
13e8ccf22646def4ed18be46dcb2dcef91900d52d26afb651c9c66dcb74ca649
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Last-Modified: Thu, 04 Aug 2022 05:27:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4756
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
minahventures.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
192.185.91.15200 OK 17 kB URL HTTP/1.1 minahventures.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (43771)
Hash 2a67a4888baa44de739f3fe56203ce07
da175eae57f26b655747d79f055477e3fee1abb9
3a4d7627476a0099ca4bcc101685f27de04cb49dd66ef842d72c6cda270599dd
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Last-Modified: Thu, 04 Aug 2022 05:27:46 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16594
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
minahventures.com/wp-content/plugins/red-shortcodes/js/red-shortcodes-lib.js?ver=1
192.185.91.15200 OK 458 B URL HTTP/1.1 minahventures.com/wp-content/plugins/red-shortcodes/js/red-shortcodes-lib.js?ver=1
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash fa5397faa3ba0df7deab7f253b41d78f
dd64bdb08e967a8a4582b977c12edef2232ee9c0
df3832503259d6b918d8ff33312c8535353120e4472006d7350a59bc727f764b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/red-shortcodes/js/red-shortcodes-lib.js?ver=1 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Last-Modified: Wed, 02 Apr 2014 06:21:01 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 458
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
minahventures.com/wp-content/themes/tempest/js/modernizr.custom.79639.js?ver=6.0.3
192.185.91.15200 OK 4.5 kB URL HTTP/1.1 minahventures.com/wp-content/themes/tempest/js/modernizr.custom.79639.js?ver=6.0.3
IP 192.185.91.15:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document, ASCII text, with very long lines (9163)
Hash 59cf6d1164c64c4e907d2cdfe5ed333f
b85271ee348cb7c4f6d47b12f166358d1cbfa708
db57b37179f119ca70fcc63a5ba9acf36efc4f49853c4be350ae9f82671a5d1c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/tempest/js/modernizr.custom.79639.js?ver=6.0.3 HTTP/1.1
Host: minahventures.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://minahventures.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 13:44:11 GMT
Server: Apache
Last-Modified: Wed, 02 Apr 2014 06:21:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4536
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript