Report - dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/

Report Overview

Visited public
2024-07-17 17:13:17
Tags
URL
dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/
Finishing URL
dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/
IP / ASN
63.250.43.14
#22612 NAMECHEAP-NET
Title
dskjd

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-07-16 18:12:11	2.9 kB	8.0 kB	23.36.77.32
dskjd-e3f8d1.ingress-daribow.ewp.live	unknown	unknown	No data	No data	7.9 kB	1.0 MB	63.250.43.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-07-17 17:12:48	high	72.52.81.233	Client IP	ET POLICY PE EXE or DLL Windows file download HTTP
2024-07-17 17:12:48	medium	72.52.81.233	Client IP	ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	From	Size	First Seen	Last Seen
	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/	ScriptElement	3.2 kB	2024-08-19	2024-08-19
Pretty URL dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ IP 63.250.43.14 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 16:36 Last Seen2024-08-19 16:36 Times Seen1 Hash 6bb46838938d050232523c18f878142a 976e75a162ad514cec07b9a59321655770c8e2dc 57e63d7a412a68d46b4fbe326b08a2390728a8e291addcd2d5e46157e11ffd90 Loading...

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/	ScriptElement	240 B	2024-08-19	2024-08-19
Pretty URL dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ IP 63.250.43.14 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 16:36 Last Seen2024-08-19 16:36 Times Seen1 Hash 29267d2797bfe5d79cec0a6b3b6f881f 94711bfcf3fa09b938ceb038091e9d3e132a1b8e 367d987bac9c5671ac0a4bf3df870b661668bdb1b21bebcfc54c6350963d44a3 Loading...

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/	ScriptElement	1.0 kB	2023-11-08	2025-06-07
Pretty URL dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ IP 63.250.43.14 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-08 09:30 Last Seen2025-06-07 09:00 Times Seen2390 Hash b18ab1c7cbb44f317423b92b75a5d9ac 675c70d0a356d3870095b77c6990e65017982549 66246b04584a56860ade5e12c3469df29af8824d788a619e41907521a17a3bfc Loading...

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/js/dist/interactivity.min.js?ver=6.6	ImportedModule	37 kB	2024-07-16	2025-04-26
Pretty URL dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/js/dist/interactivity.min.js?ver=6.6 IP 63.250.43.14 ASN #22612 NAMECHEAP-NET Introduced by importedModule Embedded in HTML false Observations First Seen2024-07-16 23:34 Last Seen2025-04-26 05:36 Times Seen173 Hash a2610b49e606e402d0e0e656044342ee 39f2fd1115fdb171ea318c2ca240c7fe53df79b4 429fc71a17fa7f185fd18f6c0c082c4840a6c616cfcaa6869d6ab11c90b3a178 Loading...

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/blocks/navigation/view.min.js?ver=6.6	ScriptElement	3.3 kB	2024-04-11	2025-06-07
Pretty URL dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/blocks/navigation/view.min.js?ver=6.6 IP 63.250.43.14 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 09:16 Last Seen2025-06-07 09:00 Times Seen1399 Hash 1dd354b759c9108102c93d8bae0573a1 b27ba805d3b9118edfd523f01fd6e84229d52ffd cef72ad53596109595c152da16e28c2799d53b4c151274c7b28c0324e7230f24 Loading...

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/js/wp-emoji-release.min.js?ver=6.6	ScriptElement	19 kB	2024-03-13	2025-06-07
Pretty URL dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/js/wp-emoji-release.min.js?ver=6.6 IP 63.250.43.14 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-13 16:02 Last Seen2025-06-07 10:27 Times Seen47352 Hash b976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3 Loading...

HTTP Transactions (22)

	URL	IP	Response	Size
	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash 0ba28ae3ca920c46edf9c7a1f79db3ca b96f7bd71a6b1f9e08b5a0179c66553bf42875d2 e4acaf4113d4cda75edbbae5d28e17dffb959489cd6912b854c9e87a3ab50fd2 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "E4ACAF4113D4CDA75EDBBAE5D28E17DFFB959489CD6912B854C9E87A3AB50FD2" Last-Modified: Mon, 15 Jul 2024 20:21:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11258 Expires: Wed, 17 Jul 2024 20:20:29 GMT Date: Wed, 17 Jul 2024 17:12:51 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash c827d32609521c1e56829aac4640ab87 f6721b2c6abc469be2b70d165a58c75d5637408d a951edc9fce6d26583509aba1a0d759172986da854406dc2041f25dca4eb6798 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "A951EDC9FCE6D26583509ABA1A0D759172986DA854406DC2041F25DCA4EB6798" Last-Modified: Mon, 15 Jul 2024 19:16:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11440 Expires: Wed, 17 Jul 2024 20:23:31 GMT Date: Wed, 17 Jul 2024 17:12:51 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash 9fc6673328a72199efee32208e052486 e3cd507761b95ae04da178d9b0da347fcaa5fce6 133266844822ea13f6d0ffc2eda97a79e99cea9ec4defec2812cf4a86751283a HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "133266844822EA13F6D0FFC2EDA97A79E99CEA9EC4DEFEC2812CF4A86751283A" Last-Modified: Mon, 15 Jul 2024 20:21:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17835 Expires: Wed, 17 Jul 2024 22:10:09 GMT Date: Wed, 17 Jul 2024 17:12:54 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash c5fe3e5860e9afb843ae32b8f349f4c7 78e8faf3194e82bcb4fed0d89bd1989501dd8d2a 806921e95846539e7849756068c5afcd2fb93d1ccbb7604b5d8d18805538faf5 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "806921E95846539E7849756068C5AFCD2FB93D1CCBB7604B5D8D18805538FAF5" Last-Modified: Mon, 15 Jul 2024 20:19:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5381 Expires: Wed, 17 Jul 2024 18:42:36 GMT Date: Wed, 17 Jul 2024 17:12:55 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash c5fe3e5860e9afb843ae32b8f349f4c7 78e8faf3194e82bcb4fed0d89bd1989501dd8d2a 806921e95846539e7849756068c5afcd2fb93d1ccbb7604b5d8d18805538faf5 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "806921E95846539E7849756068C5AFCD2FB93D1CCBB7604B5D8D18805538FAF5" Last-Modified: Mon, 15 Jul 2024 20:19:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5381 Expires: Wed, 17 Jul 2024 18:42:36 GMT Date: Wed, 17 Jul 2024 17:12:55 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash c5fe3e5860e9afb843ae32b8f349f4c7 78e8faf3194e82bcb4fed0d89bd1989501dd8d2a 806921e95846539e7849756068c5afcd2fb93d1ccbb7604b5d8d18805538faf5 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "806921E95846539E7849756068C5AFCD2FB93D1CCBB7604B5D8D18805538FAF5" Last-Modified: Mon, 15 Jul 2024 20:19:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5381 Expires: Wed, 17 Jul 2024 18:42:36 GMT Date: Wed, 17 Jul 2024 17:12:55 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash c5fe3e5860e9afb843ae32b8f349f4c7 78e8faf3194e82bcb4fed0d89bd1989501dd8d2a 806921e95846539e7849756068c5afcd2fb93d1ccbb7604b5d8d18805538faf5 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "806921E95846539E7849756068C5AFCD2FB93D1CCBB7604B5D8D18805538FAF5" Last-Modified: Mon, 15 Jul 2024 20:19:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5381 Expires: Wed, 17 Jul 2024 18:42:36 GMT Date: Wed, 17 Jul 2024 17:12:55 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash c5fe3e5860e9afb843ae32b8f349f4c7 78e8faf3194e82bcb4fed0d89bd1989501dd8d2a 806921e95846539e7849756068c5afcd2fb93d1ccbb7604b5d8d18805538faf5 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "806921E95846539E7849756068C5AFCD2FB93D1CCBB7604B5D8D18805538FAF5" Last-Modified: Mon, 15 Jul 2024 20:19:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5381 Expires: Wed, 17 Jul 2024 18:42:36 GMT Date: Wed, 17 Jul 2024 17:12:55 GMT Connection: keep-alive`

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/	63.250.43.14	200 OK	15 kB
URL User Request GET HTTP/2 dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ IP 63.250.43.14:443 ASN #22612 NAMECHEAP-NET Certificate IssuerSectigo Limited Subject.ingress-daribow.ewp.live FingerprintEC:D6:5D:AA:78:35:46:AF:4B:18:71:32:6F:07:24:5C:AC:76:43:7D ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT File type HTML document, Unicode text, UTF-8 text, with very long lines (20325) Size 15 kB (14788 bytes) Hash 8f74482ff9b47434ab2ac26fabdaa85d e8707d67ff1017f8f3c65f57344da4cc2b5d0909 c6842c3322e89fe69b54594734ac052ca9e65afb41bb526b9e68c23b63e7b011 HTTP Headers GET /wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ HTTP/1.1 Host: dskjd-e3f8d1.ingress-daribow.ewp.live User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Wed, 17 Jul 2024 17:12:36 GMT content-type: text/html; charset=UTF-8 vary: Accept-Encoding link: <https://dskjd-e3f8d1.ingress-daribow.ewp.live/index.php?rest_route=/>; rel="https://api.w.org/" x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block cache-control: public referrer-policy: strict-origin-when-cross-origin content-encoding: gzip x-cacheable: YES age: 23 accept-ranges: bytes x-cache: HIT content-length: 14788 strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/blocks/navigation/style.min.css?ver=6.6	63.250.43.14	200 OK	2.3 kB
URL GET HTTP/2 dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/blocks/navigation/style.min.css?ver=6.6 IP 63.250.43.14:443 ASN #22612 NAMECHEAP-NET Requested by https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ Certificate IssuerSectigo Limited Subject.ingress-daribow.ewp.live FingerprintEC:D6:5D:AA:78:35:46:AF:4B:18:71:32:6F:07:24:5C:AC:76:43:7D ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT File type ASCII text, with very long lines (16507), with no line terminators Size 2.3 kB (2301 bytes) Hash 31d1527241b3f5099a59d8cf2e505d64 3f9447f88ef4d652793fad20535ffabadd59af1a 4a8714a7f45ff22f002ebb62a7f1e91f3f14d1938e21789710cfad199561b62c HTTP Headers GET /wp-includes/blocks/navigation/style.min.css?ver=6.6 HTTP/1.1 Host: dskjd-e3f8d1.ingress-daribow.ewp.live User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Wed, 17 Jul 2024 11:46:23 GMT content-type: text/css last-modified: Tue, 16 Jul 2024 18:43:30 GMT vary: Accept-Encoding etag: W/"6696bf52-407b" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true access-control-allow-headers: User-Agent,Keep-Alive,Content-Type content-encoding: gzip x-cacheable: YES age: 19597 accept-ranges: bytes x-cache: HIT content-length: 2301 strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/blocks/image/style.min.css?ver=6.6	63.250.43.14	200 OK	1.5 kB
URL GET HTTP/2 dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/blocks/image/style.min.css?ver=6.6 IP 63.250.43.14:443 ASN #22612 NAMECHEAP-NET Requested by https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ Certificate IssuerSectigo Limited Subject.ingress-daribow.ewp.live FingerprintEC:D6:5D:AA:78:35:46:AF:4B:18:71:32:6F:07:24:5C:AC:76:43:7D ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT File type ASCII text, with very long lines (6358), with no line terminators Size 1.5 kB (1524 bytes) Hash 073fa0e62978e869bc0f33714a82ee0d 54a1fef5278908a5bbd901dea250139c6d992b6f ca014bbaf92ea0fb073e5a3b47b27b327a270625c78a60cdc5d117e09678b25b HTTP Headers GET /wp-includes/blocks/image/style.min.css?ver=6.6 HTTP/1.1 Host: dskjd-e3f8d1.ingress-daribow.ewp.live User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Wed, 17 Jul 2024 11:46:23 GMT content-type: text/css last-modified: Tue, 16 Jul 2024 18:43:30 GMT vary: Accept-Encoding etag: W/"6696bf52-18d6" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true access-control-allow-headers: User-Agent,Keep-Alive,Content-Type content-encoding: gzip x-cacheable: YES age: 19597 accept-ranges: bytes x-cache: HIT content-length: 1524 strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/blocks/navigation/view.min.js?ver=6.6	63.250.43.14	200 OK	1.1 kB
URL GET HTTP/2 dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/blocks/navigation/view.min.js?ver=6.6 IP 63.250.43.14:443 ASN #22612 NAMECHEAP-NET Requested by https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ Certificate IssuerSectigo Limited Subject.ingress-daribow.ewp.live FingerprintEC:D6:5D:AA:78:35:46:AF:4B:18:71:32:6F:07:24:5C:AC:76:43:7D ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT File type ASCII text, with very long lines (3300), with no line terminators Size 1.1 kB (1135 bytes) Hash 1dd354b759c9108102c93d8bae0573a1 b27ba805d3b9118edfd523f01fd6e84229d52ffd cef72ad53596109595c152da16e28c2799d53b4c151274c7b28c0324e7230f24 HTTP Headers GET /wp-includes/blocks/navigation/view.min.js?ver=6.6 HTTP/1.1 Host: dskjd-e3f8d1.ingress-daribow.ewp.live User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Wed, 17 Jul 2024 11:46:23 GMT content-type: application/javascript last-modified: Tue, 09 Apr 2024 11:03:28 GMT vary: Accept-Encoding etag: W/"66152080-ce4" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block access-control-allow-origin: https://dskjd-e3f8d1.ingress-daribow.ewp.live access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true access-control-allow-headers: User-Agent,Keep-Alive,Content-Type content-encoding: gzip x-cacheable: YES age: 19597 accept-ranges: bytes x-cache: HIT content-length: 1135 strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/themes/twentytwentyfour/assets/images/building-exterior.webp	63.250.43.14	200 OK	200 kB
URL GET HTTP/2 dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/themes/twentytwentyfour/assets/images/building-exterior.webp IP 63.250.43.14:443 ASN #22612 NAMECHEAP-NET Requested by https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ Certificate IssuerSectigo Limited Subject.ingress-daribow.ewp.live FingerprintEC:D6:5D:AA:78:35:46:AF:4B:18:71:32:6F:07:24:5C:AC:76:43:7D ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT File type RIFF (little-endian) data, Web/P image Size 200 kB (199724 bytes) Hash 2af7c6205191cb22f5184bfb4c8e47a3 6804bf960deaa7ce32a32d8908cff9df0b157772 7ab1e25df9f0e9825e577187a3c73ebda9c0a068d9b35d2a235b8e924b9c58e5 HTTP Headers GET /wp-content/themes/twentytwentyfour/assets/images/building-exterior.webp HTTP/1.1 Host: dskjd-e3f8d1.ingress-daribow.ewp.live User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Wed, 17 Jul 2024 11:46:23 GMT content-type: image/webp content-length: 199724 last-modified: Wed, 04 Oct 2023 17:02:26 GMT etag: "651d9aa2-30c2c" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true access-control-allow-headers: User-Agent,Keep-Alive,Content-Type x-cacheable: YES age: 19597 accept-ranges: bytes x-cache: HIT strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/themes/twentytwentyfour/assets/images/tourist-and-building.webp	63.250.43.14	200 OK	66 kB
URL GET HTTP/2 dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/themes/twentytwentyfour/assets/images/tourist-and-building.webp IP 63.250.43.14:443 ASN #22612 NAMECHEAP-NET Requested by https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ Certificate IssuerSectigo Limited Subject.ingress-daribow.ewp.live FingerprintEC:D6:5D:AA:78:35:46:AF:4B:18:71:32:6F:07:24:5C:AC:76:43:7D ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT File type RIFF (little-endian) data, Web/P image Size 66 kB (66482 bytes) Hash 7d03dae46404d16f0ee5b13cb3794a29 5d2c6cd3d8d2c412281237628073e451257716e4 0fc42e518e17733d6c766ceec3a2154896e332571f130fae27e4f20480e0980c HTTP Headers GET /wp-content/themes/twentytwentyfour/assets/images/tourist-and-building.webp HTTP/1.1 Host: dskjd-e3f8d1.ingress-daribow.ewp.live User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Wed, 17 Jul 2024 11:46:23 GMT content-type: image/webp content-length: 66482 last-modified: Wed, 04 Oct 2023 17:02:26 GMT etag: "651d9aa2-103b2" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true access-control-allow-headers: User-Agent,Keep-Alive,Content-Type x-cacheable: YES age: 19597 accept-ranges: bytes x-cache: HIT strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/themes/twentytwentyfour/assets/images/windows.webp	63.250.43.14	200 OK	126 kB
URL GET HTTP/2 dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/themes/twentytwentyfour/assets/images/windows.webp IP 63.250.43.14:443 ASN #22612 NAMECHEAP-NET Requested by https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ Certificate IssuerSectigo Limited Subject.ingress-daribow.ewp.live FingerprintEC:D6:5D:AA:78:35:46:AF:4B:18:71:32:6F:07:24:5C:AC:76:43:7D ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT File type RIFF (little-endian) data, Web/P image Size 126 kB (126244 bytes) Hash 9c8ab14e61504d8290608dd62812840d 18a3284f7b5ec684211dc355fe2ae56b30639a9e a8b72c3a34a4ac883406005c0fab343d64894c978b3dda1b6bb00eed01e9409e HTTP Headers GET /wp-content/themes/twentytwentyfour/assets/images/windows.webp HTTP/1.1 Host: dskjd-e3f8d1.ingress-daribow.ewp.live User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Wed, 17 Jul 2024 11:46:23 GMT content-type: image/webp content-length: 126244 last-modified: Wed, 04 Oct 2023 17:02:26 GMT etag: "651d9aa2-1ed24" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true access-control-allow-headers: User-Agent,Keep-Alive,Content-Type x-cacheable: YES age: 19597 accept-ranges: bytes x-cache: HIT strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/themes/twentytwentyfour/assets/fonts/inter/Inter-VariableFont_slnt,wght.woff2	63.250.43.14	200 OK	327 kB
URL GET HTTP/2 dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/themes/twentytwentyfour/assets/fonts/inter/Inter-VariableFont_slnt,wght.woff2 IP 63.250.43.14:443 ASN #22612 NAMECHEAP-NET Requested by https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ Certificate IssuerSectigo Limited Subject.ingress-daribow.ewp.live FingerprintEC:D6:5D:AA:78:35:46:AF:4B:18:71:32:6F:07:24:5C:AC:76:43:7D ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 326628, version 1.0 Size 327 kB (326628 bytes) Hash 9c9cff93a0d5a209225c1bae18d80a9d 40546dbfd5c467c3257d8f3a4ad8af0d9995aeb6 e931823ffd0b6cfd1624e3a7c1c49861ed3420297862e727f07e04c8be1cc89b HTTP Headers GET /wp-content/themes/twentytwentyfour/assets/fonts/inter/Inter-VariableFont_slnt,wght.woff2 HTTP/1.1 Host: dskjd-e3f8d1.ingress-daribow.ewp.live User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Referer: https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Wed, 17 Jul 2024 11:46:23 GMT content-type: font/woff2 content-length: 326628 last-modified: Tue, 26 Sep 2023 16:46:22 GMT etag: "65130ade-4fbe4" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block access-control-allow-origin: https://dskjd-e3f8d1.ingress-daribow.ewp.live access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true access-control-allow-headers: User-Agent,Keep-Alive,Content-Type x-cacheable: YES age: 19597 accept-ranges: bytes x-cache: HIT strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/js/dist/interactivity.min.js?ver=6.6	63.250.43.14	200 OK	14 kB
URL GET HTTP/2 dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/js/dist/interactivity.min.js?ver=6.6 IP 63.250.43.14:443 ASN #22612 NAMECHEAP-NET Requested by https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ Certificate IssuerSectigo Limited Subject.ingress-daribow.ewp.live FingerprintEC:D6:5D:AA:78:35:46:AF:4B:18:71:32:6F:07:24:5C:AC:76:43:7D ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (36651) Size 14 kB (13553 bytes) Hash a2610b49e606e402d0e0e656044342ee 39f2fd1115fdb171ea318c2ca240c7fe53df79b4 429fc71a17fa7f185fd18f6c0c082c4840a6c616cfcaa6869d6ab11c90b3a178 HTTP Headers GET /wp-includes/js/dist/interactivity.min.js?ver=6.6 HTTP/1.1 Host: dskjd-e3f8d1.ingress-daribow.ewp.live User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/blocks/navigation/view.min.js?ver=6.6 DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Wed, 17 Jul 2024 11:46:23 GMT content-type: application/javascript last-modified: Tue, 16 Jul 2024 18:43:30 GMT vary: Accept-Encoding etag: W/"6696bf52-8f4e" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block access-control-allow-origin: https://dskjd-e3f8d1.ingress-daribow.ewp.live access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true access-control-allow-headers: User-Agent,Keep-Alive,Content-Type content-encoding: gzip x-cacheable: YES age: 19597 accept-ranges: bytes x-cache: HIT content-length: 13553 strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/themes/twentytwentyfour/assets/fonts/cardo/cardo_italic_400.woff2	63.250.43.14	200 OK	105 kB
URL GET HTTP/2 dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/themes/twentytwentyfour/assets/fonts/cardo/cardo_italic_400.woff2 IP 63.250.43.14:443 ASN #22612 NAMECHEAP-NET Requested by https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ Certificate IssuerSectigo Limited Subject.ingress-daribow.ewp.live FingerprintEC:D6:5D:AA:78:35:46:AF:4B:18:71:32:6F:07:24:5C:AC:76:43:7D ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 105184, version 1.0 Size 105 kB (105184 bytes) Hash f92d2db85594215e2a4d135561897188 0fdff68c4027cf421d605798a1de46a061d160a3 c3b2ff62e3ac4219811de0c709bd0d81d962a88dc87a598ac19b20f58f960136 HTTP Headers GET /wp-content/themes/twentytwentyfour/assets/fonts/cardo/cardo_italic_400.woff2 HTTP/1.1 Host: dskjd-e3f8d1.ingress-daribow.ewp.live User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Referer: https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Wed, 17 Jul 2024 11:46:23 GMT content-type: font/woff2 content-length: 105184 last-modified: Tue, 26 Sep 2023 16:46:22 GMT etag: "65130ade-19ae0" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block access-control-allow-origin: https://dskjd-e3f8d1.ingress-daribow.ewp.live access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true access-control-allow-headers: User-Agent,Keep-Alive,Content-Type x-cacheable: YES age: 19597 accept-ranges: bytes x-cache: HIT strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/themes/twentytwentyfour/assets/fonts/cardo/cardo_normal_400.woff2	63.250.43.14	200 OK	146 kB
URL GET HTTP/2 dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/themes/twentytwentyfour/assets/fonts/cardo/cardo_normal_400.woff2 IP 63.250.43.14:443 ASN #22612 NAMECHEAP-NET Requested by https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ Certificate IssuerSectigo Limited Subject.ingress-daribow.ewp.live FingerprintEC:D6:5D:AA:78:35:46:AF:4B:18:71:32:6F:07:24:5C:AC:76:43:7D ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 146060, version 1.0 Size 146 kB (146060 bytes) Hash b782b01afc9646c7259701b07e2a71d0 b86a6f0bf3fb4777160165dfe37ca4e99b90216e aa8042a77500cfe4a4893e2b7edbd54dded92768e40418fa0665bec8aae9ae18 HTTP Headers GET /wp-content/themes/twentytwentyfour/assets/fonts/cardo/cardo_normal_400.woff2 HTTP/1.1 Host: dskjd-e3f8d1.ingress-daribow.ewp.live User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Referer: https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Wed, 17 Jul 2024 11:46:23 GMT content-type: font/woff2 content-length: 146060 last-modified: Tue, 26 Sep 2023 16:46:22 GMT etag: "65130ade-23a8c" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block access-control-allow-origin: https://dskjd-e3f8d1.ingress-daribow.ewp.live access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true access-control-allow-headers: User-Agent,Keep-Alive,Content-Type x-cacheable: YES age: 19597 accept-ranges: bytes x-cache: HIT strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2

	dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/js/wp-emoji-release.min.js?ver=6.6	63.250.43.14	200 OK	5.1 kB
URL GET HTTP/2 dskjd-e3f8d1.ingress-daribow.ewp.live/wp-includes/js/wp-emoji-release.min.js?ver=6.6 IP 63.250.43.14:443 ASN #22612 NAMECHEAP-NET Requested by https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ Certificate IssuerSectigo Limited Subject.ingress-daribow.ewp.live FingerprintEC:D6:5D:AA:78:35:46:AF:4B:18:71:32:6F:07:24:5C:AC:76:43:7D ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (15752) Size 5.1 kB (5056 bytes) Hash b976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3 HTTP Headers GET /wp-includes/js/wp-emoji-release.min.js?ver=6.6 HTTP/1.1 Host: dskjd-e3f8d1.ingress-daribow.ewp.live User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Wed, 17 Jul 2024 11:46:23 GMT content-type: application/javascript last-modified: Tue, 13 Feb 2024 14:36:07 GMT vary: Accept-Encoding etag: W/"65cb7e57-4926" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT access-control-allow-credentials: true access-control-allow-headers: User-Agent,Keep-Alive,Content-Type content-encoding: gzip x-cacheable: YES age: 19598 accept-ranges: bytes x-cache: HIT content-length: 5056 strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2

	dskjd-e3f8d1.ingress-daribow.ewp.live/favicon.ico	63.250.43.14	204 No Content	0 B
URL GET HTTP/2 dskjd-e3f8d1.ingress-daribow.ewp.live/favicon.ico IP 63.250.43.14:443 ASN #22612 NAMECHEAP-NET Requested by https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ Certificate IssuerSectigo Limited Subject.ingress-daribow.ewp.live FingerprintEC:D6:5D:AA:78:35:46:AF:4B:18:71:32:6F:07:24:5C:AC:76:43:7D ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /favicon.ico HTTP/1.1 Host: dskjd-e3f8d1.ingress-daribow.ewp.live User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://dskjd-e3f8d1.ingress-daribow.ewp.live/wp-content/plugins/Transfert/deviswetransfer%202/deviswetransfer%202/log-error.php/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 204 No Content server: nginx date: Tue, 16 Jul 2024 19:15:38 GMT expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-type: image/png age: 79043 x-cache: HIT strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash d69acaa73161ea261cea420c9548c854 1f7cab04c4264ca503bb3e2d8f1d838c226f35c2 e4e3975a941c93fda56279b3918d81448b74cd06d2a2bd0280dbcf8e58712c1d HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "E4E3975A941C93FDA56279B3918D81448B74CD06D2A2BD0280DBCF8E58712C1D" Last-Modified: Mon, 15 Jul 2024 19:16:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20126 Expires: Wed, 17 Jul 2024 22:48:33 GMT Date: Wed, 17 Jul 2024 17:13:07 GMT Connection: keep-alive`

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (22)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN