r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3d0727e32cd103ddd4b73f28c81758aa
197a7bf43d63723fc532c23c6dced68d5cc36652
d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3070
Expires: Sun, 13 Nov 2022 01:59:44 GMT
Date: Sun, 13 Nov 2022 01:08:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5076aaa9f4ccd602540286ce0590cb9a
bbf7936a8413a564478971d9e19beb6338cbc869
00e3b967c579b0ccf709b78d497a43d95646b16eb50925fef1e2694c58f290b2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "00E3B967C579B0CCF709B78D497A43D95646B16EB50925FEF1E2694C58F290B2"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3467
Expires: Sun, 13 Nov 2022 02:06:21 GMT
Date: Sun, 13 Nov 2022 01:08:34 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash de470c6bab46e7c4b7cc69f392900fe7
189e4dcc4c2b8bf1f050e06bd68bce8a99618918
86f57134ddebd23a25615dc4d59c4b1ca8919e3e0495e1f006cbe7c0f39aa27e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2768
Cache-Control: max-age=122929
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:08:34 GMT
Etag: "636f75f3-1d7"
Expires: Mon, 14 Nov 2022 11:17:23 GMT
Last-Modified: Sat, 12 Nov 2022 10:31:15 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: BFoZBWjgYy6uuuV9afuKrwr2YEbf9IZj90xWiWBL1fCnFuGXgyV6WLxvG7eEw+mL8IwK7Gavt9E=
x-amz-request-id: MBDDXBMCMY40RV7R
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 13 Nov 2022 00:13:12 GMT
age: 3322
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 13 Nov 2022 00:44:05 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1469
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 13 Nov 2022 01:08:34 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
gradacode.co.ke/images/hij/deslibt.zip
66.29.147.146301 Moved Permanently 0 B URL HTTP/1.1 gradacode.co.ke/images/hij/deslibt.zip
IP 66.29.147.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /images/hij/deslibt.zip HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 13 Nov 2022 01:08:34 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://gradacode.co.ke/images/hij/deslibt.zip
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 13 Nov 2022 00:44:48 GMT
cache-control: public,max-age=3600
age: 1426
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ae51f1958554de4457c22a7d5a9ba8b6
173e90a8c6ee36b7ec569dbea47436a90d7e7c76
dc43a04e1e26243f63a8e628f2ebcb23a9527fd4bc40dc6d1d61879b0f95bb21
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5078
Cache-Control: max-age=120176
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:08:34 GMT
Etag: "636f622c-1d7"
Expires: Mon, 14 Nov 2022 10:31:30 GMT
Last-Modified: Sat, 12 Nov 2022 09:06:52 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.35.74.102101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.74.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /8rtx/zpqTTeT+L0iXMZJA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AFJ80gI2xVTuo/LuQjAGsZvW4sM=
gradacode.co.ke/images/hij/deslibt.zip
66.29.147.146404 Not Found 11 kB URL HTTP/1.1 gradacode.co.ke/images/hij/deslibt.zip
IP 66.29.147.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash ea0c3e751ae65fc658b2055f4d66b3ab
eeb4cce3619bdbd606e096d6feb71db3b257af20
e961f0c1ca3413cdc7bb826e67f64ba0e0005e7e9f269d199f4f0ed6b8f2bcdd
Analyzer Verdict Alert fortinet Phishing
GET /images/hij/deslibt.zip HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Sun, 13 Nov 2022 01:08:34 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://gradacode.co.ke/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10574
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
gradacode.co.ke/wp-includes/css/dist/block-library/style.min.css?ver=6.1
66.29.147.146200 OK 12 kB URL HTTP/1.1 gradacode.co.ke/wp-includes/css/dist/block-library/style.min.css?ver=6.1
IP 66.29.147.146:0
File type ASCII text, with very long lines (47826)
Hash 3b8c4b8f6260a403d6206f241159bb38
4ccf913d00b5b7f54b195883578c678ca92457ed
1e4d3d74bdad2b40969b13402b41765b074c8fbd0e2587840e2aa70a0c3c9121
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:35 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 02:13:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12505
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/formcraft3/dist/formcraft-common.css?ver=3.9.3
66.29.147.146200 OK 5.7 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/formcraft3/dist/formcraft-common.css?ver=3.9.3
IP 66.29.147.146:0
File type ASCII text, with very long lines (28249), with no line terminators
Hash 70f0d41796ff637a11ec6553de9bd00b
5306d45ca27da2be307511b7b97c6302df1a8505
33f60dca6cce5c4675e188eed17d045795c3fc0f2a4421c852b5f831d74b25a6
GET /wp-content/plugins/formcraft3/dist/formcraft-common.css?ver=3.9.3 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:35 GMT
Server: Apache
Last-Modified: Sun, 17 Jul 2022 21:35:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5657
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.5.1
66.29.147.146200 OK 2.0 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.5.1
IP 66.29.147.146:0
File type ASCII text, with very long lines (10435), with no line terminators
Hash 38b1f483d4bf6b1548990385c8673746
1668edb02c5170be308368292a4c12033d0a42f4
98138d83d7cb12e99802ba034b400a67e0d7b6e378d8bcd1b4d9f4fe44ce1111
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.5.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:35 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1962
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-includes/css/classic-themes.min.css?ver=1
66.29.147.146200 OK 189 B URL HTTP/1.1 gradacode.co.ke/wp-includes/css/classic-themes.min.css?ver=1
IP 66.29.147.146:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:35 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 02:13:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 189
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
66.29.147.146200 OK 972 B URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 66.29.147.146:0
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:35 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2022 11:21:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 972
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/owl-carousel/owl.css?ver=1650032799
66.29.147.146200 OK 1.4 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/owl-carousel/owl.css?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 8756860a467a96c5298499aa9203f747
d65d9ce1fd5a51793b4c27f25ecc16a7f08427bd
7409a237de8a4c61d2aa6c7c360749141c5dd6374785315c663ee89aa6a9c74f
GET /wp-content/plugins/linoor-addon/assets/vendors/owl-carousel/owl.css?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:35 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1396
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/formcraft3/dist/form.css?ver=3.9.3
66.29.147.146200 OK 8.8 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/formcraft3/dist/form.css?ver=3.9.3
IP 66.29.147.146:0
File type ASCII text, with very long lines (64566), with no line terminators
Hash 7c08c8ab3d7d12ea96a31a617d9f7b5b
2b2124cfef292686c198c5326abdcd784a0d1acd
8edaf8f91899d115b89aecb8993e141e1b8edbb234363dd62b543bbae4a1edd5
GET /wp-content/plugins/formcraft3/dist/form.css?ver=3.9.3 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:35 GMT
Server: Apache
Last-Modified: Sun, 17 Jul 2022 21:35:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8791
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bc49d7a510846ce4c52fc2bcf19c591c
42189d9ddeba55c15da20ab02c8ccad4a8ad7ae2
86ce259086857d53f246aa21f8cb5dc2be85435601b687f727d3a5a2e38ec406
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:08:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jarallax/jarallax.css?ver=1650032799
66.29.147.146200 OK 208 B URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jarallax/jarallax.css?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 0fcb4e64095495e81fd079a766c581c1
aff75f7cd8b8975927cf063c1287e889a6dd7f6f
9cbd1c33d22ee8c38d76044d25c0fa54bdcf5f169fbafcedcda1c71b459e36e2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/jarallax/jarallax.css?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:35 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 208
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.5.1
66.29.147.146200 OK 24 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.5.1
IP 66.29.147.146:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 0a8a9bda9213f021de7793cfe07476de
3394877b16376764353c39836a647779204bb4e0
983fc72c739041ac9128ed2211333fc07251b2bb061112c2795cd6fbb1c12baa
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.5.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:35 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 24143
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/animate/animate.min.css?ver=1650032799
66.29.147.146200 OK 4.7 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/animate/animate.min.css?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 1184ff44c73559b450a971f3dab378c3
74279c495c0bb2b78425f204578b426a6f5c39e7
13fe8d0676c888a0ce8805b1154b10a30792d6f456b042f56396af8a0020f87a
GET /wp-content/plugins/linoor-addon/assets/vendors/animate/animate.min.css?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:35 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4734
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4b46bbcd35c85c4678b0e3e409bba3bc
bb0705335e28414345ad5fcdd61104cf2fbbbbc4
6c3df7e6d0a8491fe24c03df2ccba059ba2f84155a680a4a22f217d3870cff95
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:08:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/reey-font/stylesheet.css?ver=1650032799
66.29.147.146200 OK 201 B URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/reey-font/stylesheet.css?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 80106e16365cd7af82739488fa5ea573
068fed084d9ecfa75569eb18dac6e7992ba5a0f5
41512ecdbd541016f44036c6a57a8edf1e31dfb8c2f4f71168bfd17b1939139e
GET /wp-content/plugins/linoor-addon/assets/vendors/reey-font/stylesheet.css?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:35 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 201
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/swiper/swiper.min.css?ver=1650032799
66.29.147.146200 OK 4.1 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/swiper/swiper.min.css?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (13425), with CRLF line terminators
Hash 3e3ae9dec63564134c285ca0d3a0f6c5
ac2fd6e049fe25d9c569be877a3d79e52a8e650a
b69b4bddd8dfb765d2b28abeec12af360d7a481a63a880ae1d94cb0c3210fa9e
GET /wp-content/plugins/linoor-addon/assets/vendors/swiper/swiper.min.css?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:35 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4136
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-fancybox/jquery.fancybox.min.css?ver=1650032799
66.29.147.146200 OK 3.2 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-fancybox/jquery.fancybox.min.css?ver=1650032799
IP 66.29.147.146:0
File type Unicode text, UTF-8 text, with very long lines (13734), with no line terminators
Hash 4aa83282cfd78eff0eb96f1ef859c41c
2dad526069f66371f4f390c8bd451116e7a3681e
c111dffb462e77cb52ee7474752b18e01ce935d5295e212c9031f42cf30326f5
GET /wp-content/plugins/linoor-addon/assets/vendors/jquery-fancybox/jquery.fancybox.min.css?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:35 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3155
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4b46bbcd35c85c4678b0e3e409bba3bc
bb0705335e28414345ad5fcdd61104cf2fbbbbc4
6c3df7e6d0a8491fe24c03df2ccba059ba2f84155a680a4a22f217d3870cff95
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:08:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-ui/jquery-ui.css?ver=1650032799
66.29.147.146200 OK 8.5 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-ui/jquery-ui.css?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (2363), with CRLF line terminators
Hash abc8dad74008d7968b752f34f5bd21f1
ace9d0af648f2b83f1517e00e71b98bdba7f09f3
830260c7b60c5aab137929ec38af46561029e862644836a87fea5bce02bedb17
GET /wp-content/plugins/linoor-addon/assets/vendors/jquery-ui/jquery-ui.css?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8461
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/themes/linoor/assets/vendors/linoor-icons/css/linoor-icons.css?ver=1.1
66.29.147.146200 OK 424 B URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/vendors/linoor-icons/css/linoor-icons.css?ver=1.1
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 23b33cac8b5fc4a54596b77263e559b1
0d46e9bc39c95da1214f98a3b24b8ab44803002e
dc17ff81bbc06377f6a4fa97c058f4d7e35feffe3a514d7be2cce375bab734c4
GET /wp-content/themes/linoor/assets/vendors/linoor-icons/css/linoor-icons.css?ver=1.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 424
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/themes/linoor/assets/vendors/flaticons/css/flaticon.css?ver=1.1
66.29.147.146200 OK 2.6 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/vendors/flaticons/css/flaticon.css?ver=1.1
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 777aa8d903a1fe571affd0f5ef5ccec1
bea42619cacca8a5800efcba6d1a4255a983dfd8
0877fa34a94513a288e5853454c5d7383a99ad86d960feaf8a1dcd35f71b37cd
GET /wp-content/themes/linoor/assets/vendors/flaticons/css/flaticon.css?ver=1.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2559
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/themes/linoor/assets/vendors/fontawesome/css/all.min.css?ver=5.15.1
66.29.147.146200 OK 13 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/vendors/fontawesome/css/all.min.css?ver=5.15.1
IP 66.29.147.146:0
File type ASCII text, with very long lines (59158), with CRLF line terminators
Hash 8534402e156c2d4d91c185199c7e40bc
2fc5af81adbd0061e63ca8ee6539e62ea366494c
1ee62898304fa24c58741ef850927ebfa24027df78452c578550c82e4f23ba00
GET /wp-content/themes/linoor/assets/vendors/fontawesome/css/all.min.css?ver=5.15.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12873
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/themes/linoor/style.css?ver=1668301715
66.29.147.146200 OK 4.8 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/style.css?ver=1668301715
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 87b916b0d3751eed15e679a99571879b
c9d2ab9eaf3692a1630328671d9e604264e002c8
a82915fe1f3fd48b510e726478dfb9db9ee88bdb96a1a4f3a9a558cba78f59a8
GET /wp-content/themes/linoor/style.css?ver=1668301715 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Sun, 06 Feb 2022 09:38:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4777
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16341
Expires: Sun, 13 Nov 2022 05:40:57 GMT
Date: Sun, 13 Nov 2022 01:08:36 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=Rubik%3A300%2C400%2C700%7CTeko%3A300%2C400%2C500%2C600%2C700%26subset%3Dlatin%2Clatin-ext
142.250.74.10200 OK 1.2 kB URL HTTP/2 fonts.googleapis.com/css?family=Rubik%3A300%2C400%2C700%7CTeko%3A300%2C400%2C500%2C600%2C700%26subset%3Dlatin%2Clatin-ext
IP 142.250.74.10:0
Hash 7415498c4c50fbed547823519ab154aa
439a20908a75219c380ae7c10e22b54d84faf18d
40b5a5fd35af59736ef0206117db4f07c232239633dc27701772722003706dc0
GET /css?family=Rubik%3A300%2C400%2C700%7CTeko%3A300%2C400%2C500%2C600%2C700%26subset%3Dlatin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 13 Nov 2022 01:08:35 GMT
date: Sun, 13 Nov 2022 01:08:35 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16341
Expires: Sun, 13 Nov 2022 05:40:57 GMT
Date: Sun, 13 Nov 2022 01:08:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16341
Expires: Sun, 13 Nov 2022 05:40:57 GMT
Date: Sun, 13 Nov 2022 01:08:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16341
Expires: Sun, 13 Nov 2022 05:40:57 GMT
Date: Sun, 13 Nov 2022 01:08:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a88ef61-5cb3-45de-81c6-9e5627c95213.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a88ef61-5cb3-45de-81c6-9e5627c95213.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash efa90e098f0535727c631d3099650c7c
77dd6b28a62b7058d599bd56a207f10f7b6e149b
a9ff915a87d5d0b212652946f78e7d5e0e1bd20cf721ea2b4b1db79163094aa4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a88ef61-5cb3-45de-81c6-9e5627c95213.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7180
x-amzn-requestid: 59aeee14-0e74-4457-84b3-ca67c1ebc9a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bUWVKGwlIAMF48g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636b3754-19fe3bf61eae4fc43c09804d;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 05:15:00 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: 6k6VT5D68lwHpI9s0e7emNYXaswayEDjhFOUA9dswIrY-VS0ihR3Fg==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 05:37:43 GMT
age: 70253
etag: "77dd6b28a62b7058d599bd56a207f10f7b6e149b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80441337-327d-4d34-9fe8-53269c39ac18.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80441337-327d-4d34-9fe8-53269c39ac18.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26249508ef18eac51cf62cf6e90339a4
a9922959c532dd26f21bda4f74ee1fa8496e862e
25075ef6337bae8e60412cdca98afbae6aca61d889aadce4cbad4a8522f4c4b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80441337-327d-4d34-9fe8-53269c39ac18.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7867
x-amzn-requestid: e05d4978-6f46-4395-8121-4d969a222328
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bgfLqFWIoAMF01A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6370124a-4033150d0180e56e2965e26e;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 21:38:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: YDkJ7OIcS3FiDPufRTj5VtL5CMxbNN2o2Zq50QQ9UNeDw4uE4j3jrw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 21:54:29 GMT
age: 11647
etag: "a9922959c532dd26f21bda4f74ee1fa8496e862e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa23e03e8-7a4b-473b-801f-39322d374478.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa23e03e8-7a4b-473b-801f-39322d374478.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 31a009393081c25d9afbde558a278ebf
bf8de6c00f579baa320456bd0e79ab80978008bc
90e81f6a10d3dbc56a45e9cfd65dbcd6bddf9e3ab526b4cca270bc2f26404950
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa23e03e8-7a4b-473b-801f-39322d374478.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5149
x-amzn-requestid: f9b58134-4474-4ba5-bc90-368568c30eb4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNaeqGAZoAMF9Ww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6368712a-4f7bbb4743f15dc2471fba0c;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 02:44:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: R-wKxHkN3mhPg5hGlsMSmENk1tERrZrO83Ohro0OmuKUQ5bC2tgTiw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 04:57:39 GMT
age: 72657
etag: "bf8de6c00f579baa320456bd0e79ab80978008bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25a71d85-6d34-4bb8-8293-97875c72aa74.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25a71d85-6d34-4bb8-8293-97875c72aa74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 221170365ec0ab6bb773472933bccb4e
2f8d80c36b9d52bbca60ddc946176b8bca2f05f5
c1fedf00b8a0defa4fada242cf3e28c90937bf5f1c10145aebb3494c5a0b5066
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25a71d85-6d34-4bb8-8293-97875c72aa74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9540
x-amzn-requestid: 69c339ec-ac3c-49a4-8029-01d21a7f50b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: be3itHj1oAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636f6c77-79d478af722a4ecf50a381a9;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 09:50:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uxbx0xudJDX6_72_MTyyW6R2FXmdfV_5APgpZhqG-6QIeE_yPdGxSg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 22:05:19 GMT
age: 10997
etag: "2f8d80c36b9d52bbca60ddc946176b8bca2f05f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9926a98a-2b93-4829-9b28-b4707516a8e8.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9926a98a-2b93-4829-9b28-b4707516a8e8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9a6018cd2fd15be8f5900200db6ee55d
cf8d18b10882acd31d66cba637847dffddd3ee4f
028ccc34cee66ed6c6f1dbb73280b1afdabcca5c25115e5c373aa109858bd853
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9926a98a-2b93-4829-9b28-b4707516a8e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5927
x-amzn-requestid: 2577e1f4-7fc4-4547-b597-27e9466d41f7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bUo-mH0joAMF2Bw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636b552a-4aba332f63379afc49870e2b;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 07:22:18 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: h421ALNKWMAmu3yVBThECpUM97caQrg9bzqpoOshqVlpCoLFnQAUrw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 09:53:04 GMT
age: 54932
etag: "cf8d18b10882acd31d66cba637847dffddd3ee4f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8995ae3b-9ed6-4d82-aeda-bce16829dd81.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8995ae3b-9ed6-4d82-aeda-bce16829dd81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8bb9138fde16b4052595c61c9aae69a1
eba0fcacc61aed15fe7c4aa11a951e1b681f08d2
11b98e67b1e869b2456ace0e07aa6f5019d15f43c8132f482c76e322282d8e63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8995ae3b-9ed6-4d82-aeda-bce16829dd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7018
x-amzn-requestid: 35b9ea76-0024-42a6-9561-f2f87fa09f70
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bHcAoGLUIAMFkVA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63660d37-29eb6d7d6379fff612a6a593;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 07:13:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _Lgx5YJ1SaHAGB2vH0VIXW7Hu6ZIjdvyLjo3XFasEXqUNqCeKzLqJQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 04:07:30 GMT
age: 75666
etag: "eba0fcacc61aed15fe7c4aa11a951e1b681f08d2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-responsive.css?ver=1668301715
66.29.147.146200 OK 3.9 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-responsive.css?ver=1668301715
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 967f36a750f4460abf626416acef4fbc
d4ce5eca0c1a91600997b56345c94d567c2376e5
80c274c2fd71014bd9d3021d81b89ff4334ff1abd7d5a1cacb896dc53d8a2898
GET /wp-content/themes/linoor/assets/css/linoor-responsive.css?ver=1668301715 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3940
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-woocommerce.css?ver=1668301715
66.29.147.146200 OK 7.5 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-woocommerce.css?ver=1668301715
IP 66.29.147.146:0
File type ASCII text, with very long lines (537), with CRLF line terminators
Hash 5f32e362a11953013fcf8bf1da27d8ac
bc9aa268a32f84801ffec8fa0b1689bc605fc155
91a9857d564f427704652d4868a962c86d94bf02a6f8caf518c2f2a2306e16e2
GET /wp-content/themes/linoor/assets/css/linoor-woocommerce.css?ver=1668301715 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7466
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/themes/linoor/assets/vendors/bootstrap/css/bootstrap.min.css?ver=4.5.3
66.29.147.146200 OK 24 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/vendors/bootstrap/css/bootstrap.min.css?ver=4.5.3
IP 66.29.147.146:0
File type ASCII text, with very long lines (65321), with CRLF line terminators
Hash 9433b8473b4945b7f3d8b978bd225a25
eaf932137ab66de799ecbdd9e93fd3b5d9205cc9
6fb1096dacf1da0e49bb137af455a6b2bceece0fc41faa86b10b202f75f82a3a
GET /wp-content/themes/linoor/assets/vendors/bootstrap/css/bootstrap.min.css?ver=4.5.3 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 23921
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1
66.29.147.146200 OK 511 B URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1
IP 66.29.147.146:0
File type ASCII text, with very long lines (404)
Hash 302a5024eef2298b0631b58ca088896c
5a7b920b5a16b7c8cf931d6499d1002085bd27ab
01e305e1d661cc656726543bfe6d86711a0a032032073ada718346f0b44d498d
GET /wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 17:17:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 511
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
66.29.147.146200 OK 4.2 kB URL HTTP/1.1 gradacode.co.ke/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 66.29.147.146:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 11:36:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4169
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8
66.29.147.146200 OK 14 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8
IP 66.29.147.146:0
File type ASCII text, with very long lines (65497)
Hash 4d4b08bf7bf712934df004376bb64556
113b4e6e9459e7344f84e5a16ec99c3b0ecc43ea
b9e323c910c748180ac8ca55e5eea93d2d1b56753fa567dd9510a5178550673a
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 14108
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-main.css?ver=1668301715
66.29.147.146200 OK 61 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-main.css?ver=1668301715
IP 66.29.147.146:0
File type assembler source, ASCII text, with very long lines (535), with CRLF, CR line terminators
Hash d69d658c81ea4d375c3c6a9aa3426cab
784d0393fa3f7722667e26b8547b471c3437a81c
6341ea84b58dea914f13cd2ddcc8afc838f1b5c221d78d0206e406cdb3efc605
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/linoor/assets/css/linoor-main.css?ver=1668301715 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 60577
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/uploads/elementor/css/post-293.css?ver=1665561894
66.29.147.146200 OK 314 B URL HTTP/1.1 gradacode.co.ke/wp-content/uploads/elementor/css/post-293.css?ver=1665561894
IP 66.29.147.146:0
File type ASCII text, with very long lines (1080), with no line terminators
Hash 05e008abd5af3881052e6b95dc2ac1cc
1c12569fde48ac98cd970e28c938adc434e581ec
1f6ee32b28a00e8d711d4139f1b7b082e67568edc383bdcdcb05797ebd1ad2af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-293.css?ver=1665561894 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 314
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
66.29.147.146200 OK 4.0 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 66.29.147.146:0
File type ASCII text, with very long lines (19233)
Hash 24dc15839234f4dbd06f677098762e1c
a285318fa3f4d9a1491f523f080cd32e1df12315
016fdb3d864bb8491d6450906f97c734548f76ca9ead4b13b92dc7112c5568c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3961
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
66.29.147.146200 OK 31 kB URL HTTP/1.1 gradacode.co.ke/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 66.29.147.146:0
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 02:13:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30995
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/uploads/elementor/css/post-12.css?ver=1665561894
66.29.147.146200 OK 356 B URL HTTP/1.1 gradacode.co.ke/wp-content/uploads/elementor/css/post-12.css?ver=1665561894
IP 66.29.147.146:0
File type ASCII text, with very long lines (1118), with no line terminators
Hash bebebef0c4398346a821be84da267122
f12f42cb85085349b7f27754e0d95921726be302
a83649777e5fd4efa17d3288e1e9d1226cc429de5fdd07fa67d64f0c7fafcc3f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-12.css?ver=1665561894 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 356
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/uploads/elementor/css/global.css?ver=1665561894
66.29.147.146200 OK 834 B URL HTTP/1.1 gradacode.co.ke/wp-content/uploads/elementor/css/global.css?ver=1665561894
IP 66.29.147.146:0
File type ASCII text, with very long lines (6697)
Hash 2293ed79272563f3da94cb6591e19a1f
e5168d2f62c954f85611089ea8e6be9241c37cd9
977634309dfe776c26f96766e342a63b53b66d187191b80131237362879fae05
GET /wp-content/uploads/elementor/css/global.css?ver=1665561894 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 834
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
66.29.147.146200 OK 2.9 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 66.29.147.146:0
File type ASCII text, with very long lines (9680), with no line terminators
Hash 7c2c4ebd10adb73367b5c5f0e1e5d3ce
a67e4fd0e3e7452e74b22517ba924b58307d7758
5244443e699788a134cc77adfc3fd18f03386df5fe49e6c82b057387ba4d0ebd
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2022 11:21:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2914
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:08:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gradacode.co.ke/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
66.29.147.146200 OK 3.9 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 66.29.147.146:0
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash 7ef755c2700783f9eae63fc539149a18
e57c0c5ceb5e2fbf1aaad44aad6319f8b26b69a1
95c808afbeaf569865125c132b69df4a68bca03fd6b792d38ef9a0e341dbf06b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2022 11:21:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3934
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.0.0
66.29.147.146200 OK 3.5 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.0.0
IP 66.29.147.146:0
File type ASCII text, with very long lines (9115)
Hash 4eb090d1d9263b041ec90bac1a6e6e8f
0b0a01684ed1e07a41a9f6eb02423738a68f8b12
f621d8d1bdc2c1508699ef2510c1b35122fef1ee7da3ed10fe66a881a6d882b2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.0.0 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3499
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.0.0
66.29.147.146200 OK 1.1 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.0.0
IP 66.29.147.146:0
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 0d03578b274ddfa19d4be46ff5d4f242
5d5322d264d2219c50b60abcf9625533088afbf2
342455e97f9438a6f336423fa4f6fc6dc59da5d84c23f4d39ebc5425aa9ada27
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.0.0 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1086
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdQhfsCRgqA.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdQhfsCRgqA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 12920, version 1.0\012- data
Hash 4e9bb95d9d1d1977ad49de19cc440798
f329c5954156fda7ad91aca3f7176825e1deeaa7
7ca4f53e3c51595a3147ed5b6c325af58291810132602f0b2bc9305faeea770b
GET /s/teko/v15/LYjCdG7kmE0gdQhfsCRgqA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gradacode.co.ke
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 23:57:39 GMT
expires: Thu, 09 Nov 2023 23:57:39 GMT
cache-control: public, max-age=31536000
age: 263457
last-modified: Wed, 27 Apr 2022 16:12:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:08:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:08:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:08:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:08:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdXxZsCRgqA.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdXxZsCRgqA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 13432, version 1.0\012- data
Hash c4aefb21b70da4663e45a84381b29eef
10a6a8bceff6e4be74fbb6cc55124c90601724a0
47d687c94921ed1291e73ae7554abfc412c13c46a417395a95a2957202e2b04f
GET /s/teko/v15/LYjCdG7kmE0gdXxZsCRgqA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gradacode.co.ke
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 23:57:56 GMT
expires: Thu, 09 Nov 2023 23:57:56 GMT
cache-control: public, max-age=31536000
age: 263440
last-modified: Wed, 27 Apr 2022 16:18:17 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 13324, version 1.0\012- data
Hash b4082c888eefa2dca3fe2c9d46a87180
05aeb6c58175f659fe59eaca5a9d3735dd0530e3
352ad1513eeaeec51060f01d5bed32345862ec4d9c0802b81e0a47885951e4b6
GET /s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gradacode.co.ke
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 21:50:21 GMT
expires: Thu, 09 Nov 2023 21:50:21 GMT
cache-control: public, max-age=31536000
age: 271095
last-modified: Wed, 27 Apr 2022 17:05:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
216.58.207.195200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Hash 848cd2ecd011428969dc6b90431bc482
6b1a7b562a56bd54510e0f6f95e26babca331a1b
981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gradacode.co.ke
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 21:38:57 GMT
expires: Fri, 10 Nov 2023 21:38:57 GMT
cache-control: public, max-age=31536000
age: 185379
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdVBesCRgqA.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdVBesCRgqA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 13196, version 1.0\012- data
Hash 5b9fce771bd530ab9767e2b5aebd28c1
28ee5935b59df8b2d6876707e1f0f0e6768d2d31
a3bf77e9dea5a047c348fa98ccbeb5d5e07de3541ce0a2dfb243690da964804c
GET /s/teko/v15/LYjCdG7kmE0gdVBesCRgqA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gradacode.co.ke
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13196
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Nov 2022 23:39:39 GMT
expires: Sat, 11 Nov 2023 23:39:39 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:17:49 GMT
content-type: font/woff2
age: 91737
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3723d23fdcd3f3d34132d56faae4428b
4bf9c6e15b8de24fc7387ce145382f9b3e9cb1c8
4bc047ec725bd4d99c9dd4fa11edc91702f722d16e53b5eef0920cb5dc7e7ca8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 01:08:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.0.0
66.29.147.146200 OK 982 B URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.0.0
IP 66.29.147.146:0
File type ASCII text, with very long lines (1668)
Hash e66463f2023b738680c9bdefece69a37
315dc8e6ebdfb18c662851244ee33e2758ad3c83
fd83e7fc6d81aa6f6680ea640e9c086aa1950a17757a582aa74ea9797a70f346
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.0.0 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 982
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.0.0
66.29.147.146200 OK 794 B URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.0.0
IP 66.29.147.146:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash 29307e8dec33cf3411ca4e1f2c84e9d0
484402289464d7ffb1475827f3438329d520bfc6
a2db59efaa416ef0c9d5d58f142cd5e44c475348cff20a664586fd3cda1b5f5b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.0.0 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 794
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.0.0
66.29.147.146200 OK 1.0 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.0.0
IP 66.29.147.146:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 45db3d2887c26700a51bf469e3bb3aa1
d070b5fb53d2fbb66964bbfd482270b855d0ee96
1abc0cff49f82d9a063c04cd086b991af6ad00467efc4cb8d8d4e3c9a0f95777
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.0.0 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1039
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/countdown/countdown.js?ver=1650032799
66.29.147.146200 OK 2.2 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/countdown/countdown.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 8748f36391ae6df2cd397c0951968467
c43f61d5daf8e35831d1e8eeaa9e3947454df33b
eb310d4d657404c9d90741dc30eeb8aed4570f9953d31db48ca61417c92fbe85
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/countdown/countdown.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2171
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/knob/knob.js?ver=1650032799
66.29.147.146200 OK 6.1 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/knob/knob.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 239deb14624b79cdb7a9a1354cd3b559
a6fe467c4c34ae90eb302dbaa0288ad1bb7292b5
b8f594d4f9828999352019758b599f9649349a662681f34c9cf08979587ddb32
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/knob/knob.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6057
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jarallax/jarallax.min.js?ver=1650032799
66.29.147.146200 OK 5.3 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jarallax/jarallax.min.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (15303), with CRLF line terminators
Hash 12a009a21a8caa38549d6fb513753c65
cb29b8dac22f4b2d16b6c363723c77121fc21a80
38c3d3f1937f071b5d1b34ece2eb71a21523cbda0baf4aadb0f324a00da9551d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/jarallax/jarallax.min.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5252
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/appear/appear.js?ver=1650032799
66.29.147.146200 OK 1.4 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/appear/appear.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 6e579d2e7a40e9f29986859858306345
861bd2368d7c3af07957477dca1d7f3161b06cd6
df6e430238f062023873e9cdf6b2dffa7fb53bba0f25143d9cc5463dd069765d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/appear/appear.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1368
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-fancybox/jquery.fancybox.js?ver=1650032799
66.29.147.146200 OK 36 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-fancybox/jquery.fancybox.js?ver=1650032799
IP 66.29.147.146:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash e4a5559da38bddc3fd60db21b4a78d62
d026ebff3eb0f8cf37e8c9196dafe91c307ff077
7e3dc524af1120518ff4660c6c0719d3bf8a80887745874230beb70a2d3b87ed
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/jquery-fancybox/jquery.fancybox.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36466
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/wow/wow.js?ver=1650032799
66.29.147.146200 OK 2.2 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/wow/wow.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (6269), with CRLF line terminators
Hash 3a0ccdd875f4f4fec83bbbf33b827285
df6193535cfbc57c662a5a67cd88da66fa617347
04cf198b89e33c5bdecf1406e68085cb6d372b567a0653c551f37f4eff76df14
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/wow/wow.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2212
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/owl-carousel/owl.js?ver=1650032799
66.29.147.146200 OK 20 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/owl-carousel/owl.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (360), with CRLF line terminators
Hash 04228abe43cde75b74358bd9fb0401cd
f4dd5e7c5c46e6a9443470abdd8b1a3269421fcd
5f453ca5981bd266703e1f77df6659c8ef4e0e704f1fccd3c78e9c9d05b89d5d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/owl-carousel/owl.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 20223
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/mixitup/mixitup.js?ver=1650032799
66.29.147.146200 OK 12 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/mixitup/mixitup.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (367), with CRLF line terminators
Hash 03be0e27d8a619d65d78c7485cf16887
9f08cc88bfd3bb30405b5826370ce925e2cae88b
2af0b04ced38093a11d995475b9c2003bc85282c33e967ba74ee3046aa18a1d7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/mixitup/mixitup.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 11459
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/isotope/isotope.js?ver=1650032799
66.29.147.146200 OK 10 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/isotope/isotope.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (32039), with CRLF line terminators
Hash 3878b204de7b3d267f24d689b8137be4
48de6da917d070cd2c8b73b680ca4c440e947fd6
607c6ee3e22a48ca04d95a0bd51b5b6ae4579b89bd395d90f8d359815e1edb5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/isotope/isotope.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10188
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-ajaxchimp/jquery.ajaxchimp.min.js?ver=1650032799
66.29.147.146200 OK 939 B URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-ajaxchimp/jquery.ajaxchimp.min.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (2381), with no line terminators
Hash 1c157aa7cdf20ef979ba469afff5377b
64ae54010d36d749a6f9724040072841d2ff95e8
d0957fed84330d67f9e748e79ee29587d50a854fac4865c535872c407c0b6faa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/jquery-ajaxchimp/jquery.ajaxchimp.min.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 939
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
66.29.147.146200 OK 7.1 kB URL HTTP/1.1 gradacode.co.ke/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 66.29.147.146:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash fc922a895f5f92269c928556b67564f6
8759e1f16a826dd6dd73f4161a65a79a049c4d6f
d7445c88608e9da487d81ef5167866c42ff1099b5f48efda4b5f5ac41aa7d9b8
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 02:13:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7097
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/swiper/swiper.min.js?ver=1650032799
66.29.147.146200 OK 36 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/swiper/swiper.min.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (65272), with CRLF line terminators
Hash 4314a49bd82e66bf857671627cea6309
a98db420265ce5c7c7c6d2f624d4e995ba258638
fe0e21c2f534008a439e9226cd3d99ed0cad3d4331f7308cf5b5cd9601c11e64
GET /wp-content/plugins/linoor-addon/assets/vendors/swiper/swiper.min.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:36 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 35900
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2
66.29.147.146200 OK 3.0 kB URL HTTP/1.1 gradacode.co.ke/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2
IP 66.29.147.146:0
File type ASCII text, with very long lines (9937)
Hash b3d9bb7257d4b8df3985fa9a64e423ca
a82689c4a06c778e32d271a1657552903279ba14
5f58cddc96bbb61a64163e8c6eab8f41ace3aed25bbc547adae37d7a786d09bf
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 02:13:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3024
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-includes/js/jquery/ui/selectmenu.min.js?ver=1.13.2
66.29.147.146200 OK 2.9 kB URL HTTP/1.1 gradacode.co.ke/wp-includes/js/jquery/ui/selectmenu.min.js?ver=1.13.2
IP 66.29.147.146:0
File type ASCII text, with very long lines (9164)
Hash 5682aa0645ce3e3a5a3dd114607b98e3
132495c45442c7bd1019e0d4323aeb3dc6b56b16
753eff667f6ea7e5cdab55ac39d5b0b93a42591b5e563c705fba2d23b1b20d66
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/selectmenu.min.js?ver=1.13.2 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 02:13:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2946
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/js/linoor-addon.js?ver=1650032799
66.29.147.146200 OK 4.2 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/js/linoor-addon.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash c213088f2ee6766092bfa07579784e36
7c9ec386a220fca4f9142143614fda5e64941ab3
341f045a44d2a1f3469aa31fe314c8b912b5a2eb6c247a3b96da4b26e216bfd9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/js/linoor-addon.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4160
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/themes/linoor/assets/vendors/bootstrap/js/bootstrap.bundle.min.js?ver=4.5.3
66.29.147.146200 OK 22 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/vendors/bootstrap/js/bootstrap.bundle.min.js?ver=4.5.3
IP 66.29.147.146:0
File type ASCII text, with very long lines (65294), with CRLF line terminators
Hash 78955a4071108b2e7299322ba22468a7
7270edc466e5eaacb6aeb1069c15c8d66e256f12
a20f0855b0431a025a7f70fdad1074cf53231297c9bb2b0bf9da6ffe9946e00b
GET /wp-content/themes/linoor/assets/vendors/bootstrap/js/bootstrap.bundle.min.js?ver=4.5.3 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 21811
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/themes/linoor/assets/js/linoor-theme.js?ver=1668301715
66.29.147.146200 OK 2.7 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/js/linoor-theme.js?ver=1668301715
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash efc7b29c5fdcfdcaa7417dd52cdd7b21
296d3b031f7f426893cd048407d7cc76faf3df02
ac894a812f8c7c22b6b0bfc4e31446dc3fbc5d1a1538c2aa35a04fd4bda66d78
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/linoor/assets/js/linoor-theme.js?ver=1668301715 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2740
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
66.29.147.146200 OK 8.8 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
IP 66.29.147.146:0
File type Unicode text, UTF-8 text, with very long lines (24733), with no line terminators
Hash 2c01ef4949cdd996f62eb7b0b708a3cf
d825267291eea563cf06608a56e955dfbfa90329
6a24355d8db097fe014c593f8c5f16d957177a238601f19853dd0bf54051e238
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Mon, 11 Jul 2022 21:57:19 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8819
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8
66.29.147.146200 OK 2.2 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8
IP 66.29.147.146:0
File type ASCII text, with very long lines (4918)
Hash d0e4eb53954c6912b6bd9ec65c7077c7
914cff98ed617cd6147417b846c3de04fb551fc8
d81efc68c2e078e814a9753404ae8bc87f7eed14de224c2c42f426d20ef46bb6
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2193
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8
66.29.147.146200 OK 11 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8
IP 66.29.147.146:0
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash 41e7307e69775772797b7cd940b4df0a
b9e0e06eeb178c11a7bbfdc0696bba4e695741d2
d9a2e4abd068e07870a30beaeb7471ace3c594816a0c6f8543773ea8e65a0954
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10742
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
66.29.147.146200 OK 3.0 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 66.29.147.146:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash cfea3c51880820f2962a7773fbc864f9
45aa7ddc9b0c4201097d0df36791ab346470b734
12296ac9ef200103f8eea198a2bcd92692119dacece39538499758a0349035fb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2993
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8
66.29.147.146200 OK 12 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8
IP 66.29.147.146:0
File type ASCII text, with very long lines (40474)
Hash a6c577d8e3a2d401d3d8dc73be9bf1ea
f323e195b9ad4843d81de9715b0dd2efd978f65a
3c0b9b10be0457a0d48117486750dadde37937a9f15b3299383082c52590ec7e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12045
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-includes/js/wp-emoji-release.min.js?ver=6.1
66.29.147.146200 OK 5.0 kB URL HTTP/1.1 gradacode.co.ke/wp-includes/js/wp-emoji-release.min.js?ver=6.1
IP 66.29.147.146:0
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Sat, 09 Jul 2022 16:23:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5009
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/themes/linoor/assets/vendors/flaticons/fonts/Flaticon.ttf?aetdej
66.29.147.146200 OK 65 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/vendors/flaticons/fonts/Flaticon.ttf?aetdej
IP 66.29.147.146:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Flaticon \012- data
Hash 8cc174d439f031d106731f81267b609d
0d0cbf911c5bfe84a0bd4c61a2d7e61f3727b71b
a1dad218098287b2ab86125b7999075cdcaa510b0b31cac6d9d7b62b2964933f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/linoor/assets/vendors/flaticons/fonts/Flaticon.ttf?aetdej HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/wp-content/themes/linoor/assets/vendors/flaticons/css/flaticon.css?ver=1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: font/ttf
gradacode.co.ke/wp-content/uploads/2022/07/cropped.png
66.29.147.146200 OK 53 kB URL HTTP/1.1 gradacode.co.ke/wp-content/uploads/2022/07/cropped.png
IP 66.29.147.146:0
File type PNG image data, 156 x 156, 8-bit/color RGBA, non-interlaced\012- data
Hash 28c69a90c71621a4f1c4e5091bd660f4
b9dc6c07834de8215dc8d7a675e072cc8ac3c9be
0a924b1245ea1afef7ea5bfdde306c7110fcdfd5da2c9bf8618b1472755c6c3f
GET /wp-content/uploads/2022/07/cropped.png HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Sat, 09 Jul 2022 21:07:41 GMT
Accept-Ranges: bytes
Content-Length: 53373
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
gradacode.co.ke/wp-content/themes/linoor/assets/images/icons/chat-icon.png
66.29.147.146200 OK 774 B URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/images/icons/chat-icon.png
IP 66.29.147.146:0
File type PNG image data, 42 x 39, 8-bit colormap, non-interlaced\012- data
Hash b8d117a17fcf5169b607d36bb2ab0aa5
99baee141d6f9e273806d8d22840c13bacd294b3
0a9a8528f620e5fc10001bd75eea191759d9f9caea8b5a6874ce4aee2a2abcdb
GET /wp-content/themes/linoor/assets/images/icons/chat-icon.png HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-main.css?ver=1668301715
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Content-Length: 774
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
gradacode.co.ke/wp-content/themes/linoor/assets/vendors/fontawesome/webfonts/fa-solid-900.woff2
66.29.147.146200 OK 80 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/vendors/fontawesome/webfonts/fa-solid-900.woff2
IP 66.29.147.146:0
File type Web Open Font Format (Version 2), TrueType, length 80300, version 331.-31392\012- data
Hash 8e1ed89b6ccb8ce41faf5cb672677105
9b592048b9062b00f0b2dd782d70a95b7dc69b83
6b555920e358f8a25a422988b448615c33bcccb4f932e8331cebfc8e2a737fc7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/linoor/assets/vendors/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://gradacode.co.ke/wp-content/themes/linoor/assets/vendors/fontawesome/css/all.min.css?ver=5.15.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Content-Length: 80300
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: font/woff2
gradacode.co.ke/wp-content/themes/linoor/assets/images/background/b-shape-1.png
66.29.147.146200 OK 1.6 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/images/background/b-shape-1.png
IP 66.29.147.146:0
File type PNG image data, 217 x 328, 8-bit colormap, non-interlaced\012- data
Hash df8dba0821c8544eed3c936da75afef7
ccb4ceaeac84f85b58bdd66872816c28f970f9b5
8859c62e492109d8aeea3a35dc7f3c9f3ff16ee6f8e017fabb2814eaf6e20bfc
GET /wp-content/themes/linoor/assets/images/background/b-shape-1.png HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-main.css?ver=1668301715
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Content-Length: 1641
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png
gradacode.co.ke/wp-content/themes/linoor/assets/images/background/b-shape-2.png
66.29.147.146200 OK 1.1 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/images/background/b-shape-2.png
IP 66.29.147.146:0
File type PNG image data, 124 x 457, 4-bit colormap, non-interlaced\012- data
Hash 663e23e0cc00e7910c5d470fd8a01ecf
92fe732b4f079004d3b23f32ff6709b1ef6c9c22
991ab27d61f449bf4bc52e7ef3c97229b33ceb0a091955b798d0a3225a7c635e
GET /wp-content/themes/linoor/assets/images/background/b-shape-2.png HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-main.css?ver=1668301715
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Content-Length: 1149
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
gradacode.co.ke/wp-content/themes/linoor/assets/images/background/footer-bg.png
66.29.147.146200 OK 16 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/images/background/footer-bg.png
IP 66.29.147.146:0
File type PNG image data, 1323 x 586, 2-bit colormap, non-interlaced\012- data
Hash 283bb8b50b5fd49acd97ff096539257f
05902de8f07b9be8d6c255e21bf2b6e8462ddc33
7f5b73e4a4771c88e71f764af89090c7a664da09d75f5a88fb2aeb40a2ead418
GET /wp-content/themes/linoor/assets/images/background/footer-bg.png HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-main.css?ver=1668301715
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Content-Length: 15899
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
gradacode.co.ke/wp-content/themes/linoor/assets/images/icons/close-2-1.png
66.29.147.146200 OK 1.1 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/images/icons/close-2-1.png
IP 66.29.147.146:0
File type PNG image data, 17 x 17, 8-bit/color RGBA, non-interlaced\012- data
Hash 254ab1731cdc1429813ac4126b8a39b5
59b2d9ae97a43f02fde447959b0ef44e10ac1a4d
d9030eb9f54640a1ac66d2b3c31f46bc8c63ebb0354ef504d1cebbfb14796111
GET /wp-content/themes/linoor/assets/images/icons/close-2-1.png HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-main.css?ver=1668301715
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Content-Length: 1054
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/png
gradacode.co.ke/gradacode/wp-content/uploads/2022/04/slider3.png
66.29.147.146404 Not Found 11 kB URL HTTP/1.1 gradacode.co.ke/gradacode/wp-content/uploads/2022/04/slider3.png
IP 66.29.147.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash 585983b0be62ac8d8ef8546826b19bdd
552b8657fc84fcccf06ffb19e536afb51c4d68d7
5c822620817bdd9d937d5c91748ffcd9fd5f99191cfd381e850c4537da1b6c86
GET /gradacode/wp-content/uploads/2022/04/slider3.png HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://gradacode.co.ke/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10574
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
gradacode.co.ke/wp-content/themes/linoor/assets/vendors/fontawesome/webfonts/fa-brands-400.woff2
66.29.147.146200 OK 78 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/vendors/fontawesome/webfonts/fa-brands-400.woff2
IP 66.29.147.146:0
File type Web Open Font Format (Version 2), TrueType, length 78460, version 331.-31392\012- data
Hash f075c50f89795e4cdb4d45b51f1a6800
f726c4275bb494a045fde059175f072de06c01df
71b3ce72680f4183d28db86b184542051fd533bb1146933233e4f6a20cf98cba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/linoor/assets/vendors/fontawesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://gradacode.co.ke/wp-content/themes/linoor/assets/vendors/fontawesome/css/all.min.css?ver=5.15.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Content-Length: 78460
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: font/woff2
gradacode.co.ke/?wc-ajax=get_refreshed_fragments
66.29.147.146200 OK 273 B URL HTTP/1.1 gradacode.co.ke/?wc-ajax=get_refreshed_fragments
IP 66.29.147.146:0
File type JSON data\012- , ASCII text, with very long lines (443), with no line terminators
Hash b10790f537bf867b0897675090edf76a
fe6b19bf6deed57b24cdf6e75bf6f6cb7b078963
f7a17b21817a2a2e820b0b85e1e726341aeed54ff75c85ef7fe9115aa872e2f4
Analyzer Verdict Alert fortinet Phishing
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://gradacode.co.ke
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:37 GMT
Server: Apache
Access-Control-Allow-Origin: https://gradacode.co.ke
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Robots-Tag: noindex
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 273
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/json; charset=UTF-8
gradacode.co.ke/wp-content/uploads/2022/07/cropped-63x63.png
66.29.147.146200 OK 3.8 kB URL HTTP/1.1 gradacode.co.ke/wp-content/uploads/2022/07/cropped-63x63.png
IP 66.29.147.146:0
File type PNG image data, 63 x 63, 8-bit/color RGBA, non-interlaced\012- data
Hash 274b4d99c14938fcb98c9141327d27da
f400b2c1d62c34dd4b830fcfaa0db51c19815da8
b27d9b7d186b4efc460e09824cd32476ff52709e4b90b90919d39c5117e0e1c1
GET /wp-content/uploads/2022/07/cropped-63x63.png HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/hij/deslibt.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 13 Nov 2022 01:08:38 GMT
Server: Apache
Last-Modified: Sat, 09 Jul 2022 21:07:41 GMT
Accept-Ranges: bytes
Content-Length: 3751
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4da03871-10a1-4d64-8f01-11282f1f6f20.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4da03871-10a1-4d64-8f01-11282f1f6f20.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbfb6798f32968c8e68ba386edf23794
29d00e0276be7b87b759d78edbb3851c52e4db86
4379cce07bdfea4da27c1f158d1c16928346f8ebdf00272737fd1cf1c75f5fee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4da03871-10a1-4d64-8f01-11282f1f6f20.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13931
x-amzn-requestid: 3f6caf57-b687-4d1b-af40-a21bbebaff95
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bEI_KFf2IAMFwgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364bb94-23ae7ecd18dc41521e172237;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 07:13:24 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CoDvVLQV5-9tqbMiKDNkb6y-U0EGO36WHPtZ3Am-eGbPdGLXd7tNYA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 03:53:05 GMT
age: 76538
etag: "29d00e0276be7b87b759d78edbb3851c52e4db86"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1
IP 142.250.74.10:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 13 Nov 2022 01:08:35 GMT
date: Sun, 13 Nov 2022 01:08:35 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2