ocsp.pki.goog/s/gts1d4/MOu4fmtrSZw
142.250.74.131 472 B URL ocsp.pki.goog/s/gts1d4/MOu4fmtrSZw
IP 142.250.74.131:0
Hash 74118577200b37bccb0b9b90c2ab2823
6ca6c350ebb9a533bb7c183a22f917c0711218d7
f677483ac0ce0befbb1085a7b23786713dd4cb130c27991de72f4b815c3e2014
POST /s/gts1d4/MOu4fmtrSZw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 13:27:59 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
142.250.74.147200 OK 20 kB URL User Request GET HTTP/2 IP 142.250.74.147:443
Certificate IssuerGoogle Trust Services LLC
Subjectwww.markasjitu.online
FingerprintD2:4C:45:34:37:D3:1C:A9:96:1A:E7:4F:99:DE:EE:CE:6B:DA:A1:E9
ValidityMon, 17 Apr 2023 06:43:52 GMT - Sun, 16 Jul 2023 07:27:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (49282)
Hash 06b02843002a34098b985e2ea6b30c90
e5a3694c04714e84442d0b9bd519ea326d541b74
ca70c5724d7ecb606abb49643e74043c3eb88ccf94ce2e76810e1a473f5b329f
GET / HTTP/1.1
Host: www.markasjitu.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Wed, 10 May 2023 13:27:59 GMT
date: Wed, 10 May 2023 13:27:59 GMT
cache-control: private, max-age=0
last-modified: Sun, 08 Jan 2023 10:14:39 GMT
etag: W/"ae72c383020dc076c3984bfc9347302992c66aa33f642fd7f32e70a0fe323e48"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 20213
server: GSE
X-Firefox-Spdy: h2
www.markasjitu.online/js/cookienotice.js
142.250.74.147200 OK 2.0 kB URL GET HTTP/2 www.markasjitu.online/js/cookienotice.js
IP 142.250.74.147:443
Requested by https://www.markasjitu.online/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.markasjitu.online
FingerprintD2:4C:45:34:37:D3:1C:A9:96:1A:E7:4F:99:DE:EE:CE:6B:DA:A1:E9
ValidityMon, 17 Apr 2023 06:43:52 GMT - Sun, 16 Jul 2023 07:27:59 GMT
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
GET /js/cookienotice.js HTTP/1.1
Host: www.markasjitu.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Wed, 10 May 2023 13:28:00 GMT
expires: Wed, 17 May 2023 13:28:00 GMT
cache-control: public, max-age=604800
last-modified: Wed, 10 May 2023 12:56:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 72c6da94ee45fc2dd0f2b2fd8c51b649
e1f2b78c9d5d6c0da8f927dd9efbe4536fcf1eea
ea45a568cf670048ec1944643f14654716430bdc797c3aec2a89b2aeb7575817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 13:28:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 72c6da94ee45fc2dd0f2b2fd8c51b649
e1f2b78c9d5d6c0da8f927dd9efbe4536fcf1eea
ea45a568cf670048ec1944643f14654716430bdc797c3aec2a89b2aeb7575817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 13:28:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash f31bb3c04de31d1672e384c3eb0e2569
b44b18082ac8fcaaf4226302e53be0ecac041fb2
e0c137d6dd7f17fa0cde4e94ce7b7bfc28a0955d7508a777a90ecd6af20df069
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 13:28:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jqueryui/1.8.13/jquery-ui.min.js
142.250.74.106200 OK 52 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jqueryui/1.8.13/jquery-ui.min.js
IP 142.250.74.106:443
Requested by https://www.markasjitu.online/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:3F:7F:CC:E7:90:DA:64:23:AC:13:1E:55:7A:62:1E:2B:E4:30:5C
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type ASCII text, with very long lines (563)
Hash 234f1553c7d27cce512062c59800a9a8
b48e01c35c1e6ad622386b9a3161bd1bf02723c8
d87043ac816dbfadae73fcc32f84eadb9a665cf97ae938bea9702a27d3e9a54a
GET /ajax/libs/jqueryui/1.8.13/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 51711
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 May 2023 09:15:30 GMT
expires: Thu, 09 May 2024 09:15:30 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 15150
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-155217642-8
142.250.74.40200 OK 63 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-155217642-8
IP 142.250.74.40:443
Requested by https://www.markasjitu.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintCA:2C:8E:2F:14:74:84:57:8C:39:86:59:92:AC:A1:7C:C8:FA:99:CA
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT
File type ASCII text, with very long lines (3856)
Hash 7249e282deaebb29d5d6996fc33aa3b7
324fda60e1eadb1c253f47fb5b7d3c39dd314eb7
ee02f31f94c7045c16a3f226f90ea6f5246f1d939b4be7c97a988a47019cf041
GET /gtag/js?id=UA-155217642-8 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 10 May 2023 13:28:00 GMT
expires: Wed, 10 May 2023 13:28:00 GMT
cache-control: private, max-age=900
last-modified: Wed, 10 May 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 62984
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/close.png
172.67.150.49200 OK 23 kB URL GET HTTP/2 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/close.png
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash e08deb6b87983b314d88a24c09f4d13f
72632058eb288673d3ebfc50d755506293812520
0e83a8ffdd161a80e179732ca1f514ee08dcc3c4a128baa9c92bcffebc2a7c52
GET /wp-content/plugins/generatoro-premium/template/includes/gen/close.png HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: image/png
content-length: 23254
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:00 GMT
last-modified: Sat, 03 Oct 2020 07:42:45 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r0BM24zlHIawcy9rR7pi6Mj8JLVLqPQauVuuGtgU7vkMp79j9VUdVmT1cvzSmvtiKpzmgt2CRdJUN7IogiqwfuD2Om8TSl5nb%2FEtjqqSZcLz872u%2FhIOynUcUwI%2FqWzZq%2FH14l7uPA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c5285da3847b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.markasjitu.online/cdn-cgi/challenge-platform/h/b/scripts/invisible.js
142.250.74.147404 Not Found 1.2 kB URL GET HTTP/2 www.markasjitu.online/cdn-cgi/challenge-platform/h/b/scripts/invisible.js
IP 142.250.74.147:443
Requested by https://www.markasjitu.online/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.markasjitu.online
FingerprintD2:4C:45:34:37:D3:1C:A9:96:1A:E7:4F:99:DE:EE:CE:6B:DA:A1:E9
ValidityMon, 17 Apr 2023 06:43:52 GMT - Sun, 16 Jul 2023 07:27:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (536)
Hash ee47321595226f536a63c0d8806c7d81
da7718a4bdb1784eac45c32588d72cc27c19e189
39327647b643af053f34823a81602cffe084a4b45aedce7625ce3ac1096a3192
GET /cdn-cgi/challenge-platform/h/b/scripts/invisible.js HTTP/1.1
Host: www.markasjitu.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 10 May 2023 13:28:00 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1245
server: GSE
X-Firefox-Spdy: h2
i.ibb.co/Mc9s40X/indo.png
162.19.58.161200 OK 18 kB URL GET HTTP/2 i.ibb.co/Mc9s40X/indo.png
IP 162.19.58.161:443
Requested by https://www.markasjitu.online/
Certificate IssuerLet's Encrypt
Subjecti.ibb.co
FingerprintAF:A9:9B:0C:BD:57:09:69:DA:43:43:94:E3:3C:4C:1E:EB:1E:95:63
ValidityTue, 11 Apr 2023 07:00:13 GMT - Mon, 10 Jul 2023 07:00:12 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 7705d39f5f9339521bbb2b91488c122b
1a23879647e9bff30f7b7b9a2ec64d02a491e138
5a21f3adfef9e68ed9dfc0b07d3ab0d31052f52ad1aadc7d3222367efc2fae82
GET /Mc9s40X/indo.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 10 May 2023 13:28:00 GMT
content-type: image/png
content-length: 17838
last-modified: Tue, 15 Feb 2022 05:15:22 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.ibb.co/JvBKgb1/RTPP.png
162.19.58.161200 OK 56 kB URL GET HTTP/2 i.ibb.co/JvBKgb1/RTPP.png
IP 162.19.58.161:443
Requested by https://www.markasjitu.online/
Certificate IssuerLet's Encrypt
Subjecti.ibb.co
FingerprintAF:A9:9B:0C:BD:57:09:69:DA:43:43:94:E3:3C:4C:1E:EB:1E:95:63
ValidityTue, 11 Apr 2023 07:00:13 GMT - Mon, 10 Jul 2023 07:00:12 GMT
File type PNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced\012- data
Hash 57ac2ff2d684847612b1f03803c41267
ea92b2bdb7474d1e37f593c29617e810a9be2fd9
152957ed1f7ec90a52fa4feab192da742ef891947b9a1f576b34a7feb6ce63d1
GET /JvBKgb1/RTPP.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 10 May 2023 13:28:00 GMT
content-type: image/png
content-length: 55625
last-modified: Sun, 21 Aug 2022 16:57:13 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 72c6da94ee45fc2dd0f2b2fd8c51b649
e1f2b78c9d5d6c0da8f927dd9efbe4536fcf1eea
ea45a568cf670048ec1944643f14654716430bdc797c3aec2a89b2aeb7575817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 13:28:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 72c6da94ee45fc2dd0f2b2fd8c51b649
e1f2b78c9d5d6c0da8f927dd9efbe4536fcf1eea
ea45a568cf670048ec1944643f14654716430bdc797c3aec2a89b2aeb7575817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 13:28:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash f31bb3c04de31d1672e384c3eb0e2569
b44b18082ac8fcaaf4226302e53be0ecac041fb2
e0c137d6dd7f17fa0cde4e94ce7b7bfc28a0955d7508a777a90ecd6af20df069
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 13:28:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash a6da0b8ec487c9ffd7bc4988e01ee646
f68270a827e68414eafb5ea37009e41de0890591
fe9d96f872b486de995156459e3005532ad6c6140975266bd43023286a6aa76e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 13:28:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash a6da0b8ec487c9ffd7bc4988e01ee646
f68270a827e68414eafb5ea37009e41de0890591
fe9d96f872b486de995156459e3005532ad6c6140975266bd43023286a6aa76e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 13:28:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/img/panel-overlay.png
172.67.150.49200 OK 3.1 kB URL GET HTTP/3 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/img/panel-overlay.png
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type PNG image data, 960 x 661, 4-bit colormap, non-interlaced\012- data
Hash 2b026d93f79b384005e4252c80701791
87804a0d83d2e745b31526c8b60d026abecbe73a
b7a5d35c1c7be1953002244f054a14f38ed11912ad52d25a8e963774f7f52e0e
GET /wp-content/plugins/generatoro-premium/template/includes/gen/img/panel-overlay.png HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 10 May 2023 13:28:01 GMT
content-type: image/png
content-length: 3116
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:01 GMT
last-modified: Sat, 03 Oct 2020 07:42:45 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YorKYPrbJoww7pVH2X95UDtBKzQjQBd%2BIsVPbuW5vLvNS4Oq9tXT0gbGFcHHftMnQAhIQmBSThUWmX3Uxf36XHrbAvvgqKxlNg9r2NUhai9onYVjwMXvTj%2FbokqKBxqxJwdrLOkiXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c5285dea92e0b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_bold-webfont.woff2
172.67.150.49200 OK 15 kB URL GET HTTP/3 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_bold-webfont.woff2
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 15216, version 1.197\012- data
Hash 772fc6a0795e2498a1715526dd95ac22
d410a8da10385a0ef11a74e69644493b99315fc3
13c03e5c6b49e447770ba4d0aee22d4aedbeed87e94f54fdcaf990934c109830
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_bold-webfont.woff2 HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.markasjitu.online
DNT: 1
Connection: keep-alive
Referer: https://generatortool.online/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 10 May 2023 13:28:01 GMT
content-type: font/woff2
content-length: 15216
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:01 GMT
last-modified: Sat, 03 Oct 2020 07:42:44 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zAlMS9bLX9yM%2Fg0z%2FVMo0xw9jLM5zHCVA%2F2V2fp5O6KxAKn0BnRi3liLyI%2FtOCQz3rVHDMHVSD%2B2jxM%2FUoMxD0BH%2FdayU8ZYWwzv4sXTlGSzUYoG%2FDbwVjoh7nt%2F%2FCJ%2FdgOHlReNIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c5285deb9360b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/img/button-dot.png
172.67.150.49200 OK 672 B URL GET HTTP/3 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/img/button-dot.png
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type PNG image data, 15 x 15, 8-bit colormap, non-interlaced\012- data
Hash 478aefab2e280b16b0372e607414d3c2
710f5aaa706ec23cbf45006d7c1d25be76b4fa64
a651e77df132fc0c4dbccb7c56f84923c28dcb159f4b7a112bde8bbc548632bc
GET /wp-content/plugins/generatoro-premium/template/includes/gen/img/button-dot.png HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 10 May 2023 13:28:01 GMT
content-type: image/png
content-length: 672
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:01 GMT
last-modified: Sat, 03 Oct 2020 07:42:44 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hh%2BgImroj4c9Lp0Fi0EHvTvsrSN42HAkJQxPGCCKAZd7Wt17DVlUVyAlnGDeLpY0%2B0a0lnYVOIoPu3Oq7ncktkQJzXbDErWkAtt3GrmVtC6B5ENqXHhGKEq7TgXDfeWtPYP2LkSYXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c5285dea92a0b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by https://www.markasjitu.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.markasjitu.online
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 04 May 2023 11:49:35 GMT
expires: Fri, 03 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
age: 524306
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by https://www.markasjitu.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.markasjitu.online
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 04 May 2023 11:49:35 GMT
expires: Fri, 03 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
age: 524306
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash a6da0b8ec487c9ffd7bc4988e01ee646
f68270a827e68414eafb5ea37009e41de0890591
fe9d96f872b486de995156459e3005532ad6c6140975266bd43023286a6aa76e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 13:28:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_regular-webfont.woff2
172.67.150.49200 OK 16 kB URL GET HTTP/3 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_regular-webfont.woff2
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 15948, version 1.197\012- data
Hash af83f1b88fb4654673e9c841bd22a8c7
61e5a340ea87431211d732024f2703dca5b80cbc
bee0bcc11701aea746fd8b734379ba5e003a034460bfd71d88dc364b4d939be6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_regular-webfont.woff2 HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.markasjitu.online
DNT: 1
Connection: keep-alive
Referer: https://generatortool.online/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 10 May 2023 13:28:01 GMT
content-type: font/woff2
content-length: 15948
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:01 GMT
last-modified: Sat, 03 Oct 2020 07:42:44 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oc8qL4WbNoO09l%2BSedlxZXIYDpa%2FWV28SV3qd6IU4gRy4ACg6SuKcmSC7vAOzKvjpUmYZsbRk3Oeo9mO2JgSf%2BIePzHiwuuB5YfJmXgRmwNTX6LE4ZI0dtAyT9hn4SLmmObqqtm%2FEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c5285deb93b0b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/js/jquery.magnific-popup.min.js
172.67.150.49200 OK 28 kB URL GET HTTP/2 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/js/jquery.magnific-popup.min.js
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (21014)
Hash be3333626c57af03599abcb59b325e09
3824067348f6485d6b07d3a43660804e3731b21a
ecbef0f33e8ccedd2c605816e052cfff778abcc0e30a80b874c097a5fddd24fc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/generatoro-premium/template/includes/gen/js/jquery.magnific-popup.min.js HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: application/javascript
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:00 GMT
last-modified: Sat, 03 Oct 2020 07:42:45 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pbv6kQdpBfSMGOybpxY5HUUycGvm89iwio7oXFS6n06zQ5%2Fn4wDJnwPlrLFn2H7Dv8KZE6dMj76CiLEnVv3XZCb7qEUBFktr2vtV95Wa8NmrzukusifMZnYAKDLAOXSyC9tV1OX2eg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285da3839b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_regular-webfont.woff
172.67.150.49200 OK 21 kB URL GET HTTP/3 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_regular-webfont.woff
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type Web Open Font Format, TrueType, length 20552, version 1.0\012- data
Hash 25faa2c4d4384908daca23dc792b1e39
644680d6120ccde5202f1f6c5379b322625a5b2f
7f832feb7930ca2455bbb40e6b19cad2fe14caf6dab815bb27bbae9a04fa5795
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_regular-webfont.woff HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.markasjitu.online
DNT: 1
Connection: keep-alive
Referer: https://generatortool.online/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 10 May 2023 13:28:01 GMT
content-type: font/woff
content-length: 20552
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:01 GMT
last-modified: Sat, 03 Oct 2020 07:42:44 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cFjpB%2FRo1vmN60a2aDaMphOIljDx2XEBE3rat%2FmCIsnoTyyitjTz05liaqMqEQqI9DVB6Vqe6qMl6R0j6Vkbf899fGbc5nqvFpgB6wsWbMT78Pnx1Tuj5Ov2sEqB8zHfWdf61eNGGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c5285dfba6c0b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
i.ibb.co/QNP10hB/olympus.jpg
162.19.58.161200 OK 147 kB URL GET HTTP/2 i.ibb.co/QNP10hB/olympus.jpg
IP 162.19.58.161:443
Requested by https://www.markasjitu.online/
Certificate IssuerLet's Encrypt
Subjecti.ibb.co
FingerprintAF:A9:9B:0C:BD:57:09:69:DA:43:43:94:E3:3C:4C:1E:EB:1E:95:63
ValidityTue, 11 Apr 2023 07:00:13 GMT - Mon, 10 Jul 2023 07:00:12 GMT
File type JPEG image data, progressive, precision 8, 640x640, components 3\012- data
Size 147 kB (147086 bytes)
Hash 4f93cd1ca68e0a5e7efc9e6f0dd3f728
19b1d55c9324f842609336a95d4053bc5a8ad2f5
0559ba6479527180d681195af18548c7e9a81063426a18bb30425f0f70abb202
GET /QNP10hB/olympus.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 10 May 2023 13:28:01 GMT
content-type: image/jpeg
content-length: 147086
last-modified: Sun, 07 Aug 2022 23:33:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_regular-webfont.ttf
172.67.150.49200 OK 95 kB URL GET HTTP/3 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_regular-webfont.ttf
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type TrueType Font data, 19 tables, 1st "FFTM", 20 names, Microsoft, language 0x409, Copyright \004 2010 by Ryoichi Tsunekawa. All rights reserved.Bebas Neue RegularRegularRyoichiTs\012- data
Hash fd0db4019cf489a11e267ce4d54f4427
055adbda10a99182361a74a687adfbc3f5b0f748
7ca95a94f20a60844d1fd305c2c54732f0b4e5fc012275a7e75e31efcb8eda15
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_regular-webfont.ttf HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.markasjitu.online
DNT: 1
Connection: keep-alive
Referer: https://generatortool.online/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 10 May 2023 13:28:01 GMT
content-type: font/ttf
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:01 GMT
last-modified: Sat, 03 Oct 2020 07:42:44 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PizQB3BrcPZ2zFIbUFwzkYS%2FhpW2jR%2FSQL72WTafqke4cxHnB6bN%2FbTzlP0Kqig2q%2Fu6UyMMpbs2shsyg17g8XN6as5AI4ihYuJ16j4PkZCib24gYMo30BgakZEi7u4%2BtTiZh38Fkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285e0ab770b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
i.ibb.co/PYLsG9v/gates2.png
162.19.58.161200 OK 243 kB URL GET HTTP/2 i.ibb.co/PYLsG9v/gates2.png
IP 162.19.58.161:443
Requested by https://www.markasjitu.online/
Certificate IssuerLet's Encrypt
Subjecti.ibb.co
FingerprintAF:A9:9B:0C:BD:57:09:69:DA:43:43:94:E3:3C:4C:1E:EB:1E:95:63
ValidityTue, 11 Apr 2023 07:00:13 GMT - Mon, 10 Jul 2023 07:00:12 GMT
File type PNG image data, 400 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size 243 kB (242749 bytes)
Hash 88cb4503556e2f1b37309bbd40a0e203
bc67b00e2755510d48dbf3a457b8e49c8141f120
6533f9cc5becf4bef3aa57089c52d261d3c976e1f860bfb96c94db9325ee3f9b
GET /PYLsG9v/gates2.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 10 May 2023 13:28:01 GMT
content-type: image/png
content-length: 242749
last-modified: Sun, 07 Aug 2022 23:10:50 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/js/scripts.js
172.67.150.49200 OK 261 B URL GET HTTP/2 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/js/scripts.js
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 4a350bd9b78d1f53cf3698128b9638e0
df428ab6b7bbce8d2b1e29e185abfdc481bd045b
d6579dc3d7745778068501d48d8d81ad1c49fe0413fb4f06a12a37860e6c9530
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/generatoro-premium/template/includes/gen/js/scripts.js HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: application/javascript
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:00 GMT
last-modified: Sat, 03 Oct 2020 07:42:45 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L7WgISsYlTumCW09rWjbYNJCmtDMGJCxp%2F3TtnmS1Klfmbfg8RJ6I2%2F42xvQ7QoxXcu1DcLBiGKlrSjcuHVXZlBgOEQu1j3IRKkFFT78L79Hxu2k7vdIhk4EM%2FGDF2bCnqCpKjETlA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285da3842b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_bold-webfont.ttf
172.67.150.49200 OK 49 kB URL GET HTTP/3 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_bold-webfont.ttf
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type TrueType Font data, 19 tables, 1st "FFTM", 21 names, Microsoft, language 0x409, Copyright (c) 2010 by Ryoichi Tsunekawa. All rights reserved.Bebas Neue BoldRegularRyoichiTsunek\012- data
Hash 239e816f87661177dcccf93c0e2c982e
171dd532562d5559decf80db0551409e268f9d14
2c5ee027d170809ad5b8630b8d07da5ff762d6db50641e1836e62674a9385b5d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_bold-webfont.ttf HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.markasjitu.online
DNT: 1
Connection: keep-alive
Referer: https://generatortool.online/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 10 May 2023 13:28:01 GMT
content-type: font/ttf
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:01 GMT
last-modified: Sat, 03 Oct 2020 07:42:44 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sf2F9G1lsdlBMpHqGIlQWtGQuWJzJ7gpC5uihkHnJPE0ppLM7Km18pM1WWJO6LbfCGuoItCZEi1L2ho1jobzIY8hC7aA5yWZpFXG9Kd14diVJGtHIDCBZJHVR5XwoKAIa0T30TwliQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285e07b330b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.googleapis.com/css?family=Open+Sans:300,400,700
142.250.74.106200 OK 8.3 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400,700
IP 142.250.74.106:443
Requested by https://www.markasjitu.online/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:3F:7F:CC:E7:90:DA:64:23:AC:13:1E:55:7A:62:1E:2B:E4:30:5C
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type ASCII text, with very long lines (8472), with no line terminators
Hash 2fb747fcb02191ec9252350d000794be
d451d0344f2cd1f1d599eabbfc96fe286ba851b6
f1478ff2ecac39d2c5c3d1d5537b906a7ad68a3e6beb21452593a031bea20f26
GET /css?family=Open+Sans:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 10 May 2023 13:28:00 GMT
date: Wed, 10 May 2023 13:28:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/js/sweetalert2.min.js
172.67.150.49200 OK 20 kB URL GET HTTP/2 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/js/sweetalert2.min.js
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (20305), with no line terminators
Hash 0ad69b0e70b7da1bb8f8a96e9e6b5d9a
7d21a0c1f43d3edb47dd9e69b05243f3fcb53152
4051f26691def4eafcae32928be110c13d1819e544a12b0a9b95378bfaf9859b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/generatoro-premium/template/includes/gen/js/sweetalert2.min.js HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: application/javascript
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:00 GMT
last-modified: Sat, 03 Oct 2020 07:42:45 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AQrEcWz%2BYve47MMt7k6smK6Yf2kohR5HORbNE4U7b0PnjqE3xdzyog0GWqE%2FUMch%2FK7rQtAeb1Q6TLHHqLQ4RptuXV4CWpFrMMLB8xvBEZOxDCJCm6DFcPaXYdg1dgYjsUTHaD3DIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285da382cb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/js/validator.min.js
172.67.150.49200 OK 6.1 kB URL GET HTTP/2 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/js/validator.min.js
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (6259), with no line terminators
Hash c542ac1e946658c7739d7c1244dd647f
5b34ad25a6933d25a3bec582821cdf7e598f90c1
e82795588f13566da7127ae782f27664653c7e7b6f9007c6c85f29580259a08d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/generatoro-premium/template/includes/gen/js/validator.min.js HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: application/javascript
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:00 GMT
last-modified: Sat, 03 Oct 2020 07:42:45 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gk5PWI7LBhxqyTNVuAySskDsu6gfqHOMLeF4lPmNgoSRuPAveev0Jy%2FtfjSdYBh8Fr%2BYqUc%2FUIUeq4PW6JVY5C2dCjsKcMg4j%2FeSD02Yo6%2FenT4T0FpC02EQhhpKqMXVJAkLrFzukA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285da382eb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/css/custom-css.css
172.67.150.49200 OK 1.9 kB URL GET HTTP/2 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/css/custom-css.css
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (1955), with no line terminators
Hash 6b6b1da868e638d456b060ffd946a3bb
992027943637c6f4d4574bdc6f12caa1700a310f
06cfc46ad486d473f2f451024f50ca52aee085ab9d2bf3ed29aa033144d56244
GET /wp-content/plugins/generatoro-premium/template/includes/gen/css/custom-css.css HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: text/css
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:00 GMT
last-modified: Sat, 03 Oct 2020 07:42:44 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dy7Rd8F9a8vQypZMuBONl5s5HYxD3XKBSoBigFyB51yq8Pg0uh%2FcRhV5ajrS8BvVwNjZoLf1PK71QFjK1Jo4Drt5HAHEG204DFs5O1Oooozy1e09QhO4S8xmGpEM%2BgtoJUEwOOtsPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285da381fb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/js/fancySelect.js
172.67.150.49200 OK 8.5 kB URL GET HTTP/2 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/js/fancySelect.js
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (8742), with no line terminators
Hash 187408284b9d94ecaf9fa0583fab0f21
c21fbff1c0c75d43fb3a54985756e67bff7e6f6f
cd8c0c12b94c110eec8238852635f8be3e26e0b57faf0a2a64ba3a5e374362a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/generatoro-premium/template/includes/gen/js/fancySelect.js HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: application/javascript
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:00 GMT
last-modified: Sat, 03 Oct 2020 07:42:45 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fGfCzUvyB%2FUQZv7Stv2vrpUhCzHa%2F0k7bdSulzO60f4eOCLxG4w6%2FcGFsbwHUgcXUaj4daJNEnViDnEYMtJJPEbVU4iD0DFv1%2FR3pMSoXhfGioa1T%2BNFvUwoN6l3HP0659smjpVI%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285da3826b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/css/style.css
172.67.150.49200 OK 56 kB URL GET HTTP/2 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/css/style.css
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (1512)
Hash 14ec6b4de60c8534df02f207356e0182
854fd194b1cc0cc700f4beea8eb99ef4036bfbaf
b323573e85df784274bfc06f8c3f548d2dadc9294b1c8599cd68dbf343881e6d
GET /wp-content/plugins/generatoro-premium/template/includes/gen/css/style.css HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: text/css
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:00 GMT
last-modified: Sat, 03 Oct 2020 07:42:44 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K8B4946INd8P6dPpCUYJdhzqE8I%2BADg9PHPMXgyzlVzxVCh2LDHkZh0dV9AOZ%2BbFvakv5zgM34k0GonB2jdfKlj%2Fjkao%2BgM0Mqz7oHqjPbJ4uxOSOMgxuN388LzDXE45QHfumr2RMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285da485bb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/css/bootstrap.min.css
172.67.150.49200 OK 121 kB URL GET HTTP/2 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/css/bootstrap.min.css
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (65371)
Size 121 kB (121279 bytes)
Hash 5aa951cb30645aae08b79154c14ec821
2920832e0f42e7ebfdcc8a84130c42f7867c4e83
35fc8024d22327f37d38304796b0462243e3089d23ab32a8a9041d7108fc1fb9
GET /wp-content/plugins/generatoro-premium/template/includes/gen/css/bootstrap.min.css HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: text/css
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:00 GMT
last-modified: Sat, 03 Oct 2020 07:42:44 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qji0KFJhBHdDwKj2oBfy6CyU%2BO39DlBkbLril%2BTnB%2F2dJeEPbcQLalM4wrktqM%2B6kMhFk%2BaROBjx7aBtkngjjNxa%2BuR4kzqOlUDGIxLNOKnJOoRaU9lTNvH%2F7cs3Yi7JPrZQcYHrDg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285da381cb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/css/sweetalert2.min.css
172.67.150.49200 OK 14 kB URL GET HTTP/2 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/css/sweetalert2.min.css
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (13988), with no line terminators
Hash 2854c355b9997439e011705e39b4b3ed
06f14e99f5bee6853283e1d42227f3289781379e
a64645980f5ee5a0aaa66cec5a98103420643da6681221c9cd10fc318adcdb6d
GET /wp-content/plugins/generatoro-premium/template/includes/gen/css/sweetalert2.min.css HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: text/css
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:00 GMT
last-modified: Sat, 03 Oct 2020 07:42:44 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7BBz4HYAUDaYfCaQ183infAwIPdeaVoxj0MY01mAsAtWXgXmVH%2BZ7Kqs21bmPaV9GKj7nVRVLv8RXEXoN0K4iI3ado4cx46q%2FRvdw%2B2I73DZ116c9zi%2FZcetbGYdKM%2BuSYTSit7DaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285da586eb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/js/jquery-3.2.1.js
172.67.150.49200 OK 376 kB URL GET HTTP/2 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/js/jquery-3.2.1.js
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
Size 376 kB (376143 bytes)
Hash 88e64c09b43c80e2bfc87f236cf15ec3
d5d8af2a125e8f341360f60df9329c846e551222
b56111ad3530ee1e921bf420f2365ffdd6c58944217d01248a7f4960aa8838c8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/generatoro-premium/template/includes/gen/js/jquery-3.2.1.js HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: application/javascript
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:00 GMT
last-modified: Sat, 03 Oct 2020 07:42:45 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1LwSHlIl6pIoeUM4NuCRzdw83BN0d%2B0uJhRdSLueQdp1b0b9oqjvHBatGCdKnOSNKtVx1juWEyGb2OQjmBVeU0sDlZY6sh0tH9hmd%2BkCJ%2FWiOTSRgki%2FMrTJo5nFKGGptf1MD88kiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285da3821b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/css/magnific-popup.css
172.67.150.49200 OK 8.5 kB URL GET HTTP/2 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/css/magnific-popup.css
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (8960), with no line terminators
Hash 22ab911e092dca97e090cf666ed287a5
638473a95e0be0c08757577779922e7ed73112d3
47054739a456908f90b6f011caa098e36168b08ef85ba90fcfc29687b79488bb
GET /wp-content/plugins/generatoro-premium/template/includes/gen/css/magnific-popup.css HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: text/css
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:00 GMT
last-modified: Sat, 03 Oct 2020 07:42:44 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=prqfO%2Bknfa2JXqe1vZqrtYGWGchbnXtGmUyPmbYHbQUvToTjU0y7hq%2FZdmd3Sz7xLgv27duo9sA2coQzaBkjK8ED3Rsr9EtwB%2FH3bvVf0mGF3MNjQ8Vu0k%2FKTsRXkWJnO1ceQ%2F0nAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285da5869b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/js/jquery.countTo.js
172.67.150.49200 OK 4.1 kB URL GET HTTP/2 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/js/jquery.countTo.js
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (4238), with no line terminators
Hash 3908fb58a4580fc683b631be4cd4ccd2
9855cc40d62c54d7d274771b4cf0b88f2e092f8d
69da29886446adcedf20aeeca3c9a98e81ca97ab8d4562d9dcc35f3304812212
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/generatoro-premium/template/includes/gen/js/jquery.countTo.js HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: application/javascript
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:00 GMT
last-modified: Sat, 03 Oct 2020 07:42:45 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iqwyVRTrByLcQ%2Fxmdg1jKzEuF2BHSqinv97aCJmF646f8R9VF66Hl0rEjubsVN1GB7uo8ECP3VsJ%2FH8PK1T5ObD2uu5wnQ18l2bOeDBcnD0LTw160IVpA4FBb4BVVYj4rNweKXZakw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285da382ab4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/js/form-scripts.js
172.67.150.49200 OK 1.5 kB URL GET HTTP/2 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/js/form-scripts.js
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (1568), with no line terminators
Hash 5774b4a30cf328ca663aa3264ddb3532
584a7e0e2da62b213a29a516ba0c180d8a2128e5
e8aa6963ea4263b59319bc5d465e71a40b911b964099ca4185c0fc54b4ccf02c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/generatoro-premium/template/includes/gen/js/form-scripts.js HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: application/javascript
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:00 GMT
last-modified: Sat, 03 Oct 2020 07:42:45 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=na6ZIrvDzkRegEsKpplO7cEbhOggEJmvpOVqaaF8oAcRExLbJ%2FuKYqtBe0g6zfQiJpZOxPwsL%2BeHpGntT8E4g%2B6yYCjmZbiO8ddLZy5DVeaDWssl4Yf%2B95uU0%2BfWaa2z4JH5lzw2Nw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285da3830b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-JJYCYBTMJJ&l=dataLayer&cx=c
142.250.74.40200 OK 206 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-JJYCYBTMJJ&l=dataLayer&cx=c
IP 142.250.74.40:443
Requested by https://www.markasjitu.online/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintCA:2C:8E:2F:14:74:84:57:8C:39:86:59:92:AC:A1:7C:C8:FA:99:CA
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT
File type ASCII text, with very long lines (3856)
Size 206 kB (205947 bytes)
Hash 7e69a7fd1811f5c125d972ba70f08de6
3949ee86e790f2f03736a1540866b5fc3fb4518d
937d7c96d33b15f39b022bfd82949a1a9339a805d7ecee5882f484b6ec3eed8c
GET /gtag/js?id=G-JJYCYBTMJJ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 10 May 2023 13:28:01 GMT
expires: Wed, 10 May 2023 13:28:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73856
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
104.18.10.207200 OK 28 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
IP 104.18.10.207:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (27303)
Hash 4fbd15cb6047af93373f4f895639c8bf
12d6861075de8e293265ff6ff03b1f3adcb44c76
ddd92f10ad162c7449eff0acaf40598c05b1111739587edb75e5326b6697c5d5
GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 565, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 2021-06-08 19:04:20
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: e9a84d03a1f7c6aa17012c712a6e5dd5
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 29169528
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7c5285d999760b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_bold-webfont.woff
172.67.150.49200 OK 20 kB URL GET HTTP/3 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_bold-webfont.woff
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type Web Open Font Format, TrueType, length 19820, version 1.0\012- data
Hash 80f04f1fb979f498e3974c2232947fad
2719a0968828aae4717a8b06341817bb36bba18a
a5044fc3848a0c98e933154facc7e930b0b0564521a550ac8202ec6f3e662767
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/generatoro-premium/template/includes/gen/fonts/bebasneue_bold-webfont.woff HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.markasjitu.online
DNT: 1
Connection: keep-alive
Referer: https://generatortool.online/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 10 May 2023 13:28:01 GMT
content-type: font/woff
content-length: 19820
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:01 GMT
last-modified: Sat, 03 Oct 2020 07:42:44 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WZyjbNqcbWTk9mU82t%2FGBFFSyVO2vdPsAwpZtYwS3lqzNZubgjSp5J3rhTnu9NNuowR%2BLu%2FusmuT%2B7850HZ8QuMADbKCDJnEP85CWsLsuuWycAnw4tiMp%2FKxd607BjPqgal8ct5fBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c5285df9a5a0b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/css/animate.css
172.67.150.49200 OK 76 kB URL GET HTTP/2 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/css/animate.css
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
Hash b80b06d4fbe166a7742420f471cf254b
036ca43abcb98e3c18bc6fd195da918651a59c56
5852578518d4f01fc9946b1a66c2fd35ea3071888a947efcc82d0a08c1fc6aa4
GET /wp-content/plugins/generatoro-premium/template/includes/gen/css/animate.css HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: text/css
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:00 GMT
last-modified: Sat, 03 Oct 2020 07:42:44 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KOH0ySkGqkOtFFHWyNE6iwm7ypeX22nWrMaQBh1vL4xbPhE6uwEqMoz38EzXKATsqXVV0xp0YteBApngAL3raci4jlYjAClRVAPSocu00GGUu3ZdgNxft7icmAIxJbfqwL9QE5NU4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285da3849b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/css/fancySelect.css
172.67.150.49200 OK 4.6 kB URL GET HTTP/2 generatortool.online/wp-content/plugins/generatoro-premium/template/includes/gen/css/fancySelect.css
IP 172.67.150.49:443
Requested by https://www.markasjitu.online/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint15:E0:02:AD:AD:EF:DE:8A:49:18:4F:03:91:C8:2F:FF:50:80:5D:4A
ValiditySat, 23 Jul 2022 00:00:00 GMT - Sun, 23 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (4727), with no line terminators
Hash 5686b4bfbda9242eb2b250c05ed51301
9c04d582ef65498508283e961eaabebc05374fdb
c94d4a484fd7eb20af65108e33aa150d8f516a8ff559026c51686a7188bf7f63
GET /wp-content/plugins/generatoro-premium/template/includes/gen/css/fancySelect.css HTTP/1.1
Host: generatortool.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.markasjitu.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 13:28:00 GMT
content-type: text/css
cache-control: public, max-age=31536000
expires: Wed, 17 May 2023 13:28:00 GMT
last-modified: Sat, 03 Oct 2020 07:42:44 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2fRT6BhE7lFlwtOAH5jJPxrpV8ADDZa3mt8PQl20A59xZ3au4i9ZxjErlkEAzkASfNnlC1GjUmXUbpzubxe0ITx1ssu65St9GJAr3wsh2wCyVuaSayIMgTM4H8iHJ%2Frl8hZoZNClEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c5285da4854b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2