r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 150792cfc458af013998f4ef6bdf5f74
d5179b2dcb11d06f82606bf6eb6648319998d63e
72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10303
Expires: Mon, 28 Nov 2022 05:52:48 GMT
Date: Mon, 28 Nov 2022 03:01:05 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5534
Cache-Control: max-age=118942
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:05 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 12:03:27 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12968
Expires: Mon, 28 Nov 2022 06:37:13 GMT
Date: Mon, 28 Nov 2022 03:01:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 02:19:30 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2495
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3Th73xGXoAG68bZ7bdCSfp6N0oyZ0FJxQ6+iqxov99ZdhnBhwDVRDCrOSBZqiZgorA3FJrdCL18=
x-amz-request-id: 70DN0ZD22HTNP1GW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 02:41:53 GMT
age: 1152
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 03:01:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 02:08:54 GMT
cache-control: public,max-age=3600
age: 3132
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2441
Cache-Control: max-age=110787
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:06 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 09:47:33 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
marvellifestyle.com/
148.72.208.119301 Moved Permanently 0 B IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 28 Nov 2022 03:01:05 GMT
Server: Apache
X-Redirect-By: WordPress
Location: https://marvellifestyle.com/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
52.42.74.230101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.74.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ALBwWLPQuI3Iy6/2t8xtYA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wyabMhTJh3QTBe/tXoq6kSnlzLs=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7743
Expires: Mon, 28 Nov 2022 05:10:11 GMT
Date: Mon, 28 Nov 2022 03:01:08 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7743
Expires: Mon, 28 Nov 2022 05:10:11 GMT
Date: Mon, 28 Nov 2022 03:01:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7743
Expires: Mon, 28 Nov 2022 05:10:11 GMT
Date: Mon, 28 Nov 2022 03:01:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7743
Expires: Mon, 28 Nov 2022 05:10:11 GMT
Date: Mon, 28 Nov 2022 03:01:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fa848cb85e85df184b078fe7aa95ae52
21aa6418f3a0d2b64925b66d5fb9079b7e84a11c
37d299c166e3350dee6dee647e98a86f8bd916d186bae12c42764ed0a3177085
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5989
x-amzn-requestid: db10fcc5-80ab-4650-af49-d5afe36706f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78LHQqIAMF9_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-4cbd19e3227894844807742c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: P0Nx-FcvcV-f5cRPwZr5sEMb8pH3AoYFr185q_D0X2bE7z40nDn91w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:04 GMT
age: 18604
etag: "21aa6418f3a0d2b64925b66d5fb9079b7e84a11c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e5051d8c06f69e1842a9295ce256a36
1a542a53ba0b1cd0fb23257ebed8166555f16dfb
a7c0dbbb4d0d9138f5ca318cc2aa44e12dadf7ed6263ec204ba756da64b29c41
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7556
x-amzn-requestid: 1cda5313-2256-4830-bf84-2e6e15949d3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78KFTmoAMF4yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-452e36d718a298d12a2374a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OWVkuAw6-nRNU_CVOgvsSSenSXnfSYSmJiKa60JvSaiJgPuXjJByZw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:46:41 GMT
age: 18867
etag: "1a542a53ba0b1cd0fb23257ebed8166555f16dfb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa915ba56-f7bc-48fc-b725-b932389634d5.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa915ba56-f7bc-48fc-b725-b932389634d5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0a4e0bb1e2748bdce6bbf685a910f0fc
5b97bfd787afcb912cdbef0f137f78a059082992
a7bc9adeb22cb57675e907bd961a6f554e6b7a46414ed782bcc9b53d68b1c328
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa915ba56-f7bc-48fc-b725-b932389634d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15639
x-amzn-requestid: 98e846b4-287f-4698-9529-25bcc2727a4a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78dGReoAMFiDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e9-62c41b2717bd8e6f3b3797da;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fxNulyOR88nEcjtrXm1dECsulI-MsAxm2Zl0Y83uMz23lGh18d-ZBA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:56:55 GMT
age: 18253
etag: "5b97bfd787afcb912cdbef0f137f78a059082992"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 15bd53848c7082464273007e010c54e0
9a3ca698ca1aeae695923277ed2244465e01a1ea
36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U_gitOWWMPO7M5Dd0WktaigfRERa93d86MhziLjZ2qnuON_K5NauyQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:54:37 GMT
age: 18391
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 005e5ba3c9588cf389a58195001b64e3
238a7439d887fb3aa7f1302eeb43fce62f08441a
d75dd5b6f57d9c9290725c5be76cc7d7a39682ca569bea18eceb9bdc13d444f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10813
x-amzn-requestid: 5a3c9584-1389-45ac-968d-0a2301f82eda
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KG00oAMFpig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-6ffc3ff67f7f7e75399834e8;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pyXmSrIJ5ookfmhWY2xPXv374JfY2fFkcgiz5q8iFpWV4Rm0f0zXtg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:04 GMT
age: 18604
etag: "238a7439d887fb3aa7f1302eeb43fce62f08441a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4060284252d32701c42e2df4a83970a0
a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da
53eca0f8435d6e2e62962ef80d4597afad2773a582746d523f7f5d30c3e07b8e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F17eed5ca-e7b1-43be-b937-69356fce9d8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4708
x-amzn-requestid: 6efd15cd-c944-42e7-8142-01360fbe4a25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_JFbXIAMFc_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-3c7d91eb7a2f3a9669f89d88;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GDQn-_Np3qSCYR2kQJnoh6j3-aS25bPTNl13D6MkZpF1fkOhokkFbA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:02:24 GMT
age: 17924
etag: "a73feecd0e221f7c7a3b74b75aeaa81bd9baa1da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
code.jquery.com/jquery-3.6.0.min.js
69.16.175.42200 OK 31 kB URL HTTP/2 code.jquery.com/jquery-3.6.0.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (65447)
Hash 899f0189aaf034bbba5340f724d91dfa
210ea9de03968edb9d839ba4a0ce2d48666a8ab8
949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://marvellifestyle.com
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 03:01:08 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669604468.dop009.sk1.t,1669604468.cds264.sk1.hn,1669604468.cds210.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-117254349-1
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-117254349-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash dd44781ce883213098ab7b5739c89add
349c506554e6ab1b9b0c805534fd059347208c88
b927c4cfbeccb74738a6e8a8b8316bd080740d60e4db3ae44ae4e539bfa92a25
GET /gtag/js?id=UA-117254349-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 03:01:08 GMT
expires: Mon, 28 Nov 2022 03:01:08 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44715
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash efb85bdb2274abf336f4748eeb5d6bdc
6810b0f697c246d93648d569172e234376f3c2fe
f8af0676272c238c5eb8e2a65d932d5f5e8eebea3069c443da5edecbd114951b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6175
Cache-Control: max-age=135407
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:08 GMT
Etag: "63837a44-116"
Expires: Tue, 29 Nov 2022 16:37:55 GMT
Last-Modified: Sun, 27 Nov 2022 14:55:00 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=AW-974039318
142.250.74.168200 OK 67 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-974039318
IP 142.250.74.168:0
File type ASCII text, with very long lines (2917)
Hash f18f6c981d2c3382fb7cecb589376664
c9e095d3407511a658bec1a18cfdd4e9bb166f7f
c6293de87598a2e2dff7f5c096b2be6cabd5d5a44b556a1b31c4f0ec0fceddcd
GET /gtag/js?id=AW-974039318 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 03:01:08 GMT
expires: Mon, 28 Nov 2022 03:01:08 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 66942
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
marvellifestyle.com/
148.72.208.119200 OK 98 kB IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2914)
Hash d4b8b9e5d41d2cb40dbf6f351b63328e
663a410ab461bc4049e002e170242d83002f8ba7
67cfed955056d04cba73e02ccf46042655056c63dd01325d2ecc92032d600b7c
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:07 GMT
Server: Apache
Link: <https://marvellifestyle.com/wp-json/>; rel="https://api.w.org/", <https://marvellifestyle.com/wp-json/wp/v2/pages/18>; rel="alternate"; type="application/json", <https://marvellifestyle.com/>; rel=shortlink
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
marvellifestyle.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
148.72.208.119200 OK 4.2 kB URL HTTP/1.1 marvellifestyle.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (4186), with no line terminators
Hash ea958276b7de454bd3c2873f0dc47e5f
b143f6e8e8f79d8f104c26b0057ef5514d763219
2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:08 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 18:02:30 GMT
Accept-Ranges: bytes
Content-Length: 4186
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/themes/MyCallistus/css/my.css
148.72.208.119200 OK 30 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/css/my.css
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 8a4b163afa1f32581ae8e4d9917c680b
5ceb95343102f9c7b08fc3b2ef6af1a2a345cd51
bf5ce8d827aa7ec8adff790fa98a91c9b3a5beed7546dc63d9a0fff10024ed3d
GET /wp-content/themes/MyCallistus/css/my.css HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:08 GMT
Server: Apache
Last-Modified: Sat, 05 Mar 2022 13:39:12 GMT
Accept-Ranges: bytes
Content-Length: 29960
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/themes/MyCallistus/style.css?ver=1.5
148.72.208.119200 OK 2.5 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/style.css?ver=1.5
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (544)
Hash 493851f4e8fcde06fe90f8b55ad6ec27
b090e8b399415db1c4e5b471f2f430ebcfb95b7f
ccc47f84711b0202e2be025416df2db42044aafb43239c88fb985c3fff0383e5
GET /wp-content/themes/MyCallistus/style.css?ver=1.5 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:08 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 18:28:28 GMT
Accept-Ranges: bytes
Content-Length: 2471
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
148.72.208.119200 OK 11 kB URL HTTP/1.1 marvellifestyle.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (11256), with no line terminators
Hash 2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:08 GMT
Server: Apache
Last-Modified: Sat, 18 Jun 2022 00:17:50 GMT
Accept-Ranges: bytes
Content-Length: 11256
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/themes/MyCallistus/css/first-my.css
148.72.208.119200 OK 20 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/css/first-my.css
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash b95a1a70cf991cd084470e1730cb7a92
094523ea2e8d7ac36254d5dd11e60a402252d180
81ec601b777299972bdafd35934fc92229e3b300b12e496baa34e3cd05d81873
GET /wp-content/themes/MyCallistus/css/first-my.css HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:09 GMT
Server: Apache
Last-Modified: Sun, 13 Mar 2022 10:05:24 GMT
Accept-Ranges: bytes
Content-Length: 20149
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/plugins/jetpack/css/jetpack.css?ver=11.5.1
148.72.208.119200 OK 86 kB URL HTTP/1.1 marvellifestyle.com/wp-content/plugins/jetpack/css/jetpack.css?ver=11.5.1
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 6f4926553f60aada8089e855d5ef60fb
d903e36ba172768b7801e84ee61b9d8b6106bd7d
96852267480e97e11f1058af3c56a86368b3c6647c2c4de7a69de2a693be9f68
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=11.5.1 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:08 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 11:46:26 GMT
Accept-Ranges: bytes
Content-Length: 85906
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://marvellifestyle.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:10:21 GMT
expires: Wed, 22 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 467448
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://marvellifestyle.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 21:11:39 GMT
expires: Sun, 26 Nov 2023 21:11:39 GMT
cache-control: public, max-age=31536000
age: 107370
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Lato:400,700
142.250.74.10200 OK 31 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:400,700
IP 142.250.74.10:0
Hash 2c137fd6ca7daee0f21d8cf5485d6cb4
1855492977f0a2a11526fc0fed105720020b9e79
0afec09f9e673e4729903ff8b5376d2f0180f5515552fc7121b0408354b65457
GET /css?family=Lato:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 28 Nov 2022 03:01:08 GMT
date: Mon, 28 Nov 2022 03:01:08 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
marvellifestyle.com/wp-content/themes/MyCallistus/css/jpgvba.css
148.72.208.119200 OK 14 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/css/jpgvba.css
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (13902), with no line terminators
Hash dca7fc5ff93cc62e75ee05c4b6d6224d
5bdb81fc496ac14196c52e010a04fe388e8a53e0
1336ee5e684784b8be332d2e653aecc38a762312d754166c723de8666532acc3
GET /wp-content/themes/MyCallistus/css/jpgvba.css HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:09 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 18:32:36 GMT
Accept-Ranges: bytes
Content-Length: 13902
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/themes/MyCallistus/css/bootstrap.min.css
148.72.208.119200 OK 122 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/css/bootstrap.min.css
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65371)
Size 122 kB (121470 bytes)
Hash 175c02a136b2ad82806b9b33736b5a69
e5dfb20142280c784ff61b05a1da338ed64483f2
817c144a7de95c03dd00337f2e6c0011e9afa24044999d4c52615ee90a6765a8
GET /wp-content/themes/MyCallistus/css/bootstrap.min.css HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:08 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 18:32:36 GMT
Accept-Ranges: bytes
Content-Length: 121470
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/themes/MyCallistus/css/menu.css
148.72.208.119200 OK 2.5 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/css/menu.css
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 600cf9450f80eded9a77bf50ffe31da3
a22a95cfc2ce1d712af2cbd91b21dc7ab80cdc38
2f53bb55a2dc9bb5d78029dc2bfc77e13c234a007655e6ee457c9c33a787e9a3
GET /wp-content/themes/MyCallistus/css/menu.css HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:09 GMT
Server: Apache
Last-Modified: Wed, 13 Apr 2022 18:31:08 GMT
Accept-Ranges: bytes
Content-Length: 2520
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/themes/MyCallistus/css/animate.min.css
148.72.208.119200 OK 53 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/css/animate.min.css
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (52592)
Hash 178b651958ceff556cbc5f355e08bbf1
97afa151569f046b2e01f27c1871646e9cd87caf
8fe3fa119255adb5e0c12479331f9e092e85bcff56ab6ecc0510bfa2056b898d
GET /wp-content/themes/MyCallistus/css/animate.min.css HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:09 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 18:32:36 GMT
Accept-Ranges: bytes
Content-Length: 52789
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/themes/MyCallistus/css/owl.carousel.css
148.72.208.119200 OK 3.4 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/css/owl.carousel.css
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (3186)
Hash 5b41efb1a743df5816f5fa73871ef31e
1d78af6063913c46bdc7361d09cca75b2c0bb636
0a6e8777f6e5a601298103eea572c9d2a4caaa0232e28fea72942dd23d4037d1
GET /wp-content/themes/MyCallistus/css/owl.carousel.css HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:09 GMT
Server: Apache
Last-Modified: Sat, 26 Mar 2022 01:55:20 GMT
Accept-Ranges: bytes
Content-Length: 3353
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/themes/MyCallistus/css/slider.css
148.72.208.119200 OK 439 B URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/css/slider.css
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash bf2a8fdf00bc837e2b7cf82838ab5eec
a88a69ebc758b6625f884d6f7fd6596327c89df6
55341e74e2538faadba1fca515312458a481ccee36fe2d6a6ca6ac37b890baf6
GET /wp-content/themes/MyCallistus/css/slider.css HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 18:32:38 GMT
Accept-Ranges: bytes
Content-Length: 439
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/themes/MyCallistus/css/owl.theme.css
148.72.208.119200 OK 1.0 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/css/owl.theme.css
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (858)
Hash 5e0b35df5d035c5ff9be97b52d816fb7
924becfca1df2698c8c7ea1e088bbd07a61c97db
d1524428840d87d61edca30e921ceb1480159a0da6abbe60ac92f8a8717c3694
GET /wp-content/themes/MyCallistus/css/owl.theme.css HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 18:32:38 GMT
Accept-Ranges: bytes
Content-Length: 1025
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/themes/MyCallistus/css/baguettebox.css
148.72.208.119200 OK 4.9 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/css/baguettebox.css
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 84ffb070c64a4b76f1875684d1870a43
63bf9e89bcba12b7a06458c0a6964b69f45c9a6b
c4727a8d1bf47611872afe9c4c7bef740449df7f72df420b80dc6208e3690b63
GET /wp-content/themes/MyCallistus/css/baguettebox.css HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 18:32:34 GMT
Accept-Ranges: bytes
Content-Length: 4903
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
148.72.208.119200 OK 19 kB URL HTTP/1.1 marvellifestyle.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sat, 18 Jun 2022 00:17:50 GMT
Accept-Ranges: bytes
Content-Length: 18617
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/themes/MyCallistus/js/bootstrap.min.js
148.72.208.119200 OK 37 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/js/bootstrap.min.js
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32033)
Hash 5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/js/bootstrap.min.js HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sat, 15 May 2021 17:33:02 GMT
Accept-Ranges: bytes
Content-Length: 37045
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/themes/MyCallistus/css/font-awesome.css
148.72.208.119200 OK 37 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/css/font-awesome.css
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type troff or preprocessor input, ASCII text, with very long lines (372)
Hash c495654869785bc3df60216616814ad1
0140952c64e3f2b74ef64e050f2fe86eab6624c8
36e0a7e08bee65774168528938072c536437669c1b7458ac77976ec788e4439c
GET /wp-content/themes/MyCallistus/css/font-awesome.css HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 18:32:36 GMT
Accept-Ranges: bytes
Content-Length: 37414
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
region1.google-analytics.com/g/collect?v=2&tid=G-4B9LNYP5Q9>m=2oeb90&_p=1912576737&cid=519063710.1669604469&ul=en-us&sr=1280x1024&_s=1&sid=1669604469&sct=1&seg=0&dl=https%3A%2F%2Fmarvellifestyle.com%2F&dt=Marvel%20Blinds%20%7C%20Window%20Blinds%2C%20Shades%2C%20Coverings%20%7C%20Manufacturer%20of%20Premium%20Quality%20Window%20Blinds%20%7C%20Interior%20Shutters%20for%20Windows&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-4B9LNYP5Q9>m=2oeb90&_p=1912576737&cid=519063710.1669604469&ul=en-us&sr=1280x1024&_s=1&sid=1669604469&sct=1&seg=0&dl=https%3A%2F%2Fmarvellifestyle.com%2F&dt=Marvel%20Blinds%20%7C%20Window%20Blinds%2C%20Shades%2C%20Coverings%20%7C%20Manufacturer%20of%20Premium%20Quality%20Window%20Blinds%20%7C%20Interior%20Shutters%20for%20Windows&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-4B9LNYP5Q9>m=2oeb90&_p=1912576737&cid=519063710.1669604469&ul=en-us&sr=1280x1024&_s=1&sid=1669604469&sct=1&seg=0&dl=https%3A%2F%2Fmarvellifestyle.com%2F&dt=Marvel%20Blinds%20%7C%20Window%20Blinds%2C%20Shades%2C%20Coverings%20%7C%20Manufacturer%20of%20Premium%20Quality%20Window%20Blinds%20%7C%20Interior%20Shutters%20for%20Windows&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://marvellifestyle.com
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://marvellifestyle.com
date: Mon, 28 Nov 2022 03:01:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
marvellifestyle.com/wp-content/themes/MyCallistus/js/menu.js
148.72.208.119200 OK 5.6 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/js/menu.js
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 3dbee843768a156812d4db256bb868fa
b5ff69f9f5a8186c4b13a89ca41dcc431233de40
5f60db99c53e8c38581c9e17d92f8e96dce0cabfbe91f8fd1c9bba92edf81729
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/js/menu.js HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sun, 31 Jul 2022 02:18:42 GMT
Accept-Ranges: bytes
Content-Length: 5627
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/themes/MyCallistus/js/owl.carousel.js
148.72.208.119200 OK 106 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/js/owl.carousel.js
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Size 106 kB (106527 bytes)
Hash eaa7203041505ef3e497cc9306d2273c
b43916381dbdfec51ef8fb8d9e4c529f13f1a49a
b96b459583d1ac9873a14d18d7eb0024205a456dcffd285a0fc8e06fc9a621a5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/js/owl.carousel.js HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sat, 15 May 2021 17:33:08 GMT
Accept-Ranges: bytes
Content-Length: 106527
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/themes/MyCallistus/js/carousel.js
148.72.208.119200 OK 1.1 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/js/carousel.js
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash ac602583733e06d44038cda8f57b2216
9e65871a5bb2a60fc3568eb03774e701cefe30b5
1bea3cc1dce8ac5ee59171ff2a968f013c68443da900eb76273272c86fb93469
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/js/carousel.js HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sat, 18 Jun 2022 02:45:04 GMT
Accept-Ranges: bytes
Content-Length: 1136
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/themes/MyCallistus/js/carousel2.js
148.72.208.119200 OK 1.1 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/js/carousel2.js
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 87b4e85163ffdac189acca5dc9b22709
ef89ecc8a48205cd04ca84ffa5892c8816510f9c
010393180caf3f8895b3564a62051ff34d08e2e28494820503935eab62362132
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/js/carousel2.js HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sat, 18 Jun 2022 02:46:34 GMT
Accept-Ranges: bytes
Content-Length: 1136
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/themes/MyCallistus/js/carousel3.js
148.72.208.119200 OK 1.1 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/js/carousel3.js
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash db80c3b8fcd0d44d1ce96d28bbfedaf2
bceeeddbc3b7c57b0f1f2c7f8f81cb1187e14fbe
66804634fbdaa72a287cd1bb771a2dc5bf409782440cfbf5a65f296d42bba17f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/js/carousel3.js HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sat, 18 Jun 2022 02:46:46 GMT
Accept-Ranges: bytes
Content-Length: 1136
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/themes/MyCallistus/js/jquery.js
148.72.208.119200 OK 87 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/js/jquery.js
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65451)
Hash a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/js/jquery.js HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sat, 15 May 2021 17:33:04 GMT
Accept-Ranges: bytes
Content-Length: 86927
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/themes/MyCallistus/js/carousel4.js
148.72.208.119200 OK 1.1 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/js/carousel4.js
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 559aeaec79907bba72e4c4d42141a3a1
18903c8d70f9acf8a7ee7b2d0f91758f6d8d4130
e49878184a8ec983f9a7a300b905f3e426519efba5d7fc86d48bc9f8f6fa4fb5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/js/carousel4.js HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sat, 18 Jun 2022 02:47:00 GMT
Accept-Ranges: bytes
Content-Length: 1136
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/themes/MyCallistus/js/carousel5.js
148.72.208.119200 OK 1.1 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/js/carousel5.js
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 86ea3de5837a987c3ca939115981faac
34dde5d35acb5e70e17c18c3073d06c70f9ec071
01b0f00aa2b2477769f8415e8faa6e0edb40dcfd3bd3e55749e30e25ab91cc96
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/js/carousel5.js HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sat, 18 Jun 2022 02:47:16 GMT
Accept-Ranges: bytes
Content-Length: 1136
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/themes/MyCallistus/js/jpgvba.js
148.72.208.119200 OK 66 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/js/jpgvba.js
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (32019)
Hash 42b18d5c979e5211cd28727405f5e2dd
b56bb8d81115bf722398cfeaea3ceb96b8e1a2b6
25bcc008588e269f8dc3c7c5785f1f515e7d2e657d734a0d34b22ac3c366e792
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/js/jpgvba.js HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sat, 15 May 2021 17:33:04 GMT
Accept-Ranges: bytes
Content-Length: 66099
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/themes/MyCallistus/js/custom.js
148.72.208.119200 OK 27 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/js/custom.js
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 18813e4913f43d477d4c6b3385343164
53df3ef000da50d7ac6ca67c6b4a24d65ffeda50
de5e1da44310ee8447d86131d789f63032dd9802dd3c9646f35337300d4d9945
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/js/custom.js HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sat, 15 May 2021 17:33:04 GMT
Accept-Ranges: bytes
Content-Length: 27286
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/themes/MyCallistus/js/baguettebox.js
148.72.208.119200 OK 27 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/js/baguettebox.js
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 1dd322d2695189b9656881ac54111942
02006be1aa476847f3a3ba76ef93ace108752aa1
d32215c3d7796a7cb402981d278b621a9a5266373a4213c308e0ee49296292ec
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/js/baguettebox.js HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Sat, 15 May 2021 17:33:02 GMT
Accept-Ranges: bytes
Content-Length: 26993
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/themes/MyCallistus/js/util.js
148.72.208.119200 OK 4.7 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/js/util.js
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 071c509feb5062fffef918b3619bfa29
ff505b22adcf04ad7bc2ef542cf42c0976bb0e77
c3c76c7a9fe689711b2ac84fa99abe2b186f471e92659b317a67faa06321733b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/js/util.js HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Fri, 22 Apr 2022 18:43:08 GMT
Accept-Ranges: bytes
Content-Length: 4671
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/themes/MyCallistus/js/main.js
148.72.208.119200 OK 8.0 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/js/main.js
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (959)
Hash 6c9d0b1c2b7075d49e147798b148df9a
f92e0a1842fc21a3017dc1aaedcafd27733c54f7
2c5b3626872191b4d224ae6b2ea01f8ab70c2bb5a4f9d1cbfe21f46a29104ff3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/js/main.js HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:10 GMT
Server: Apache
Last-Modified: Fri, 22 Apr 2022 18:43:08 GMT
Accept-Ranges: bytes
Content-Length: 8030
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/uploads/forminator/css/style-10617.css?ver=1655959560
148.72.208.119200 OK 34 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/forminator/css/style-10617.css?ver=1655959560
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 18cff04293501b2218a082f42e054f55
e9837fe1d9b492387ce5c46f4b49864f657f6d65
c94c943c769c2f53efe50cc2395485383dc368b2bb0297732f2944e01c8fa4c6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/forminator/css/style-10617.css?ver=1655959560 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Thu, 23 Jun 2022 17:16:00 GMT
Accept-Ranges: bytes
Content-Length: 33789
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/plugins/forminator/assets/forminator-ui/css/forminator-icons.min.css?ver=1.19.0
148.72.208.119200 OK 5.2 kB URL HTTP/1.1 marvellifestyle.com/wp-content/plugins/forminator/assets/forminator-ui/css/forminator-icons.min.css?ver=1.19.0
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (5055)
Hash 442fa7a4e48e568cbb68428ae25cd18e
e7f851f0a74b8132f08a7bae64f3f6a3f960594e
2a51c0e3455ad7119e8dc76b3be4341c2b68574ac71ce34c4ee909d89130265a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/forminator/assets/forminator-ui/css/forminator-icons.min.css?ver=1.19.0 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 11:46:12 GMT
Accept-Ranges: bytes
Content-Length: 5239
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/plugins/forminator/assets/forminator-ui/css/src/forminator-utilities.min.css?ver=1.19.0
148.72.208.119200 OK 763 B URL HTTP/1.1 marvellifestyle.com/wp-content/plugins/forminator/assets/forminator-ui/css/src/forminator-utilities.min.css?ver=1.19.0
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (619)
Hash 94f1cb8aadca9cc82c1b48da3c7fbf8d
eebba2ab49b14ad426fe967a4b1355988d59893e
991e3f2147bb5309660bba4c78fb2b4be190dd22ef73df6d950e25014728a81b
GET /wp-content/plugins/forminator/assets/forminator-ui/css/src/forminator-utilities.min.css?ver=1.19.0 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 11:46:12 GMT
Accept-Ranges: bytes
Content-Length: 763
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/plugins/forminator/assets/forminator-ui/css/src/grid/forminator-grid.open.min.css?ver=1.19.0
148.72.208.119200 OK 3.8 kB URL HTTP/1.1 marvellifestyle.com/wp-content/plugins/forminator/assets/forminator-ui/css/src/grid/forminator-grid.open.min.css?ver=1.19.0
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (3607)
Hash 6ee09475010080531fae67469f3f299f
d8efa7596efb25cb8f0f11eb67af8da10c2c1e79
afe4a9dd20a704a96564101ffc9dc90930194617004fcd4f00c43dbcdf61ff6f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/forminator/assets/forminator-ui/css/src/grid/forminator-grid.open.min.css?ver=1.19.0 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 11:46:12 GMT
Accept-Ranges: bytes
Content-Length: 3751
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/plugins/forminator/assets/forminator-ui/css/src/form/forminator-form-default.base.min.css?ver=1.19.0
148.72.208.119200 OK 58 kB URL HTTP/1.1 marvellifestyle.com/wp-content/plugins/forminator/assets/forminator-ui/css/src/form/forminator-form-default.base.min.css?ver=1.19.0
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (57678)
Hash d12eb8f9beb192f2cfebe753995e07c4
88a0c68b5bce2522c7615b554c4d2c96c35f934a
ef321b4c202e429106ee2effc81d2db36beed54e9a7f51394efa92e26bdcda65
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/forminator/assets/forminator-ui/css/src/form/forminator-form-default.base.min.css?ver=1.19.0 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 11:46:12 GMT
Accept-Ranges: bytes
Content-Length: 57826
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/plugins/forminator/assets/forminator-ui/css/src/form/forminator-form-default.select2.min.css?ver=1.19.0
148.72.208.119200 OK 12 kB URL HTTP/1.1 marvellifestyle.com/wp-content/plugins/forminator/assets/forminator-ui/css/src/form/forminator-form-default.select2.min.css?ver=1.19.0
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (11849)
Hash 1045a3620abe623311eec9dff9786fad
d0644456feb67b4d3d348a129bf916f3e682b5bd
b528aba1c6d5bb77688dfb9a11a6d07ba5e7ae8514baf192584d410300c4c89b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/forminator/assets/forminator-ui/css/src/form/forminator-form-default.select2.min.css?ver=1.19.0 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 11:46:12 GMT
Accept-Ranges: bytes
Content-Length: 11993
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/plugins/forminator/assets/forminator-ui/css/src/form/forminator-form-default.full.min.css?ver=1.19.0
148.72.208.119200 OK 60 kB URL HTTP/1.1 marvellifestyle.com/wp-content/plugins/forminator/assets/forminator-ui/css/src/form/forminator-form-default.full.min.css?ver=1.19.0
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (59757)
Hash ba2ced04fcd4183ef4da2ecf578125f8
73d60263d4164c4f69677a97a9629d79c25510e8
0e29e8d010af167812b9498795cc11b16719cea737d3eab1799626fa3f12b385
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/forminator/assets/forminator-ui/css/src/form/forminator-form-default.full.min.css?ver=1.19.0 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 11:46:12 GMT
Accept-Ranges: bytes
Content-Length: 59905
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/plugins/forminator/assets/css/intlTelInput.min.css?ver=4.0.3
148.72.208.119200 OK 19 kB URL HTTP/1.1 marvellifestyle.com/wp-content/plugins/forminator/assets/css/intlTelInput.min.css?ver=4.0.3
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (19157), with no line terminators
Hash 6b7fb2ee130535419a67afb198f41c2b
ffb8a25633c4ddeab81d1b1742ac2fd0b442a4c6
c6956e8710cf477f7014440385ae16ee4b8cc7ecfd02fddd4d2f0c6c7fd15845
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/forminator/assets/css/intlTelInput.min.css?ver=4.0.3 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 11:46:12 GMT
Accept-Ranges: bytes
Content-Length: 19157
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-includes/css/buttons.min.css?ver=6.1.1
148.72.208.119200 OK 5.9 kB URL HTTP/1.1 marvellifestyle.com/wp-includes/css/buttons.min.css?ver=6.1.1
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (5819)
Hash 61acbb6ebdd2479dcb66e467e3f1d80f
82f9d6c19de343cc39b2c461b4a9a97770699ec8
a263951ba358b2b766fe5e06c24a5869f2a67aeee53a4ba7d3b1f9d478fc3c34
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/buttons.min.css?ver=6.1.1 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Sat, 18 Jun 2022 00:17:50 GMT
Accept-Ranges: bytes
Content-Length: 5854
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/themes/MyCallistus/js/priority-menu.js?ver=20181214
148.72.208.119200 OK 5.4 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/js/priority-menu.js?ver=20181214
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 4be27e262a6d42fbc85440f90c4749af
4de71b46bf5c36e4f55b1b0c650b9612ec14a588
492891acff98994bc1b483f33180cc1ba8245cd4a7e8c1c5478a482db0a04e7c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/js/priority-menu.js?ver=20181214 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Sat, 15 May 2021 17:33:06 GMT
Accept-Ranges: bytes
Content-Length: 5375
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/uploads/forminator/css/style-10616.css?ver=1657087170
148.72.208.119200 OK 34 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/forminator/css/style-10616.css?ver=1657087170
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 44eef903d57747fe4e48df25be72495f
c5c9931cccb2a4b06afcdaea052959487db9f591
7eab71ab0ce3aefdf0511b439d0749cd9ae2dd89721005bbe77f881ba3b1c67c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/forminator/css/style-10616.css?ver=1657087170 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Wed, 06 Jul 2022 18:29:30 GMT
Accept-Ranges: bytes
Content-Length: 33789
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/themes/MyCallistus/js/touch-keyboard-navigation.js?ver=20181231
148.72.208.119200 OK 9.5 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/js/touch-keyboard-navigation.js?ver=20181231
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash da053b301ba2cd23ca42ca1ed713b76e
e073977d9c016cda0ddd74c04abac6c6ff9b1ea1
4556ec7c95c3447a2a403c664e050a192cf57156195f821ee22ac0fd43d51169
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/js/touch-keyboard-navigation.js?ver=20181231 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Sat, 15 May 2021 17:33:02 GMT
Accept-Ranges: bytes
Content-Length: 9465
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
148.72.208.119200 OK 90 kB URL HTTP/1.1 marvellifestyle.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 11:45:22 GMT
Accept-Ranges: bytes
Content-Length: 89684
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
148.72.208.119200 OK 11 kB URL HTTP/1.1 marvellifestyle.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Sat, 18 Jun 2022 00:17:50 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/plugins/forminator/assets/forminator-ui/js/select2.full.min.js?ver=1.19.0
148.72.208.119200 OK 75 kB URL HTTP/1.1 marvellifestyle.com/wp-content/plugins/forminator/assets/forminator-ui/js/select2.full.min.js?ver=1.19.0
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (64213), with no line terminators
Hash e3f0149e250629dfd30e809bce887125
4b7c2b64887e7dd985096934fa3518d700ea1f5d
f1d75d6067a65defb5cdb8f606431502c8af9b79ca7a1964bf845a175d0cefc4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/forminator/assets/forminator-ui/js/select2.full.min.js?ver=1.19.0 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 11:46:12 GMT
Accept-Ranges: bytes
Content-Length: 74964
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/themes/MyCallistus/print.css?ver=1.5
148.72.208.119200 OK 3.9 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/print.css?ver=1.5
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 3432f2f216bfabf37221dc6a918f938b
b3fbc0ef16c85fd1e59de7e338d60ba2782add7e
3988e225a811f9523107de1c8098a49adf8cf3a302df020382c696168bc5cda5
GET /wp-content/themes/MyCallistus/print.css?ver=1.5 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Cookie: _gcl_au=1.1.143612006.1669604469; _ga_4B9LNYP5Q9=GS1.1.1669604469.1.0.1669604469.0.0.0; _ga=GA1.1.519063710.1669604469
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 18:28:24 GMT
Accept-Ranges: bytes
Content-Length: 3949
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
marvellifestyle.com/wp-content/plugins/forminator/assets/js/library/intlTelInput.min.js?ver=1.19.0
148.72.208.119200 OK 30 kB URL HTTP/1.1 marvellifestyle.com/wp-content/plugins/forminator/assets/js/library/intlTelInput.min.js?ver=1.19.0
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (27010)
Hash 2447f2c2ed213d9fa6ed527e58a4c598
6e7c692001db12ce9394322b920891024ca378fb
a241775de6bfea5556c68ed89a6839eb06f3bad09d387c45356a49b98fcbc501
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/forminator/assets/js/library/intlTelInput.min.js?ver=1.19.0 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 11:46:12 GMT
Accept-Ranges: bytes
Content-Length: 29962
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/plugins/forminator/assets/js/library/jquery.validate.min.js?ver=1.19.0
148.72.208.119200 OK 24 kB URL HTTP/1.1 marvellifestyle.com/wp-content/plugins/forminator/assets/js/library/jquery.validate.min.js?ver=1.19.0
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (24292)
Hash 08ea8682652b05beea01dda05766d2e1
a88370395f5758361f27803c429286aa12c3f7ee
4c0cc637858d6503cba9262f8be75740c29e853605a153a7bde46a6e2e367eb0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/forminator/assets/js/library/jquery.validate.min.js?ver=1.19.0 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 11:46:12 GMT
Accept-Ranges: bytes
Content-Length: 24430
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/plugins/forminator/assets/forminator-ui/js/forminator-form.min.js?ver=1.19.0
148.72.208.119200 OK 13 kB URL HTTP/1.1 marvellifestyle.com/wp-content/plugins/forminator/assets/forminator-ui/js/forminator-form.min.js?ver=1.19.0
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (13077)
Hash 13db8ce7c27b415f26c810fa3f802c26
a0ba00aaf317447cdd4563e5532c037c23d0620d
4850a1ddbc7d9905ca24792acd9f1c00c7a3bbd7cd0d332f89836ad9e6f27d1e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/forminator/assets/forminator-ui/js/forminator-form.min.js?ver=1.19.0 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 11:46:12 GMT
Accept-Ranges: bytes
Content-Length: 13225
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/plugins/forminator/build/front/front.multi.min.js?ver=1.19.0
148.72.208.119200 OK 214 kB URL HTTP/1.1 marvellifestyle.com/wp-content/plugins/forminator/build/front/front.multi.min.js?ver=1.19.0
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65536), with no line terminators
Size 214 kB (214184 bytes)
Hash 5a1c45bddef9b88e253bf9b9daaa4210
c233b1bcf90958b6e959ef40f2fc2e05fe441b16
3f95245938d68c0dce33c40974c46df32e59f6bff275e10b7b8edaf5a3a23ad3
GET /wp-content/plugins/forminator/build/front/front.multi.min.js?ver=1.19.0 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:11 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 11:46:12 GMT
Accept-Ranges: bytes
Content-Length: 214184
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
marvellifestyle.com/wp-content/themes/MyCallistus/fonts/fontawesome-webfont.woff2?v=4.7.0
148.72.208.119200 OK 77 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://marvellifestyle.com/wp-content/themes/MyCallistus/css/font-awesome.css
Cookie: _gcl_au=1.1.143612006.1669604469; _ga_4B9LNYP5Q9=GS1.1.1669604469.1.0.1669604469.0.0.0; _ga=GA1.1.519063710.1669604469
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:12 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 18:32:40 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff2
marvellifestyle.com/wp-content/themes/MyCallistus/images/search.svg
148.72.208.119200 OK 340 B URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/images/search.svg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (340), with no line terminators
Hash 5224a8fbab7abbfac05addccb61bdce9
66a096d7c6ae9392bfb8849aadb744a86d444f4c
23f37360fd45040ddf4bc6022501db94ea6be6c7191df54c2fe6ce7db3d3d19f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/images/search.svg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:12 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 18:32:54 GMT
Accept-Ranges: bytes
Content-Length: 340
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml
marvellifestyle.com/wp-content/themes/MyCallistus/images/marvel%20logo.jpg
148.72.208.119200 OK 21 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/images/marvel%20logo.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=15, height=2500, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=7500], progressive, precision 8, 124x41, components 3\012- data
Hash ed9b921303654a26d13a1fcc3e5089e3
50df4c92cf5300a74d186055d970c3743be311ac
d5c72928e3638c1f47a56aa018f2dcef46e9086044175fed28999e11e82e151e
GET /wp-content/themes/MyCallistus/images/marvel%20logo.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:12 GMT
Server: Apache
Last-Modified: Fri, 08 Apr 2022 17:12:50 GMT
Accept-Ranges: bytes
Content-Length: 20681
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/themes/MyCallistus/images/whatsapp.png
148.72.208.119200 OK 7.6 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/images/whatsapp.png
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 101 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 329ea7ccbe81e1648e99801d4affa71a
f556da1e91ffd43a321fa5bb9d24405340c69d0b
3de454a7c0b2af49b40844be16ae301332a5fb74278b6f18bf9957ac1b91b689
GET /wp-content/themes/MyCallistus/images/whatsapp.png HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:12 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 18:32:58 GMT
Accept-Ranges: bytes
Content-Length: 7582
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
pixel.wp.com/g.gif?v=ext&blog=207755368&post=18&tz=0&srv=marvellifestyle.com&j=1%3A11.5.1&host=marvellifestyle.com&ref=&fcp=4049&rand=0.3959286803087937
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&blog=207755368&post=18&tz=0&srv=marvellifestyle.com&j=1%3A11.5.1&host=marvellifestyle.com&ref=&fcp=4049&rand=0.3959286803087937
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=207755368&post=18&tz=0&srv=marvellifestyle.com&j=1%3A11.5.1&host=marvellifestyle.com&ref=&fcp=4049&rand=0.3959286803087937 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 03:01:12 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
marvellifestyle.com/wp-content/uploads/2022/05/02_Luzon_Blinds.jpg
148.72.208.119200 OK 63 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/05/02_Luzon_Blinds.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 906x775, components 3\012- data
Hash 8ef87193cdaeca0578e5b1730ee5522d
063bc0ab3d05b37fcad8ef62e5a80263f4287d7c
60071158e050a9469fe7c8ffedca2a1fe4710ba8aca403cedf351c69bfd87e37
GET /wp-content/uploads/2022/05/02_Luzon_Blinds.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:12 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 06:53:30 GMT
Accept-Ranges: bytes
Content-Length: 63301
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/themes/MyCallistus/images/call.svg
148.72.208.119200 OK 2.9 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/images/call.svg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (1838)
Hash 31e750245d88d4ea3e0c5cc906be4e2e
197da1fc75126904a9420f12c062a45a5e0d637f
66ebf864ccd1f613cd39b3d67e763bd8627ef6789056e4172547bf3f87612b20
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/MyCallistus/images/call.svg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:12 GMT
Server: Apache
Last-Modified: Sun, 16 May 2021 18:32:44 GMT
Accept-Ranges: bytes
Content-Length: 2890
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/svg+xml
marvellifestyle.com/wp-content/uploads/2022/05/03_Grayson_Blinds.jpg
148.72.208.119200 OK 38 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/05/03_Grayson_Blinds.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x500, components 3\012- data
Hash 70fd9ea9c5c7c0641a7873b8f85c0a24
aa19ed6fbbf7aa34c339e30d80d90f88b1d7bf48
8eb8be24f84f33f79619714a79ec29914dffedd105660a148f48af76f466c70b
GET /wp-content/uploads/2022/05/03_Grayson_Blinds.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:12 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 06:53:30 GMT
Accept-Ranges: bytes
Content-Length: 38474
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/05/01_Colby_Skylgiht.jpg
148.72.208.119200 OK 21 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/05/01_Colby_Skylgiht.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 474x571, components 3\012- data
Hash c77abb4558b8adccaa62938c8330204e
3298d85aa64a6b3a0513b992086e7afc7f4bb7f3
ba6ea1c9aa4f65b000da5100df39b5d7b94cc0c5a046f71658515ede04cdb468
GET /wp-content/uploads/2022/05/01_Colby_Skylgiht.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:12 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 06:53:32 GMT
Accept-Ranges: bytes
Content-Length: 20975
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/05/04_Sierra_Blinds-1.jpg
148.72.208.119200 OK 45 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/05/04_Sierra_Blinds-1.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x500, components 3\012- data
Hash d4557164852381301f91c00b1ff0f5ac
be9c3b2b702cd2662e8eb206858bbe4f2b18cd2f
beecc5b19aa1daf289e52e01063d90af5b17c986221bc0f70252cf869130865c
GET /wp-content/uploads/2022/05/04_Sierra_Blinds-1.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:12 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 06:53:30 GMT
Accept-Ranges: bytes
Content-Length: 44763
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/05/06_Wooden_Blinds-1.jpg
148.72.208.119200 OK 34 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/05/06_Wooden_Blinds-1.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x450, components 3\012- data
Hash 48fcf40c3c2b2036a733c8fdc96c1a27
862721b37f9b2f9bc2b4f46dc9586f53e5a346c4
c2b47d0b9e12cc985774a3f3f722b14aa05844887adb6565ecf7f27f4d4245fe
GET /wp-content/uploads/2022/05/06_Wooden_Blinds-1.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:12 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 06:53:28 GMT
Accept-Ranges: bytes
Content-Length: 33501
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/jpeg
unpkg.com/sweetalert/dist/sweetalert.min.js
104.16.125.175302 Found 59 kB URL HTTP/2 unpkg.com/sweetalert/dist/sweetalert.min.js
IP 104.16.125.175:0
Hash 3b0590dcd095e692301e1d8ea02822ea
b85d38752e45ebaaba4ac1929ce0eb6ea86ca55b
7633b4d1a78ab0c17de67f76d90ee578524a02b9cef1a44c050ced445c49b8aa
GET /sweetalert/dist/sweetalert.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 28 Nov 2022 03:01:08 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /sweetalert@2.1.2/dist/sweetalert.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJY2PYX2X50T45AHFD3CNG1P-fra
cf-cache-status: HIT
age: 191
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 770fdb778a3bb527-OSL
X-Firefox-Spdy: h2
marvellifestyle.com/wp-content/uploads/2022/05/07_Printed_Blinds-1.jpg
148.72.208.119200 OK 21 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/05/07_Printed_Blinds-1.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x440, components 3\012- data
Hash ca66cd6bdc8b03e6f31eaac8b4f53c8a
ada719852f1655cff25cbe9845da9c117f07a015
467c1155a3036bb63844c70a2046172df480abcd3a9981220d6fbc088ad703f7
GET /wp-content/uploads/2022/05/07_Printed_Blinds-1.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:12 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 06:53:28 GMT
Accept-Ranges: bytes
Content-Length: 21082
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/05/08_Colby_Blinds-1.jpg
148.72.208.119200 OK 48 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/05/08_Colby_Blinds-1.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 778x451, components 3\012- data
Hash 34af2360ecba685098488fea60a2cb0e
52a11a53ac7e028d29dad2c433f898e7e961387e
f7a1990a7947f02aa5225d57a27060a6336a70dcb8dd19e146f34f908658314e
GET /wp-content/uploads/2022/05/08_Colby_Blinds-1.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:12 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 06:53:28 GMT
Accept-Ranges: bytes
Content-Length: 48074
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/05/10_Curtain_with_Blinds.jpg
148.72.208.119200 OK 59 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/05/10_Curtain_with_Blinds.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 778x451, components 3\012- data
Hash b3f02211730d887137cba45a8e4ec31c
b5e5ecbe60aaee8a58a1075235eaf7df799c9cac
4d1de390298777a24c016423c38d3ecb890e6a9041ec4e26ab80c1c7bf5a19ef
GET /wp-content/uploads/2022/05/10_Curtain_with_Blinds.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:13 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 06:53:26 GMT
Accept-Ranges: bytes
Content-Length: 58716
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/05/09_Automation-1.jpg
148.72.208.119200 OK 19 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/05/09_Automation-1.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 357x440, components 3\012- data
Hash 657299eaf033ebf892ee82ad24011acf
cd6f7f278db399b44ee0ba7398064a7748af7abc
c4a38d245618657fd4fd2ba0b86ab52cb986ee95354fe1d5e75d09931f744bc4
GET /wp-content/uploads/2022/05/09_Automation-1.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:13 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 06:53:26 GMT
Accept-Ranges: bytes
Content-Length: 19114
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/03/colby-slider.jpg
148.72.208.119200 OK 261 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/03/colby-slider.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=530, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1350], progressive, precision 8, 1350x530, components 3\012- data
Size 261 kB (260552 bytes)
Hash 5cae18394ee4a7ca493a21480cd03412
c49a5e94602941d72e1ffa9bffa8f8411cc0b69d
288f236b1c1452a37c493aed9976996f07557b4c66b7b71dc16fd357e5e70eb5
GET /wp-content/uploads/2022/03/colby-slider.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:13 GMT
Server: Apache
Last-Modified: Wed, 16 Mar 2022 21:43:24 GMT
Accept-Ranges: bytes
Content-Length: 260552
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/05/roman-slider.jpg
148.72.208.119200 OK 68 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/05/roman-slider.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1350x530, components 3\012- data
Hash c7a9c25dfa1d148658d0dec899070958
46bb906dea4e4cfcddb5b20984472f3a44741f87
7166925baf55c4966f5a8699fa079ad444091c86b1dd1181469193c9f5fdf7f3
GET /wp-content/uploads/2022/05/roman-slider.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:13 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 06:24:12 GMT
Accept-Ranges: bytes
Content-Length: 68218
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/05/roller-slider-2.jpg
148.72.208.119200 OK 73 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/05/roller-slider-2.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1350x530, components 3\012- data
Hash e178f77abba82a18a4398ede077ac98f
1393a1e5ff7530f9f81fbefd27e7f44dc281c20b
9b11073f204a080acc9c58ccd3464ee11f632f9151d99e011e18c8a7dd5bdaaf
GET /wp-content/uploads/2022/05/roller-slider-2.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:13 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 06:24:06 GMT
Accept-Ranges: bytes
Content-Length: 72653
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/05/sierra-slider.jpg
148.72.208.119200 OK 114 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/05/sierra-slider.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1919x750, components 3\012- data
Size 114 kB (113763 bytes)
Hash ff659992e5e1758696c6dee17eb23e70
4082413420312c560f8411d44f90131915248896
a7b9afc2025e213e45430cb900884c4124e20e9d08d48b8079effaf44720b58c
GET /wp-content/uploads/2022/05/sierra-slider.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:13 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 06:24:10 GMT
Accept-Ranges: bytes
Content-Length: 113763
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/05/Luzon-slider-02-3.jpg
148.72.208.119200 OK 76 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/05/Luzon-slider-02-3.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1350x530, components 3\012- data
Hash 7c6f504554deac2b7f3448581bea1f5e
b4a69c833f455bdd28323b5635da0c04a933dab9
c82364933b2a40174aae431e383bbe196e93feac239bfc3b497e4e4591c07158
GET /wp-content/uploads/2022/05/Luzon-slider-02-3.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:13 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 06:24:30 GMT
Accept-Ranges: bytes
Content-Length: 75766
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-admin/admin-ajax.php
148.72.208.119200 OK 36 B URL HTTP/1.1 marvellifestyle.com/wp-admin/admin-ajax.php
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JSON data\012- , ASCII text, with no line terminators
Hash 901366e1a218c7106adae92bf64c81d0
0494bc2c4c402c0e56b24ad297070016aa7a8492
4eea6367feb0ebe9d941f506b157fe2127d9a0e1eaa9d17e105fb6b22062f129
Analyzer Verdict Alert fortinet Malware
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 27
Origin: https://marvellifestyle.com
Connection: keep-alive
Referer: https://marvellifestyle.com/
Cookie: _gcl_au=1.1.143612006.1669604469; _ga_4B9LNYP5Q9=GS1.1.1669604469.1.0.1669604469.0.0.0; _ga=GA1.1.519063710.1669604469
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:12 GMT
Server: Apache
Access-Control-Allow-Origin: https://marvellifestyle.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
marvellifestyle.com/wp-admin/admin-ajax.php
148.72.208.119200 OK 36 B URL HTTP/1.1 marvellifestyle.com/wp-admin/admin-ajax.php
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JSON data\012- , ASCII text, with no line terminators
Hash 901366e1a218c7106adae92bf64c81d0
0494bc2c4c402c0e56b24ad297070016aa7a8492
4eea6367feb0ebe9d941f506b157fe2127d9a0e1eaa9d17e105fb6b22062f129
Analyzer Verdict Alert fortinet Malware
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 27
Origin: https://marvellifestyle.com
Connection: keep-alive
Referer: https://marvellifestyle.com/
Cookie: _gcl_au=1.1.143612006.1669604469; _ga_4B9LNYP5Q9=GS1.1.1669604469.1.0.1669604469.0.0.0; _ga=GA1.1.519063710.1669604469
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:12 GMT
Server: Apache
Access-Control-Allow-Origin: https://marvellifestyle.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
marvellifestyle.com/wp-content/uploads/2022/05/skylight-slider-05-3.jpg
148.72.208.119200 OK 42 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/05/skylight-slider-05-3.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1350x530, components 3\012- data
Hash 39995aa8bf495d1cadc6f50d5a7d8c7e
fc1ed0aa9475f5a5dc12182edeb287f15746ac75
b8a4e202978d90e438d95227d7ec51940a2a03376f5889cd0adc980b2d72732e
GET /wp-content/uploads/2022/05/skylight-slider-05-3.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:13 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 06:24:08 GMT
Accept-Ranges: bytes
Content-Length: 42515
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/05/roman-slider-2.jpg
148.72.208.119200 OK 75 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/05/roman-slider-2.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1350x530, components 3\012- data
Hash 0a56e4ee606f38eb95097a8d011e0610
32d50c2258d1d834e1452350ad1dd8537f958f09
5ede4db0f278832d7354ac6e388f5430d132da66bb17ef2ef842704232e62256
GET /wp-content/uploads/2022/05/roman-slider-2.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:13 GMT
Server: Apache
Last-Modified: Thu, 26 May 2022 06:24:08 GMT
Accept-Ranges: bytes
Content-Length: 75093
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/03/colby-01.jpg
148.72.208.119200 OK 22 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/03/colby-01.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 374x290, components 3\012- data
Hash faf1731bc79e585d4758caa03dec8caa
e4eb2d408f8db5102165a29a3d3cfb03e052ffad
c61d0be2fbc79716bc7c5428aff1eb8a77733b859242831f3ab955d7245f73af
GET /wp-content/uploads/2022/03/colby-01.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:13 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 21:02:42 GMT
Accept-Ranges: bytes
Content-Length: 22526
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/03/01-sierra-Slider.jpg
148.72.208.119200 OK 29 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/03/01-sierra-Slider.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 374x290, components 3\012- data
Hash 840c5b17e6ee84fb7217d35ba442e557
ed6b7bec091946622786a1dbb14ced3a04ba8fcf
00c06402ca31f2c46abba19d277fa605d6171681cd95a5151f49343a1222169b
GET /wp-content/uploads/2022/03/01-sierra-Slider.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:13 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 21:01:58 GMT
Accept-Ranges: bytes
Content-Length: 29448
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/03/roman_slider.jpg
148.72.208.119200 OK 30 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/03/roman_slider.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 374x290, components 3\012- data
Hash 2acd3332b074ba99e4c25c18227f83ea
afc59176ef23ea77ba2e05467db8390d7bbe2185
ebfac9af7421ab8f56baafe8958485555709c1e132e9ae88bbe39f042d1e91ef
GET /wp-content/uploads/2022/03/roman_slider.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:13 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 21:02:20 GMT
Accept-Ranges: bytes
Content-Length: 29646
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/03/Roller_Blind_Slider_01-1-1.jpg
148.72.208.119200 OK 31 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/03/Roller_Blind_Slider_01-1-1.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 374x290, components 3\012- data
Hash 388996de67432c903943af5a00ab3b08
6dcf0506445b4a841ad21fafba28f2b4acc39a3a
4d175754e6e20d39369db0bb81cabf2582aefcd45be2f97c69ff16417cbae4d9
GET /wp-content/uploads/2022/03/Roller_Blind_Slider_01-1-1.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:13 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 21:03:08 GMT
Accept-Ranges: bytes
Content-Length: 31119
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
unpkg.com/sweetalert@2.1.2/dist/sweetalert.min.js
104.16.125.175200 OK 40 kB URL HTTP/2 unpkg.com/sweetalert@2.1.2/dist/sweetalert.min.js
IP 104.16.125.175:0
File type ASCII text, with very long lines (40808), with no line terminators
Hash 1c2e830212f49cc64999a4f450d54f2a
8b7ba04cf8c6d5b4d479e3ea316ceb2afade6a5e
4fd3e2beaa065c5635716368648cc865bce732c5457c4a2bfa9af66fd5385a84
GET /sweetalert@2.1.2/dist/sweetalert.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://marvellifestyle.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 03:01:08 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"9f68-Kj2qvHAjLGNQq0jTJgXcSmrB8fo"
via: 1.1 fly.io
fly-request-id: 01F3YGW88676FQX0FXNA5B1VWZ
cf-cache-status: HIT
age: 18915193
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 770fdb779a4ab527-OSL
content-encoding: br
X-Firefox-Spdy: h2
marvellifestyle.com/wp-content/uploads/2020/05/skylight-slider-05-1.jpg
148.72.208.119200 OK 18 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2020/05/skylight-slider-05-1.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 374x290, components 3\012- data
Hash 17f9c1dccff6ec064ac23a8702bfcadc
6d7d881be9b23d95982f06485cd9e39eee766ea2
2c6f06fedc2458967dcd372535a94ac3af1f234c91d09ef3c6ac707d0dd6e098
GET /wp-content/uploads/2020/05/skylight-slider-05-1.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:13 GMT
Server: Apache
Last-Modified: Thu, 17 Mar 2022 20:59:34 GMT
Accept-Ranges: bytes
Content-Length: 18200
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
marvellifestyle.com/wp-content/uploads/2022/03/roman-slider-05-1.jpg
148.72.208.119200 OK 35 kB URL HTTP/1.1 marvellifestyle.com/wp-content/uploads/2022/03/roman-slider-05-1.jpg
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 374x290, components 3\012- data
Hash 1472e86c2b2cb44c4ba0d3d459e6f89c
f9732202cba3337ee55a9c37e4c11c7555f946ab
f577809c3899e3f0a6d3066dbd5dfeb15f77ae2e31750dcd0941ade4e14bb4ab
GET /wp-content/uploads/2022/03/roman-slider-05-1.jpg HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:13 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 21:03:40 GMT
Accept-Ranges: bytes
Content-Length: 35284
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 28 Nov 2022 02:41:08 GMT
expires: Mon, 28 Nov 2022 04:41:08 GMT
cache-control: public, max-age=7200
age: 1206
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/974039318/?random=1669604469199&cv=11&fst=1669604469199&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fmarvellifestyle.com%2F&tiba=Marvel%20Blinds%20%7C%20Window%20Blinds%2C%20Shades%2C%20Coverings%20%7C%20Manufacturer%20of%20Premium%20Quality%20Window%20Blinds%20%7C%20Interior%20Shutters%20for%20Windows&auid=143612006.1669604469&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.34200 OK 953 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/974039318/?random=1669604469199&cv=11&fst=1669604469199&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fmarvellifestyle.com%2F&tiba=Marvel%20Blinds%20%7C%20Window%20Blinds%2C%20Shades%2C%20Coverings%20%7C%20Manufacturer%20of%20Premium%20Quality%20Window%20Blinds%20%7C%20Interior%20Shutters%20for%20Windows&auid=143612006.1669604469&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.34:0
File type ASCII text, with very long lines (2155), with no line terminators
Hash 505196dbd8c6c604abe035b18a8c23f9
48652f196a6da6f36e68b60655f9f367da711688
6a54534873de66cf3dae43a00c571d85a322db1d1817a1c97def87c205fe889b
GET /pagead/viewthroughconversion/974039318/?random=1669604469199&cv=11&fst=1669604469199&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fmarvellifestyle.com%2F&tiba=Marvel%20Blinds%20%7C%20Window%20Blinds%2C%20Shades%2C%20Coverings%20%7C%20Manufacturer%20of%20Premium%20Quality%20Window%20Blinds%20%7C%20Interior%20Shutters%20for%20Windows&auid=143612006.1669604469&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 03:01:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 953
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 28-Nov-2022 03:16:14 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=1912576737&t=pageview&_s=1&dl=https%3A%2F%2Fmarvellifestyle.com%2F&ul=en-us&de=UTF-8&dt=Marvel%20Blinds%20%7C%20Window%20Blinds%2C%20Shades%2C%20Coverings%20%7C%20Manufacturer%20of%20Premium%20Quality%20Window%20Blinds%20%7C%20Interior%20Shutters%20for%20Windows&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAUABAAAAACAAI~&jid=5008537&gjid=724555608&cid=519063710.1669604469&tid=UA-117254349-1&_gid=994481743.1669604474&_r=1>m=2oub90&z=618511638
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1912576737&t=pageview&_s=1&dl=https%3A%2F%2Fmarvellifestyle.com%2F&ul=en-us&de=UTF-8&dt=Marvel%20Blinds%20%7C%20Window%20Blinds%2C%20Shades%2C%20Coverings%20%7C%20Manufacturer%20of%20Premium%20Quality%20Window%20Blinds%20%7C%20Interior%20Shutters%20for%20Windows&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAUABAAAAACAAI~&jid=5008537&gjid=724555608&cid=519063710.1669604469&tid=UA-117254349-1&_gid=994481743.1669604474&_r=1>m=2oub90&z=618511638
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j98&a=1912576737&t=pageview&_s=1&dl=https%3A%2F%2Fmarvellifestyle.com%2F&ul=en-us&de=UTF-8&dt=Marvel%20Blinds%20%7C%20Window%20Blinds%2C%20Shades%2C%20Coverings%20%7C%20Manufacturer%20of%20Premium%20Quality%20Window%20Blinds%20%7C%20Interior%20Shutters%20for%20Windows&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YADAAUABAAAAACAAI~&jid=5008537&gjid=724555608&cid=519063710.1669604469&tid=UA-117254349-1&_gid=994481743.1669604474&_r=1>m=2oub90&z=618511638 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://marvellifestyle.com
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://marvellifestyle.com
date: Mon, 28 Nov 2022 03:01:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 9f6cc8d3fe9092a6d3901e873a87fd87
2e0aac117a4cc57596efb3d6f6624c269f94b031
e73982e62b92abac3d15b161f4525448cc2bc8b9bacefdcbfc6f87b74ec372e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash d3c9b092aee5820bdab6595daad65d61
89e983faeedf25b3e15696f9bf6dbf76feb07868
58d24c4dde4a578c2c0191a19a5a42bdcb5be03b21a1907f60c8deaee78b7331
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-117254349-1&cid=519063710.1669604469&jid=5008537&gjid=724555608&_gid=994481743.1669604474&_u=YADAAUAAAAAAACAAI~&z=2014533271
142.251.1.155200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-117254349-1&cid=519063710.1669604469&jid=5008537&gjid=724555608&_gid=994481743.1669604474&_u=YADAAUAAAAAAACAAI~&z=2014533271
IP 142.251.1.155:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-117254349-1&cid=519063710.1669604469&jid=5008537&gjid=724555608&_gid=994481743.1669604474&_u=YADAAUAAAAAAACAAI~&z=2014533271 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://marvellifestyle.com
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://marvellifestyle.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 28 Nov 2022 03:01:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/974039318/?random=1669604469199&cv=11&fst=1669604400000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fmarvellifestyle.com%2F&tiba=Marvel%20Blinds%20%7C%20Window%20Blinds%2C%20Shades%2C%20Coverings%20%7C%20Manufacturer%20of%20Premium%20Quality%20Window%20Blinds%20%7C%20Interior%20Shutters%20for%20Windows&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3081425552&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/974039318/?random=1669604469199&cv=11&fst=1669604400000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fmarvellifestyle.com%2F&tiba=Marvel%20Blinds%20%7C%20Window%20Blinds%2C%20Shades%2C%20Coverings%20%7C%20Manufacturer%20of%20Premium%20Quality%20Window%20Blinds%20%7C%20Interior%20Shutters%20for%20Windows&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3081425552&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/974039318/?random=1669604469199&cv=11&fst=1669604400000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fmarvellifestyle.com%2F&tiba=Marvel%20Blinds%20%7C%20Window%20Blinds%2C%20Shades%2C%20Coverings%20%7C%20Manufacturer%20of%20Premium%20Quality%20Window%20Blinds%20%7C%20Interior%20Shutters%20for%20Windows&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3081425552&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 03:01:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/974039318/?random=1669604469199&cv=11&fst=1669604400000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fmarvellifestyle.com%2F&tiba=Marvel%20Blinds%20%7C%20Window%20Blinds%2C%20Shades%2C%20Coverings%20%7C%20Manufacturer%20of%20Premium%20Quality%20Window%20Blinds%20%7C%20Interior%20Shutters%20for%20Windows&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3081425552&rmt_tld=1&ipr=y
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/974039318/?random=1669604469199&cv=11&fst=1669604400000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fmarvellifestyle.com%2F&tiba=Marvel%20Blinds%20%7C%20Window%20Blinds%2C%20Shades%2C%20Coverings%20%7C%20Manufacturer%20of%20Premium%20Quality%20Window%20Blinds%20%7C%20Interior%20Shutters%20for%20Windows&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3081425552&rmt_tld=1&ipr=y
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/974039318/?random=1669604469199&cv=11&fst=1669604400000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fmarvellifestyle.com%2F&tiba=Marvel%20Blinds%20%7C%20Window%20Blinds%2C%20Shades%2C%20Coverings%20%7C%20Manufacturer%20of%20Premium%20Quality%20Window%20Blinds%20%7C%20Interior%20Shutters%20for%20Windows&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3081425552&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 28 Nov 2022 03:01:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash d3c9b092aee5820bdab6595daad65d61
89e983faeedf25b3e15696f9bf6dbf76feb07868
58d24c4dde4a578c2c0191a19a5a42bdcb5be03b21a1907f60c8deaee78b7331
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 88e42375d2172305f819b892225cf877
674324641f82700172e72fe259ee2241361e2ea1
6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:01:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
marvellifestyle.com/wp-content/themes/MyCallistus/images/1.png
148.72.208.119200 OK 2.7 kB URL HTTP/1.1 marvellifestyle.com/wp-content/themes/MyCallistus/images/1.png
IP 148.72.208.119:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 4a852ac9adc2eb89eda3420c26de1dd2
7891738875769e1e88228b09831cd12aee8556c3
80399fdadab203cf2b28bafe7592f7b5f77619333b15d48743c175cd160067c2
GET /wp-content/themes/MyCallistus/images/1.png HTTP/1.1
Host: marvellifestyle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Cookie: _gcl_au=1.1.143612006.1669604469; _ga_4B9LNYP5Q9=GS1.1.1669604469.1.0.1669604469.0.0.0; _ga=GA1.1.519063710.1669604469
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 03:01:14 GMT
Server: Apache
Last-Modified: Tue, 29 Mar 2022 21:06:22 GMT
Accept-Ranges: bytes
Content-Length: 2718
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/png
stats.wp.com/e-202248.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /e-202248.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://marvellifestyle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 03:01:08 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Mon, 20 Nov 2023 01:50:03 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2