firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 11 Sep 2022 14:07:38 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KLdpqCA5kRbyLHeQCckVecpX2rbzA0_bNHdRFr4mKSGq-ccoZeZCww==
Age: 55
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8173
Expires: Sun, 11 Sep 2022 16:24:47 GMT
Date: Sun, 11 Sep 2022 14:08:34 GMT
Connection: keep-alive
summerdew.co.uk/lib/nrUMdBt0eY.zip
198.54.120.40301 Moved Permanently 707 B URL HTTP/1.1 summerdew.co.uk/lib/nrUMdBt0eY.zip
IP 198.54.120.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
GET /lib/nrUMdBt0eY.zip HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sun, 11 Sep 2022 14:08:34 GMT
server: LiteSpeed
location: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
x-turbo-charged-by: LiteSpeed
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 11 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hSw8E574RxpC_JdH4kRZQWQW8IsYOlYETP0XiEBlzhSWoAXesweeqQ==
age: 24682
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 14:08:34 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash f958f7afe842813eb9daaa4262973f55
2115ce9b0cf6ecbcd624517d5fc2aa194a8ede31
4f7584a8d30b1fd3a2adaf806e8a936d9060bd8dbc8518d2932935ee98c67be5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 14:08:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 09 Sep 2022 16:31:10 GMT
Expires: Fri, 16 Sep 2022 16:31:09 GMT
Etag: "2115ce9b0cf6ecbcd624517d5fc2aa194a8ede31"
Cache-Control: max-age=439954,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7490f9e7af1fb523-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 11 Sep 2022 13:56:07 GMT
Cache-Control: max-age=3600
Expires: Sun, 11 Sep 2022 14:22:01 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: whoy6Sos0YT7A_oTyr4ZBzE_qbuuVMXskb_PuH1orrX2797FZAStjQ==
Age: 747
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 26e829ba5f754918e20cbd316dc4348e
ba198501da0812dd11ca3b38a51325b5de6cfa60
4352c25d4af7637a8435b0df6d042fc606d37a348e966b99fecce8a853b8ebc0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3042
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 14:08:34 GMT
Last-Modified: Sun, 11 Sep 2022 13:17:52 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 65deebab57142db522e6c874673bdd9f
bfd022181afaec5035f868ccd05fac58113f81dc
7470143c8bd79f00190a3766ebaa9c632d0aa47693fc4c146f097873865da327
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 14:08:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
polyfill.io/v3/polyfill.min.js?version=3.109.0&features=Array.prototype.find%2CCustomEvent%2CElement.prototype.closest%2CElement.prototype.dataset%2CEvent%2CMutationObserver%2CNodeList.prototype.forEach%2CObject.assign%2CObject.keys%2CString.prototype.endsWith%2CURL%2CURLSearchParams%2CXMLHttpRequest&flags=gated&ver=6.0.2
151.101.1.26200 OK 101 B URL HTTP/2 polyfill.io/v3/polyfill.min.js?version=3.109.0&features=Array.prototype.find%2CCustomEvent%2CElement.prototype.closest%2CElement.prototype.dataset%2CEvent%2CMutationObserver%2CNodeList.prototype.forEach%2CObject.assign%2CObject.keys%2CString.prototype.endsWith%2CURL%2CURLSearchParams%2CXMLHttpRequest&flags=gated&ver=6.0.2
IP 151.101.1.26:0
Hash 62d93342fdf65b194cf154a43e2b61d8
d4bb66f3550b32e864e0acaaa0195cf6ba752f04
e457929cb4608cdef3c3e180d8e71dad05da40d045e84d70e31ed8601bb4f5ec
GET /v3/polyfill.min.js?version=3.109.0&features=Array.prototype.find%2CCustomEvent%2CElement.prototype.closest%2CElement.prototype.dataset%2CEvent%2CMutationObserver%2CNodeList.prototype.forEach%2CObject.assign%2CObject.keys%2CString.prototype.endsWith%2CURL%2CURLSearchParams%2CXMLHttpRequest&flags=gated&ver=6.0.2 HTTP/1.1
Host: polyfill.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
cache-control: public, s-maxage=31536000, max-age=604800, stale-while-revalidate=604800, stale-if-error=604800
content-type: text/javascript; charset=utf-8
last-modified: Wed, 07 Sep 2022 11:53:12 GMT
content-encoding: br
age: 0
accept-ranges: bytes
useragent_normaliser: firefox/96.0.0
date: Sun, 11 Sep 2022 14:08:35 GMT
vary: User-Agent, Accept-Encoding
server-timing: cache-bma1680, PASS, fastly;desc="Edge time";dur=18
content-length: 101
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6
198.54.120.40200 OK 3.2 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6
IP 198.54.120.40:0
File type ASCII text, with very long lines (24504)
Hash 7500aa891fde99769b9ad08f92333b56
d67e0f4b55581137d629cf6fb9f97e7a9bb89a6e
c8d2a4397020d5ef0bf9f4b9f5212825c1f40df4cfa1722412614f173dd8ffb0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Tue, 28 Jun 2022 21:17:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3200
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
198.54.120.40200 OK 11 kB URL HTTP/2 summerdew.co.uk/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 198.54.120.40:0
File type ASCII text, with very long lines (43771)
Hash d45207ee05c1f0c57dfa075e61405ccd
a8d35143a2d828a739ea0fdde75f97d33621e7ec
a9a4adbbcee31ec277f1bdd573eef97dc4341f29f2db3b5685a02dfe4d2fe9bb
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Tue, 12 Jul 2022 21:12:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10946
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0
198.54.120.40200 OK 1.1 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0
IP 198.54.120.40:0
File type ASCII text, with very long lines (4933), with no line terminators
Hash 8f2da34c6f082c7bec00f9cca661fd59
d0de5b6b29a9788a64826b833465a9d08f7c2ab7
d461fea6636b26aab698f636b2518709cb79416c7d3916d6b03497c4d75befdd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Tue, 23 Aug 2022 09:11:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1109
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 65deebab57142db522e6c874673bdd9f
bfd022181afaec5035f868ccd05fac58113f81dc
7470143c8bd79f00190a3766ebaa9c632d0aa47693fc4c146f097873865da327
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 14:08:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.161.6.128101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.6.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: f5dAufn7FoLn4iQflbilVA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7Ux6vsgeBfIxjtOzAELA1wBGKOg=
summerdew.co.uk/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0
198.54.120.40200 OK 21 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0
IP 198.54.120.40:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 844842439ba060ee255a40ec00e69ff5
a37c3b78aeea3c7d58a6e59bfa99ff3d81ec5b8c
169af0ea951379b0d2a47976e8e76c6684fb2c92146e23c31e57079b9cacdba2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Tue, 23 Aug 2022 09:11:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20786
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/lib/nrUMdBt0eY.zip
198.54.120.40404 Not Found 27 kB URL HTTP/2 summerdew.co.uk/lib/nrUMdBt0eY.zip
IP 198.54.120.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13287), with CRLF, LF line terminators
Hash fbb2068b2b4ca5df2e3f1e1c3a7e3ecb
df6dc20bb5a822f17de57d26463c5c91a39d5d4a
a69eb88186cac3cb47ce49acd26343494a5129f1c73d0db02e7495a5690e4a2d
Analyzer Verdict Alert fortinet Malware
GET /lib/nrUMdBt0eY.zip HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
x-powered-by: PHP/7.2.34
pragma: no-cache
content-type: text/html; charset=UTF-8
x-ua-compatible: IE=edge
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://summerdew.co.uk/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
date: Sun, 11 Sep 2022 14:08:34 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/customer-reviews-woocommerce/css/frontend.css?ver=4.12
198.54.120.40200 OK 7.2 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/customer-reviews-woocommerce/css/frontend.css?ver=4.12
IP 198.54.120.40:0
File type ASCII text, with very long lines (441)
Hash 16c3e0e7ff480e04784027c1cb3cf534
d57f52957716a9f566eaa965424bb85eb61efd33
3b1cf90023d88ddfcb90730fee3fc6b9dea2bdbe914f7d7689cf207dd552be22
GET /wp-content/plugins/customer-reviews-woocommerce/css/frontend.css?ver=4.12 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Mon, 31 Jan 2022 08:12:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7187
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/themes/oceanwp/assets/css/woo/woo-mini-cart.min.css?ver=6.0.2
198.54.120.40200 OK 1.2 kB URL HTTP/2 summerdew.co.uk/wp-content/themes/oceanwp/assets/css/woo/woo-mini-cart.min.css?ver=6.0.2
IP 198.54.120.40:0
File type ASCII text, with very long lines (5867)
Hash d066ac9af4493d15244e551ffbbce593
a4231019f266fb0362867c391048d6c08f00bb01
873e2b31cb8e76737863e1a7eae98cd6d9006c19b1866ce9e0c1641e1e9c7a91
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/css/woo/woo-mini-cart.min.css?ver=6.0.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1160
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/customer-reviews-woocommerce/css/reviews-grid.css?ver=3.61
198.54.120.40200 OK 2.2 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/customer-reviews-woocommerce/css/reviews-grid.css?ver=3.61
IP 198.54.120.40:0
Hash 190b2171040c842ed29e549bc628afac
60fbe1a9777a78f3f1f144d2424c92668950eaf5
97ba8dd56741c769d48daf572299e58c700e4ff78c56f75b270df435757d0972
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/customer-reviews-woocommerce/css/reviews-grid.css?ver=3.61 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Mon, 31 Jan 2022 08:12:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2243
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/themes/oceanwp/assets/css/woo/woocommerce.min.css?ver=6.0.2
198.54.120.40200 OK 13 kB URL HTTP/2 summerdew.co.uk/wp-content/themes/oceanwp/assets/css/woo/woocommerce.min.css?ver=6.0.2
IP 198.54.120.40:0
File type ASCII text, with very long lines (65439)
Hash 16cfb1e89a3e9fc4fcc5c17f9cceae61
b8098dccca0240807d979bf0e0027e38757b23fc
b604cbc8bf588dc4fc26ee8f0d7f7c5ec64a8e373690dd4940c40922df9ac607
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/css/woo/woocommerce.min.css?ver=6.0.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13159
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/themes/oceanwp/assets/css/woo/woo-star-font.min.css?ver=6.0.2
198.54.120.40200 OK 563 B URL HTTP/2 summerdew.co.uk/wp-content/themes/oceanwp/assets/css/woo/woo-star-font.min.css?ver=6.0.2
IP 198.54.120.40:0
File type ASCII text, with very long lines (2024), with no line terminators
Hash 42c6e5fe94773257ecb4f8ea4a0b1c0b
fda71106c99d4dafddbe170fd2fcd7c949071292
ac6821ca03b47643fed6659c9da5bd1d78a3ec22382d9d7a03395955550b01ce
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/css/woo/woo-star-font.min.css?ver=6.0.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 563
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/themes/oceanwp/assets/css/woo/woo-quick-view.min.css?ver=6.0.2
198.54.120.40200 OK 1.2 kB URL HTTP/2 summerdew.co.uk/wp-content/themes/oceanwp/assets/css/woo/woo-quick-view.min.css?ver=6.0.2
IP 198.54.120.40:0
File type ASCII text, with very long lines (5067)
Hash ef41ef7e795e94a4da1e95eb167c75f2
5aed6e63bc5bb5bb1124c04edd42644371c3a52a
21bdfb9964f6466fcb63a1ffb76fd23ef255f0d9907bc9ef1a09a9c4eb1ab18b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/css/woo/woo-quick-view.min.css?ver=6.0.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1218
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/happy-elementor-addons/assets/vendor/magnific-popup/magnific-popup.css?ver=3.7.0
198.54.120.40200 OK 1.6 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/happy-elementor-addons/assets/vendor/magnific-popup/magnific-popup.css?ver=3.7.0
IP 198.54.120.40:0
Hash 66eb84e7a3de3c41c73c1154c849917d
ab12bdb47b0ea32ae6e9b055993851b82d3ab814
492119b935e3772d324eaa93f1932bc3ddcd7a65fe73a16f8462dc6d86394b92
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/happy-elementor-addons/assets/vendor/magnific-popup/magnific-popup.css?ver=3.7.0 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Tue, 30 Aug 2022 21:06:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1630
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/happy-elementor-addons/assets/vendor/slick/slick.css?ver=3.7.0
198.54.120.40200 OK 466 B URL HTTP/2 summerdew.co.uk/wp-content/plugins/happy-elementor-addons/assets/vendor/slick/slick.css?ver=3.7.0
IP 198.54.120.40:0
Hash eebfc4d6ddcc0a23748a8b9e8a7eabc3
37b10c4ca7ea142032b866c09cb4f6f3004396a8
5bf3e9f6650d0462ff40e969f7aa06f5fb26cacc31070c2f829299cedf25a400
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/happy-elementor-addons/assets/vendor/slick/slick.css?ver=3.7.0 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Tue, 30 Aug 2022 21:06:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 466
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/sticky-header-oceanwp//style.css?ver=6.0.2
198.54.120.40200 OK 239 B URL HTTP/2 summerdew.co.uk/wp-content/plugins/sticky-header-oceanwp//style.css?ver=6.0.2
IP 198.54.120.40:0
Hash 04282a24833cfc10782245c00ac94833
e9cdf6979c02147f86ea920c80c37d04b00c124f
11d4391f186550fb23357c1eff43aeae8783ce72fdc77f796b3078f6a26493b2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/sticky-header-oceanwp//style.css?ver=6.0.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Mon, 31 Jan 2022 08:12:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 239
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
198.54.120.40200 OK 2.3 kB URL HTTP/2 summerdew.co.uk/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
IP 198.54.120.40:0
File type ASCII text, with very long lines (10927), with no line terminators
Hash 64f6237567e3cf8796295343039a352e
e4af3e6ae53c4c41828057b729b443dd158111ec
c558229bb9505d28966ba3ad6daa109310112c4fa01997291aea288abf2e5573
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2313
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.0.2
198.54.120.40200 OK 6.2 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.0.2
IP 198.54.120.40:0
File type Unicode text, UTF-8 text, with very long lines (51619), with no line terminators
Hash 20db916d10cfc8745d24a4d19a0f73aa
06e047ebe7c9ac50d2fd0f71a9e8388539e308db
9f11208676a929159b38acfb84e7ddd9b2dc01b359d5f4207be745cb3abb16b1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.0.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Tue, 09 Aug 2022 21:07:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6210
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/site-reviews/assets/styles/default.css?ver=5.25.1
198.54.120.40200 OK 4.0 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/site-reviews/assets/styles/default.css?ver=5.25.1
IP 198.54.120.40:0
File type Unicode text, UTF-8 text, with very long lines (22961)
Hash 9a650a032f3b81eb18ac5f3198196983
5a34bec59b90b074518955ef4af69d8565e04d6a
fb9f43cebbb4486aa18400750916905b54f924b61575968a61524f87b1ded9b4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/site-reviews/assets/styles/default.css?ver=5.25.1 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Fri, 15 Jul 2022 09:14:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4035
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/themes/oceanwp/assets/css/style.min.css?ver=2.0.8
198.54.120.40200 OK 23 kB URL HTTP/2 summerdew.co.uk/wp-content/themes/oceanwp/assets/css/style.min.css?ver=2.0.8
IP 198.54.120.40:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65531), with no line terminators
Hash a7cb7a1739ec766e15c0b4b9ac5f9129
fdf3363eed39888d6dd9e1035cd9dd0c0c466892
4c6f1e16afba92870d011f6b88456da668d04855774a8e5c8e0b38c41a65d593
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/css/style.min.css?ver=2.0.8 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 22876
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.0
198.54.120.40200 OK 11 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.0
IP 198.54.120.40:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b63b193295827d2c3f687011a2bec6c4
6e54061f8edfb0a0e15b9ad00f08d6f731a23b1e
a9f0039aa767f89648c3c4e498ffc66ffdab2df9da4a03972eeda3a7e86adaf9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.7.0 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Wed, 24 Aug 2022 09:05:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11388
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
198.54.120.40200 OK 12 kB URL HTTP/2 summerdew.co.uk/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
IP 198.54.120.40:0
File type ASCII text, with very long lines (59158)
Hash 7dce648d28c2ca91d5543f1657432fbc
1ebcc78e1d7806dab610a4b3d47dadbcd0215e3c
8b2199af0476ad851316120a11948ccff52a19600ae5c4f95d859b929a0e0729
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12380
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
198.54.120.40200 OK 4.0 kB URL HTTP/2 summerdew.co.uk/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 198.54.120.40:0
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 15:06:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.0
198.54.120.40200 OK 2.9 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.0
IP 198.54.120.40:0
File type ASCII text, with very long lines (30283), with no line terminators
Hash 1119301a85ab323270d853e94a9b2f2f
3bd61b9dd43e2e0166c4036273b4b02d50d3fec7
8cbeb42d6bac404c391197cf1f219086c8501143db7e4cfde22919d6124b3fc3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.7.0 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Wed, 24 Aug 2022 09:05:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2851
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/sticky-header-oceanwp//main.js?ver=1.0.0
198.54.120.40200 OK 1.5 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/sticky-header-oceanwp//main.js?ver=1.0.0
IP 198.54.120.40:0
File type ASCII text, with very long lines (1799)
Hash 6ca3d9c148a07ec0e19ea60ffd2b718a
4069028d796e7cad6f60d9aa7c7e4a2610ac08f2
839990aa575c988297c89dcfd9e5066ebdf22708dbe9d0ba0eedbd5ea52563b8
GET /wp-content/plugins/sticky-header-oceanwp//main.js?ver=1.0.0 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Mon, 31 Jan 2022 08:12:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1483
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.2
198.54.120.40200 OK 3.2 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.2
IP 198.54.120.40:0
File type ASCII text, with very long lines (9115)
Hash 66c388e07cfb57895688b3347ab7290b
f23bd7a31995b3b19924575f2afa297a29257856
3971f3ab5179d1f4f91d2c102f27c2bf1dac2c04e2f62ff3eae3ebfa8c28494e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Tue, 23 Aug 2022 09:11:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3245
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.2
198.54.120.40200 OK 899 B URL HTTP/2 summerdew.co.uk/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.2
IP 198.54.120.40:0
File type ASCII text, with very long lines (1668)
Hash 22d65ba38528349e705d912ce26bf8ac
c89ba006009043d93b88ff155b4fec8797330550
6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Tue, 23 Aug 2022 09:11:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.2
198.54.120.40200 OK 677 B URL HTTP/2 summerdew.co.uk/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.2
IP 198.54.120.40:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash a43fc0dde8fdd69656ad0957e62849c7
4b07cf702ac8a770c8cbffc22b9a788b6e5389ba
1ce3d0493424870c81deec0ec41de0592d2af9f91cd8081cd40a1d7ea89b614f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Tue, 23 Aug 2022 09:11:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.2
198.54.120.40200 OK 934 B URL HTTP/2 summerdew.co.uk/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.2
IP 198.54.120.40:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash cf25dd071a208312bdc07f34d2cee027
76119563119eaae392ecc8903c989d98d0b93002
8635ba2cad8f887e72779bd526f8738ff6343c74cba715caf2eddea383ba7ce6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Tue, 23 Aug 2022 09:11:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 934
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.2
198.54.120.40200 OK 974 B URL HTTP/2 summerdew.co.uk/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.2
IP 198.54.120.40:0
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash fd8b126d3265cc6afc5b672273f78531
5058e579885cccf36c44bdeb5b7318bd75952af9
72da6709db061566cb5f67322f674a77f68acb69ac6181d37f9ca4a1bb7287b7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Tue, 23 Aug 2022 09:11:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 974
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-includes/js/wp-util.min.js?ver=6.0.2
198.54.120.40200 OK 646 B URL HTTP/2 summerdew.co.uk/wp-includes/js/wp-util.min.js?ver=6.0.2
IP 198.54.120.40:0
File type ASCII text, with very long lines (1305)
Hash 6545e92af6fa2c33aed6fb1d0492af5e
b95b4d49921004f3a23ea8d057beadd4d45a6d74
ef9475d7d2b07f279a49a8458afc74f865810087e299437ef355024b93929eb2
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-util.min.js?ver=6.0.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Fri, 25 Jun 2021 19:50:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 646
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/themes/oceanwp/assets/js/third/woo/woo-quick-view.min.js?ver=2.0.8
198.54.120.40200 OK 2.0 kB URL HTTP/2 summerdew.co.uk/wp-content/themes/oceanwp/assets/js/third/woo/woo-quick-view.min.js?ver=2.0.8
IP 198.54.120.40:0
File type HTML document, ASCII text, with very long lines (4886), with no line terminators
Hash 30d0bd90552501a1229c52eaa18b1828
2ab374c4904a70033f4cd5b0778c3237fb3e4802
360b5096b15b8cce6f029bc508428e1c86d934677aa6ca4c8d5135714870729d
GET /wp-content/themes/oceanwp/assets/js/third/woo/woo-quick-view.min.js?ver=2.0.8 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2038
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.8.2
198.54.120.40200 OK 3.4 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.8.2
IP 198.54.120.40:0
File type ASCII text, with very long lines (13887), with no line terminators
Hash 25fb50f4945fa93ea85568456a86fa97
0ea82027ad4720f101de9715adf4ad963a326207
c84cd16cc99c06eec7939713048efa3f35d176236b4c9740e3eb060c12791fb3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=6.8.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Tue, 23 Aug 2022 09:11:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3436
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-includes/js/imagesloaded.min.js?ver=4.1.4
198.54.120.40200 OK 1.7 kB URL HTTP/2 summerdew.co.uk/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 198.54.120.40:0
File type ASCII text, with very long lines (5477)
Hash fa921f07ecc438baf227765de450e215
1fdd49d8bb681cb118ea8d67d4fc61b0ad46cc95
b2cc68637048b04952a2f33163f64571145dbe0817a14c68fe6f1661bd81091f
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Sat, 13 Jun 2020 23:53:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1733
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/themes/oceanwp/assets/js/third/woo/woo-display-cart.min.js?ver=2.0.8
198.54.120.40200 OK 1.2 kB URL HTTP/2 summerdew.co.uk/wp-content/themes/oceanwp/assets/js/third/woo/woo-display-cart.min.js?ver=2.0.8
IP 198.54.120.40:0
File type ASCII text, with very long lines (2548), with no line terminators
Hash 4b6aab83766239a0c11093fe0245917c
e8f35d161c0ef79352829b063bdfc4d7c75bd408
4785211ecb9c391649b713a3820b4ffe488c6560a6f8fcfbb4b9d0ab5e71013a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/js/third/woo/woo-display-cart.min.js?ver=2.0.8 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1239
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/themes/oceanwp/assets/js/third/woo/woo-scripts.min.js?ver=2.0.8
198.54.120.40200 OK 2.2 kB URL HTTP/2 summerdew.co.uk/wp-content/themes/oceanwp/assets/js/third/woo/woo-scripts.min.js?ver=2.0.8
IP 198.54.120.40:0
File type HTML document, ASCII text, with very long lines (6410), with no line terminators
Hash 8cd0227a636c3b1719591aa534d0f260
9064d740fcd4ae7c43999ce0b87b9aca4c79d72d
e50fd58072bcc7d3fbc59ba3736ce6892016beb88321a034564ef83643beb42a
GET /wp-content/themes/oceanwp/assets/js/third/woo/woo-scripts.min.js?ver=2.0.8 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2204
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/themes/oceanwp/assets/js/third/woo/woo-mini-cart.min.js?ver=2.0.8
198.54.120.40200 OK 1.2 kB URL HTTP/2 summerdew.co.uk/wp-content/themes/oceanwp/assets/js/third/woo/woo-mini-cart.min.js?ver=2.0.8
IP 198.54.120.40:0
File type ASCII text, with very long lines (2585), with no line terminators
Hash 6dfcf40cb8e353045211fc8e356a4023
10eaf4a0a7c3068bb6e7e3318ca275a6b0d014f5
76c558fe8a02cfa031fcefd5ea16188c44c5c19bd504c6fce7eab69a65b7c90d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/js/third/woo/woo-mini-cart.min.js?ver=2.0.8 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1202
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.0
198.54.120.40200 OK 40 B URL HTTP/2 summerdew.co.uk/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.0
IP 198.54.120.40:0
File type ASCII text, with no line terminators
Hash 94d041d462db321cdb888066586f2068
717d2f9da7fb9f9e2bf2058a8177a0344f8a8647
b8166c5475df6a64ab2456e95f64564164ed697d258e8bfed8cebca40efd6fa5
GET /wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.7.0 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 09:05:29 GMT
accept-ranges: bytes
content-length: 40
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/themes/oceanwp/assets/js/third/lightbox.min.js?ver=2.0.8
198.54.120.40200 OK 1.4 kB URL HTTP/2 summerdew.co.uk/wp-content/themes/oceanwp/assets/js/third/lightbox.min.js?ver=2.0.8
IP 198.54.120.40:0
File type ASCII text, with very long lines (3042), with no line terminators
Hash 39a85d91c77e212ab9f68c0cab9a43d0
adf1e77dd3b9405914c687f4a247b39c296cc0f7
5c0c49894bb7ce18bd6c0612574d2c0240632e5ef17d5d48627411e2b357d332
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/js/third/lightbox.min.js?ver=2.0.8 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1402
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/ocean-extra/includes/widgets/js/share.min.js?ver=6.0.2
198.54.120.40200 OK 173 B URL HTTP/2 summerdew.co.uk/wp-content/plugins/ocean-extra/includes/widgets/js/share.min.js?ver=6.0.2
IP 198.54.120.40:0
File type ASCII text, with no line terminators
Hash fa0b7cb9c4d2f0a218a0a6cf9e6a5b2a
3e1d1d4aa195760ffc8e3bbe9f3309b57cbfeb12
96aaa10dd944dba10e96704edabd8be36e47b6a66d6e707e7eeee3621b8a0dea
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ocean-extra/includes/widgets/js/share.min.js?ver=6.0.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Tue, 09 Aug 2022 21:07:28 GMT
accept-ranges: bytes
content-length: 173
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/customer-reviews-woocommerce/js/frontend.js
198.54.120.40200 OK 8.0 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/customer-reviews-woocommerce/js/frontend.js
IP 198.54.120.40:0
File type ASCII text, with very long lines (1799)
Hash 33317cc1b30e78c3fc96168b1929d577
ab27cc8ce3dc29ec0725397e1c29c54159e6aa31
3d522bd91c6eed5ab3400bec2d039c39ce976076ce5f45f7c08c77b6c0d8b8e5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/customer-reviews-woocommerce/js/frontend.js HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Mon, 31 Jan 2022 08:12:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7997
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-includes/js/underscore.min.js?ver=1.13.3
198.54.120.40200 OK 7.2 kB URL HTTP/2 summerdew.co.uk/wp-includes/js/underscore.min.js?ver=1.13.3
IP 198.54.120.40:0
File type ASCII text, with very long lines (18876)
Hash 8f44fac7de7704cc9c42ca9cf95071b8
1fa95065580a736700586a6c6ba1e0c3304d301c
89d8fb5c9897186f5d8295777f8eecd5c9a8ec5a40b0e01b9afe3e6ff851a4a1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Tue, 24 May 2022 21:34:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7176
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.6.8.2
198.54.120.40200 OK 6.3 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.6.8.2
IP 198.54.120.40:0
File type ASCII text, with very long lines (22768), with no line terminators
Hash 6b15b731700c7d975db760d929f36e0d
04fac2c395bdb5566188655abd8e6e7120b3e135
535c05089210ed2c0b11c4b9db56908dbda473a86babecab3a3d529627d6dd5f
GET /wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.6.8.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Tue, 23 Aug 2022 09:11:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6271
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
198.54.120.40200 OK 4.6 kB URL HTTP/2 summerdew.co.uk/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 198.54.120.40:0
File type ASCII text, with very long lines (15660)
Hash 0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Tue, 24 May 2022 21:34:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/site-reviews/assets/scripts/site-reviews.js?ver=5.25.1
198.54.120.40200 OK 10 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/site-reviews/assets/scripts/site-reviews.js?ver=5.25.1
IP 198.54.120.40:0
File type ASCII text, with very long lines (39215)
Hash 128bbab9b4f77dd5bb39b067da82d67b
10156da5cc0c55f3f415856caa8cf23dac1b048b
cf21dd8acc5811dd6db6b593fc2a4b26e70f3896e9a0fb949c244ba69a28b5cf
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/site-reviews/assets/scripts/site-reviews.js?ver=5.25.1 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Fri, 15 Jul 2022 09:14:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10381
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9853
Expires: Sun, 11 Sep 2022 16:52:49 GMT
Date: Sun, 11 Sep 2022 14:08:36 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9853
Expires: Sun, 11 Sep 2022 16:52:49 GMT
Date: Sun, 11 Sep 2022 14:08:36 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9853
Expires: Sun, 11 Sep 2022 16:52:49 GMT
Date: Sun, 11 Sep 2022 14:08:36 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9853
Expires: Sun, 11 Sep 2022 16:52:49 GMT
Date: Sun, 11 Sep 2022 14:08:36 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9853
Expires: Sun, 11 Sep 2022 16:52:49 GMT
Date: Sun, 11 Sep 2022 14:08:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e407da4d97d497925b1ab523fd416787
166741631fb93d109b18dde6d316b3fa3276aa8f
707460c02438da6114e35e0b6569d42c0f3fb747f8cb51002f4d52bedbcffa61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8485
x-amzn-requestid: a56c9282-2786-4ae7-9fc2-0468bcc820a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FM1oAMFZ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-753cc4f121c9b77d22bb82b5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mfmj40aUc8l5RPk56M-pbqTwhde_HzYcmN5MDrfv-WFPhbpoShWYNw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 22:14:30 GMT
age: 57246
etag: "166741631fb93d109b18dde6d316b3fa3276aa8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d72ce1b-951e-4f1f-97b1-db99c399d5f9.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d72ce1b-951e-4f1f-97b1-db99c399d5f9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eee5b4d617dab6f10d7053f5c4f4e98e
6c728c56797ba921e8001919df4d36e56dd37e54
76a53e2c81ec8da2bc469760b2c57098d587c6a36fa70e5b7c743a224a47d362
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d72ce1b-951e-4f1f-97b1-db99c399d5f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8171
x-amzn-requestid: a3eb931f-cd71-4738-acb1-4398fc09f453
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YOa7QGqoIAMFwlw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c0b7b-2a6ed8ca00a0a0640110cf5d;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 03:58:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QuUPVSWCQk9z9xI03trHifaWzOi5TqBZHLena93lrxhjlAG1PICKKA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 12:19:15 GMT
age: 6561
etag: "6c728c56797ba921e8001919df4d36e56dd37e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66c0f84d-aba2-4ce6-9e03-ee51e1c347be.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66c0f84d-aba2-4ce6-9e03-ee51e1c347be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57d797a1c3f6589746a1135bdb19f54f
7aa14fcd982a5cee38d58fc3c89edc4a8daf4c97
ff8855ca951f53ed5f3886cc81a7f28384d41288edeca4fdc621250e4d01c6fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66c0f84d-aba2-4ce6-9e03-ee51e1c347be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6889
x-amzn-requestid: c82ac543-90cd-4aeb-a65b-7e1bbbacc407
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2UEE-3IAMFYBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d0419-427a29067c9c92ec0db6567f;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:39:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mNvNO0HJjZ1zwPKcjfqiVOnCL0CYXc8BPDSFbV6MXVW71IVt-2K3mQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:46:54 GMT
age: 58902
etag: "7aa14fcd982a5cee38d58fc3c89edc4a8daf4c97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7a9494e-0e8b-451b-806d-72da68860cab.jpeg
34.120.237.76200 OK 17 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7a9494e-0e8b-451b-806d-72da68860cab.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c65d6ae04a64d9d01439fb4fca3f017
5ce0bc5b075b97639453d67d4f3cea61289b7698
eb48687a5974542d11882f854a86ff083528957b0fbc61c797167d8f04e0ffa9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7a9494e-0e8b-451b-806d-72da68860cab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16983
x-amzn-requestid: adf7a560-2f6c-41ba-97b2-860515511e5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YH-CxFp-oAMF9yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631976de-5f4efe0a705012957cf8bbd4;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 05:00:14 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: uoEqiA2HIn5Nbw3RBIqKrCguG-0mLFNBtkB-r3RMitCoJE3fX6wq4w==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 d2575afea3774df33dcf5e5ff475025e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 05:27:48 GMT
age: 31248
etag: "5ce0bc5b075b97639453d67d4f3cea61289b7698"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c35b7f5f8e1b0b24570a41b7d18533a
c5b82c9d77851820b8d206573d5c03cd36d27a20
bb2456b31c48e6ebc9595c2bb9972b74531e93dd02ec4571d5af614f2d116ec7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6109
x-amzn-requestid: 271b006e-9d17-46ba-9eed-22fd638c4e9e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2AhHZgIAMFlSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d039c-444e7d6b22f2a08f7215a986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:37:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Z1ZoYLM2Mj7teQm-1Dz80IZxKGqzuzAoEiT85R3RldbJwO6iJR-JJA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:44:01 GMT
etag: "c5b82c9d77851820b8d206573d5c03cd36d27a20"
content-type: image/jpeg
age: 59075
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe41cdec0-ceff-4e9c-88a7-3a5565f1a459.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe41cdec0-ceff-4e9c-88a7-3a5565f1a459.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 12666d69f9af3ceb23fdfc2100bd3226
c4d17e3ea44ef6dee9819c1586424e5f056f149c
054236a4d1f88a486f48b8f3a8ac01d21ec2179d5b1f3fc9791d0982d07a88a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe41cdec0-ceff-4e9c-88a7-3a5565f1a459.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5752
x-amzn-requestid: 622ffff0-1bd5-4eb4-a9ff-eb54c5ae44a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBrqiFiToAMF0tA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316f310-49efdcc572b4fad3543f857d;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 07:13:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: VKsU4S6tKOso216JLUWn7b1bKDyfruIVukt98JooNCjwaXDT9bkPYQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:44:02 GMT
age: 59074
etag: "c4d17e3ea44ef6dee9819c1586424e5f056f149c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/themes/oceanwp/assets/js/third/magnific-popup.min.js?ver=2.0.8
198.54.120.40200 OK 7.8 kB URL HTTP/2 summerdew.co.uk/wp-content/themes/oceanwp/assets/js/third/magnific-popup.min.js?ver=2.0.8
IP 198.54.120.40:0
File type ASCII text, with very long lines (21668), with no line terminators
Hash 442e92fe6ae37fc23d2a7b15293d755e
959dddf8da06b9b7faf9d35a8bbdf21b60c711f8
ccd9710a5212b91ca5fc0951ce146c8b6eebd7633ac9cd54bbd956d8f7619120
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/js/third/magnific-popup.min.js?ver=2.0.8 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7830
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.0
198.54.120.40200 OK 47 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.0
IP 198.54.120.40:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 4242f1a2c3779ae86c7c697817cbe2bf
1d300bfa1cab7c4fd33a6ea1a94d864c3675df48
eee6bcf54e4c0c2ad8e0f97b541a344f25ebcb5c6f62062841978af8644857f3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.7.0 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: text/css
last-modified: Wed, 24 Aug 2022 09:05:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 47274
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
198.54.120.40200 OK 30 kB URL HTTP/2 summerdew.co.uk/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 198.54.120.40:0
File type ASCII text, with very long lines (65447)
Hash 34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Wed, 10 Mar 2021 21:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.0
198.54.120.40200 OK 40 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.0
IP 198.54.120.40:0
File type ASCII text, with very long lines (45047)
Hash 4b29f739d2f0c324f8fe0292072a0215
e5ed795866581ac6ad512a55e4ece20a235920b5
351aa10967750cc94c97b8ee2c44cd129b24d80497a8a8e5065b417f18834ff2
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.7.0 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Wed, 24 Aug 2022 09:05:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 40424
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.19
198.54.120.40200 OK 45 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.19
IP 198.54.120.40:0
File type ASCII text, with very long lines (41022), with CRLF line terminators
Hash 6871073e84c542e2148dce4303ef10be
5baa7789854cc0f77c6e866755fa214e6a2da887
6f3d0d3394be02af24d811c5c1b3ef9619fd3bd3271603bb43f96b1a7a45d090
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.19 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Mon, 31 Jan 2022 08:12:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 44586
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.19
198.54.120.40200 OK 80 kB URL HTTP/2 summerdew.co.uk/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.19
IP 198.54.120.40:0
File type ASCII text, with very long lines (56545)
Hash b7b3757c86454acec44e27e3e028cad9
307519567307c5370bda49b6ca415f47cdc9d2e3
5ca5ab5de2f5c0d9096366b471b15da2f3c80dec388bf2cd0d8b87f529c5fc02
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.19 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Mon, 31 Jan 2022 08:12:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 80342
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/uploads/2021/05/SD-Logo-Asset-2@4x.png
198.54.120.40200 OK 184 kB URL HTTP/2 summerdew.co.uk/wp-content/uploads/2021/05/SD-Logo-Asset-2@4x.png
IP 198.54.120.40:0
File type PNG image data, 1057 x 759, 8-bit/color RGBA, non-interlaced\012- data
Size 184 kB (183678 bytes)
Hash 78203714ac77ca1ff817ab1541339e59
f0c25319da1d99449cafa5061e9a115aaa54e0e9
c4c7e85d27ffe7137c70ecf8a32b1afcd2386845516ac151cc8c5b1a01b5d6a0
GET /wp-content/uploads/2021/05/SD-Logo-Asset-2@4x.png HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: image/png
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-length: 183678
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 14:08:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/prociono/v22/r05YGLlR-KxAf9GGO_uuwjc.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/prociono/v22/r05YGLlR-KxAf9GGO_uuwjc.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11836, version 1.0\012- data
Hash efffdef12ea11c9c2be0bf2f9e45e4ee
2078930d2f791f03ffd6ab52bc6cff133086a734
051098b5368f69c282022be9d52b1bb085241de7d07c8d92bdc625d2a48c340b
GET /s/prociono/v22/r05YGLlR-KxAf9GGO_uuwjc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://summerdew.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11836
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 06:27:05 GMT
expires: Fri, 08 Sep 2023 06:27:05 GMT
cache-control: public, max-age=31536000
age: 286891
last-modified: Wed, 27 Apr 2022 16:20:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 14:08:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
summerdew.co.uk/wp-content/uploads/2021/05/top.jpg
198.54.120.40200 OK 41 kB URL HTTP/2 summerdew.co.uk/wp-content/uploads/2021/05/top.jpg
IP 198.54.120.40:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1500x300, components 3\012- data
Hash 2d1244d302ccb5a720094fb184a3864d
252119c680d7fa0d503f83dbd3df50cc803678e0
13c33995661851efe19c2db2e489e718a3ba179836f1ddb56c626121170c208c
GET /wp-content/uploads/2021/05/top.jpg HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:36 GMT
content-type: image/jpeg
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-length: 41046
date: Sun, 11 Sep 2022 14:08:36 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/themes/oceanwp/assets/fonts/simple-line-icons/Simple-Line-Icons.woff2?v=2.4.0
198.54.120.40200 OK 30 kB URL HTTP/2 summerdew.co.uk/wp-content/themes/oceanwp/assets/fonts/simple-line-icons/Simple-Line-Icons.woff2?v=2.4.0
IP 198.54.120.40:0
File type Web Open Font Format (Version 2), TrueType, length 30064, version 1.0\012- data
Hash 0cb0b9c589c0624c9c78dd3d83e946f6
5da603104d4d6e362824ec9e7db32eb2d617949a
104673f4859604362a18fc6294197d8fffb8cb24ad3211e92eb04f655e18cf4a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/fonts/simple-line-icons/Simple-Line-Icons.woff2?v=2.4.0 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://summerdew.co.uk/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:36 GMT
content-type: font/woff2
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-length: 30064
date: Sun, 11 Sep 2022 14:08:36 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/uploads/2021/05/cropped-fav-32x32.png
198.54.120.40200 OK 1.4 kB URL HTTP/2 summerdew.co.uk/wp-content/uploads/2021/05/cropped-fav-32x32.png
IP 198.54.120.40:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 4a454b9545ee697fb12e1799f926440d
2bf82d3633571831af59a114fa1f1e9333f74f35
832c6bd9a207e0a0e65acf45cdf112033fe7f9de1f17d567b5534c28c8be838b
GET /wp-content/uploads/2021/05/cropped-fav-32x32.png HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:37 GMT
content-type: image/png
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-length: 1388
date: Sun, 11 Sep 2022 14:08:37 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/uploads/2021/05/cropped-fav-192x192.png
198.54.120.40200 OK 34 kB URL HTTP/2 summerdew.co.uk/wp-content/uploads/2021/05/cropped-fav-192x192.png
IP 198.54.120.40:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 636500248d9ab5a43cd93b392b084622
e0a0736b7dc3df76a0ee2f9c04ab69a998074c0c
6709d5b8c1cb69db7bd574eacf86023d8c95a3681179c93683729267d8bda25f
GET /wp-content/uploads/2021/05/cropped-fav-192x192.png HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:37 GMT
content-type: image/png
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-length: 34281
date: Sun, 11 Sep 2022 14:08:37 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/?wc-ajax=get_refreshed_fragments
198.54.120.40200 OK 1.1 kB URL HTTP/2 summerdew.co.uk/?wc-ajax=get_refreshed_fragments
IP 198.54.120.40:0
File type JSON data\012- HTML document, ASCII text, with very long lines (1137), with no line terminators
Hash 03c372501c043df108cc4f1f4353d1c4
5447c0f6e192952e06a25a48f84a9a7001edab53
e7c6f855147a41d6b9073420a627bfba2a5454d413970a6d9c1f41ed9b9327e8
Analyzer Verdict Alert fortinet Malware
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://summerdew.co.uk
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.2.34
set-cookie: PHPSESSID=bb5832c3d210b9806772852e82e1cdc8; path=/; secure
pragma: no-cache
x-ua-compatible: IE=edge
access-control-allow-origin: https://summerdew.co.uk
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
x-litespeed-tag: efa_HTTP.200,efa_HTTP.200
content-type: application/json; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-litespeed-cache-control: no-cache
content-length: 1137
date: Sun, 11 Sep 2022 14:08:37 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
summerdew.co.uk/wp-content/themes/oceanwp/assets/js/main.min.js?ver=2.0.8
198.54.120.40200 OK 0 B URL HTTP/2 summerdew.co.uk/wp-content/themes/oceanwp/assets/js/main.min.js?ver=2.0.8
IP 198.54.120.40:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/js/main.min.js?ver=2.0.8 HTTP/1.1
Host: summerdew.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/lib/nrUMdBt0eY.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 18 Sep 2022 14:08:35 GMT
content-type: application/javascript
last-modified: Mon, 31 Jan 2022 08:12:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32956
date: Sun, 11 Sep 2022 14:08:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Prociono%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100i%2C200i%2C300i%2C400i%2C500i%2C600i%2C700i%2C800i%2C900i&subset=latin&display=swap&ver=6.0.2
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Prociono%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100i%2C200i%2C300i%2C400i%2C500i%2C600i%2C700i%2C800i%2C900i&subset=latin&display=swap&ver=6.0.2
IP 142.250.74.10:0
GET /css?family=Prociono%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100i%2C200i%2C300i%2C400i%2C500i%2C600i%2C700i%2C800i%2C900i&subset=latin&display=swap&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://summerdew.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 11 Sep 2022 14:08:35 GMT
date: Sun, 11 Sep 2022 14:08:35 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2