r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4667
Expires: Fri, 25 Nov 2022 04:05:29 GMT
Date: Fri, 25 Nov 2022 02:47:42 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6572
Cache-Control: max-age=120781
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:47:42 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 12:20:43 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7123
Expires: Fri, 25 Nov 2022 04:46:25 GMT
Date: Fri, 25 Nov 2022 02:47:42 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 02:17:23 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1819
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: E/RvuzRNotXf7J2BIQgAjFwJvnY7vx9DfQ+xq8ytdPwq8LljJUUPCWEmSsJsymkdITFwW0GONrk=
x-amz-request-id: AJB9DBNDT9T6VZDR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 02:43:40 GMT
age: 242
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 02:47:42 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
gradianlabs.com/
162.251.80.25200 OK 14 kB IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (445), with CRLF line terminators
Hash 4382700a352f1790016ea07cab1913cc
37fbe5ea554f8afe1f969414960dd6f2e3bbf00c
41d41147018113ecc78fc066eda5fbef6c64b8001a1798e89b46dfff2e7a6781
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 02:47:42 GMT
Server: nginx/1.21.6
Content-Type: text/html; charset=UTF-8
Content-Length: 14342
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
X-Server-Cache: true
X-Proxy-Cache: EXPIRED
Set-Cookie: ci_session=1ec0bf1d2b567f62a22242a2cb23a7ecebb94e96; expires=Fri, 25-Nov-2022 04:47:42 GMT; Max-Age=7200; path=/; HttpOnly
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 02:08:53 GMT
cache-control: public,max-age=3600
age: 2329
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash bed55787ac7dd02322ae161cf02e4206
50f2291c2dcbf591205adb2ab871496d39aa7cc3
dd26eb9a38eca5052fa706f5411ba55dd51744b0364ae635f78ff1aeaedc29bc
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 25 Nov 2022 02:47:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 24 Nov 2022 20:01:56 GMT
Expires: Fri, 25 Nov 2022 20:01:56 GMT
ETag: "50f2291c2dcbf591205adb2ab871496d39aa7cc3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash bed55787ac7dd02322ae161cf02e4206
50f2291c2dcbf591205adb2ab871496d39aa7cc3
dd26eb9a38eca5052fa706f5411ba55dd51744b0364ae635f78ff1aeaedc29bc
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 25 Nov 2022 02:47:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 24 Nov 2022 20:01:56 GMT
Expires: Fri, 25 Nov 2022 20:01:56 GMT
ETag: "50f2291c2dcbf591205adb2ab871496d39aa7cc3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash bed55787ac7dd02322ae161cf02e4206
50f2291c2dcbf591205adb2ab871496d39aa7cc3
dd26eb9a38eca5052fa706f5411ba55dd51744b0364ae635f78ff1aeaedc29bc
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 25 Nov 2022 02:47:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 24 Nov 2022 20:01:56 GMT
Expires: Fri, 25 Nov 2022 20:01:56 GMT
ETag: "50f2291c2dcbf591205adb2ab871496d39aa7cc3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash bed55787ac7dd02322ae161cf02e4206
50f2291c2dcbf591205adb2ab871496d39aa7cc3
dd26eb9a38eca5052fa706f5411ba55dd51744b0364ae635f78ff1aeaedc29bc
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 25 Nov 2022 02:47:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 24 Nov 2022 20:01:56 GMT
Expires: Fri, 25 Nov 2022 20:01:56 GMT
ETag: "50f2291c2dcbf591205adb2ab871496d39aa7cc3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash bed55787ac7dd02322ae161cf02e4206
50f2291c2dcbf591205adb2ab871496d39aa7cc3
dd26eb9a38eca5052fa706f5411ba55dd51744b0364ae635f78ff1aeaedc29bc
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 25 Nov 2022 02:47:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 24 Nov 2022 20:01:56 GMT
Expires: Fri, 25 Nov 2022 20:01:56 GMT
ETag: "50f2291c2dcbf591205adb2ab871496d39aa7cc3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
gradianlabs.com/assets/front/css/lity.min.css
162.251.80.25200 OK 987 B URL HTTP/2 gradianlabs.com/assets/front/css/lity.min.css
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2220), with CRLF line terminators
Hash 9f13913805910e4c520f0b4c596801c5
c5a2bfeb4ae814041eb9c977c99377bb68cb1e20
94acd42a3fa08a3b774835b0f0e206579870cf54f3a0ce028d650008a09c2407
GET /assets/front/css/lity.min.css HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 987
content-type: text/css
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/css/responsive.css
162.251.80.25200 OK 5.5 kB URL HTTP/2 gradianlabs.com/assets/front/css/responsive.css
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash c082309fd4682f146c39dd1b7127ba11
44cba9573be58610d4422cb5a6065df951f8b634
b696af9b66558e99a854652cf0499b844a863f25c49855639968474077129b2c
GET /assets/front/css/responsive.css HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5482
content-type: text/css
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6451
Cache-Control: max-age=115597
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:47:43 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:54:20 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.36.24.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.36.24.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iHmroOy+qQj72ABFK7poxw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bo+mAvVgMI+GUFL+VU4enxPzGqw=
gradianlabs.com/assets/front/js/isotope.pkgd.min.js
162.251.80.25200 OK 13 kB URL HTTP/2 gradianlabs.com/assets/front/js/isotope.pkgd.min.js
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32019), with CRLF line terminators
Hash 9e4c7c84c5c37bb9020c65610f5bcb20
4a701612443fa4891f711ba88fc6a298deabf82d
806ea2ffabf83d4c253dfbd74b829931c61d1852ecb50b62798c036cb53d59df
Analyzer Verdict Alert fortinet Malware
GET /assets/front/js/isotope.pkgd.min.js HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 13113
content-type: application/javascript
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/js/slick.min.js
162.251.80.25200 OK 14 kB URL HTTP/2 gradianlabs.com/assets/front/js/slick.min.js
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (42862), with no line terminators
Hash 9a48bd11f92dec534813e18fa349f0ff
e8fadaabbfe088d612272cda46c8e81bca977010
30d20c804df55bb6e8209cb1928476130801405bbf341be2ef718ea335908ee8
Analyzer Verdict Alert fortinet Malware
GET /assets/front/js/slick.min.js HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14329
content-type: application/javascript
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/css/nice-select.min.css
162.251.80.25200 OK 1.1 kB URL HTTP/2 gradianlabs.com/assets/front/css/nice-select.min.css
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3277), with no line terminators
Hash 7f5ec4063c9bf85ee63d94d1cada221d
bfd9f5503f5e3ebdb95a0bb1f29034698a634066
d74063cfaed2dc6dfe824f17a0824ca66326e8a303c1a4251c708666eb247165
GET /assets/front/css/nice-select.min.css HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1118
content-type: text/css
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/fonts/flaticon/css/flaticon.css
162.251.80.25200 OK 503 B URL HTTP/2 gradianlabs.com/assets/front/fonts/flaticon/css/flaticon.css
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 31ad29273c234c5c5a51962b05c16b05
26b2e60b1bb8cf3734db818f76c93c13439eaf5e
510e6ea8ce44c71b95fe55baed1442b2e2863196de5a1f1450571247144fb0b6
GET /assets/front/fonts/flaticon/css/flaticon.css HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 503
content-type: text/css
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/js/jquery.easypiechart.min.js
162.251.80.25200 OK 1.7 kB URL HTTP/2 gradianlabs.com/assets/front/js/jquery.easypiechart.min.js
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3766), with CRLF line terminators
Hash 7935108a3813f5a9bf25d517a3f7616e
14b2518a37b22346603dbca208e67f3808c4a3cd
c9c2ba76123bd84ae22fabc4b4533634dcf24abb4168d90efd8a3e99cb12c90c
Analyzer Verdict Alert fortinet Malware
GET /assets/front/js/jquery.easypiechart.min.js HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1740
content-type: application/javascript
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/js/lity.min.js
162.251.80.25200 OK 2.8 kB URL HTTP/2 gradianlabs.com/assets/front/js/lity.min.js
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5922), with CRLF line terminators
Hash 62d12c9298423d5cc7157fc6e6c5f253
5a019161459e37af75cf41597b9f0868e223deea
df7d32acafd09ebfc3afe5cdde25f8088317d19d738b899af35f1042b6bd86ae
Analyzer Verdict Alert fortinet Malware
GET /assets/front/js/lity.min.js HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2785
content-type: application/javascript
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/js/wow.min.js
162.251.80.25200 OK 3.2 kB URL HTTP/2 gradianlabs.com/assets/front/js/wow.min.js
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (8099), with CRLF line terminators
Hash 739e01f8f78891ce53bcf959d8a91238
2b097195264db91944e63bf13cfe5d0115f7db9d
07ac17ead5f97216c6834f051df1003e5e87907176874c3b7fcf92036d347d6c
Analyzer Verdict Alert fortinet Malware
GET /assets/front/js/wow.min.js HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3220
content-type: application/javascript
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/css/slick.min.css
162.251.80.25200 OK 534 B URL HTTP/2 gradianlabs.com/assets/front/css/slick.min.css
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1461), with no line terminators
Hash 7ab9631c54c5ff451c27fb5fd3654540
5a3723f07a1dc4c56984098c70b1216df53d1eb6
692063ed3354879af4ee5dbed97194d25856051cd01038b5dc6a8960e547120a
GET /assets/front/css/slick.min.css HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 534
content-type: text/css
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/js/jquery.inview.min.js
162.251.80.25200 OK 765 B URL HTTP/2 gradianlabs.com/assets/front/js/jquery.inview.min.js
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1437), with no line terminators
Hash b0e8bbd04aebe6147b34def32d167a48
0a4d7355bace35a3e589b313de81fcbf85768e51
a13e64c892b089b6e2d00737e4d549a5b910cdc57e28bc9ab03d2af8c4679721
Analyzer Verdict Alert fortinet Malware
GET /assets/front/js/jquery.inview.min.js HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 765
content-type: application/javascript
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/js/jquery.nice-select.min.js
162.251.80.25200 OK 1.1 kB URL HTTP/2 gradianlabs.com/assets/front/js/jquery.nice-select.min.js
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (2826), with CRLF line terminators
Hash f47c303e62ca85be32aa30f196f8b234
53a66ea2fa35c45450e4f4e294415ed384ed118c
96c81bd4a2a91f574be9830c959c5127bf3289d8a7bdf94b1be04069f1997e7e
Analyzer Verdict Alert fortinet Malware
GET /assets/front/js/jquery.nice-select.min.js HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1081
content-type: application/javascript
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/css/animate.min.css
162.251.80.25200 OK 5.8 kB URL HTTP/2 gradianlabs.com/assets/front/css/animate.min.css
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (53462), with CRLF line terminators
Hash 5804031cc0cd6ac1227d323692978c00
fae688a05cd5a11c01efe7151756e579f1b5835f
9723b0a997e557e78c565dec26a916d5e59020a2a4f331aaed34f35529f6cc46
GET /assets/front/css/animate.min.css HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5834
content-type: text/css
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/uploads/slider/logo--1555473401.png
162.251.80.25404 Not Found 358 B URL HTTP/2 gradianlabs.com/assets/uploads/slider/logo--1555473401.png
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash e6380e0c65d744670ca2bdfdebf952e7
72010e09611689dba83d615d7d4e14525584f574
a5a070dc995c94a5ecc33cec32455618639d9ea695e8a58df9bb22eee7e9ab09
GET /assets/uploads/slider/logo--1555473401.png HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
last-modified: Tue, 15 Mar 2022 21:43:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 358
content-type: text/html
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/img/shape/line-rectangle.png
162.251.80.25200 OK 746 B URL HTTP/2 gradianlabs.com/assets/front/img/shape/line-rectangle.png
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 198 x 46, 8-bit/color RGBA, non-interlaced\012- data
Hash ee44c07f32c7b16351a6b5246246f709
654a18f4e848e7a69e65d2a0b6947a9a1053cbab
bd8908a4fb8261837a5d31de8287ebe5d350ae172d015c5636aa658e504d707e
GET /assets/front/img/shape/line-rectangle.png HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:46 GMT
accept-ranges: bytes
content-length: 746
content-type: image/png
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
res.cloudinary.com/dxfq3iotg/image/upload/v1559460418/client-7.png
151.101.85.137200 OK 5.6 kB URL HTTP/2 res.cloudinary.com/dxfq3iotg/image/upload/v1559460418/client-7.png
IP 151.101.85.137:0
File type PNG image data, 400 x 79, 8-bit colormap, non-interlaced\012- data
Hash f7e4e200db1fbbf797be96c5692c8db8
e608e855ab03f5a2179219614f4e67ec676051af
d53e91ad0f1b570a8aeba5d4ca047cecdcf130c491c89497bb930d5673b919e6
GET /dxfq3iotg/image/upload/v1559460418/client-7.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
etag: "f7e4e200db1fbbf797be96c5692c8db8"
last-modified: Sun, 02 Jun 2019 07:26:59 GMT
date: Fri, 25 Nov 2022 02:47:43 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=2;cpu=1;start=2022-11-25T02:47:43.800Z;desc=hit,rtt;dur=11
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 5616
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
res.cloudinary.com/dxfq3iotg/image/upload/v1559460398/client-6.png
151.101.85.137200 OK 3.5 kB URL HTTP/2 res.cloudinary.com/dxfq3iotg/image/upload/v1559460398/client-6.png
IP 151.101.85.137:0
File type PNG image data, 400 x 125, 8-bit colormap, non-interlaced\012- data
Hash 089f8364b3c1226af6e689f869b08c63
bab6e773a97f8e8f13cc49c095a3bad2d1c617ba
3ef84c616b4b19765d60fc9db96166de5d154ff718505b4f564f86e3db0a9f27
GET /dxfq3iotg/image/upload/v1559460398/client-6.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
etag: "089f8364b3c1226af6e689f869b08c63"
last-modified: Sun, 02 Jun 2019 07:26:39 GMT
date: Fri, 25 Nov 2022 02:47:43 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-25T02:47:43.802Z;desc=hit,rtt;dur=11
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 3450
X-Firefox-Spdy: h2
res.cloudinary.com/dxfq3iotg/image/upload/v1559460379/client-5.png
151.101.85.137200 OK 5.1 kB URL HTTP/2 res.cloudinary.com/dxfq3iotg/image/upload/v1559460379/client-5.png
IP 151.101.85.137:0
File type PNG image data, 400 x 142, 8-bit colormap, non-interlaced\012- data
Hash cb2b1e765cecbf46c3e923624abda68c
1834c388167bcdd5087a3244e18adfda58a7713f
3eb83a8290cf2951b477cace1f1be1c6fa10a69d0a359d5db2bd0e0f2774ffc0
GET /dxfq3iotg/image/upload/v1559460379/client-5.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
etag: "cb2b1e765cecbf46c3e923624abda68c"
last-modified: Sun, 02 Jun 2019 07:26:20 GMT
date: Fri, 25 Nov 2022 02:47:43 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-25T02:47:43.804Z;desc=hit,rtt;dur=11
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 5123
X-Firefox-Spdy: h2
res.cloudinary.com/dxfq3iotg/image/upload/v1559460358/client-4.png
151.101.85.137200 OK 9.0 kB URL HTTP/2 res.cloudinary.com/dxfq3iotg/image/upload/v1559460358/client-4.png
IP 151.101.85.137:0
File type PNG image data, 400 x 219, 8-bit colormap, non-interlaced\012- data
Hash d67b707c39afd3281888c198c807c680
db5d657720f3f9f4e4c233a49367a270b754a4dc
d5ef967243f97f45ceaeed75c6cf9424f245e803ba4bc23eb1219d41a0500c3d
GET /dxfq3iotg/image/upload/v1559460358/client-4.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
etag: "d67b707c39afd3281888c198c807c680"
last-modified: Sun, 02 Jun 2019 07:25:59 GMT
date: Fri, 25 Nov 2022 02:47:43 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=4;cpu=0;start=2022-11-25T02:47:43.805Z;desc=hit,rtt;dur=11
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 9010
X-Firefox-Spdy: h2
res.cloudinary.com/dxfq3iotg/image/upload/v1559460269/104840a62d46c05d285762857fecb61a.png
151.101.85.137200 OK 12 kB URL HTTP/2 res.cloudinary.com/dxfq3iotg/image/upload/v1559460269/104840a62d46c05d285762857fecb61a.png
IP 151.101.85.137:0
File type PNG image data, 148 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 3597890b63e477de44706cd7b145262d
96f1ecc78a35710e111756f2c9ccb1f2741f375e
58392fdf5a1c4003e71ba4033d7e220e6dbef10447d8fd9e4b1814e1e8005a01
GET /dxfq3iotg/image/upload/v1559460269/104840a62d46c05d285762857fecb61a.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
etag: "3597890b63e477de44706cd7b145262d"
last-modified: Sun, 02 Jun 2019 07:24:31 GMT
date: Fri, 25 Nov 2022 02:47:43 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-25T02:47:43.811Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 11702
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/img/shape/dots-square.png
162.251.80.25200 OK 1.1 kB URL HTTP/2 gradianlabs.com/assets/front/img/shape/dots-square.png
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 96 x 98, 8-bit/color RGBA, non-interlaced\012- data
Hash 1d17b7c7c7520de478ad215aa4f27d03
0e903af73a8d97c75df9999d9fc4b4bc392d3b5f
25179d0c5e93ab454a308373b0b311c520b315f1a5c84b176998aba0e3021d33
GET /assets/front/img/shape/dots-square.png HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:46 GMT
accept-ranges: bytes
content-length: 1125
content-type: image/png
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
res.cloudinary.com/dxfq3iotg/image/upload/v1559460149/abof.png
151.101.85.137200 OK 7.9 kB URL HTTP/2 res.cloudinary.com/dxfq3iotg/image/upload/v1559460149/abof.png
IP 151.101.85.137:0
File type PNG image data, 148 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 5409975e7a31d161b02a5d52b54b371c
c6b6b00e32b9d1820dd6bb430990e558869be74a
c4a1c3d0d99dd4be4583d927bb966d83b487559087ab9955f7a2c2e0e06043fd
GET /dxfq3iotg/image/upload/v1559460149/abof.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
etag: "5409975e7a31d161b02a5d52b54b371c"
last-modified: Sun, 02 Jun 2019 07:22:30 GMT
date: Fri, 25 Nov 2022 02:47:43 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-25T02:47:43.816Z;desc=hit,rtt;dur=9
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 7854
X-Firefox-Spdy: h2
gradianlabs.com/https://gradianlabs.com/assets/front/uploads/slider/logo--1555473401.png
162.251.80.25404 Not Found 358 B URL HTTP/2 gradianlabs.com/https://gradianlabs.com/assets/front/uploads/slider/logo--1555473401.png
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash e6380e0c65d744670ca2bdfdebf952e7
72010e09611689dba83d615d7d4e14525584f574
a5a070dc995c94a5ecc33cec32455618639d9ea695e8a58df9bb22eee7e9ab09
GET /https://gradianlabs.com/assets/front/uploads/slider/logo--1555473401.png HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
last-modified: Tue, 15 Mar 2022 21:43:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 358
content-type: text/html
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
res.cloudinary.com/dxfq3iotg/image/upload/v1559460224/cropped-cropped-20170720-lucuLogo-squ2-e1500543540803.png
151.101.85.137200 OK 3.5 kB URL HTTP/2 res.cloudinary.com/dxfq3iotg/image/upload/v1559460224/cropped-cropped-20170720-lucuLogo-squ2-e1500543540803.png
IP 151.101.85.137:0
File type PNG image data, 148 x 64, 8-bit colormap, non-interlaced\012- data
Hash 9c1d50b582a24df5318eed7c5d3ae6d9
0725f7183c64f3d7f065f404d4c5fc716dadaa85
674dabf5a1e523614b98eff3fe49d35878b80b62a32370f5fb0af8e6a275f132
GET /dxfq3iotg/image/upload/v1559460224/cropped-cropped-20170720-lucuLogo-squ2-e1500543540803.png HTTP/1.1
Host: res.cloudinary.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
etag: "9c1d50b582a24df5318eed7c5d3ae6d9"
last-modified: Sun, 02 Jun 2019 07:23:45 GMT
date: Fri, 25 Nov 2022 02:47:43 GMT
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=2592000
server-timing: fastly;dur=1;cpu=0;start=2022-11-25T02:47:43.817Z;desc=hit,rtt;dur=8
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
content-length: 3454
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/js/main.js
162.251.80.25200 OK 2.2 kB URL HTTP/2 gradianlabs.com/assets/front/js/main.js
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash 3bf8db506778e3ca26c1087f6bec3173
1c05f14859a141524fa6772c1c2f3de2fc107e47
9ccb7c2be5d33a8c433f0291cd893972bce78f3771b58bb157c96fcc74ee9c82
Analyzer Verdict Alert fortinet Malware
GET /assets/front/js/main.js HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2219
content-type: application/javascript
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/js/imagesloaded.pkgd.min.js
162.251.80.25200 OK 2.1 kB URL HTTP/2 gradianlabs.com/assets/front/js/imagesloaded.pkgd.min.js
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5477), with CRLF line terminators
Hash e8691b0ecaa290a0a1ccf05741a3714a
459c223cad973befaebb3e12ad4261f0e0c89590
8ccaf0ca780e4aaec98fd448d2c82f29f247115ee4ca94fe73af7f03edb45c60
Analyzer Verdict Alert fortinet Malware
GET /assets/front/js/imagesloaded.pkgd.min.js HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2086
content-type: application/javascript
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/img/shape/dots-circle.png
162.251.80.25200 OK 2.2 kB URL HTTP/2 gradianlabs.com/assets/front/img/shape/dots-circle.png
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 145 x 146, 8-bit/color RGBA, non-interlaced\012- data
Hash 83927b304ac941ca5f35517e1e1ab673
e93671ce352ebfa86dd9820d1b0c10904d6532c7
2ae9a039649109d2d7da1f86ba87f1e2d3dd1b7e4ac2702528e706e4a0dae533
GET /assets/front/img/shape/dots-circle.png HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:46 GMT
accept-ranges: bytes
content-length: 2248
content-type: image/png
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/img/fancy-gallery/06.jpg
162.251.80.25200 OK 1.7 kB URL HTTP/2 gradianlabs.com/assets/front/img/fancy-gallery/06.jpg
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 340 x 260, 4-bit colormap, non-interlaced\012- data
Hash 12ffcf858de0a573973b5c44411b3dc1
4942b891a13136355044d0a9103918f1ba62d19e
f77136a8fa9a02a850d27ebc43b74f3ce0a4625ff8f8b20f900786342fee492b
GET /assets/front/img/fancy-gallery/06.jpg HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:44 GMT
accept-ranges: bytes
content-length: 1665
content-type: image/jpeg
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/img/shape/wave-line-white.png
162.251.80.25200 OK 1.8 kB URL HTTP/2 gradianlabs.com/assets/front/img/shape/wave-line-white.png
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 100 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash b4db1f05f8b808dda4fdb51e0bfd0409
47372adcbe0868e46581077307e626faa56569ae
55e462d4cdcc830df49e645b3a46491c9a274e1d7c193fc22d09f103f3b4c5c5
GET /assets/front/img/shape/wave-line-white.png HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:46 GMT
accept-ranges: bytes
content-length: 1783
content-type: image/png
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/img/fancy-gallery/05.jpg
162.251.80.25200 OK 1.8 kB URL HTTP/2 gradianlabs.com/assets/front/img/fancy-gallery/05.jpg
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 370 x 610, 4-bit colormap, non-interlaced\012- data
Hash 482c85be9d5fc31c4de2846e27c1f270
d234681566a3103e95d231d54e2466e83318edc3
ae457181335f36b5f4dcb70ea7823db2c2604d63abbe48f98cb4eb8c28e6e9d6
GET /assets/front/img/fancy-gallery/05.jpg HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:44 GMT
accept-ranges: bytes
content-length: 1819
content-type: image/jpeg
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/img/fancy-gallery/07.jpg
162.251.80.25200 OK 1.7 kB URL HTTP/2 gradianlabs.com/assets/front/img/fancy-gallery/07.jpg
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 340 x 260, 4-bit colormap, non-interlaced\012- data
Hash 12ffcf858de0a573973b5c44411b3dc1
4942b891a13136355044d0a9103918f1ba62d19e
f77136a8fa9a02a850d27ebc43b74f3ce0a4625ff8f8b20f900786342fee492b
GET /assets/front/img/fancy-gallery/07.jpg HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:44 GMT
accept-ranges: bytes
content-length: 1665
content-type: image/jpeg
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/js/script.js
162.251.80.25200 OK 4.6 kB URL HTTP/2 gradianlabs.com/assets/front/js/script.js
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash b65270d1678121fe4fb5758b6ec70687
a0e0ea9a9a5475ebfe10be513a8ed27dc118cfc5
4d852f3819d187352601982066f940223827f34f03a88182c0c748a3886e0352
Analyzer Verdict Alert fortinet Malware
GET /assets/front/js/script.js HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4566
content-type: application/javascript
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/fonts/fontawesome/css/all.min.css
162.251.80.25200 OK 16 kB URL HTTP/2 gradianlabs.com/assets/front/fonts/fontawesome/css/all.min.css
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (65390), with CRLF line terminators
Hash d005169d8a46341421dcb7549b647427
d4addaf2fc84149ffa0b85f776462885dad7b48b
c241f59887a7af7048aafa24ddec9609f4d8bb2a107d5b8f29ae92055d2f1629
GET /assets/front/fonts/fontawesome/css/all.min.css HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16414
content-type: text/css
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/img/logo.png
162.251.80.25404 Not Found 358 B URL HTTP/1.1 gradianlabs.com/assets/img/logo.png
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash e6380e0c65d744670ca2bdfdebf952e7
72010e09611689dba83d615d7d4e14525584f574
a5a070dc995c94a5ecc33cec32455618639d9ea695e8a58df9bb22eee7e9ab09
GET /assets/img/logo.png HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gradianlabs.com/
Cookie: ci_session=1ec0bf1d2b567f62a22242a2cb23a7ecebb94e96
HTTP/1.1 404 Not Found
Date: Fri, 25 Nov 2022 02:47:43 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 15 Mar 2022 21:43:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 358
Content-Type: text/html
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gradianlabs.com/assets/front/img/slider-img.png
162.251.80.25200 OK 82 kB URL HTTP/2 gradianlabs.com/assets/front/img/slider-img.png
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 554 x 581, 8-bit/color RGBA, non-interlaced\012- data
Hash 34ef563c8180070c1951598c358e4f73
f4d784dc824df0c13909b4b520cfed315c6e75c5
529f7f1a1858ed2c44a06e25f1e95fa3c8e11aa15bb4610e6591b152f704c0b5
GET /assets/front/img/slider-img.png HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:42 GMT
accept-ranges: bytes
content-length: 82046
content-type: image/png
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/img/problem-img.png
162.251.80.25200 OK 86 kB URL HTTP/2 gradianlabs.com/assets/front/img/problem-img.png
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 510 x 313, 8-bit/color RGBA, non-interlaced\012- data
Hash 16574091dac6a8ddc7a063097483ecea
622e86233b66fa51002b1139277728a96249891e
c3d4be3a74473492746faf091d3a9bf6395ca73cf50c7db14366e224794937b9
GET /assets/front/img/problem-img.png HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:42 GMT
accept-ranges: bytes
content-length: 85476
content-type: image/png
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/img/who-we-help-bg-img.png
162.251.80.25200 OK 305 kB URL HTTP/2 gradianlabs.com/assets/front/img/who-we-help-bg-img.png
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 1043 x 990, 8-bit/color RGBA, non-interlaced\012- data
Size 305 kB (305073 bytes)
Hash 5b01060fba7ed9fda4dc8de882ae12a7
84f1caefefeca5e3c05077da4c988e7ade1d9e51
dd3dc249f908e56beb9e60ea08471c1c20c3b0d41fdf41e3c043da0e6b780ff4
GET /assets/front/img/who-we-help-bg-img.png HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:42 GMT
accept-ranges: bytes
content-length: 305073
content-type: image/png
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
142.250.74.99200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
IP 142.250.74.99:0
File type Web Open Font Format (Version 2), TrueType, length 25672, version 1.0\012- data
Hash fe3e5be2baa0126122ba9367ebab73c8
40bec99106dfab5f3721ed725483eb618a9016cd
8b166007d6f54c33b3ea10ea23572bc3166f55f365840d3cbd6ef7b5dcf6674e
GET /s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gradianlabs.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25672
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 21:16:17 GMT
expires: Tue, 21 Nov 2023 21:16:17 GMT
cache-control: public, max-age=31536000
age: 279087
last-modified: Mon, 18 Jul 2022 19:12:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
142.250.74.99200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
IP 142.250.74.99:0
File type Web Open Font Format (Version 2), TrueType, length 16980, version 1.0\012- data
Hash 8a97f720d330e75ccdbda9ae0e9f5e90
8e4fee916581ab48d385187705667cebc7500afe
97d5a594e7f76c7e50045b67667fd6b74b268515efe6425097be1b2647079787
GET /s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gradianlabs.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 08:32:12 GMT
expires: Thu, 23 Nov 2023 08:32:12 GMT
cache-control: public, max-age=31536000
age: 152132
last-modified: Mon, 09 May 2022 18:33:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
142.250.74.99200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
IP 142.250.74.99:0
File type Web Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data
Hash c26b97e7f5bb7a34d190703522d75e16
69d9e5aea0544dbaf9b78c1b65139c03eceece8f
96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gradianlabs.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 21:11:06 GMT
expires: Tue, 21 Nov 2023 21:11:06 GMT
cache-control: public, max-age=31536000
age: 279398
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
142.250.74.99200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
IP 142.250.74.99:0
File type Web Open Font Format (Version 2), TrueType, length 17156, version 1.0\012- data
Hash 7e344afc10a492d516789f072fa6edfd
f38bd0b4e9d0577528f533b8ecd80801a0c6340f
c84423c305779f2aab07847a2e3870ac1ea4072e470d5eb149c01e0e0497eae3
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gradianlabs.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17156
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 21:48:51 GMT
expires: Thu, 23 Nov 2023 21:48:51 GMT
cache-control: public, max-age=31536000
age: 104333
last-modified: Mon, 09 May 2022 18:33:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/js/jquery-3.6.0.min.js
162.251.80.25200 OK 56 kB URL HTTP/2 gradianlabs.com/assets/front/js/jquery-3.6.0.min.js
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash b3f1c89fff408932a46c02a74e4efed9
e41328e50a59e829795f6929afdb02319099beb8
f637e153a336ff5701103e39fa7441c3e2528e0b91ea3c473d3ad353b9815420
Analyzer Verdict Alert fortinet Malware
GET /assets/front/js/jquery-3.6.0.min.js HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 02:47:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ibb.co/R67rBWt/Sales-development-img-revnew.jpg
162.19.58.160200 OK 36 kB URL HTTP/2 i.ibb.co/R67rBWt/Sales-development-img-revnew.jpg
IP 162.19.58.160:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 550x510, components 3\012- data
Hash 2f1c037426a7a7c93f5c237ee8c9722f
34a19f5aa0d070e46de02f107dd7d70dac6a678b
1b4087da2936e88673976d61258e88903a6c2e71a54605bdd0f62919d6f8db41
GET /R67rBWt/Sales-development-img-revnew.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 02:47:44 GMT
content-type: image/jpeg
content-length: 35737
last-modified: Fri, 31 Dec 2021 04:54:01 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.ibb.co/HB77MsD/Revnew-bg-2.jpg
162.19.58.160200 OK 25 kB URL HTTP/2 i.ibb.co/HB77MsD/Revnew-bg-2.jpg
IP 162.19.58.160:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1399x771, components 3\012- data
Hash 5e9d051dd8761530a22a3d02188e0d6d
f222dcc292191877ced9832efd9f6658e99f35f7
5e42cfb61363f20854462560f24340e59890cac2124800e23ab28adb50ee4416
GET /HB77MsD/Revnew-bg-2.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 02:47:44 GMT
content-type: image/jpeg
content-length: 25136
last-modified: Thu, 30 Dec 2021 12:51:11 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/img/shape/blob-shape-4.png
162.251.80.25200 OK 15 kB URL HTTP/2 gradianlabs.com/assets/front/img/shape/blob-shape-4.png
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 718 x 729, 8-bit/color RGBA, non-interlaced\012- data
Hash ce353971f638c0fd9301d5f5f66b408f
e6168fe45137f0995d380d0988db04a647cb5cb2
f5fe1a0cda22bd5c3f412c0297805c51775b324298f3d325273cadc599ecc44e
GET /assets/front/img/shape/blob-shape-4.png HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradianlabs.com/assets/front/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:44 GMT
accept-ranges: bytes
content-length: 15012
content-type: image/png
date: Fri, 25 Nov 2022 02:47:44 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/img/shape/circle1.png
162.251.80.25200 OK 61 kB URL HTTP/2 gradianlabs.com/assets/front/img/shape/circle1.png
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 900 x 957, 8-bit/color RGBA, non-interlaced\012- data
Hash 918dbf8cd4cd909b6bd9043ac96633bd
c7378cda03274302f56945cf5ce7e3c927cce188
1e7ba2a72c814ea2e142604520d61601259b31a9923272896ae504f6dc6adc05
GET /assets/front/img/shape/circle1.png HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradianlabs.com/assets/front/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:46 GMT
accept-ranges: bytes
content-length: 60809
content-type: image/png
date: Fri, 25 Nov 2022 02:47:44 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/js/bootstrap.min.js
162.251.80.25200 OK 84 kB URL HTTP/2 gradianlabs.com/assets/front/js/bootstrap.min.js
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 671bba063b82f44468bc8659533ed2de
3e8d5723328b473c0c726dea63ee08bb7d079d72
a6e8d7f65513440288b32b471202d94a3399e2ba26ecb523669216daa04eb06b
Analyzer Verdict Alert fortinet Malware
GET /assets/front/js/bootstrap.min.js HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/img/hero/hero-bg-one.png
162.251.80.25200 OK 299 kB URL HTTP/2 gradianlabs.com/assets/front/img/hero/hero-bg-one.png
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 1920 x 950, 8-bit/color RGBA, non-interlaced\012- data
Size 299 kB (299135 bytes)
Hash f1e9826cf18516818ea37f0b82b8cdb2
ae2d0ddf5ff8f4134a05acdc106967048f8e6293
521c85dcfb8db3515235a44d763db19fa432a9ba7da5c9ea543b3ec68cda3726
GET /assets/front/img/hero/hero-bg-one.png HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradianlabs.com/assets/front/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:44 GMT
accept-ranges: bytes
content-length: 299135
content-type: image/png
date: Fri, 25 Nov 2022 02:47:44 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/img/shape/doted-bg.png
162.251.80.25200 OK 336 kB URL HTTP/2 gradianlabs.com/assets/front/img/shape/doted-bg.png
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 1920 x 861, 8-bit/color RGBA, non-interlaced\012- data
Size 336 kB (335507 bytes)
Hash 1780e40115ddcbb3557df2e2e195ffad
a7f123f025ee821b4bf4e46ee56676938e99d60e
893134f07dfe2c6b0f14f565467fddae28c55d8cfca90787feca968638336773
GET /assets/front/img/shape/doted-bg.png HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradianlabs.com/assets/front/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:46 GMT
accept-ranges: bytes
content-length: 335507
content-type: image/png
date: Fri, 25 Nov 2022 02:47:44 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/fonts/fontawesome/webfonts/fa-brands-400.woff
162.251.80.25200 OK 88 kB URL HTTP/2 gradianlabs.com/assets/front/fonts/fontawesome/webfonts/fa-brands-400.woff
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Web Open Font Format, TrueType, length 87688, version 329.-17826\012- data
Hash 889855136f55578ad089107285632b37
ba16618a7ded1dd0942a77ee5893e1a1d56a58bb
6ee2fe9311a49f00465248fd49e3731593621dc08f250d60460fd07776897d06
Analyzer Verdict Alert fortinet Malware
GET /assets/front/fonts/fontawesome/webfonts/fa-brands-400.woff HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gradianlabs.com
Connection: keep-alive
Referer: https://gradianlabs.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:42 GMT
accept-ranges: bytes
content-length: 87688
content-type: font/woff
date: Fri, 25 Nov 2022 02:47:44 GMT
server: Apache
X-Firefox-Spdy: h2
i.ibb.co/xMwQ2HH/footer-bg.jpg
162.19.58.160200 OK 83 kB URL HTTP/2 i.ibb.co/xMwQ2HH/footer-bg.jpg
IP 162.19.58.160:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1400x680, components 3\012- data
Hash c93f17ea38e2bf2834d9fd369a1c86c3
f09ccd7bc24566d69f9bbc2a58b48cd728fa8018
91d0b5cfe387f82e9550d5d00dea2b162b5fc1083141bb7b8f97eb39d68460de
GET /xMwQ2HH/footer-bg.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 02:47:44 GMT
content-type: image/jpeg
content-length: 82555
last-modified: Sat, 01 Jan 2022 05:03:42 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4688
Expires: Fri, 25 Nov 2022 04:05:52 GMT
Date: Fri, 25 Nov 2022 02:47:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4688
Expires: Fri, 25 Nov 2022 04:05:52 GMT
Date: Fri, 25 Nov 2022 02:47:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bd50a26-dc90-4a0f-9ac7-e2950f1e9d5f.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bd50a26-dc90-4a0f-9ac7-e2950f1e9d5f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c67bf2eb6ca2d7e2b34df1dbe8e7b36
cdacea802c72450973140387aafacae9df78b0aa
52c1b293ec45c98077953699dcc48d77d4aee2bb12f38ef21c692af9171b6db2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bd50a26-dc90-4a0f-9ac7-e2950f1e9d5f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8275
x-amzn-requestid: 350ffdb7-723f-4dfc-95e8-e76364d1313d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8xGPAoAMFbWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-10d4c566779b9b9f4bb9112d;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nJ7Ppbn5tLf-PIzvOMM-JK3paiWilTRRs5f93VzR0dZ5XDeIGwWonw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:55:55 GMT
age: 17509
etag: "cdacea802c72450973140387aafacae9df78b0aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6673267df195141739d1018c17101368
b80047da428636adb7027f12718c8d11bd461da4
de30af07eed7326a1326c831e04727649a112c20d0c485a7e973edd96f91bfaa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11954
x-amzn-requestid: 0c912d90-72b5-4060-ae22-c2ecbe16b57a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8J-nEFEoAMF2eA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2390-503ead086c8021af6eaeaa85;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JZAeoFNsUy2usSV7O41YGIfVow9gaIMXuKnfcaundLduQ5UX2eTKOQ==
via: 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 17:17:27 GMT
age: 34217
etag: "b80047da428636adb7027f12718c8d11bd461da4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31c66612-f3a0-4e62-8b93-c9f774ffc236.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31c66612-f3a0-4e62-8b93-c9f774ffc236.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba7b9c131ab7e5998f25b069ba3860a0
0214fc0deecb1115766802f42cfd256e3c479490
717aa23c687ccebc1b5ebbfd88d0e4fe181fef038d308231842b2b1969f3976b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31c66612-f3a0-4e62-8b93-c9f774ffc236.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6130
x-amzn-requestid: 0ab34b27-2c6b-4a37-87ad-6fa56a265453
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8wF7KIAMFjlw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-4a3d24f93ceb37d37a5ce1ee;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SHmcFNiZ97RU02VeLiHLjFynYiSuaQP8T_XKG2UaAigWXG5sYhdVLQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:55:28 GMT
age: 17536
etag: "0214fc0deecb1115766802f42cfd256e3c479490"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4006a9037ab5f28dca62b0aa7a704c41
74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b
556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ESacQ13nZwlbUKiNnwl6AxqC9ar8cxPctKLMFWS86aB3ZGsbxG0ZOA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 04:22:08 GMT
age: 80736
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:04:28 GMT
age: 78196
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2302d358-ba65-4bf0-9d74-b5fb532a1d52.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2302d358-ba65-4bf0-9d74-b5fb532a1d52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1adbf0cd373a4c06caa71eac14e1286c
236199a790f16dcf96dba80b9945836b37e3c2eb
767fd66cf0751dd80b2453588f9363fac7d9637da3dc9098d25fb65699ca8c5e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2302d358-ba65-4bf0-9d74-b5fb532a1d52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6590
x-amzn-requestid: 5d8b02c4-673a-4c77-8f24-498d9b8a28ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8zGeAIAMF4HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-661ce3991caf87e8558158c3;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4iFMdgZvXpHdbGKY-3exNXsKVn2FuWGQg70mCqzGLSHk_bSTiXSCxA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:01:38 GMT
age: 17166
etag: "236199a790f16dcf96dba80b9945836b37e3c2eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/fonts/fontawesome/webfonts/fa-brands-400.ttf
162.251.80.25200 OK 130 kB URL HTTP/2 gradianlabs.com/assets/front/fonts/fontawesome/webfonts/fa-brands-400.ttf
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh\012- data
Size 130 kB (129620 bytes)
Hash 4005f8899c332f8a2ecfb49f567d3d5d
f5667f8aae1d4a95911fd0ff9d4ea9b4cc053255
35a381f4fd75558b1e1923ba2090808ef1794bf76f4c8e0d4b886a1627559245
Analyzer Verdict Alert fortinet Malware
GET /assets/front/fonts/fontawesome/webfonts/fa-brands-400.ttf HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://gradianlabs.com
Connection: keep-alive
Referer: https://gradianlabs.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 02:47:44 GMT
server: Apache
content-type: font/ttf
content-length: 129620
last-modified: Mon, 07 Feb 2022 13:21:42 GMT
accept-ranges: bytes
x-server-cache: true
x-proxy-cache: MISS
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/img/favicon.ico
162.251.80.25200 OK 766 B URL HTTP/2 gradianlabs.com/assets/front/img/favicon.ico
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type MS Windows icon resource - 1 icon, 32x32, 16 colors, 4 bits/pixel\012- data
Hash 338abbb5ea8d80b9869555eca253d49d
63e4879d10467b4bc481a208c3a64649242a1420
36a6f4ba02692dd0d4f25aa288e598a8f36d5e1a18513f0bdbbc0ada9f5b729d
GET /assets/front/img/favicon.ico HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 02:47:44 GMT
server: Apache
content-type: image/x-icon
content-length: 766
last-modified: Mon, 07 Feb 2022 13:21:42 GMT
cache-control: max-age=604800
expires: Sat, 26 Nov 2022 13:13:21 GMT
x-server-cache: true
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ad933c0-8cbe-40eb-920c-38b8ae531c9f.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ad933c0-8cbe-40eb-920c-38b8ae531c9f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d43ec6824d4fdc4d31b8c245bf8c5849
81f85633fca39972d8e0bf9a4ec7cd999e54564f
b0e521b23879af86102f46a9ec412faf6345df31a97a7b58880f63f81fdcd0c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ad933c0-8cbe-40eb-920c-38b8ae531c9f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7900
x-amzn-requestid: a9d184b1-3b4a-4ca6-9ad2-ce3aac10f422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB91H2IIAMFjGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38b-5732361f36c023c22c922ee9;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cRreyOCHys8rW4UWA3JSMhtOiiltT6ULxxgi9aLM7sw07UruCXgPkQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:13:14 GMT
age: 16477
etag: "81f85633fca39972d8e0bf9a4ec7cd999e54564f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/fonts/fontawesome/webfonts/fa-solid-900.ttf
162.251.80.25200 OK 0 B URL HTTP/2 gradianlabs.com/assets/front/fonts/fontawesome/webfonts/fa-solid-900.ttf
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
GET /assets/front/fonts/fontawesome/webfonts/fa-solid-900.ttf HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://gradianlabs.com
Connection: keep-alive
Referer: https://gradianlabs.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 02:47:44 GMT
server: Apache
content-type: font/ttf
content-length: 313620
last-modified: Mon, 07 Feb 2022 13:21:42 GMT
accept-ranges: bytes
x-server-cache: true
x-proxy-cache: MISS
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Nunito+Sans:ital,wght@0,300;0,400;0,600;0,700;1,400;1,600&family=Nunito:wght@300;400;600;700&family=Quicksand:wght@400;500;600;700&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Nunito+Sans:ital,wght@0,300;0,400;0,600;0,700;1,400;1,600&family=Nunito:wght@300;400;600;700&family=Quicksand:wght@400;500;600;700&display=swap
IP 142.250.74.10:0
GET /css2?family=Nunito+Sans:ital,wght@0,300;0,400;0,600;0,700;1,400;1,600&family=Nunito:wght@300;400;600;700&family=Quicksand:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradianlabs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 02:47:43 GMT
date: Fri, 25 Nov 2022 02:47:43 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/fonts/fontawesome/webfonts/fa-light-300.woff2
162.251.80.25200 OK 0 B URL HTTP/2 gradianlabs.com/assets/front/fonts/fontawesome/webfonts/fa-light-300.woff2
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
GET /assets/front/fonts/fontawesome/webfonts/fa-light-300.woff2 HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gradianlabs.com
Connection: keep-alive
Referer: https://gradianlabs.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:42 GMT
accept-ranges: bytes
content-length: 156896
content-type: font/woff2
date: Fri, 25 Nov 2022 02:47:44 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/css/style.css
162.251.80.25200 OK 0 B URL HTTP/2 gradianlabs.com/assets/front/css/style.css
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /assets/front/css/style.css HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/js/jquery.js
162.251.80.25200 OK 0 B URL HTTP/2 gradianlabs.com/assets/front/js/jquery.js
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
GET /assets/front/js/jquery.js HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
bootstrapmade.com/demo/themes/NewBiz/img/clients/client-8.png
172.67.192.19404 Not Found 0 B URL HTTP/2 bootstrapmade.com/demo/themes/NewBiz/img/clients/client-8.png
IP 172.67.192.19:0
GET /demo/themes/NewBiz/img/clients/client-8.png HTTP/1.1
Host: bootstrapmade.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Fri, 25 Nov 2022 02:47:43 GMT
content-type: text/html
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z8sQWNc9PmCcyZGrZ2%2FJR9%2BALzebHsQ7Jye7QVMqZ29o3hB7qN3m05HS%2FSogrjMUHfrzEYnB5JsDVDbr%2BziNexDmZ0dYBspYtlXAfk29Bf7JNdVdXaJQYymQPQPdpWSkmtYUjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f70fb2ba0db509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/fonts/fontawesome/webfonts/fa-brands-400.woff2
162.251.80.25200 OK 0 B URL HTTP/2 gradianlabs.com/assets/front/fonts/fontawesome/webfonts/fa-brands-400.woff2
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
GET /assets/front/fonts/fontawesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gradianlabs.com
Connection: keep-alive
Referer: https://gradianlabs.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:42 GMT
accept-ranges: bytes
content-length: 74700
content-type: font/woff2
date: Fri, 25 Nov 2022 02:47:44 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/fonts/fontawesome/webfonts/fa-solid-900.woff2
162.251.80.25200 OK 0 B URL HTTP/2 gradianlabs.com/assets/front/fonts/fontawesome/webfonts/fa-solid-900.woff2
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
GET /assets/front/fonts/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gradianlabs.com
Connection: keep-alive
Referer: https://gradianlabs.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:42 GMT
accept-ranges: bytes
content-length: 117452
content-type: font/woff2
date: Fri, 25 Nov 2022 02:47:44 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/js/owl.js
162.251.80.25200 OK 0 B URL HTTP/2 gradianlabs.com/assets/front/js/owl.js
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
GET /assets/front/js/owl.js HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/css/bootstrap.min.css
162.251.80.25200 OK 0 B URL HTTP/2 gradianlabs.com/assets/front/css/bootstrap.min.css
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
GET /assets/front/css/bootstrap.min.css HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gradianlabs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 25 Nov 2022 02:47:43 GMT
server: Apache
X-Firefox-Spdy: h2
gradianlabs.com/assets/front/fonts/fontawesome/webfonts/fa-regular-400.woff2
162.251.80.25200 OK 0 B URL HTTP/2 gradianlabs.com/assets/front/fonts/fontawesome/webfonts/fa-regular-400.woff2
IP 162.251.80.25:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Malware
GET /assets/front/fonts/fontawesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: gradianlabs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gradianlabs.com
Connection: keep-alive
Referer: https://gradianlabs.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Feb 2022 13:21:42 GMT
accept-ranges: bytes
content-length: 145152
content-type: font/woff2
date: Fri, 25 Nov 2022 02:47:44 GMT
server: Apache
X-Firefox-Spdy: h2